Warning: Permanently added '[localhost]:59607' (ECDSA) to the list of known hosts.
2022/09/21 14:28:55 fuzzer started
2022/09/21 14:28:55 dialing manager at localhost:40289
syzkaller login: [   44.076357] cgroup: Unknown subsys name 'net'
[   44.169603] cgroup: Unknown subsys name 'rlimit'
2022/09/21 14:29:09 syscalls: 2215
2022/09/21 14:29:09 code coverage: enabled
2022/09/21 14:29:09 comparison tracing: enabled
2022/09/21 14:29:09 extra coverage: enabled
2022/09/21 14:29:09 setuid sandbox: enabled
2022/09/21 14:29:09 namespace sandbox: enabled
2022/09/21 14:29:09 Android sandbox: enabled
2022/09/21 14:29:09 fault injection: enabled
2022/09/21 14:29:09 leak checking: enabled
2022/09/21 14:29:09 net packet injection: enabled
2022/09/21 14:29:09 net device setup: enabled
2022/09/21 14:29:09 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/21 14:29:09 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/21 14:29:09 USB emulation: enabled
2022/09/21 14:29:09 hci packet injection: enabled
2022/09/21 14:29:09 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921                                          )
2022/09/21 14:29:09 802.15.4 emulation: enabled
2022/09/21 14:29:09 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/21 14:29:09 fetching corpus: 50, signal 24006/27558 (executing program)
2022/09/21 14:29:10 fetching corpus: 100, signal 38637/43556 (executing program)
2022/09/21 14:29:10 fetching corpus: 150, signal 46120/52420 (executing program)
2022/09/21 14:29:10 fetching corpus: 200, signal 54851/62323 (executing program)
2022/09/21 14:29:10 fetching corpus: 250, signal 59247/67953 (executing program)
2022/09/21 14:29:10 fetching corpus: 300, signal 65323/75089 (executing program)
2022/09/21 14:29:10 fetching corpus: 350, signal 69802/80619 (executing program)
2022/09/21 14:29:10 fetching corpus: 400, signal 74772/86535 (executing program)
2022/09/21 14:29:10 fetching corpus: 450, signal 78374/91082 (executing program)
2022/09/21 14:29:10 fetching corpus: 500, signal 81782/95454 (executing program)
2022/09/21 14:29:11 fetching corpus: 550, signal 87603/101828 (executing program)
2022/09/21 14:29:11 fetching corpus: 600, signal 90680/105663 (executing program)
2022/09/21 14:29:11 fetching corpus: 650, signal 95193/110777 (executing program)
2022/09/21 14:29:11 fetching corpus: 700, signal 100608/116601 (executing program)
2022/09/21 14:29:11 fetching corpus: 750, signal 103423/120037 (executing program)
2022/09/21 14:29:11 fetching corpus: 800, signal 105468/122796 (executing program)
2022/09/21 14:29:11 fetching corpus: 850, signal 108617/126395 (executing program)
2022/09/21 14:29:12 fetching corpus: 900, signal 110742/129096 (executing program)
2022/09/21 14:29:12 fetching corpus: 950, signal 113062/131953 (executing program)
2022/09/21 14:29:12 fetching corpus: 1000, signal 115184/134549 (executing program)
2022/09/21 14:29:12 fetching corpus: 1050, signal 116600/136647 (executing program)
2022/09/21 14:29:12 fetching corpus: 1100, signal 118127/138774 (executing program)
2022/09/21 14:29:12 fetching corpus: 1150, signal 119814/141007 (executing program)
2022/09/21 14:29:12 fetching corpus: 1200, signal 121314/143064 (executing program)
2022/09/21 14:29:12 fetching corpus: 1250, signal 123125/145276 (executing program)
2022/09/21 14:29:13 fetching corpus: 1300, signal 125060/147592 (executing program)
2022/09/21 14:29:13 fetching corpus: 1350, signal 127390/150191 (executing program)
2022/09/21 14:29:13 fetching corpus: 1400, signal 128810/152026 (executing program)
2022/09/21 14:29:13 fetching corpus: 1450, signal 131589/154870 (executing program)
2022/09/21 14:29:13 fetching corpus: 1500, signal 134182/157472 (executing program)
2022/09/21 14:29:13 fetching corpus: 1550, signal 135174/158951 (executing program)
2022/09/21 14:29:13 fetching corpus: 1600, signal 136747/160752 (executing program)
2022/09/21 14:29:13 fetching corpus: 1650, signal 138868/162979 (executing program)
2022/09/21 14:29:14 fetching corpus: 1700, signal 140149/164554 (executing program)
2022/09/21 14:29:14 fetching corpus: 1750, signal 141043/165797 (executing program)
2022/09/21 14:29:14 fetching corpus: 1800, signal 142548/167568 (executing program)
2022/09/21 14:29:14 fetching corpus: 1850, signal 143916/169227 (executing program)
2022/09/21 14:29:14 fetching corpus: 1900, signal 145664/171063 (executing program)
2022/09/21 14:29:14 fetching corpus: 1950, signal 146554/172278 (executing program)
2022/09/21 14:29:14 fetching corpus: 2000, signal 147861/173653 (executing program)
2022/09/21 14:29:14 fetching corpus: 2050, signal 149245/175219 (executing program)
2022/09/21 14:29:15 fetching corpus: 2100, signal 151544/177192 (executing program)
2022/09/21 14:29:15 fetching corpus: 2150, signal 152650/178427 (executing program)
2022/09/21 14:29:15 fetching corpus: 2200, signal 154040/179796 (executing program)
2022/09/21 14:29:15 fetching corpus: 2250, signal 155102/180981 (executing program)
2022/09/21 14:29:15 fetching corpus: 2300, signal 156088/182102 (executing program)
2022/09/21 14:29:15 fetching corpus: 2350, signal 158000/183657 (executing program)
2022/09/21 14:29:15 fetching corpus: 2399, signal 159213/184847 (executing program)
2022/09/21 14:29:15 fetching corpus: 2449, signal 160525/186063 (executing program)
2022/09/21 14:29:16 fetching corpus: 2499, signal 162182/187421 (executing program)
2022/09/21 14:29:16 fetching corpus: 2549, signal 163212/188460 (executing program)
2022/09/21 14:29:16 fetching corpus: 2599, signal 164215/189515 (executing program)
2022/09/21 14:29:16 fetching corpus: 2649, signal 165129/190424 (executing program)
2022/09/21 14:29:16 fetching corpus: 2699, signal 166028/191389 (executing program)
2022/09/21 14:29:16 fetching corpus: 2749, signal 167041/192306 (executing program)
2022/09/21 14:29:16 fetching corpus: 2799, signal 168253/193304 (executing program)
2022/09/21 14:29:16 fetching corpus: 2849, signal 168965/194091 (executing program)
2022/09/21 14:29:17 fetching corpus: 2899, signal 169880/194971 (executing program)
2022/09/21 14:29:17 fetching corpus: 2948, signal 170990/195844 (executing program)
2022/09/21 14:29:17 fetching corpus: 2997, signal 171472/196437 (executing program)
2022/09/21 14:29:17 fetching corpus: 3047, signal 172772/197327 (executing program)
2022/09/21 14:29:17 fetching corpus: 3097, signal 174020/198226 (executing program)
2022/09/21 14:29:17 fetching corpus: 3147, signal 175593/199214 (executing program)
2022/09/21 14:29:17 fetching corpus: 3197, signal 176616/200048 (executing program)
2022/09/21 14:29:17 fetching corpus: 3247, signal 177444/200746 (executing program)
2022/09/21 14:29:17 fetching corpus: 3297, signal 178173/201401 (executing program)
2022/09/21 14:29:18 fetching corpus: 3347, signal 178709/201927 (executing program)
2022/09/21 14:29:18 fetching corpus: 3395, signal 180302/202882 (executing program)
2022/09/21 14:29:18 fetching corpus: 3442, signal 181092/203483 (executing program)
2022/09/21 14:29:18 fetching corpus: 3492, signal 181781/204033 (executing program)
2022/09/21 14:29:18 fetching corpus: 3541, signal 182442/204578 (executing program)
2022/09/21 14:29:18 fetching corpus: 3591, signal 183387/205187 (executing program)
2022/09/21 14:29:18 fetching corpus: 3641, signal 184379/205746 (executing program)
2022/09/21 14:29:18 fetching corpus: 3691, signal 185408/206370 (executing program)
2022/09/21 14:29:19 fetching corpus: 3741, signal 186269/206964 (executing program)
2022/09/21 14:29:19 fetching corpus: 3791, signal 187421/207621 (executing program)
2022/09/21 14:29:19 fetching corpus: 3841, signal 188285/208098 (executing program)
2022/09/21 14:29:19 fetching corpus: 3891, signal 188935/208564 (executing program)
2022/09/21 14:29:19 fetching corpus: 3941, signal 189514/208936 (executing program)
2022/09/21 14:29:19 fetching corpus: 3991, signal 190475/209417 (executing program)
2022/09/21 14:29:19 fetching corpus: 4040, signal 191652/209998 (executing program)
2022/09/21 14:29:19 fetching corpus: 4090, signal 192153/210337 (executing program)
2022/09/21 14:29:20 fetching corpus: 4139, signal 192622/210652 (executing program)
2022/09/21 14:29:20 fetching corpus: 4188, signal 193668/211105 (executing program)
2022/09/21 14:29:20 fetching corpus: 4237, signal 194689/211467 (executing program)
2022/09/21 14:29:20 fetching corpus: 4287, signal 196029/211844 (executing program)
2022/09/21 14:29:20 fetching corpus: 4336, signal 196932/212283 (executing program)
2022/09/21 14:29:20 fetching corpus: 4386, signal 197653/212598 (executing program)
2022/09/21 14:29:20 fetching corpus: 4436, signal 198360/212886 (executing program)
2022/09/21 14:29:21 fetching corpus: 4486, signal 198822/213100 (executing program)
2022/09/21 14:29:21 fetching corpus: 4536, signal 199185/213328 (executing program)
2022/09/21 14:29:21 fetching corpus: 4586, signal 200221/213631 (executing program)
2022/09/21 14:29:21 fetching corpus: 4636, signal 200836/213831 (executing program)
2022/09/21 14:29:21 fetching corpus: 4685, signal 201755/214414 (executing program)
2022/09/21 14:29:21 fetching corpus: 4734, signal 202346/214603 (executing program)
2022/09/21 14:29:21 fetching corpus: 4782, signal 202937/214763 (executing program)
2022/09/21 14:29:21 fetching corpus: 4832, signal 203733/215072 (executing program)
2022/09/21 14:29:22 fetching corpus: 4882, signal 204490/215235 (executing program)
2022/09/21 14:29:22 fetching corpus: 4930, signal 205870/215390 (executing program)
2022/09/21 14:29:22 fetching corpus: 4980, signal 206602/215505 (executing program)
2022/09/21 14:29:22 fetching corpus: 5030, signal 206935/215619 (executing program)
2022/09/21 14:29:22 fetching corpus: 5080, signal 207925/215667 (executing program)
2022/09/21 14:29:22 fetching corpus: 5130, signal 208551/215715 (executing program)
2022/09/21 14:29:22 fetching corpus: 5180, signal 209544/215717 (executing program)
2022/09/21 14:29:23 fetching corpus: 5198, signal 209731/215723 (executing program)
2022/09/21 14:29:23 fetching corpus: 5198, signal 209731/215723 (executing program)
2022/09/21 14:29:26 starting 8 fuzzer processes
14:29:26 executing program 0:
syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lchown(&(0x7f0000012c00)='./file0\x00', 0x0, 0xee00)

14:29:26 executing program 1:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
ioctl$FITRIM(r0, 0x40047211, &(0x7f0000000000))

[   74.676741] audit: type=1400 audit(1663770566.077:6): avc:  denied  { execmem } for  pid=288 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
14:29:26 executing program 2:
faccessat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)

14:29:26 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$SIOCGSTAMPNS(r0, 0x8907, 0x0)

14:29:26 executing program 4:
clone(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)='-')
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000004c0))

14:29:26 executing program 5:
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x401, 0x3, &(0x7f0000001640)=[{&(0x7f0000000440)="5c60525d3a3977f02f4c0ab7601740b67ec6c6aeb5d094468fe1aa515fd2f096dc00041bd0079af7db5be267aeb45ab604483bf5f538938e31e2d98d7b80748e152bf0d8dec3a45b7be6682727954ce8826ee217351f9b14bd2da5869fc5ec74d86bd75ec28adfaa995c621174d81c9be1e8657864", 0x75, 0x2}, {&(0x7f00000004c0)="c90d2a988593a71e3bb26cc87e7b08c109", 0x11, 0x3668000}, {&(0x7f0000000500)}], 0x1002, &(0x7f00000016c0)={[{@acl}, {@discard}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@mblk_io_submit}, {@min_batch_time={'min_batch_time', 0x3d, 0xda7b}}, {@data_ordered}], [{@smackfsdef}, {@smackfsroot={'smackfsroot', 0x3d, '\x17+:'}}, {@obj_type={'obj_type', 0x3d, 'appraise'}}, {@permit_directio}, {@euid_lt}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]})

14:29:26 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:29:26 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c)
pwritev(r0, &(0x7f0000001740)=[{&(0x7f0000000300)="3d906bd1a6cda5bdc63de2afeb3e26fe4d605dc2d5c263bb48b6e66dc860a93cb92d4bebe4a00c56890c4f1ab0eb3bdd9a79d4ff7659134add467bef7e6c3a6d828d82c808abaaab35309675c4ec323e5a5875254aaff5a2bb9b5fd0ed33eb7b7febafbfb9c257a04532a2ea041cc1abca5a51602d2673cc481696df99aa9e369b42a14c9e9e8fe3d4ed70d2f24f0aa046b5672e5f67be1cdab608060fc87a951f6caff145", 0xa5}, {&(0x7f00000003c0)="f0119afb1362ab92a965cfb2ab141f4c2d976d5ace1c95e092a476cef00b0253ab2ac39171849e3173ca87a1129446ee136b990927e82bd9eb2cbda1bf4d36733c0da7a449b58c6386e5b8020f2312cff4f74740e578e0481e102e5d0b0e42ae3846c6af3eaa96d99081e8bfa84428a3988f0816ea08befa0d666a601280745862694f6343390d7fe65043b53b24a2fca44e6ed76e916a1f63af6743971cb5788d11725b9e1f942634135d318b5dc1a74839675d47f0", 0xb6}, {&(0x7f00000004c0)="8600c0d1574c992d4ab0476636ff34d85445f52c444479af6ecff64866d06b6dce36849e0d16241b89210998180e15de078db57bab98614187da1afd98eb7824705e0d2c51b7bbff11d3c4960782c33ebca5867bfd791a150d33e02d3b3a73fd26d19c858da31ff92dc27c4ffba8897e0e1c79ed98c528aad68f09", 0x7b}, {&(0x7f0000000580)="847924a9eea55a10268257808681af24cbdb114af8b2bee885ec8ddd1d7605874c7abc9273ac4569ff215fa2f9ac3aafe2f9b617e4adc79984fa7d62013c252447a726fe5d9d3c0ffb81fc35a18e0dc13adff9f8a57de2f991da6f2ac8c4365f9d32b5c4d2b6a0e403fe311a87e42be9539c6eef22f7e713628f60", 0x7b}, {&(0x7f0000000640)="b4de35eb2501afd4334fae593f0a8ac0682eda0a63cbf352337679e02fd43ead9ae0755448f270833a29b783583646f8312fbac6957c849b38dd32b6ad72835aa5042d956f6061d3236ce31853c3130ffaaeb7d217c97ddbbf9bc46180597a14f2eb7dcc1d96b00fb8dd75db96c74fce2fba9f099ece905cc41f0a2cb12c3b09aaa0e725b75254750cbb3aa2a4ad1dee0af3e870f2dc9d298dd990eee189473997f8d118ee053e33e77b94684db5644644d7ca259002106a6858d131f19f0ee3c96dfd33898442563e1f1e93cb2999d54da7b2c04216b5ab40049f1c1d620f8be59d47c88f55549e608c4727d5b316ed42d35b5a68fd88624825e203b82a2f72cbed8d6f116f86d4ad3a8ec909bba9d272236fa00b88b11717ca6b64d2cd1bfd1b074d6f3098de5184bfd43a88780da50ae1d14bebd243fe51373535efd973d1f91a7b362941910921399e040dfa0cb0a4564c94cb6e953a286961105c973dc37ecaa40038e734ebaaf620636f977d969d13f415e42bab8f174693f1872e2990550ad49ca28a47b4cc222c377d69e83a1b7d647d2c39159331b242b69f1dc732fb3ed316ac2c4f9a4f5e76157b85a9406759752113968fbc4104f5810113de0f1cd3e079483cd5ea79ed410d5b5f4e9b684392a7222edf527dc1769e194cd9bda128b8fcb8f5d59e312c927d3a936897d85f5ada3c3b9bbe9d82ebe92081edc6d03c8a723e15c421e643a34504f44f54ba73138ccdafac95cf2e37c46b98c86b0d521c6745896baaa8f13a962d96037a9a4ebd1242e639c35483f0efc16da4f6f8a750c16de3ba5760e097fdfb12411d265cab046cb93990734946b55f7195c08eda4171957b43c88ad7c3a11ae757a6f158d408cb2c39686223d74f37ad45187712673c0755aee6b8cfc9ec28cd265abf0fd16a1926257f92ffd8daaa00c38e3f4813d4de8e0d39ff15ca9579b32cc2e1b310eadf2a080f3513c0f66ef5999b2ce42592b7c4a5489ab7df8b4950e10dc9bbdc7f47d8999a0a8419f33a9669f83b4f6849f976a3ec0eb7641a4c363be3b18998aad9551e6277c11a740781cd008fa97848e07a6f823a31ea399f85c7319e9a611a754f802d7ab87594e513d818c2b7a69d110f05ebb4eec202ee046d1612bf125f7efa35abaf480e57f93d22e818e2174c689685994f9caac5a2d85ae7ca5401b8bef645027d43e350272b840d0bb3ccbd73f28ee6cb01125071084308e3fe7a4dfa47925a93f53c956e35e473ad3fc804a0aa7dbe28375d5fc845534ffa485e530f4b53001eee04b9c59b9f20743a46faabab2f47b83103e6d4b6b168e48bdddf4373c936a26125272db777ab8c86b449d11415b20555772f8eec8c36af20f90abd6353bd8e2ea866ba72e136189d587f098e8d66bd37bc975d23d184769fcd95830f09d59e516e03371369362184a045d729ef6dc1edd796f9b0c2345905cb8cdf7037b1872fb3ec4c7d94e4047f14a9574b3afa1abcc5d0f433ae405b545fc9cbf06282ad2b8ddb4fc7c20e3ecbbcca54539966d741c548ea61d4fa4873bc54880355231c3b86cb47909e2a2354c740ce82182c462089e84577803e801f40996d20885d1503c57ee83a74505a0065bfd665f13b4ccd8c692b72b07fc26b520aebd96dd24118261fcc6c3c4cf74a09cb37c9a2b4e0b5ec00cb07b9c57d203fb3b4e53ca390ffe762576a77404326fd735a863c530d65033f0f855d6903608e80750b7d78d5dca5aedcd3040349175d01606c490c8c571ad034e0cda046e90772a62e0e20659612669820b110cd8a74ac23904809ea68e6e8b764d64bea326f806fdf39258181e4468b934bee187f97825084b8d26867bafc3c2e8b5e9fe1fe5c82f1e5447e34af00675e2cea90c49e583f6fdc713a1145d9128aaa7398d776962072b51028f2b6cdcab76164a4c0bb9dcef7868f55077525500fc13dc5846f3c904eaf92e4bbb56efc1d9042f627bc51a9720b3d4bd705b482565087106c5fe3ba0b10a0835a2485a64d5ac961d9b7baa17073bd6eecdec9f8275306a0f902c7c17dcc20f8c406142c5014c57949deb3a642cc08a4a24f586b9a725b3ebe74f7baece0d04949fa7275f4f90ba8cc652f2af3c9a5af333c6df42f23fe4ca76a6c4db46c68fb9110e06cd40142db8ce4b31dd575c751697ce71c4a89969caa69b720edc6ea6b1090149f2e0f62d19e7b409485913e7af8b0723218c9fa0f128955e5a442460011cd756e1e64a3fbf86108eb1057a37c3acb0c2338e3a38a5d59216749447ac2a8157ded7bc1ccf8381c4dc00fdf76fdff88af7d8cecbb696f4d9a0d06a80dbf08f3c2a3e5f3c6bcda2ec687ca48ca4ea98caaa2ab5dec9755f087410cf5b968d9b3557b45658e52cd37b3375372e8e249a30fe77a48a33c1e2d3fbdf6938ff9f4b726599752775b6739d04ad9a9134181ac4b8bac8f94e4b9e34bd32ea0e10b6a203792e0ebcd5ba47d4a5cab272d9ed5b326e42673bb76fbd6510998c50bbed65308d9307b1a485573a236f0684c1ee792dce7269a7e621b409898597905c638ccd451948accbc9a1dc33d5d41d4506e4fa099fc9713c3601ef14c12fe671b1fa78d45371b12116c14eac12fb1ce9e1ae202553bbfaa8d036b0736f930bd398ea1642dd549b12dfe0a7db1b0532fe3a991cce2c3c6acfe67b88c2df93561f8e2451442c87a043a00f19d1fc5d811747a042ff02e4393a8ba36b0b76d0fc7fefeaaf308cf95eeb036ae30f71e7d30caaeb2c5e025b8fd66c9635826ed649ada98166dc748deec63f8bbfc374486e9966e1a08351bd417fbcba4c91ffa6c8dcef6f0a9681cef85bba00b8dbedf6becb9111ea38de267fb3abb8838566d4cab87c25b5a743ff0d5952eb577c27d5534f79d9f4b2f2d371c134b1d351f0210601024fbbe2cfbec13c841cee6db64611da81591386ec4efc98a3091d7b01d2d8a1d4ae0c594920840df298f49e516b7ad9a588c9bbd683668ba7cd9619e2d97ac60affb4fd7577d9b3771b788ddacc18226b675beaeb76be65b96b52a6a789abe3f74bd30fbf225984a7aa84d12be38af59a854782c0cc38917c456d742610cd92242ef734e54d23f8b09c222c10f108b02ca0bce2cec721f4c095716793c983fd8df2c9f41a1f2b1368317246705636299624893f9b304485bb093c903e05145f18a30bdee28e290f129912b9467c5bb375ba19254c60887dbac284c9ab398d4c56c669ae8f271bac8726fbf8cc9562ef42ad242d5bce22df4c26d736e560c4f29afc3f8e282a493844c1c680ec81551e2bd6f876bbb90d0cdac8ca1147b466d88c94d23185a924b6d087bee83d84acb60d171c5ec084e7e3bb67a99e1ab217683ee6066cb39837fbe2d1e0f51077ab593f28ce27571d6e0b6780a4fe256b287bbf38ac752388428807959f288ab4cea2d8f14572d9306e9f8696cf45f102654cf00369ab0481fd5f62bae1706f330abf4054544ae0dff5f43f610f91bf2cc491aa32f39a3759da01e568609c6cd6b7ce869ac0e62084ef118ef0f441d9c665b44df778a5c74b83e494c4eb28edcf2c5bff6ba21ec32bb8a4b28da4999a32ec4b9e14eaa62eab4b9bd8adc206b17e36282773246bfa1f0d7832cca95acf16330c60a98998bb4a84525b0bfa5b7f43fa3bd44b7f814b699a05e28163b637b55e448d266d8a35b414c71d83a4a818067ff7ea76ddb067f55cc07f541d25ccf83d28ebb2be504dcdee3acf12d3d1637e0191323399094035596cadc623d1162688bda8eb1b9de62859f21845ee6b444735b9d4c2bf98b42020e5911510a10b5366a350e54a8ea35d4e61288b2520a17bdc0ac5c9bf303e6b0d951cf8c4d459e9f905bef541c9c2ca837d1fa7feda5dc75f3009061ddf00f5cf936d381f181618babf0a69aa80088a0986cc03d2203564cc0049958a39720fed0039f2491149bb51508ae690875be7247940e4a9c59a92f308ec4af7b96d50900c215a0555c0357bc42ae1773e8b252275b9b50329b1053fd930e9e914d8ffc03f6b979c2850939302dee01a621f6478bc9f054aaa228368d3fe965bb9face31df89a25d4fe19542d6be44156ce783a1e3f76b5ce9bb2fd77fd61fd00a2e60ad2a61a659c93238609c8d71c1c123897d9e3e645710627b34a494a161c746f32534cae257361fab1fc24eb7043531d8d6f17d500d4e25b81963ba6d341b038b30f9c8d2193fd2c8d41af0dc3672c86656e0770dede54c0543383e7d2ca8d720d5eafdc4a6143586430e78a57b3167438dc7290c6099dce4cb93a04fdc73b06729901d9b49d3229aa1cc03a3308ecb6f5f4fbb1b62b854546a91a4df31815751eb63da407668e26f34ad3bdfd53f034752857491f6623c8803f26eebd7a7b36a36b176adf6ecf026c98dd0a99fb0606ce4550456c089e77cff927e810eed8dd8192b4a43aed4ed1ecf06e8e94c7a55465a1a7d4ba90ece17cd7a49d2b01f7bf4fbe4a090c62bfffe3c48295fb88b54a2c308265bf1c90d2c7444e80d030d3acd8f502fa22a8ed5c0bfc1cb022ba78b6bba42b86f9a6f3c9f92fa391c676c3a9ea946559a85ca3652e1052678cd71d8e1c5f01c9ca38cbde45a164e89e576b811d304b69aef040bc4b2ec234a0b02c12122fe20ec2fea6b7b3017c1283e3f6188392eec39bd7bfd33881c78fade8fc0fec8521b42bbfb4f0ea57785c2d36ef9c9047c388fefcc924d6a1996f698f44beadefb0bc92ad43031af3da359bee634c2dacfcd83ba1c7af7370e6c097be031bcf0f2b548ce2c41bc2713135ae311b04d6d1e475d681a3548cd7a790f085ac4b2415a0ff4193967d017bb51e092a9caf5528b6472a1694439ebf86bc1113b34ae6ab599b3ba87313fd76d321274818b14e23e9fc284526ca03f5335026f1271a38a2e656a5c4d123e94be6816bc2665bd3b43e515bf7c048f76514e5e795eefdc7290b1b28430ea1dd2c7150682ebd2861c27a66665e5b51e80e788005b18f025b011790dbb417f4079578d851151f5f655edd088124f857b4d7edec56d70183889b67ee987d32416a73289ad05e20b01f8912434729eb423199643bc35abc550b97b7a26752bc1e585a896b39f702521c5cccfb1ed605a834017d31e9b1629c299f3dc2e2d86f1368ad75e388d2c575b4d0e8e0f1bf0c6f3783ac643e9ae711f8d2829ba05cc6eafda7259ba805fbca0162baa865d0b989c7d539b372fa5e12d7ac71d6ae4dde1483c4ae43368c4a57b5fd16380a0aaadfacda816d1c2d4fe6f69f685504c7bdf5c42bdd433effcfa8adec472043f396bd1358d97a491017cbfc7b89f9e247d93d1f9b033fe6df543ebc1233177de843f16660c26dd81d79ea58e4283983f6312295368e48b1d85d68f75dfb3938c81022f024459b92caccdb0391e5d7af75eef2875769b3631a81eb18edf40f4b3ce36151bddbb571eeed3d102053dd7b120731e4968202922edbda8557016592a70f084c1a8e291c660a1481ff6a8ef9c48db8aab1130115dfc9e62e1763d89aa2aca7952f3d23cb85e2b1fad68514a0a6aff6c6b0dfd99b2e377758bc5a819769809d8b97168e2bedc4a8bab11f4c55a9d3d37da20bd4a1d6478bbfd385ad7775fd52856985450139a81967e152a21bce266d51dd102f9e383225b7db143fd6a81b4acc6bbbcdc9ea4af3bd4deb88b4da709839c977e2a4e6bf6cf3b3c2b40f778b77fca65814539a2a3be915ae6ec0f0fb40683982e9b6f0cec80d41e0507fa9c13517c886b53ad8f3960bde", 0x1000}, {&(0x7f0000001640)="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", 0xfe}, {&(0x7f0000000040)="9e8560f40cc4b50980a08253fef79394c700534750efc175c4221a193bc688a8addd815bdb24319d90d45b483c8605974c43214f30e6605d196e3228c4", 0x3d}], 0x7, 0x1, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000180)=ANY=[@ANYBLOB="194b21007d000000"], 0x8)
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwritev(r2, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, 0x0, 0x100000)

[   76.059249] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.062424] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.063961] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.065318] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.066740] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.068329] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.072258] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.073334] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.075463] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   76.076542] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   76.077796] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.079035] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   76.086195] Bluetooth: hci1: HCI_REQ-0x0c1a
[   76.098005] Bluetooth: hci0: HCI_REQ-0x0c1a
[   76.100833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.102999] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.127292] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.128518] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   76.131172] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   76.134140] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   76.135794] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   76.149945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.154506] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   76.166225] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   76.167623] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   76.168577] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   76.168893] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   76.170979] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   76.171633] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   76.176310] Bluetooth: hci2: HCI_REQ-0x0c1a
[   76.177853] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   76.181841] Bluetooth: hci3: HCI_REQ-0x0c1a
[   76.188897] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   76.193678] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   76.197053] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   76.198505] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   76.204016] Bluetooth: hci5: HCI_REQ-0x0c1a
[   76.211001] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   76.212642] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   76.215877] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   76.217029] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   76.220339] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   76.221923] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   76.223935] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   76.227551] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   76.228603] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   76.230615] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   76.232151] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   76.233574] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   76.235496] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   76.236755] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   76.237838] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   76.239238] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   76.244019] Bluetooth: hci4: HCI_REQ-0x0c1a
[   76.245524] Bluetooth: hci7: HCI_REQ-0x0c1a
[   76.259762] Bluetooth: hci6: HCI_REQ-0x0c1a
[   78.197441] Bluetooth: hci3: command 0x0409 tx timeout
[   78.197475] Bluetooth: hci2: command 0x0409 tx timeout
[   78.198485] Bluetooth: hci0: command 0x0409 tx timeout
[   78.199315] Bluetooth: hci1: command 0x0409 tx timeout
[   78.260201] Bluetooth: hci7: command 0x0409 tx timeout
[   78.261691] Bluetooth: hci4: command 0x0409 tx timeout
[   78.262428] Bluetooth: hci5: command 0x0409 tx timeout
[   78.325241] Bluetooth: hci6: command 0x0409 tx timeout
[   80.244223] Bluetooth: hci1: command 0x041b tx timeout
[   80.245502] Bluetooth: hci0: command 0x041b tx timeout
[   80.246278] Bluetooth: hci2: command 0x041b tx timeout
[   80.246987] Bluetooth: hci3: command 0x041b tx timeout
[   80.308231] Bluetooth: hci5: command 0x041b tx timeout
[   80.308993] Bluetooth: hci4: command 0x041b tx timeout
[   80.309746] Bluetooth: hci7: command 0x041b tx timeout
[   80.372218] Bluetooth: hci6: command 0x041b tx timeout
[   82.292617] Bluetooth: hci3: command 0x040f tx timeout
[   82.293641] Bluetooth: hci2: command 0x040f tx timeout
[   82.294418] Bluetooth: hci0: command 0x040f tx timeout
[   82.295177] Bluetooth: hci1: command 0x040f tx timeout
[   82.356250] Bluetooth: hci7: command 0x040f tx timeout
[   82.356958] Bluetooth: hci4: command 0x040f tx timeout
[   82.357717] Bluetooth: hci5: command 0x040f tx timeout
[   82.461975] Bluetooth: hci6: command 0x040f tx timeout
[   84.340394] Bluetooth: hci1: command 0x0419 tx timeout
[   84.340835] Bluetooth: hci0: command 0x0419 tx timeout
[   84.341766] Bluetooth: hci2: command 0x0419 tx timeout
[   84.342191] Bluetooth: hci3: command 0x0419 tx timeout
[   84.404253] Bluetooth: hci5: command 0x0419 tx timeout
[   84.404703] Bluetooth: hci4: command 0x0419 tx timeout
[   84.405170] Bluetooth: hci7: command 0x0419 tx timeout
[   84.468279] Bluetooth: hci6: command 0x0419 tx timeout
[  130.478531] audit: type=1400 audit(1663770621.880:7): avc:  denied  { watch_reads } for  pid=3679 comm="syz-executor.6" path="/dev/bsg" dev="devtmpfs" ino=113 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=dir permissive=1
14:30:21 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:22 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:22 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:22 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:22 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:23 executing program 6:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x2)
fcntl$notify(r0, 0x402, 0x1d)

14:30:23 executing program 6:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000008980)=[{{&(0x7f00000000c0)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000004c0)=[@ip_retopts={{0x18, 0x0, 0x7, {[@ssrr={0x89, 0x8, 0x4, [@local]}]}}}], 0x18}}], 0x1, 0x0)

14:30:23 executing program 6:
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{0x0, 0x0, 0xfa2}], 0x0, 0x0)
readlink(&(0x7f0000000b40)='./file0/file0\x00', 0x0, 0x0)

[  132.019890] loop6: detected capacity change from 0 to 15
[  132.045264] loop6: detected capacity change from 0 to 15
[  133.466793] loop5: detected capacity change from 0 to 222848
[  133.731096] audit: type=1400 audit(1663770625.132:8): avc:  denied  { open } for  pid=3860 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  133.732655] audit: type=1400 audit(1663770625.132:9): avc:  denied  { kernel } for  pid=3860 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  133.753011] ------------[ cut here ]------------
[  133.753032] 
[  133.753035] ======================================================
[  133.753039] WARNING: possible circular locking dependency detected
[  133.753043] 6.0.0-rc6-next-20220921 #1 Not tainted
[  133.753050] ------------------------------------------------------
[  133.753053] syz-executor.7/3864 is trying to acquire lock:
[  133.753060] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  133.753102] 
[  133.753102] but task is already holding lock:
[  133.753106] ffff88800d64b020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  133.753135] 
[  133.753135] which lock already depends on the new lock.
[  133.753135] 
[  133.753139] 
[  133.753139] the existing dependency chain (in reverse order) is:
[  133.753143] 
[  133.753143] -> #3 (&ctx->lock){....}-{2:2}:
[  133.753157]        _raw_spin_lock+0x2a/0x40
[  133.753178]        __perf_event_task_sched_out+0x53b/0x18d0
[  133.753191]        __schedule+0xedd/0x2470
[  133.753204]        schedule+0xda/0x1b0
[  133.753218]        exit_to_user_mode_prepare+0x114/0x1a0
[  133.753230]        syscall_exit_to_user_mode+0x19/0x40
[  133.753242]        do_syscall_64+0x48/0x90
[  133.753260]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  133.753276] 
[  133.753276] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  133.753290]        _raw_spin_lock_nested+0x30/0x40
[  133.753310]        raw_spin_rq_lock_nested+0x1e/0x30
[  133.753324]        task_fork_fair+0x63/0x4d0
[  133.753343]        sched_cgroup_fork+0x3d0/0x540
[  133.753358]        copy_process+0x4183/0x6e20
[  133.753370]        kernel_clone+0xe7/0x890
[  133.753380]        user_mode_thread+0xad/0xf0
[  133.753391]        rest_init+0x24/0x250
[  133.753402]        arch_call_rest_init+0xf/0x14
[  133.753419]        start_kernel+0x4c1/0x4e6
[  133.753434]        secondary_startup_64_no_verify+0xe0/0xeb
[  133.753449] 
[  133.753449] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  133.753463]        _raw_spin_lock_irqsave+0x39/0x60
[  133.753483]        try_to_wake_up+0xab/0x1930
[  133.753498]        up+0x75/0xb0
[  133.753512]        __up_console_sem+0x6e/0x80
[  133.753530]        console_unlock+0x46a/0x590
[  133.753547]        vprintk_emit+0x1bd/0x560
[  133.753565]        vprintk+0x84/0xa0
[  133.753583]        _printk+0xba/0xf1
[  133.753594]        kauditd_hold_skb.cold+0x3f/0x4e
[  133.753612]        kauditd_send_queue+0x233/0x290
[  133.753628]        kauditd_thread+0x5da/0x9a0
[  133.753643]        kthread+0x2ed/0x3a0
[  133.753659]        ret_from_fork+0x22/0x30
[  133.753673] 
[  133.753673] -> #0 ((console_sem).lock){....}-{2:2}:
[  133.753687]        __lock_acquire+0x2a02/0x5e70
[  133.753706]        lock_acquire+0x1a2/0x530
[  133.753724]        _raw_spin_lock_irqsave+0x39/0x60
[  133.753743]        down_trylock+0xe/0x70
[  133.753759]        __down_trylock_console_sem+0x3b/0xd0
[  133.753776]        vprintk_emit+0x16b/0x560
[  133.753794]        vprintk+0x84/0xa0
[  133.753812]        _printk+0xba/0xf1
[  133.753822]        report_bug.cold+0x72/0xab
[  133.753839]        handle_bug+0x3c/0x70
[  133.753857]        exc_invalid_op+0x14/0x50
[  133.753874]        asm_exc_invalid_op+0x16/0x20
[  133.753885]        group_sched_out.part.0+0x2c7/0x460
[  133.753897]        ctx_sched_out+0x8f1/0xc10
[  133.753907]        __perf_event_task_sched_out+0x6d0/0x18d0
[  133.753920]        __schedule+0xedd/0x2470
[  133.753934]        schedule+0xda/0x1b0
[  133.753947]        exit_to_user_mode_prepare+0x114/0x1a0
[  133.753958]        syscall_exit_to_user_mode+0x19/0x40
[  133.753970]        do_syscall_64+0x48/0x90
[  133.753987]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  133.753999] 
[  133.753999] other info that might help us debug this:
[  133.753999] 
[  133.754002] Chain exists of:
[  133.754002]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  133.754002] 
[  133.754018]  Possible unsafe locking scenario:
[  133.754018] 
[  133.754021]        CPU0                    CPU1
[  133.754023]        ----                    ----
[  133.754026]   lock(&ctx->lock);
[  133.754032]                                lock(&rq->__lock);
[  133.754039]                                lock(&ctx->lock);
[  133.754046]   lock((console_sem).lock);
[  133.754052] 
[  133.754052]  *** DEADLOCK ***
[  133.754052] 
[  133.754054] 2 locks held by syz-executor.7/3864:
[  133.754062]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  133.754092]  #1: ffff88800d64b020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  133.754122] 
[  133.754122] stack backtrace:
[  133.754125] CPU: 0 PID: 3864 Comm: syz-executor.7 Not tainted 6.0.0-rc6-next-20220921 #1
[  133.754138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  133.754147] Call Trace:
[  133.754150]  <TASK>
[  133.754154]  dump_stack_lvl+0x8b/0xb3
[  133.754173]  check_noncircular+0x263/0x2e0
[  133.754191]  ? format_decode+0x26c/0xb50
[  133.754208]  ? print_circular_bug+0x450/0x450
[  133.754227]  ? enable_ptr_key_workfn+0x20/0x20
[  133.754243]  ? __lockdep_reset_lock+0x180/0x180
[  133.754261]  ? format_decode+0x26c/0xb50
[  133.754279]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  133.754298]  __lock_acquire+0x2a02/0x5e70
[  133.754322]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  133.754346]  lock_acquire+0x1a2/0x530
[  133.754364]  ? down_trylock+0xe/0x70
[  133.754382]  ? lock_release+0x750/0x750
[  133.754400]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  133.754423]  ? vprintk+0x84/0xa0
[  133.754443]  _raw_spin_lock_irqsave+0x39/0x60
[  133.754463]  ? down_trylock+0xe/0x70
[  133.754480]  down_trylock+0xe/0x70
[  133.754496]  ? vprintk+0x84/0xa0
[  133.754514]  __down_trylock_console_sem+0x3b/0xd0
[  133.754533]  vprintk_emit+0x16b/0x560
[  133.754552]  ? lock_downgrade+0x6d0/0x6d0
[  133.754572]  vprintk+0x84/0xa0
[  133.754591]  _printk+0xba/0xf1
[  133.754602]  ? record_print_text.cold+0x16/0x16
[  133.754616]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  133.754631]  ? lock_downgrade+0x6d0/0x6d0
[  133.754650]  ? report_bug.cold+0x66/0xab
[  133.754668]  ? group_sched_out.part.0+0x2c7/0x460
[  133.754681]  report_bug.cold+0x72/0xab
[  133.754700]  handle_bug+0x3c/0x70
[  133.754718]  exc_invalid_op+0x14/0x50
[  133.754737]  asm_exc_invalid_op+0x16/0x20
[  133.754749] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  133.754763] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  133.754776] RSP: 0018:ffff888040cc7c48 EFLAGS: 00010006
[  133.754786] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  133.754793] RDX: ffff888017d8b580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  133.754802] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001
[  133.754810] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d64b000
[  133.754818] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002
[  133.754829]  ? group_sched_out.part.0+0x2c7/0x460
[  133.754843]  ? group_sched_out.part.0+0x2c7/0x460
[  133.754857]  ctx_sched_out+0x8f1/0xc10
[  133.754870]  __perf_event_task_sched_out+0x6d0/0x18d0
[  133.754887]  ? lock_is_held_type+0xd7/0x130
[  133.754900]  ? __perf_cgroup_move+0x160/0x160
[  133.754913]  ? set_next_entity+0x304/0x550
[  133.754932]  ? update_curr+0x267/0x740
[  133.754952]  ? lock_is_held_type+0xd7/0x130
[  133.754966]  __schedule+0xedd/0x2470
[  133.754983]  ? io_schedule_timeout+0x150/0x150
[  133.755000]  ? __x64_sys_futex_time32+0x480/0x480
[  133.755014]  schedule+0xda/0x1b0
[  133.755029]  exit_to_user_mode_prepare+0x114/0x1a0
[  133.755041]  syscall_exit_to_user_mode+0x19/0x40
[  133.755054]  do_syscall_64+0x48/0x90
[  133.755073]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  133.755085] RIP: 0033:0x7f412e16eb19
[  133.755094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  133.755106] RSP: 002b:00007f412b6e4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  133.755117] RAX: 0000000000000001 RBX: 00007f412e281f68 RCX: 00007f412e16eb19
[  133.755125] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f412e281f6c
[  133.755133] RBP: 00007f412e281f60 R08: 000000000000000e R09: 0000000000000000
[  133.755140] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f412e281f6c
[  133.755148] R13: 00007fffca6d0a2f R14: 00007f412b6e4300 R15: 0000000000022000
[  133.755161]  </TASK>
[  133.813574] WARNING: CPU: 0 PID: 3864 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  133.814254] Modules linked in:
[  133.814500] CPU: 0 PID: 3864 Comm: syz-executor.7 Not tainted 6.0.0-rc6-next-20220921 #1
[  133.815094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  133.815915] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  133.816319] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  133.817654] RSP: 0018:ffff888040cc7c48 EFLAGS: 00010006
[  133.818051] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  133.818577] RDX: ffff888017d8b580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  133.819104] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001
[  133.819627] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d64b000
[  133.820148] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002
[  133.820676] FS:  00007f412b6e4700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  133.821278] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  133.821713] CR2: 00007f25cbc198e0 CR3: 0000000040494000 CR4: 0000000000350ef0
[  133.822243] Call Trace:
[  133.822437]  <TASK>
[  133.822612]  ctx_sched_out+0x8f1/0xc10
[  133.822904]  __perf_event_task_sched_out+0x6d0/0x18d0
[  133.823299]  ? lock_is_held_type+0xd7/0x130
[  133.823625]  ? __perf_cgroup_move+0x160/0x160
[  133.823969]  ? set_next_entity+0x304/0x550
[  133.824300]  ? update_curr+0x267/0x740
[  133.824601]  ? lock_is_held_type+0xd7/0x130
[  133.824932]  __schedule+0xedd/0x2470
[  133.825223]  ? io_schedule_timeout+0x150/0x150
[  133.825568]  ? __x64_sys_futex_time32+0x480/0x480
[  133.825934]  schedule+0xda/0x1b0
[  133.826196]  exit_to_user_mode_prepare+0x114/0x1a0
[  133.826563]  syscall_exit_to_user_mode+0x19/0x40
[  133.826921]  do_syscall_64+0x48/0x90
[  133.827211]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  133.827596] RIP: 0033:0x7f412e16eb19
[  133.827881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  133.829238] RSP: 002b:00007f412b6e4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  133.829804] RAX: 0000000000000001 RBX: 00007f412e281f68 RCX: 00007f412e16eb19
[  133.830330] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f412e281f6c
[  133.830860] RBP: 00007f412e281f60 R08: 000000000000000e R09: 0000000000000000
[  133.831389] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f412e281f6c
[  133.831916] R13: 00007fffca6d0a2f R14: 00007f412b6e4300 R15: 0000000000022000
[  133.832443]  </TASK>
[  133.832620] irq event stamp: 1076
[  133.832883] hardirqs last  enabled at (1075): [<ffffffff8133f9d9>] exit_to_user_mode_prepare+0x109/0x1a0
[  133.833584] hardirqs last disabled at (1076): [<ffffffff84259305>] __schedule+0x1225/0x2470
[  133.834199] softirqs last  enabled at (632): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  133.834828] softirqs last disabled at (623): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  133.835462] ---[ end trace 0000000000000000 ]---
[  139.060247] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  139.125091] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  143.348165] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  143.412101] Bluetooth: hci3: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
14:30:25  Registers:
info registers vcpu 0
RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff888040cc7698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000078 R11=0000000000000001
R12=0000000000000078 R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80
RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f412b6e4700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f25cbc198e0 CR3=0000000040494000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f412e2557c0 00007f412e2557c8
YMM02=0000000000000000 0000000000000000 00007f412e2557e0 00007f412e2557c0
YMM03=0000000000000000 0000000000000000 00007f412e2557c8 00007f412e2557c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=0000000000000001 RCX=0000000000000001 RDX=1ffff110081b3ec2
RSI=ffff888040d9fdd0 RDI=ffff888040d9f618 RBP=ffff88800f3a2000 RSP=ffff888040d9f548
R8 =ffffffff85ecdcce R9 =ffffffff85ecdcd2 R10=ffffed10081b3ec6 R11=ffff888040d9f608
R12=ffff888040d9f609 R13=ffff888040d9f628 R14=ffff888040d9f5c8 R15=0000000000000003
RIP=ffffffff8111c772 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb746ebd260 CR3=0000000017ff0000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269
YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000