
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:6105' (ECDSA) to the list of known hosts.
2022/09/30 10:36:06 fuzzer started
2022/09/30 10:36:06 dialing manager at localhost:40535
syzkaller login: [   35.885744] cgroup: Unknown subsys name 'net'
[   35.950069] cgroup: Unknown subsys name 'rlimit'
2022/09/30 10:36:20 syscalls: 2215
2022/09/30 10:36:20 code coverage: enabled
2022/09/30 10:36:20 comparison tracing: enabled
2022/09/30 10:36:20 extra coverage: enabled
2022/09/30 10:36:20 setuid sandbox: enabled
2022/09/30 10:36:20 namespace sandbox: enabled
2022/09/30 10:36:20 Android sandbox: enabled
2022/09/30 10:36:20 fault injection: enabled
2022/09/30 10:36:20 leak checking: enabled
2022/09/30 10:36:20 net packet injection: enabled
2022/09/30 10:36:20 net device setup: enabled
2022/09/30 10:36:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/30 10:36:20 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/30 10:36:20 USB emulation: enabled
2022/09/30 10:36:20 hci packet injection: enabled
2022/09/30 10:36:20 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929                                          )
2022/09/30 10:36:20 802.15.4 emulation: enabled
2022/09/30 10:36:20 fetching corpus: 50, signal 22324/24131 (executing program)
2022/09/30 10:36:20 fetching corpus: 100, signal 38235/41528 (executing program)
2022/09/30 10:36:20 fetching corpus: 150, signal 46144/50870 (executing program)
2022/09/30 10:36:20 fetching corpus: 200, signal 52428/58482 (executing program)
2022/09/30 10:36:20 fetching corpus: 250, signal 58056/65414 (executing program)
2022/09/30 10:36:20 fetching corpus: 300, signal 63659/72178 (executing program)
2022/09/30 10:36:20 fetching corpus: 350, signal 66790/76569 (executing program)
2022/09/30 10:36:21 fetching corpus: 400, signal 70231/81184 (executing program)
2022/09/30 10:36:21 fetching corpus: 450, signal 73670/85745 (executing program)
2022/09/30 10:36:21 fetching corpus: 500, signal 75990/89167 (executing program)
2022/09/30 10:36:21 fetching corpus: 550, signal 78552/92777 (executing program)
2022/09/30 10:36:21 fetching corpus: 600, signal 81921/97074 (executing program)
2022/09/30 10:36:21 fetching corpus: 650, signal 87231/102951 (executing program)
2022/09/30 10:36:21 fetching corpus: 700, signal 89546/106138 (executing program)
2022/09/30 10:36:21 fetching corpus: 750, signal 92438/109816 (executing program)
2022/09/30 10:36:22 fetching corpus: 800, signal 94493/112740 (executing program)
2022/09/30 10:36:22 fetching corpus: 850, signal 96660/115745 (executing program)
2022/09/30 10:36:22 fetching corpus: 900, signal 99755/119455 (executing program)
2022/09/30 10:36:22 fetching corpus: 950, signal 102170/122588 (executing program)
2022/09/30 10:36:22 fetching corpus: 1000, signal 103863/125074 (executing program)
2022/09/30 10:36:22 fetching corpus: 1050, signal 105763/127613 (executing program)
2022/09/30 10:36:22 fetching corpus: 1100, signal 106629/129315 (executing program)
2022/09/30 10:36:22 fetching corpus: 1150, signal 109089/132280 (executing program)
2022/09/30 10:36:22 fetching corpus: 1200, signal 112017/135608 (executing program)
2022/09/30 10:36:23 fetching corpus: 1250, signal 113864/138015 (executing program)
2022/09/30 10:36:23 fetching corpus: 1300, signal 115126/139945 (executing program)
2022/09/30 10:36:23 fetching corpus: 1350, signal 117280/142589 (executing program)
2022/09/30 10:36:23 fetching corpus: 1400, signal 118989/144824 (executing program)
2022/09/30 10:36:23 fetching corpus: 1450, signal 121059/147234 (executing program)
2022/09/30 10:36:23 fetching corpus: 1500, signal 123091/149592 (executing program)
2022/09/30 10:36:23 fetching corpus: 1550, signal 123958/151113 (executing program)
2022/09/30 10:36:23 fetching corpus: 1600, signal 125755/153258 (executing program)
2022/09/30 10:36:23 fetching corpus: 1650, signal 126989/155002 (executing program)
2022/09/30 10:36:24 fetching corpus: 1700, signal 128598/156954 (executing program)
2022/09/30 10:36:24 fetching corpus: 1750, signal 130833/159311 (executing program)
2022/09/30 10:36:24 fetching corpus: 1800, signal 132938/161532 (executing program)
2022/09/30 10:36:24 fetching corpus: 1850, signal 133907/163002 (executing program)
2022/09/30 10:36:24 fetching corpus: 1900, signal 135082/164554 (executing program)
2022/09/30 10:36:24 fetching corpus: 1950, signal 136370/166168 (executing program)
2022/09/30 10:36:24 fetching corpus: 2000, signal 137395/167602 (executing program)
2022/09/30 10:36:24 fetching corpus: 2050, signal 139072/169423 (executing program)
2022/09/30 10:36:25 fetching corpus: 2100, signal 140088/170774 (executing program)
2022/09/30 10:36:25 fetching corpus: 2150, signal 141081/172156 (executing program)
2022/09/30 10:36:25 fetching corpus: 2200, signal 141679/173248 (executing program)
2022/09/30 10:36:25 fetching corpus: 2250, signal 143439/174972 (executing program)
2022/09/30 10:36:25 fetching corpus: 2300, signal 145598/177032 (executing program)
2022/09/30 10:36:25 fetching corpus: 2350, signal 146643/178523 (executing program)
2022/09/30 10:36:25 fetching corpus: 2400, signal 147343/179585 (executing program)
2022/09/30 10:36:25 fetching corpus: 2450, signal 148961/181091 (executing program)
2022/09/30 10:36:25 fetching corpus: 2500, signal 149977/182317 (executing program)
2022/09/30 10:36:26 fetching corpus: 2550, signal 150993/183510 (executing program)
2022/09/30 10:36:26 fetching corpus: 2600, signal 151875/184633 (executing program)
2022/09/30 10:36:26 fetching corpus: 2650, signal 152861/185738 (executing program)
2022/09/30 10:36:26 fetching corpus: 2700, signal 153611/186785 (executing program)
2022/09/30 10:36:26 fetching corpus: 2750, signal 155032/188082 (executing program)
2022/09/30 10:36:26 fetching corpus: 2800, signal 156225/189342 (executing program)
2022/09/30 10:36:26 fetching corpus: 2850, signal 157049/190321 (executing program)
2022/09/30 10:36:26 fetching corpus: 2900, signal 158036/191399 (executing program)
2022/09/30 10:36:27 fetching corpus: 2950, signal 158809/192373 (executing program)
2022/09/30 10:36:27 fetching corpus: 3000, signal 160069/193499 (executing program)
2022/09/30 10:36:27 fetching corpus: 3050, signal 160973/194642 (executing program)
2022/09/30 10:36:27 fetching corpus: 3100, signal 162105/195805 (executing program)
2022/09/30 10:36:27 fetching corpus: 3150, signal 164547/197386 (executing program)
2022/09/30 10:36:27 fetching corpus: 3200, signal 166246/198611 (executing program)
2022/09/30 10:36:27 fetching corpus: 3250, signal 167038/199396 (executing program)
2022/09/30 10:36:27 fetching corpus: 3300, signal 168488/200532 (executing program)
2022/09/30 10:36:27 fetching corpus: 3350, signal 169058/201220 (executing program)
2022/09/30 10:36:28 fetching corpus: 3400, signal 170510/202278 (executing program)
2022/09/30 10:36:28 fetching corpus: 3450, signal 171429/203139 (executing program)
2022/09/30 10:36:28 fetching corpus: 3500, signal 172214/203891 (executing program)
2022/09/30 10:36:28 fetching corpus: 3550, signal 172766/204566 (executing program)
2022/09/30 10:36:28 fetching corpus: 3600, signal 173408/205233 (executing program)
2022/09/30 10:36:28 fetching corpus: 3650, signal 174000/205888 (executing program)
2022/09/30 10:36:28 fetching corpus: 3700, signal 174913/206664 (executing program)
2022/09/30 10:36:28 fetching corpus: 3750, signal 175715/207380 (executing program)
2022/09/30 10:36:28 fetching corpus: 3800, signal 176452/207993 (executing program)
2022/09/30 10:36:29 fetching corpus: 3850, signal 177124/208694 (executing program)
2022/09/30 10:36:29 fetching corpus: 3900, signal 177891/209288 (executing program)
2022/09/30 10:36:29 fetching corpus: 3950, signal 178672/210003 (executing program)
2022/09/30 10:36:29 fetching corpus: 4000, signal 179262/210564 (executing program)
2022/09/30 10:36:29 fetching corpus: 4050, signal 179735/211090 (executing program)
2022/09/30 10:36:29 fetching corpus: 4100, signal 180541/211656 (executing program)
2022/09/30 10:36:29 fetching corpus: 4150, signal 181321/212250 (executing program)
2022/09/30 10:36:29 fetching corpus: 4200, signal 182023/212819 (executing program)
2022/09/30 10:36:30 fetching corpus: 4250, signal 183280/213490 (executing program)
2022/09/30 10:36:30 fetching corpus: 4300, signal 183901/213955 (executing program)
2022/09/30 10:36:30 fetching corpus: 4350, signal 184544/214504 (executing program)
2022/09/30 10:36:30 fetching corpus: 4400, signal 185457/215090 (executing program)
2022/09/30 10:36:30 fetching corpus: 4450, signal 186282/215579 (executing program)
2022/09/30 10:36:30 fetching corpus: 4500, signal 186611/215975 (executing program)
2022/09/30 10:36:30 fetching corpus: 4550, signal 187271/216459 (executing program)
2022/09/30 10:36:30 fetching corpus: 4600, signal 188005/216895 (executing program)
2022/09/30 10:36:31 fetching corpus: 4650, signal 188398/217272 (executing program)
2022/09/30 10:36:31 fetching corpus: 4700, signal 188838/217636 (executing program)
2022/09/30 10:36:31 fetching corpus: 4750, signal 189355/218026 (executing program)
2022/09/30 10:36:31 fetching corpus: 4800, signal 189791/218388 (executing program)
2022/09/30 10:36:31 fetching corpus: 4850, signal 190486/218754 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/219076 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/219388 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/219682 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/219963 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/220253 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/220522 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/220803 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/221117 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/221379 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/221681 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/221942 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/222213 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/222269 (executing program)
2022/09/30 10:36:31 fetching corpus: 4872, signal 190746/222269 (executing program)
2022/09/30 10:36:33 starting 8 fuzzer processes
10:36:33 executing program 1:
fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f0000000000))
r0 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
finit_module(r0, &(0x7f0000000080)='\\:@\x00', 0x2)
r1 = clone3(&(0x7f0000000540)={0x80400, &(0x7f0000000340), &(0x7f0000000380)=<r2=>0x0, &(0x7f00000003c0), {}, &(0x7f0000000400)=""/158, 0x9e, &(0x7f00000004c0)=""/24, &(0x7f0000000500)=[0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x8}, 0x58)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000005c0)=<r3=>0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000640)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
r5 = clone3(&(0x7f0000000680)={0x280000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x21}, &(0x7f0000000180)=""/232, 0xe8, &(0x7f0000000280)=""/174, &(0x7f0000000600)=[0x0, r2, 0x0, 0x0, r3, 0x0, 0x0], 0x7, {r4}}, 0x58)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000700)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
r7 = getpgid(r5)
clone3(&(0x7f0000000940)={0x50000000, &(0x7f0000000740), &(0x7f0000000780), &(0x7f00000007c0), {0x3e}, &(0x7f0000000800)=""/6, 0x6, &(0x7f0000000840)=""/129, &(0x7f0000000900)=[r1, r1, r1, 0x0, r7], 0x5, {r4}}, 0x58)
sendmsg$NL80211_CMD_GET_INTERFACE(r4, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, 0x0, 0x310, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0xe}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x804}, 0x10)
r8 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000ac0), 0x141482, 0x0)
openat$cgroup_subtree(r8, &(0x7f0000000b00), 0x2, 0x0)
ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305)
pidfd_send_signal(r8, 0x24, &(0x7f0000000b40)={0xe, 0xfffffffd, 0x4}, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000c00)={0x2, &(0x7f0000000bc0)=[{0x3, 0xcc, 0x5, 0x1}, {0xffff, 0x8, 0x1, 0x100}]}, 0x10)
clone3(&(0x7f0000000ec0)={0x20100, &(0x7f0000000c40), &(0x7f0000000c80), &(0x7f0000000cc0), {0x23}, &(0x7f0000000d00)=""/90, 0x5a, &(0x7f0000000d80)=""/227, &(0x7f0000000e80)=[r1], 0x1, {r6}}, 0x58)
r9 = open_tree(r4, &(0x7f0000000f40)='./file0\x00', 0x6518fe901f6fe235)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_BEACONS(r9, &(0x7f0000001080)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x14, r10, 0x8, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x41)

10:36:33 executing program 4:
r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x3]}, 0x8)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r1)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x2]}, 0x8)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5e55cf88}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_ORIG_INTERVAL={0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xe169}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}]}, 0x6c}, 0x1, 0x0, 0x0, 0x2400c011}, 0x4000800)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e20, 0xfffffe00, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x1f}, 0x1c)
r3 = accept4(r2, &(0x7f0000000300)=@rc, &(0x7f0000000380)=0x80, 0x80800)
sendmmsg$inet6(r3, &(0x7f0000001fc0)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000003c0)="f618ca764e0d6c6b058e4e2a96d8be64da432d0ce70cf61df39bb9e14726c8e7add1d44fc41a074a5ffef675f08871b8f72fd9d1893491659c5507caba1259cd2fa75156a45a038e4af93c14a277164fad6059c64faff3756a79f8884c401d3fe8cc83514bc9c63ddba0aaa2d07acce2daa6db30de33579cff31a3307a3bd9a486d9ad30fce63de2843df05770f0c25a55aa532aba7c8e002eba48788f20dafc5c70b9d140d1403e3cbdafb24a9cabcd6dcb48462081935c", 0xb8}, {&(0x7f0000000480)="2c7f441c85d6341c90af97217f68b02977b3f32555b20303652af2e4294486decd9cf1d2fc612bd17870d10cb84bd7924a0dc135f57a2e052f44d82589", 0x3d}, {&(0x7f00000004c0)="c8f09b2b317ea63d25838d785041c4989ecace416f34bac4f1a04dbe3bdaf686e103d4768a5640719070f697a9732798299e007120d36549d2a9d9727dbbff5327ab12dd0db002b1787db7c70a36b6ff517bf593d2d3e4bbe4651a337c13a321b5afdb769508d999bea886dc6e33febde55123997f1669b2c7c02a1abb87cb6f28de69f8cc1b22c81a7da823d8e12b01181c11d2bc6726a7d36ea67b36167f413504c261f0de3a241051d4ba8bc42fd9e5ea9232a67d473b4a7930b93d0d047088079fb27a0900a2f13f5583b07d", 0xce}, {&(0x7f00000005c0)="a34d214472aaa44063a98a77c231e47effba3ae2047a72fc1c6ba68facd6eae4cef6ee2b753dc36dbd1bef2d683df616ba590798027ae1f56b23d467fa4a401bde9304b8cd7f1f8aab492f804fe8a9538943f2d5f7d919a7001d19638d729108ff0deb342d80c2cd1c0a241f5479dcc23e4411ba4c1a56e805a3d5ddfd03040c9b36f34b32a36100a06fd2405d90cf89c447ae89ea9d5a0af1d185380b62ceb78d6e3f50d836e581cb9fa4cf0aece0050c190b4751eab976", 0xb8}, {&(0x7f0000000680)="7aba7d405fb04f22f0fcf4f3524f0e0ebf2de9f5bc2b76df0163b97d4b2d7135c52f5394e3ad1a120f51380073c044492405bcb7252608d11a73019887133f6d94ddb7a64003d3828c20e531802496f283e120ef5bf37cf1a71d20daa027a18b0fb5b389546fc214908d58a42c79aa6cd449f44e7a", 0x75}, {&(0x7f0000000700)="4b9b2f0f043ffe592cea17f040b3662774634bc10177fe7f6f293876c060fa19dbede910ce21cdc9973079605d47ae98a4d9fb3f439ae5475eea6c3f2efad1094d5ffff8339e29c370f7e7c3e984733a8be9524a9bc02a2dd93acccbf5a8c76771f270c9e58e18bf1404f52f9a5706b7e243ae8ffa57af0d602e9244d18c03f8969049c65678624818f7a2167e067d3adead9abd634f544530790ea4eb728d5dd3f3ae6d7009171944762d3b71b1be48b3e61f9de26661ee4869510844bf23af1ae8ebf6a9fa9db37c22c2a10949c087e88425c959b12efbf4604ce085aafba09daee900ae29476fd4aee3380c6dc63858cec5", 0xf3}], 0x6, &(0x7f0000000880)=[@dstopts_2292={{0x30, 0x29, 0x4, {0x21, 0x2, '\x00', [@hao={0xc9, 0x10, @remote}]}}}, @hopopts={{0x1040, 0x29, 0x36, {0x88, 0x204, '\x00', [@hao={0xc9, 0x10, @mcast2}, @ra, @generic={0xfd, 0x1000, "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"}, @enc_lim, @enc_lim={0x4, 0x1, 0x6}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xaed}}, @dstopts_2292={{0xc8, 0x29, 0x4, {0x3a, 0x15, '\x00', [@enc_lim={0x4, 0x1, 0x48}, @ra={0x5, 0x2, 0xf801}, @generic={0x8d, 0xa4, "db8546b0da98ec383ee0119d0741aa96cf2e70a1538f46b5fcec36467d9940a9c60772a61733c5012ceb7872d599c18d7912deedb696064e896dfdc206c3a11ca1f4899cd0b13b9ddb533df70957cf0c0a2ec056c5175a97141fa67c9819996dc8dd03ef7b729c802b5cae8840dfb396f3492ce857c46fdde2f6d8360ae91f441ea3fc0e2e367005208e724c13aab3e05649f29b459098f6eb3b63696a90ceaf54c052f4"}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}], 0x1168}}, {{&(0x7f0000001a00)={0xa, 0x4e22, 0x40, @dev={0xfe, 0x80, '\x00', 0x3c}, 0x5}, 0x1c, &(0x7f0000001d40)=[{&(0x7f0000001a40)="b9cb76d342911ac36419d51050a37a7f586f7f50e850eba3b6bd446747003da5", 0x20}, {&(0x7f0000001a80)="4eef9abe5e90950bde333f32c097f74ffcb46d69406d3deaa4a583710c78d7ccb646bcf81124fd23a2a0c2695fb3c605df3890e43ef201ae9fbce9a248e28b9e3c990c64a0c2c4acd0c9bc788bdb97e268693745c795022645c3dde4422562f647d57f159e771dd32a8e51f0e718f20930a5aa5d2231f71e2179a60aaa9836153a4af0ede5f5fef64661d27b85e3cf23b74900ecd13d0ed5f7dac87ae3269698e06bddcfe959fcf658ede4653863b3e9411b3f43e6ead858565a236b0c8c7e0d08dfc386e28b6c0f1fff183bd9388b7b5d9838", 0xd3}, {&(0x7f0000001b80)="c088c7397d01206a3109c6c769ae9c53d2029cd84ffcb426891bcaf94b099f34bbb63543d14a", 0x26}, {&(0x7f0000001bc0)="70132817a1e1e1a50b0453e92f2ad471a88fe622eac513ddf0cbf3a2cc0bcb6e0a5875c433a22445ceecf66c607913213580ced06b8a54b3156c5fdb9268866830599f1e81521905ae3f6b37ecc5a66e7fc76e04ffebe5c924016f7127765cf73b933e97cfa0b22f6a8d89e9e17d30ab98eaecb0045c4f51b6bf63cd3202841f33b3c675d9cdc3858764d6759341f016cf55e311f7608c0d32", 0x99}, {&(0x7f0000001c80)="bef3f8b969e444c312cabef4a5dc45633678a52c593afd0dd2588529ad32f5c937a32f6d0ab94e266d043caff0b2ed6f4212892497a776a7a189d106deaba02a74ea61796a2ef48c8224c67e84f8a41c74d957741b280be60dabaa810872a1f8de6e003a33cfab5095fc3b794b4f2c2f0daeb2392a3ec27dd7f3d6a53d63b3ab8e7cc7098e2c13d64184235f9c", 0x8d}], 0x5, &(0x7f0000001dc0)=[@rthdr={{0x78, 0x29, 0x39, {0x73, 0xc, 0x6, 0x95, 0x0, [@private2, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}}}, @flowinfo={{0x14}}, @rthdr={{0xa8, 0x29, 0x39, {0x3a, 0x12, 0x0, 0x40, 0x0, [@mcast2, @empty, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @mcast1, @private0, @private1, @mcast1]}}}, @dstopts_2292={{0x80, 0x29, 0x4, {0x0, 0xc, '\x00', [@jumbo={0xc2, 0x4, 0x3}, @pad1, @calipso={0x7, 0x48, {0x0, 0x10, 0xff, 0x1, [0x100000000, 0xae16, 0x1, 0x3, 0x3, 0x4, 0x6, 0x6]}}, @enc_lim={0x4, 0x1, 0x80}, @padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x2}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x87, 0x0, '\x00', [@pad1]}}}], 0x1d8}}], 0x2, 0x44040)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_PKTINFO(r4, 0x10e, 0x3, &(0x7f0000002040)=0x400, 0x4)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000020c0), r1)
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f00000021c0)={&(0x7f0000002080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002180)={&(0x7f0000002100)={0x54, r5, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x3475}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x4}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x42c}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x41}, 0x4)
r6 = signalfd(r2, &(0x7f0000002200)={[0x101]}, 0x8)
getsockopt$inet6_tcp_int(r6, 0x6, 0x4, &(0x7f0000002240), &(0x7f0000002280)=0x4)
r7 = syz_open_dev$mouse(&(0x7f00000022c0), 0x8, 0x501080)
close(r7)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000002340), r6)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r7, &(0x7f0000002400)={&(0x7f0000002300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002380)={0x30, r8, 0x2, 0x70bd2c, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x44801}, 0x0)
syz_io_uring_setup(0x52b9, &(0x7f0000002440)={0x0, 0x61d4, 0x0, 0x2, 0x6d}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000024c0), &(0x7f0000002500))
syz_genetlink_get_family_id$batadv(&(0x7f0000002540), 0xffffffffffffffff)

10:36:33 executing program 0:
ioctl$CDROM_CHANGER_NSLOTS(0xffffffffffffffff, 0x5328)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xd40, 0x40101)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000040))
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000080)={0xffffffffffffff01, 0xff, 0x1ca8, 0x2}, &(0x7f00000000c0))
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, &(0x7f0000000100)='ip6tnl0\x00')
r1 = syz_open_dev$vcsu(&(0x7f0000000140), 0xc5db, 0x10000)
ioctl$PIO_SCRNMAP(r1, 0x4b41, &(0x7f0000000180)="b3ee8c24b81db455759cf0e75535b6f393549fd86d9a08a21dc3227876faf88967300a5de90f5a76375b0132208e029a13976a5d5c93755872251c3cb78227773d09ed5cb4c684932494b4fea4a86eac7f782ed97b2bd7053d1ac7c18af71a4d08c10136c45e79e065c4f4aa2d3150f9df1e58a498c6db117db0df4938c0f9c70f9c4a29550cd34cf8f5e2cffa5e464d3f880dc94b9ae76e407589897c63f2695d14e5c749466baa57773a2d5373d1790ce4f365f3b8a31c9327b02daa72806ac65a9cc219cf4e150fdc85036cb763ce2d11247fb9eba87e3a11905a19facc")
r2 = openat$cgroup_int(r1, &(0x7f0000000280)='rdma.max\x00', 0x2, 0x0)
close_range(r0, r2, 0x2)
setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f00000002c0)={0x0, @dev={0xac, 0x14, 0x14, 0x26}, @dev={0xac, 0x14, 0x14, 0x21}}, 0xc)
connect(0xffffffffffffffff, &(0x7f0000000300)=@pptp={0x18, 0x2, {0x2, @multicast2}}, 0x80)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0xf503, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r1, 0x89fa, &(0x7f0000000400)={'syztnl2\x00', &(0x7f0000000380)={'ip6_vti0\x00', <r3=>0x0, 0x9ba6509e1e1d0878, 0x7f, 0x2, 0x200, 0x4, @private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x20, 0x10, 0x500, 0x6}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000004c0)={'sit0\x00', &(0x7f0000000440)={'syztnl2\x00', r3, 0x4, 0x4, 0x7f, 0x7fff, 0x8, @dev={0xfe, 0x80, '\x00', 0x32}, @local, 0x10, 0x1, 0x6, 0x4}})
ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000500)={'veth0_to_team\x00', {0x2, 0x0, @empty}})
ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000540))
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000580)={{0x1, 0x1, 0x18, <r4=>r1, {0x1}}, './file0\x00'})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000600), r1)
sendmsg$TIPC_NL_NAME_TABLE_GET(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x38, r5, 0x8, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x620}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x40)
ioctl$CDROM_NEXT_WRITABLE(r1, 0x5394, &(0x7f0000000700))

10:36:33 executing program 2:
fcntl$notify(0xffffffffffffffff, 0x402, 0x4)
r0 = memfd_secret(0x80000)
sendmsg$AUDIT_TTY_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3f8, 0x300, 0x70bd29, 0x25dfdbfc, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
sendfile(r0, r0, &(0x7f0000000100)=0x4, 0x1ff)
r1 = openat$cgroup_ro(r0, &(0x7f0000000140)='blkio.bfq.empty_time\x00', 0x0, 0x0)
ioctl$IOC_PR_REGISTER(r1, 0x401870c8, &(0x7f0000000180)={0x7, 0x7})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x830}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x9c, 0x0, 0x20, 0x70bd2b, 0x8d, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x6}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x50, 0x20, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xfffc}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}]}, @NL802154_ATTR_SEC_ENABLED={0x5}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_ENABLED={0x5, 0x1e, 0x1}]}, 0x9c}, 0x1, 0x0, 0x0, 0x400801d}, 0x4000)
socketpair(0x11, 0x2, 0x5, &(0x7f0000000340)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, 0x7, 0x6, 0x401, 0x0, 0x0, {0xc, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0xc0081)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$F2FS_IOC_RESIZE_FS(r3, 0x4008f510, &(0x7f0000000480)=0x2aa)
ioctl$FIBMAP(r0, 0x1, &(0x7f00000004c0)=0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd, 0x1, {0x0, r1}, 0x7fff, 0x1, 0x1, {0x0, 0x0, r3}}, 0x3)
ioctl$BINDER_CTL_ADD(r3, 0xc1086201, &(0x7f0000000540)={'binder1\x00'})
ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f0000000680)={0x4, 0x8})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000700)={0x0, &(0x7f00000006c0)})
r5 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x8)
dup3(r4, r5, 0x80000)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000740)=""/62)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x0, 0x2, 0x0, '\x00', [{0x6, 0x7b88dbb8, 0x2, 0x0, 0x6, 0x2}, {0x4, 0xfffffff7, 0x1d, 0x401, 0xffffffff00000001, 0x1000}], ['\x00', '\x00']})

10:36:33 executing program 3:
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0)
prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1)

[   62.266648] audit: type=1400 audit(1664534193.468:6): avc:  denied  { execmem } for  pid=283 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:36:33 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x2, 0x40, @private=0xa010100}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000040)="313c75fd927a04154a42f67a3c08f774380ec3bb4ed3842f9ccb0938ca2a7aa85adad8d83641503c94721ee306a8e30c0b0b93ed9a2e5bc949709e6e88d26dbb5cd7547ed88ce03a144ca437ccaa307c9d4469454874f9bd4332e08fe121ae67330a5033c9b3ab3efe77e7989b0aa60e264f1cb185e4617543def00413770d05f73bbaa708ff19950a34140190b003727b0065be2c1fd8a96f9ac04f1ef9bbcbda1a31a2521d64edd2f2550cb9e29cf3619df89f7da8104b9640f5b0f132d5603f1fc19449afe9b9e138868ee3255630c50dc5a71680b8c114629e52e1fba4e697c0", 0xe2}, {&(0x7f0000000140)="aa5933f9fc542ecb024ec65850d4653d1fba64d6583286bd99f040305f13f3cdd4bd52e969accb0a8b2c3a1a2d40dfbc2b296f770cb90696a150bb8f36a3d8eea75b2725719ebf394677829a49d030", 0x4f}, {&(0x7f00000001c0)="d6729b06d626078781d770643b15827ce08828cbb08bcadfce0cda5a3b6e5e655b044531f61a4fbe791e4c7dfcec1ae31d6c14656b512a47258cb1f6d0", 0x3d}], 0x3, &(0x7f0000000240)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x1f}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x645}}], 0x30}, 0x20004840)
r1 = accept(r0, &(0x7f00000002c0)=@x25, &(0x7f0000000340)=0x80)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r2=>r0, {0xee01, <r3=>0xee01}}, './file0\x00'})
setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0xffffffffffffffff, r3}, 0xc)
r4 = openat(r2, &(0x7f0000000400)='./file0/file0\x00', 0x101000, 0x40)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000540)={&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/53, 0x35, 0x1, &(0x7f0000000480)=""/167, 0xa7}, &(0x7f0000000580)=0x40)
newfstatat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), 0x800)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000680)='./cgroup/syz0\x00', 0x200002, 0x0)
ioctl$LOOP_CHANGE_FD(r4, 0x4c06, r5)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r1, 0x941c, 0x0)
pwritev(r5, &(0x7f00000008c0)=[{&(0x7f00000006c0)="1559ef2b4622200e0958ccaa4abdbbfe070c33dd6a566a420bff13fab9bd860502654f6808cfd0267fb09477e452d58e57f7b32ba2aa031112c6b97609ad100b81d7ecb57373af9efbc06dff11c4f788e107ccd0704a80e8754d3096ccd3a2ff648a2c11cafa0b8fd526733260e50af53b3e1403f97f422a09dedecdc32861d1e21a9c14974fab955bdc4d45d368974463e65cb251b3b81ed236b0512168404491251b7c636792b5f0295ba793cd8cd2d0b4456a8b76afaa80e09f3ac733b5aa302b47f2de303c7e09", 0xc9}, {&(0x7f00000007c0)="18c6c2afcb8f2e0a76d01fa1f61de1a3000d827efb9a4f1f263380a2a82ef5f079c9f4573b648a2fc3d83ff3e8b7a66f9a484cec69ec1dd53c0cced60fee3de62165fcd98ebc706fe4073682ad5b39c84e30557bf4fb5bde369d4f67973aca15497f16d7da68a36e226da62858066e2e68258235a14bc487e9f4946dbdded144a344c73e4b609318dfe2eabc5701570e50cd532d2cbaf6732b9870f1873487760d4f6debcf9548204fa06ca695ac4d7bb9e1bc7b5976549680da076af6b96aa8ac92", 0xc2}], 0x2, 0x94, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000900)={'raw\x00', 0x2, [{}, {}]}, 0x48)
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r2, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x28, 0x0, 0x664, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x51}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x10)
pipe2(&(0x7f0000000a80)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x84800)
openat(r6, &(0x7f0000000ac0)='./file0/file0\x00', 0x2000, 0x47)
sendmsg$NL80211_CMD_PROBE_CLIENT(r7, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x70, 0x0, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x51}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x70}}, 0x40000)
io_uring_setup(0x587e, &(0x7f0000000c40)={0x0, 0x6d1a, 0x0, 0x0, 0x20d, 0x0, r2})
removexattr(&(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00)=@known='com.apple.FinderInfo\x00')
write$binfmt_misc(r0, &(0x7f0000000d40)={'syz0', "98eb40b6e044182e3bbcedae82e3cf4dac5c2d1a014939e8fb1ee63807e2b4effb724e90e943040b6ca1e41d58f081965c0a82d0673f8b332227faa188f231f7e7c816e3d50b8998a09796906a9d5afd406f90df0856c849658304659f872137c7279cda24435c8ee40465cb6c77489c9908aa6fe171829f504eedfbd22287c056953ecffe19fc72b5bbb078bf4a6b2ed8f48d21be96481ff2c5598b5650c4105f37948bebd6f0aaf802f4d3b81dfbe916a730b2dd59e5e9510943a1d6b4280123e2015bdc3208decaa12be0a31c2614efc488c20840a4a69f491165e8d7"}, 0xe2)

10:36:33 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x200}}, './file0\x00'})
ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000080)={0x100, 0x20, [0x7ff, 0x6, 0x100, 0x7], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0]})
symlinkat(&(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00')
r1 = syz_io_uring_setup(0x6f0b, &(0x7f0000000140)={0x0, 0x41ec, 0x20, 0x1, 0x35, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
accept$packet(r0, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000280)=0x14)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x4007, @fd_index=0x3, 0x80, 0x1000, 0x3, 0x0, 0x1, {0x2, r4}}, 0x800)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x40010, r1, 0x0)
r5 = fspick(r0, &(0x7f0000000300)='./file0\x00', 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000380)={0x2, &(0x7f0000000340)=[{0x1, 0x20, 0x3f, 0x7ff}, {0x7f, 0x9, 0x7, 0x52}]})
close_range(r5, r6, 0x0)
syz_io_uring_setup(0x37e6, &(0x7f00000003c0)={0x0, 0xdda6, 0x1, 0x2, 0x3a5, 0x0, r1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000440)=<r7=>0x0, &(0x7f0000000480))
syz_io_uring_submit(r7, r3, &(0x7f00000004c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4000, @fd_index=0x2, 0x4, 0x0, 0x0, 0x1, 0x0, {0x3, r4}}, 0x8)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6, 0x10010, r5, 0x443ac000)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000580)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2008}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x28, r8, 0x100, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x1, 0x68}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c001)
r10 = dup2(0xffffffffffffffff, r1)
sendfile(r10, r1, &(0x7f0000000680)=0x25a3842d, 0x6)
ioctl$CDROMEJECT_SW(r0, 0x530f, 0x0)

10:36:33 executing program 7:
chmod(&(0x7f0000000000)='./file0\x00', 0x88)
mknodat$null(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x8, 0x103)
r0 = syz_mount_image$nfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x35, 0xa, &(0x7f0000000780)=[{&(0x7f0000000100)="5d0ae52568192035e58b8ac6499f09863fd0dd815a10d2e57fcecaeeb309f807492ba252a3a65970d563fcd4f28b51f447d7fe1792e3b1524e1e1234cffc2f6bf6d5843c95cca30195aa55d639f46b8fdd6bebf9a32e6394957b40bd4d7c9a7f6ab564a06bbc477f15208180884db9d96cfa43ad8b2f212ef2e2c355c6", 0x7d, 0x4}, {&(0x7f0000000180)="b027fc7810ddefaada2967542d8f8ebc487f16a46d82aadb0befc2b7427623a8a0b4ae7cb73ed261933a9b6454d93a3bd35bfca541ae5169d6e9363a8610c27508c08b0c6f77fc1a74ff9c5a60ed660580380d6cb56344106bfe037ebe66d1d5bf7143edb82aa042acc195987e0ca5ae8bb9de307b6b3ea2f0bb2550ab9f8dab9ac1bff21a83f03a17e4d2610dc232e1deec752a3bd1476eee91becfddd00f626cbad2aca67816efb86629d2f4cc4f70bb71e678f82d784770ec2deed5e755", 0xbf, 0x100}, {&(0x7f0000000240)="6f18e3fb2d5b3a137b4c279032e701aa8b552954df3f3d92480ca48a4407772cfa404e1cbdcc424403d3428c00f62b609e5ca829fb9bbbf2c704ee0e81d1bdf945f60cce17014b98138d694279c20114ef00056c5b901f8598b858179892fb3edce68dd0048de4ae24cf53354e19eef1967cb9c1ac7b118d78e8ce510889742acbcaa4fc512674d3e08af98e4f7f033e6b233b7b867cebcfbcb455936dda5d349958dd0739a3b4f79a05a91148b041c3d2cf0d73d0fae8189197c551ea8bfbcdf7bac915e04b32802d03c5af48f80a6e6d1f2f35c887f429882ae7a31ad9342851e3", 0xe2, 0x3}, {&(0x7f0000000340)="db9fa5c859e826f3416c07eb861fc5c51828e2d5958080ab6bfb5442856885122d26f6caea987dee859640051381a22d9b820d1cbcad4a4994db6924bdc198a31bf223590ef52b35f34898475f1fe6eb5d4417effdcb1eebef50ef00f9b34dd679563c2c93068df6746203a39c3ee164b68ffeedcf983a085a90e3d74689c2b3fb4ded92d85048ba7666f886682d4f6a6b4e6855cf99773e4f5626bcef289cbd9a17c134ccde3bbb89ab8ecacbe625fbdc020a6b3e2ade68d377690b1438334fd258c31517b669245c0f1f7d5c4c55ab488261501a11d4fd6d34614d0b", 0xdd, 0x9}, {&(0x7f0000000440), 0x0, 0x4}, {&(0x7f0000000480)="26a2c13a40b80f342745127f6e0a798f232e8c746296969c075fe9a0275562f0bbe3d4722e21c857d0689c95e788daeb139134ab7ea349a34d1337713bd0bba6f4d0300346d11f407abb25b061c0e6a3", 0x50, 0x20}, {&(0x7f0000000500)="642b9cdc0764b939341f2e5276c7989c6ffeae915fc53d6596d0da57d2d63c4468443b0a19de25d6562e70f6dffb536ca37675a5d96f8f5fddb0b92d8c47c2e6ee7a248f32ae702315d9d2cf578592f50a044b89099224c4c8ad3122adf84e5f802f38d4e77951c178e2f0a0aca99892f2c52331c857c2901564f9b2651f7ccc6c5219df6e3fd3f92a99d0eca7eaf1561055924fb12d14ad620a7024fe7dd07b3f0ca851b72fe0dd5e98aea541e0458f7566c09c5a2a46779b76a1c43a465eb42b847da2a986ff0c0efe4929b7290376649483f8045d9b9370db6e77d732", 0xde, 0x8}, {&(0x7f0000000600)="fcaae6fca9c64244f5332f49e02f2b05e69bf226505e060b816838842992cf90f6af2af6617e8a7646e197138c7d7f0d5d76b8ecf0fc0af11b8ff28496f1effe66b1c3845c95f280b5abd1c5e8f0a6056e20ab3fdb419d1dd5c63e052064fb3b1975a3e080dd55b099637e9439c4b96b9bd32de5ad7cedc17adfa1ea353a3ed1a2da84e3af998f66c4e84b2a9e1b2725d6794b74c5b86af7e8d62c997fbc9894ccfa5ecff6c8b042630d4b65a75b747052171a83ed4dcb3a957cc9a6591009b6a9b37cdab275dc7267d29f15b64bf8a7ddebd006fa5649bc0214116eb0224a47e9f5125dc0727ec744b19dde0aec511a1291144441", 0xf5, 0x5}, {&(0x7f0000000700)="ceb9e00824daf7dfc587b7f939832b1ae62adb995749b51cb91c557f4bf56f241b965d20550d3eb36191161640", 0x2d, 0x1f}, {&(0x7f0000000740)="deb76bc31420124d4080b3b4d3e2fe185a8d5e1e1dd249ecf88e", 0x1a, 0xfffffffffffffffc}], 0x0, &(0x7f0000000880)={[{}, {'*'}, {}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}]})
unlinkat(r0, &(0x7f0000000900)='./file0\x00', 0x0)
r1 = getegid()
fchownat(r0, &(0x7f0000000940)='.\x00', 0xee01, r1, 0x1000)
futimesat(r0, &(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={{0x0, 0xea60}})
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000a00))
mknodat$loop(r0, &(0x7f0000000a40)='./file0\x00', 0x2000, 0x0)
r2 = accept4(r0, &(0x7f0000000a80)=@nfc_llcp, &(0x7f0000000b00)=0x80, 0x800)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000b40)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
mount(&(0x7f0000000b80)=@md0, &(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)='ramfs\x00', 0x8480, &(0x7f0000000c40)='KEXEC_KERNEL_CHECK')
setxattr$trusted_overlay_origin(&(0x7f0000000c80)='./file0\x00', &(0x7f0000000cc0), &(0x7f0000000d00), 0x2, 0x2)
setxattr$security_selinux(&(0x7f0000000d40)='./file0\x00', &(0x7f0000000d80), &(0x7f0000000dc0)='system_u:object_r:setfiles_exec_t:s0\x00', 0x25, 0x1)
r4 = syz_mount_image$ext4(&(0x7f0000000e00)='ext3\x00', &(0x7f0000000e40)='./file0\x00', 0x6, 0x5, &(0x7f0000001140)=[{&(0x7f0000000e80)="f18866cda8b55426cb5c74f4d431c9a64023482c28dd00947b3e2489b2d504acb8307d918936fcd6f650e351fd25fd7e737575d077ebbf721f2e6f534ca038632aa7fd9d89413a482d942596d4aaf684131b9209130e17ca85c6fc048b5427b0232993ddc2f84a1df10f454c9be59089c600b6d28ccceab187211174cf39800caea326f6edabbb82d96d2c895a9a070a60af7dc70c58ebded5ee5b83de348a43a229f60e5ada70437d1f316e75bc0931b4bc765e522bc4", 0xb7, 0x81}, {&(0x7f0000000f40)="b009eb4413296a6193ebc8822e85932a76b79c6749013e07b53bab8e76c54b6b5aada8088fa9fae0688b823d77a881c9d415c199acf0762c5ded086ac97983bbdebff7493aa2a5131a6049d6491bf72ffedb7d782a6827d3ed0f0e11d2de1e1ac053b45c716a2b1c17f67d3fb6818ee4b4dc0a7571", 0x75, 0x1}, {&(0x7f0000000fc0)="6be350d817cbbe2aec300814f16b24", 0xf, 0x7fffffff}, {&(0x7f0000001000)="51ebd2515f6e3dd3e1d84293cd343670c17ed22beb97143d853f09fa922142ee6a211668f03afb3ddbb5640953b07bf8cabca723edab24d07e065e41", 0x3c, 0x7}, {&(0x7f0000001040)="ce3f37bdadec0f1d2cec3fcb2a604d686af94266222d0f4a5660c7fffd5c6eda63f9d836800d0e83a235c3c3e7b310322f01dff00e9d579a207bfab7bbbef7e502c7de4041253daa29329ae37575d22693ffba85a65500fdd98e3a23d5fbe5659f323516090c6a8a9b65ae833dc3b8c599011eb35b391605b62cd85d5bfc313ea80670f650aedbfde2d1075588ee81dcfe7130202c02cac879abae5f700a869821238ac8cdb0779ffaf1d0ad4876c13943e99ae397472e1b32e490ff6679b78e6649b6468eb35d1e291eea4d5c", 0xcd, 0x5}], 0x14488c, &(0x7f00000011c0)={[{@grpid}, {@commit={'commit', 0x3d, 0x4}}, {@init_itable_val={'init_itable', 0x3d, 0xfffffffffffffffa}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xffffffff}}, {@noauto_da_alloc}, {@mblk_io_submit}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@euid_lt={'euid<', 0xee00}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]})
acct(&(0x7f00000012c0)='./file0\x00')
ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000001300)={0x0, 0x8, 0x7, 0xfff, 0x2})
setxattr$incfs_size(&(0x7f0000001340)='./file0\x00', &(0x7f0000001380), &(0x7f00000013c0)=0x1, 0x8, 0x2)
r5 = fcntl$dupfd(r4, 0x406, r3)
mknodat(r5, &(0x7f0000001400)='./file0\x00', 0x8, 0x7)

[   63.525016] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   63.527502] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   63.529506] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   63.533488] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   63.535501] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   63.536878] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   63.541777] Bluetooth: hci0: HCI_REQ-0x0c1a
[   63.543448] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   63.545649] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   63.547155] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   63.550136] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   63.577273] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   63.580631] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   63.582087] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   63.583476] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   63.585885] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   63.588631] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   63.591798] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   63.593151] Bluetooth: hci1: HCI_REQ-0x0c1a
[   63.603890] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   63.614350] Bluetooth: hci3: HCI_REQ-0x0c1a
[   63.627888] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   63.631918] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   63.648818] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   63.651753] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   63.653563] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   63.655119] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   63.658515] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   63.664599] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   63.665715] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   63.666784] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   63.667832] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   63.679583] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   63.680806] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   63.682105] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   63.685139] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   63.691030] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   63.699162] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   63.700673] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   63.701736] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   63.703484] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   63.705807] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   63.707015] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   63.708385] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   63.712326] Bluetooth: hci7: HCI_REQ-0x0c1a
[   63.714545] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   63.716997] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   63.718571] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   63.718625] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   63.722079] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   63.723451] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   63.728371] Bluetooth: hci2: HCI_REQ-0x0c1a
[   63.747601] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   63.750295] Bluetooth: hci6: HCI_REQ-0x0c1a
[   63.755909] Bluetooth: hci4: HCI_REQ-0x0c1a
[   63.775490] Bluetooth: hci5: HCI_REQ-0x0c1a
[   65.599637] Bluetooth: hci0: command 0x0409 tx timeout
[   65.599663] Bluetooth: hci1: command 0x0409 tx timeout
[   65.663264] Bluetooth: hci3: command 0x0409 tx timeout
[   65.791311] Bluetooth: hci7: command 0x0409 tx timeout
[   65.792628] Bluetooth: hci5: command 0x0409 tx timeout
[   65.793570] Bluetooth: hci4: command 0x0409 tx timeout
[   65.794490] Bluetooth: hci2: command 0x0409 tx timeout
[   65.795399] Bluetooth: hci6: command 0x0409 tx timeout
[   67.647315] Bluetooth: hci1: command 0x041b tx timeout
[   67.648329] Bluetooth: hci0: command 0x041b tx timeout
[   67.711623] Bluetooth: hci3: command 0x041b tx timeout
[   67.839349] Bluetooth: hci6: command 0x041b tx timeout
[   67.840154] Bluetooth: hci2: command 0x041b tx timeout
[   67.840965] Bluetooth: hci4: command 0x041b tx timeout
[   67.842139] Bluetooth: hci5: command 0x041b tx timeout
[   67.842919] Bluetooth: hci7: command 0x041b tx timeout
[   69.695247] Bluetooth: hci0: command 0x040f tx timeout
[   69.695779] Bluetooth: hci1: command 0x040f tx timeout
[   69.759237] Bluetooth: hci3: command 0x040f tx timeout
[   69.887302] Bluetooth: hci7: command 0x040f tx timeout
[   69.887782] Bluetooth: hci5: command 0x040f tx timeout
[   69.888243] Bluetooth: hci4: command 0x040f tx timeout
[   69.888656] Bluetooth: hci2: command 0x040f tx timeout
[   69.889067] Bluetooth: hci6: command 0x040f tx timeout
[   71.744403] Bluetooth: hci1: command 0x0419 tx timeout
[   71.745256] Bluetooth: hci0: command 0x0419 tx timeout
[   71.808338] Bluetooth: hci3: command 0x0419 tx timeout
[   71.936441] Bluetooth: hci6: command 0x0419 tx timeout
[   71.937244] Bluetooth: hci2: command 0x0419 tx timeout
[   71.937990] Bluetooth: hci4: command 0x0419 tx timeout
[   71.938735] Bluetooth: hci5: command 0x0419 tx timeout
[   71.939499] Bluetooth: hci7: command 0x0419 tx timeout
[  120.235675] loop7: detected capacity change from 0 to 16383
[  120.246981] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  120.277341] loop7: detected capacity change from 0 to 264192
[  120.284512] loop7: detected capacity change from 0 to 16383
[  120.285280] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  120.304285] loop7: detected capacity change from 0 to 264192
10:37:31 executing program 7:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736642a3c400088001000440000004f801002000400003000000000000008000"/64, 0x40}, {&(0x7f0000010100)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x1800}, {&(0x7f0000010400)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x2000}, {&(0x7f0000010500)="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", 0x120, 0x2800}, {&(0x7f0000010700)="2e20202020202020202020100045ec70325132510000ec7032510300000000002e2e202020202020202020100045ec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200046ec70325132510000ec70325104001a040000", 0x80, 0x43000}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x83000}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xc3000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x143000}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="70846792d193cef225d5420674996d6f9f892d88923a1dbf9731804f53f24d36222753b6ef19056700aca5c840753240730f0c0e7d066e7b0087caa7eafa1fe5600bb2695938eded9630f104ac11cbe9faf1081fcba9c7938d90a9ab8c1d049b6377c5197913aebce535f023c43fd66b72d2c879de2a45e84ed848a16e9f9e3585251ae11ac83c8de3f8dcb3b14ba33df36e23ed9e2033763b77d8a84cee079da9487c2b5ed769a1"])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r0)
openat$incfs(r0, &(0x7f0000000700)='.log\x00', 0x400200, 0x20)
write$binfmt_script(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="232109c1"], 0xb)
close(r0)
openat(r0, &(0x7f00000006c0)='./file0\x00', 0x4401, 0x82)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x1206001, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x7, 0x4, &(0x7f00000005c0)=[{&(0x7f0000000380)="021bc3c0e69bb756e170cdc8fce74406b077d3db686a695aafd41017627f6b390f7de2e572b0c1874cbfc41598ef27c45d4a28b2d47ea49936c2aed4aa00cea62293f02d12fe86efb5e44c3ec3168216d24e36d66b46c7d119bee33b6ca78d5d255a2452f8a218eb30cde9e700b89d70ee35db7d58619a02b50db5ff4fe79b60704c7dfce65424036320242b27f7e596dca3a36d25b154e7d77a04eed4f7d26ad955fa9bef8ec80cabccb33d5ae91c2c78c6dc3dcc705a0d12a60b46581d427963438d0675da1ac7519367dfd9bba326b3", 0xd1, 0x10001}, {&(0x7f0000000480)="e55588302d483f9a5c12d14c2fac1ec5bff8363f2aa0b2928214395423fda086daf4bf3393b6980cc3784b79574361e0c74a4e32925bbd976b775da8550868352f15e6602f09a8a11c3b55e22ada4d166fec43aa8943e9716db14622ab43e189239ff4dc", 0x64, 0x100000001}, {&(0x7f0000000500)="63fdd94e74e9453f2582306959b567ff06aee08999624ecb422eeebfbb3dfe185ba00ce3b97d731c27cb94f9ad8081345208f065db3536dbc5c3a524f582bf6247a77d4d2b31905bab13daa6b6ead4eb55f468cc35f710f1d671b6ddac8cf15b1b7b", 0x62, 0x101}, {&(0x7f0000000580)="ccc0b4688e75c99102a4611f28f397eb98a5b6ab9b9ff6607f54e8c6bce1afe968a8e890a25654358c44928b064664a6e935b7875b568846dcbdfed41f", 0x3d, 0x4}], 0x2085000, &(0x7f0000000640)={[{@gid}], [{@subj_user={'subj_user', 0x3d, 'pipefs\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, '+/]#\xa2'}}, {@uid_lt={'uid<', 0xee01}}]})

[  120.466488] loop7: detected capacity change from 0 to 5168
[  120.474909] FAT-fs (loop7): Unrecognized mount option "p�g�ѓ��%�Bt�mo��-��:��1�OS�M6"'S��g" or missing value
10:37:31 executing program 7:
mlock2(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0)
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x1000)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x0, 0x80000001}, 0xcc2, 0x7ff, 0x0, 0x0, 0x0, 0x5fd, 0x40}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
mmap$perf(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x4)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000040))
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/route\x00')
r2 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000400), 0xd}, 0xc0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
finit_module(r0, &(0x7f0000000140)='/dev/loop-control\x00', 0x3)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100), 0x101481, 0x0)
r4 = openat2(r1, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x80202, 0x21, 0x1b}, 0x18)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_WRITE={0x17, 0x1, 0x4000, @fd_index=0x2, 0x2, &(0x7f0000000340)="1a9c9aaba3133e4d461f263a04449aced2c50aa7e6f14e393752eb4babd6ce252ef62dfcf0d9608d4f3084f43ba9084b5eb7a00d76d147427169f6f806e7be70d662be17a8c51ea55124831b2ba52a90f3", 0x51, 0x12, 0x1}, 0xc8c)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, 0xb)
r5 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r3, 0x40089413, &(0x7f0000000180)=0x1)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r5)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r5)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0)
ioctl$SNAPSHOT_FREE(r6, 0x3305)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)
perf_event_open(&(0x7f00000001c0)={0xffffffffffffffff, 0x80, 0x81, 0x7, 0x6, 0xc7, 0x0, 0x80000ffe, 0x1123, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x539, 0x4, @perf_config_ext={0x7, 0x2}, 0x4018, 0x6, 0x829e, 0x2, 0xcf4b, 0x2, 0xff7a, 0x0, 0x4, 0x0, 0x28e5}, 0xffffffffffffffff, 0xc, r2, 0x3)

[  120.622676] audit: type=1400 audit(1664534251.824:7): avc:  denied  { open } for  pid=3793 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.625607] audit: type=1400 audit(1664534251.824:8): avc:  denied  { kernel } for  pid=3793 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.640721] ------------[ cut here ]------------
[  120.640746] 
[  120.640750] ======================================================
[  120.640754] WARNING: possible circular locking dependency detected
[  120.640758] 6.0.0-rc7-next-20220929 #1 Not tainted
[  120.640765] ------------------------------------------------------
[  120.640768] syz-executor.7/3794 is trying to acquire lock:
[  120.640775] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  120.640816] 
[  120.640816] but task is already holding lock:
[  120.640820] ffff88800d4c4020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.640847] 
[  120.640847] which lock already depends on the new lock.
[  120.640847] 
[  120.640850] 
[  120.640850] the existing dependency chain (in reverse order) is:
[  120.640853] 
[  120.640853] -> #3 (&ctx->lock){....}-{2:2}:
[  120.640870]        _raw_spin_lock+0x2a/0x40
[  120.640881]        __perf_event_task_sched_out+0x53b/0x18d0
[  120.640892]        __schedule+0xedd/0x2470
[  120.640906]        schedule+0xda/0x1b0
[  120.640920]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.640933]        syscall_exit_to_user_mode+0x19/0x40
[  120.640945]        do_syscall_64+0x48/0x90
[  120.640963]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.640983] 
[  120.640983] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  120.640997]        _raw_spin_lock_nested+0x30/0x40
[  120.641007]        raw_spin_rq_lock_nested+0x1e/0x30
[  120.641021]        task_fork_fair+0x63/0x4d0
[  120.641038]        sched_cgroup_fork+0x3d0/0x540
[  120.641053]        copy_process+0x4183/0x6e20
[  120.641064]        kernel_clone+0xe7/0x890
[  120.641073]        user_mode_thread+0xad/0xf0
[  120.641084]        rest_init+0x24/0x250
[  120.641095]        arch_call_rest_init+0xf/0x14
[  120.641112]        start_kernel+0x4c6/0x4eb
[  120.641126]        secondary_startup_64_no_verify+0xe0/0xeb
[  120.641140] 
[  120.641140] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  120.641154]        _raw_spin_lock_irqsave+0x39/0x60
[  120.641165]        try_to_wake_up+0xab/0x1930
[  120.641178]        up+0x75/0xb0
[  120.641192]        __up_console_sem+0x6e/0x80
[  120.641208]        console_unlock+0x46a/0x590
[  120.641224]        do_con_write+0xc05/0x1d50
[  120.641235]        con_write+0x21/0x40
[  120.641244]        n_tty_write+0x4d4/0xfe0
[  120.641256]        file_tty_write.constprop.0+0x455/0x8a0
[  120.641268]        vfs_write+0x9c3/0xd90
[  120.641285]        ksys_write+0x127/0x250
[  120.641300]        do_syscall_64+0x3b/0x90
[  120.641316]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.641329] 
[  120.641329] -> #0 ((console_sem).lock){....}-{2:2}:
[  120.641343]        __lock_acquire+0x2a02/0x5e70
[  120.641360]        lock_acquire+0x1a2/0x530
[  120.641375]        _raw_spin_lock_irqsave+0x39/0x60
[  120.641386]        down_trylock+0xe/0x70
[  120.641400]        __down_trylock_console_sem+0x3b/0xd0
[  120.641416]        vprintk_emit+0x16b/0x560
[  120.641432]        vprintk+0x84/0xa0
[  120.641448]        _printk+0xba/0xf1
[  120.641460]        report_bug.cold+0x72/0xab
[  120.641476]        handle_bug+0x3c/0x70
[  120.641492]        exc_invalid_op+0x14/0x50
[  120.641509]        asm_exc_invalid_op+0x16/0x20
[  120.641521]        group_sched_out.part.0+0x2c7/0x460
[  120.641539]        ctx_sched_out+0x8f1/0xc10
[  120.641555]        __perf_event_task_sched_out+0x6d0/0x18d0
[  120.641566]        __schedule+0xedd/0x2470
[  120.641580]        schedule+0xda/0x1b0
[  120.641593]        exit_to_user_mode_prepare+0x114/0x1a0
[  120.641604]        syscall_exit_to_user_mode+0x19/0x40
[  120.641616]        do_syscall_64+0x48/0x90
[  120.641632]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.641645] 
[  120.641645] other info that might help us debug this:
[  120.641645] 
[  120.641648] Chain exists of:
[  120.641648]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  120.641648] 
[  120.641663]  Possible unsafe locking scenario:
[  120.641663] 
[  120.641665]        CPU0                    CPU1
[  120.641668]        ----                    ----
[  120.641670]   lock(&ctx->lock);
[  120.641676]                                lock(&rq->__lock);
[  120.641682]                                lock(&ctx->lock);
[  120.641688]   lock((console_sem).lock);
[  120.641694] 
[  120.641694]  *** DEADLOCK ***
[  120.641694] 
[  120.641696] 2 locks held by syz-executor.7/3794:
[  120.641703]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  120.641732]  #1: ffff88800d4c4020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.641758] 
[  120.641758] stack backtrace:
[  120.641761] CPU: 0 PID: 3794 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220929 #1
[  120.641774] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.641782] Call Trace:
[  120.641785]  <TASK>
[  120.641790]  dump_stack_lvl+0x8b/0xb3
[  120.641808]  check_noncircular+0x263/0x2e0
[  120.641825]  ? format_decode+0x26c/0xb50
[  120.641842]  ? print_circular_bug+0x450/0x450
[  120.641859]  ? enable_ptr_key_workfn+0x20/0x20
[  120.641874]  ? __lockdep_reset_lock+0x180/0x180
[  120.641891]  ? format_decode+0x26c/0xb50
[  120.641908]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  120.641926]  __lock_acquire+0x2a02/0x5e70
[  120.641948]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  120.641970]  lock_acquire+0x1a2/0x530
[  120.641987]  ? down_trylock+0xe/0x70
[  120.642004]  ? lock_release+0x750/0x750
[  120.642021]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  120.642042]  ? vprintk+0x84/0xa0
[  120.642060]  _raw_spin_lock_irqsave+0x39/0x60
[  120.642071]  ? down_trylock+0xe/0x70
[  120.642087]  down_trylock+0xe/0x70
[  120.642103]  ? vprintk+0x84/0xa0
[  120.642119]  __down_trylock_console_sem+0x3b/0xd0
[  120.642137]  vprintk_emit+0x16b/0x560
[  120.642153]  ? lock_downgrade+0x6d0/0x6d0
[  120.642172]  vprintk+0x84/0xa0
[  120.642189]  _printk+0xba/0xf1
[  120.642201]  ? record_print_text.cold+0x16/0x16
[  120.642215]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  120.642229]  ? lock_downgrade+0x6d0/0x6d0
[  120.642246]  ? report_bug.cold+0x66/0xab
[  120.642264]  ? group_sched_out.part.0+0x2c7/0x460
[  120.642283]  report_bug.cold+0x72/0xab
[  120.642301]  handle_bug+0x3c/0x70
[  120.642319]  exc_invalid_op+0x14/0x50
[  120.642337]  asm_exc_invalid_op+0x16/0x20
[  120.642349] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.642369] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.642381] RSP: 0018:ffff88800fc37c48 EFLAGS: 00010006
[  120.642390] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.642397] RDX: ffff88800ddbd040 RSI: ffffffff81565e67 RDI: 0000000000000005
[  120.642405] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  120.642413] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d4c4000
[  120.642420] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002
[  120.642431]  ? group_sched_out.part.0+0x2c7/0x460
[  120.642451]  ? group_sched_out.part.0+0x2c7/0x460
[  120.642471]  ctx_sched_out+0x8f1/0xc10
[  120.642490]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.642505]  ? lock_is_held_type+0xd7/0x130
[  120.642518]  ? __perf_cgroup_move+0x160/0x160
[  120.642529]  ? set_next_entity+0x304/0x550
[  120.642547]  ? update_curr+0x267/0x740
[  120.642565]  ? lock_is_held_type+0xd7/0x130
[  120.642579]  __schedule+0xedd/0x2470
[  120.642596]  ? io_schedule_timeout+0x150/0x150
[  120.642613]  ? __x64_sys_futex_time32+0x480/0x480
[  120.642628]  schedule+0xda/0x1b0
[  120.642642]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.642655]  syscall_exit_to_user_mode+0x19/0x40
[  120.642668]  do_syscall_64+0x48/0x90
[  120.642686]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.642699] RIP: 0033:0x7f5e18acfb19
[  120.642707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.642718] RSP: 002b:00007f5e16045218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.642729] RAX: 0000000000000001 RBX: 00007f5e18be2f68 RCX: 00007f5e18acfb19
[  120.642736] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5e18be2f6c
[  120.642744] RBP: 00007f5e18be2f60 R08: 000000000000000e R09: 0000000000000000
[  120.642751] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f5e18be2f6c
[  120.642758] R13: 00007ffcb380973f R14: 00007f5e16045300 R15: 0000000000022000
[  120.642771]  </TASK>
[  120.701114] WARNING: CPU: 0 PID: 3794 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  120.701798] Modules linked in:
[  120.702043] CPU: 0 PID: 3794 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220929 #1
[  120.702643] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.703464] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.703875] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.705209] RSP: 0018:ffff88800fc37c48 EFLAGS: 00010006
[  120.705618] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.706144] RDX: ffff88800ddbd040 RSI: ffffffff81565e67 RDI: 0000000000000005
[  120.706689] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  120.707225] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d4c4000
[  120.707775] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002
[  120.708307] FS:  00007f5e16045700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  120.708917] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.709373] CR2: 00007f18b905d880 CR3: 000000001b32a000 CR4: 0000000000350ef0
[  120.709913] Call Trace:
[  120.710103]  <TASK>
[  120.710270]  ctx_sched_out+0x8f1/0xc10
[  120.710560]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.710933]  ? lock_is_held_type+0xd7/0x130
[  120.711247]  ? __perf_cgroup_move+0x160/0x160
[  120.711569]  ? set_next_entity+0x304/0x550
[  120.711876]  ? update_curr+0x267/0x740
[  120.712163]  ? lock_is_held_type+0xd7/0x130
[  120.712471]  __schedule+0xedd/0x2470
[  120.712751]  ? io_schedule_timeout+0x150/0x150
[  120.713097]  ? __x64_sys_futex_time32+0x480/0x480
[  120.713450]  schedule+0xda/0x1b0
[  120.713705]  exit_to_user_mode_prepare+0x114/0x1a0
[  120.714055]  syscall_exit_to_user_mode+0x19/0x40
[  120.714406]  do_syscall_64+0x48/0x90
[  120.714686]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.715055] RIP: 0033:0x7f5e18acfb19
[  120.715326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.716602] RSP: 002b:00007f5e16045218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  120.717142] RAX: 0000000000000001 RBX: 00007f5e18be2f68 RCX: 00007f5e18acfb19
[  120.717647] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5e18be2f6c
[  120.718152] RBP: 00007f5e18be2f60 R08: 000000000000000e R09: 0000000000000000
[  120.718650] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f5e18be2f6c
[  120.719151] R13: 00007ffcb380973f R14: 00007f5e16045300 R15: 0000000000022000
[  120.719663]  </TASK>
[  120.719836] irq event stamp: 1426
[  120.720084] hardirqs last  enabled at (1425): [<ffffffff8133e8c9>] exit_to_user_mode_prepare+0x109/0x1a0
[  120.720743] hardirqs last disabled at (1426): [<ffffffff8425a985>] __schedule+0x1225/0x2470
[  120.721347] softirqs last  enabled at (514): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.721944] softirqs last disabled at (449): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.722546] ---[ end trace 0000000000000000 ]---
[  121.013189] hrtimer: interrupt took 18435 ns
[  121.106633] random: crng reseeded on system resumption
[  121.111609] Restarting kernel threads ... done.
[  121.180415] random: crng reseeded on system resumption
[  121.182134] Restarting kernel threads ... done.
[  126.719393] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  126.783206] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  126.783213] Bluetooth: hci6: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
10:37:32  Registers:
info registers vcpu 0
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88800fc37690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000038 R11=0000000000000001
R12=0000000000000038 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0
RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f5e16045700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f18b905d880 CR3=000000001b32a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=ffff88801bf2f748 RCX=0000000000000000 RDX=ffff88800fec8000
RSI=ffffffff8411d29c RDI=0000000000000001 RBP=0000000000000075 RSP=ffff88801bf2f630
R8 =0000000000000001 R9 =000000000000006c R10=000000000000006c R11=0000000000000001
R12=ffffffff8487a601 R13=1ffff110037e5ec9 R14=0000000000000004 R15=000000000000006c
RIP=ffffffff8411d2af RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f202ff7b700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffdcc58fe80 CR3=000000000d7ce000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 2525252525252525 2525252525252525
YMM01=0000000000000000 0000000000000000 00ff000000000000 0000000000ff0000
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000