ey : Illegal Request [current] 
[ 1817.691653] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1817.742801] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1817.744256] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:42:09 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x41, 0x0, 0x0, 0x102d0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x8}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0)
read(r0, 0x0, 0x40004)
clock_gettime(0x0, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x4, 0x8000, 0x800}, {0x3, 0x27}, {0x1, 0x20, 0x1000}, {0x0, 0x8000, 0x1000}, {0x3, 0x5, 0x1000}, {0x2, 0x4}], 0x6, &(0x7f0000000040)={0x0, 0x3938700})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)

01:42:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x9, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1817.866345] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1817.867663] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:09 executing program 4:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x8580, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x3ff)

[ 1817.909469] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1817.910168] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xd, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:09 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>0xffffffffffffffff, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="2e2f6669c0caf65f"])
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x20, 0x40, 0xff, 0x1, 0x0, 0x5, 0x12240, 0xf, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x8600, 0x8aa, 0x8000, 0x7, 0x1, 0x9, 0x8, 0x0, 0x30, 0x0, 0x1ff}, r0, 0x7, r2, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

[ 1818.018978] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1818.019677] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x600, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1818.110686] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1818.111407] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1818.117265] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1818.117950] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1818.129227] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1818.130538] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:21 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
creat(&(0x7f00000003c0)='./file0\x00', 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
fchdir(r1)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x301841, 0x0)
ioctl$BLKPBSZGET(r2, 0x127b, &(0x7f0000000100))
truncate(&(0x7f0000000200)='./file0\x00', 0x0)

01:42:21 executing program 1:
statx(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x4000, 0x2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = getpgrp(0x0)
shmctl$IPC_SET(0xffffffffffffffff, 0x1, &(0x7f0000000280)={{0x3, r0, 0xee01, 0xffffffffffffffff, 0x0, 0x138, 0x5}, 0x3, 0x2, 0x9, 0x8, 0x0, r1, 0x5})
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x80003, 0xff)
r3 = syz_open_dev$vcsu(&(0x7f0000000300), 0xa5d, 0x2080)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r3, 0x4, &(0x7f0000000340)='\x00', &(0x7f0000000380)='./file1\x00', 0xffffffffffffff9c)
setsockopt$inet_group_source_req(r2, 0x0, 0x2f, &(0x7f0000000000)={0x0, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, {{0x2, 0x0, @broadcast}}}, 0x108)

01:42:21 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:42:21 executing program 4:
prctl$PR_MCE_KILL(0x21, 0x0, 0x0)

01:42:21 executing program 3:
prlimit64(0x0, 0xd, &(0x7f0000000040)={0x6, 0x8004}, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000000)='batadv0\x00')

01:42:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x900, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:21 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x3}]})
r2 = getpid()
rt_tgsigqueueinfo(r2, r0, 0x3b, &(0x7f0000000100)={0xd, 0x0, 0x2f})
tgkill(r0, r1, 0x0)

01:42:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

[ 1829.660113] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1829.661146] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1829.707971] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1829.709338] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:21 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

[ 1829.738645] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1829.739608] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1829.747978] audit: type=1326 audit(1760924541.257:50): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20546 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
[ 1829.832897] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1829.833800] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1830.568633] audit: type=1326 audit(1760924542.078:51): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20546 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
01:42:31 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:42:31 executing program 6:
rseq(0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
rseq(&(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x80000001, 0x7f, 0x2}, 0x2}, 0x20, 0x0, 0x0)
openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x1ff)
io_submit(0x0, 0x0, 0x0)
clone3(&(0x7f0000005880)={0x7b804100, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, &(0x7f0000000240)=""/6, 0x0, 0x2d}, 0x58)
io_setup(0x4, &(0x7f00000000c0))

01:42:31 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x98, 0x0, 0x304, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x2bf, 0x76}}}}, [@NL80211_ATTR_VENDOR_DATA={0x60, 0xc5, "7edcd0e09a125682a00ea882489c3324f459cf7886cfa9bbaa7298ed34c76370f69823712cb7f1996a10d31269a3e93a46651f693ed3a4cb7d6080437f23f6c3620aa139cf2517bf88e18e0889f4041e19c9350cf5f52730978370ff"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x400}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8001}]}, 0x98}, 0x1, 0x0, 0x0, 0x8815}, 0x1)

01:42:31 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:42:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xd00, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:31 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000200), &(0x7f0000000180)='./file0\x00', 0x200, 0x0, 0x0, 0x0, &(0x7f0000000100)={[{}]})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000140)={0x28000, 0x8e}, 0x18)
mknodat$loop(r2, &(0x7f00000001c0)='./file1\x00', 0x80, 0x0)
r3 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0xffff, 0x4000)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = dup2(r3, r6)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(r5, 0x5380)
renameat2(r3, &(0x7f0000000040)='./file0\x00', r7, &(0x7f0000000080)='./file1\x00', 0x3)

01:42:31 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:31 executing program 3:
io_setup(0x0, 0x0)
io_destroy(0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000fc0)=0xffffffffffffffff)
sendmsg(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)="1d", 0x1}], 0x1}, 0x40011)
r3 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x5, 0x5, &(0x7f00000006c0)=[{&(0x7f0000000140)="6cd633ef36573967d3eedc20b3aa317b6b1185ae3d67679db9441f63f794ef4a884adafa615030c7d6da524a795452a69052207d73be1f5003297ac1f505f53d6d323f5d347361370c8fe0b580654157ff41a13765c968181cf8a3068520eaa994936c6d9727820fbaae2a6ead5431f98a3d7003c659f595ac320fc705df09dd68d079def4407da6014bed83ad8b784ee96a8c759076924de10f4bccfd3b02d4358ef883c9b4ec9cd571804390c57685450e45161da785185f10c6", 0xbb, 0x6}, {&(0x7f0000000200)="4e8ff200d4eae990442e592c7491c1274a8277826f665e97c353ac26e9b38f64a9bd3d2d14107b51bf14fab894901db07492c39d9748e985d33f09454cc317dba9fe8f9b56ea0603d8a0113737f2c87786bb4083f10e48b9e7252c24eefccce66b36c814f858f743ed36", 0x6a, 0x10000}, {&(0x7f00000004c0)="b72810a7bf711223b10c1bd353991d65e5a14e65c4b0e0592c906130db270908f8a1100e7bd56183cbe071410022106bc0f36470e234399a7aa16c2192d943671bb09bc49325a214b95fbbd051f634ab16dd26d84efe94fdc491ed54c81d97e8437898b0fe61f0c96b5f863de87c319f082c4b74f3f6769f41e77189ac9a01ad24eb019c080577fa453a9dd8ce2392e792e9b50b96236fae4d730d578aa538bbf3ea18f2c045c0d8f96253ec04b6f5f08aa80f7788e7ed82b5a2f0841f17ff531c3ec099b9cd3b16761112cca9b1c578a484437549b07b9ed87a207de7cf59ac6db08c536c5d59", 0xe7, 0x9}, {&(0x7f00000003c0)="35c875e3c0eefad1cb49a1fec964e77872e380404ccdb7dfe19e1883d4f6bad9dc4743980223b25acd5a39d18236e76caf53f32b67730e938bb1a8e8fc3764cb5d60425f74ffea9b880bb5474c83c6ae5f77d25eaca98f462bcd89c529b7fb8d3a9497e3867517de9ff6665ff00ef1cf69f3cb66e150530ff399f201fe1f9325510a497a852790b4e2560bc25e", 0x8d, 0xc7b0}, {&(0x7f00000005c0)="7b9789ea7c05f61a31293033a5afc776b3cb2c3fc4da48d2e9ebdd2796e81a5d294eb82adbded1689a793899ec64e043f24b51474bbd797a476c83d7891ec255e4298589d77f7ca3e1b340b813321afc5e008cfc572012c0cf6cfdbde4533cad583352b1b98bcc77c25a80589a1d979ab7857771d47a6d3f05b738dc4158b24d7ef233548d2e0da4b69ff891bb9e8dccd99a32a9a1856b4d9d7adf8b8288f7f16312a6fce85de0e5fb4baade316b4cafa5c3e99bb074bd200be15250a82ee70fc7adfab11332eefd7673702a55ef97c672f1c740a2d05b7474f1bca78a45e729025002823243a70f344f941acca50034691f295332da469d2e", 0xf9}], 0x80004, &(0x7f0000000740)={[{')$'}, {}, {']'}, {'/$]'}, {}, {'{-\'{'}], [{@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@smackfstransmute={'smackfstransmute', 0x3d, '-{'}}]})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000300)={0x4, &(0x7f0000000280)=[{0x800, 0x9, 0x1f, 0x1}, {0x6, 0x0, 0xa6}, {0x6, 0x6c, 0x2, 0x2}, {0x4c, 0x2, 0x7, 0x80}]})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000e40)=ANY=[@ANYBLOB="b947da0dca259785b248f082857853b08a5dafedd633b94a6c1f0a294262dce060c1cccf9d19938e43b31ef3197e299e3393ff39d260a96937fccf774a50f5b4ae9d6e2e2d424461e1490d96e5c4e40846e0e3e469166cf0ec50b6a27ae3587aba66518f349df8bfbfd16ea9118e8da7f0f24ae8378f736f98447468603051d0b7a45404a9672f6273fc805ccc4b8ab111047ace65e91062a80660419baa498579609a811d5f9828025f125d0300140c76e18a9d5999362fec48867e8d29c206951ed9e13f59aef2046818c20663d7cea9cb2d9c8fc5da16b43a88e759939c", @ANYRES32=<r5=>r2, @ANYBLOB="02000000000000002e2f66696c653000"])
r6 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(r8, r7)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000d00)={{0x1, 0x1, 0x18, <r10=>r2}, './file0\x00'})
io_submit(0x0, 0x6, &(0x7f0000000d80)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x4, r3, &(0x7f00000007c0)="194f99ce4b7c1439f52511f613841a7e51069e42551b3892f7a43b29d42643a5a76156b3c87a77ac5ca6a6600944300432b544994b5b625873b0e8cb5ed93163308f5f4753ca3fa0cf339423d9ac460cf8d2ddb82b756cc8e250ac44764a3630c542ff2301cb3873903c8dc77ad02d399169fc36319ec8a6b385d73cbe6d01f3e880c4133fa2ffb25969abc415faaa60e1f7b3bdf80ccf78648b749b375daa38bcb88abfcb3ca0b4843b", 0xaa, 0x0, 0x0, 0x2}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x6, 0x8, r4, &(0x7f0000000880)="1d92eb5d24e300031cf82c908489ec9ce3d8a1fa14d1813fdaacca7e6a4e31fe2b9e55a3c4f83389d75378d0b366e966162023c954bc6ca3554f28bf398bf1eb4572cac96f4c0364880b059dc2ffe3763e7991a6e3ee47524747ef9312c19653c938802b2bf7abb72cad06aa215c066bf2f07da58cbe39f2239f6100d9886f5b85d9a91396341620a2aa47b39b440c47c32e04c72b380ae29800aba20d06ac68da8adf4fcfadb89b48b7b18550c1514f40836333f89e09b5efc883bdd687568aade6e494e65e5e33097b110a8ac0bba6293919c46274fe5f9e111a890564325054885dfa72a122b90aaff7971ff4e176f4", 0xf1, 0x0, 0x0, 0x1}, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x5, 0xffe0, r0, &(0x7f0000000dc0)="c6871d57890cf316d49a762c5a888ad183923390dab950253b42fca76f3b991bc4fcabb34f9c7d67c3826dc76982b2667a501549db4bd0f1bdd4a02e5e7be00d23d7696e05992029a82db367f376c85eeeead6374c44f78b834c7aa4d8ac0df1b621ac3013f65685e88fdd960a69b0d1aa92bfb039b097e5392f9833de", 0x7d, 0x3, 0x0, 0x3, r5}, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x7, 0x6, r2, &(0x7f0000000ac0)="4ef3dcccdfbcb4046050a97b719480635a254b6f098195bcdd4138ca944a8cf847debe55e6e72c190ff574420402f20c8ae06e6f02992cba5faead6741404e54117acbc34de195ef75d3b93bc02fa3207f2dd327416d23233af21139c9e29042953ae70f23a403f6fc0e0bc09205dcdec55edb8180ba7e63ee89b696ffe63373ba6d23c3d3583ce1bbe0298e374b9516dd0a21945a6947d990087c2268a36dfe9f0f358d52059d3d22d5be38f1df12ac3690e5eb08ce83d2384ecae5f309aa38900cc5702947802ed9606091fdf3cfc7f1ce5c146da653ed3561eed1bed07df95793182b45c33f336c5d7032899635845110dd", 0xf3, 0x1c8, 0x0, 0x1, r6}, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x8, 0x8, r2, &(0x7f0000000c00)="38e1a4", 0x3, 0x5, 0x0, 0x2, r9}, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f0000000c80)="dc22873f0b8e0ca3e87f59eb1b6a38b6e631229d71b276327d070e80a254d312680452fb52f63f250c9fcd8334acd4db4dc11e7353def6a56ee08ea251943082f75357ed33ffd0237f52d50932e8", 0x4e, 0x5, 0x0, 0x1, r10}])
getsockopt$IPT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x41, &(0x7f0000000140)=ANY=[@ANYBLOB], &(0x7f0000000100)=0x88)

[ 1839.834488] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1839.836087] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1839.855862] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1839.856580] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1839.902556] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1839.903982] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1839.910727] blktrace: Concurrent blktraces are not allowed on sg0
[ 1839.929978] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:42:31 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

[ 1839.931590] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:31 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000002ac0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f0000000180))
r3 = syz_open_dev$mouse(&(0x7f0000000040), 0x1, 0x0)
clock_gettime(0x0, &(0x7f00000000c0)={<r4=>0x0, <r5=>0x0})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
ioctl$SG_GET_NUM_WAITING(r8, 0x227d, &(0x7f00000001c0))
mq_timedsend(r3, &(0x7f0000000080)="4830cd41c09b24237223a069a0", 0xd, 0x8, &(0x7f0000000100)={r4, r5+10000000})
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000140)={0x0, 0x0, 0x685})

01:42:31 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:42:31 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r1, r1, 0x7, r0, &(0x7f0000000140)={r0, r2, 0xfffffffd})
r3 = getpgrp(r1)
r4 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r3, r4, 0x0)

[ 1839.997707] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1839.998435] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1840.004886] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1840.005541] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:31 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:31 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:42:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x2000, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1840.082334] program syz-executor.6 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1840.099670] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1840.100358] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:31 executing program 0:
r0 = getpgrp(0x0)
r1 = perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x50, 0x55, 0x2, 0x5, 0x0, 0x7ff, 0x483b0, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x1, 0x2446e53d}, 0x8c00, 0x3a, 0x4, 0x5, 0x40, 0x8, 0x1, 0x0, 0xe21, 0x0, 0x7fff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x3f, 0x80, 0x0, 0x4, 0x0, 0x9a8, 0x420, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5524, 0x2, @perf_bp={&(0x7f0000000040), 0x1}, 0x4318, 0x42f5, 0x9, 0x6, 0x80000001, 0x3, 0x1, 0x0, 0x20, 0x0, 0x5}, r0, 0x3, r1, 0x0)
r2 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x20, 0x8}]})
tgkill(r0, r2, 0x0)

[ 1840.146805] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1840.147511] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1840.159774] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1840.160508] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1840.161405] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1840.162727] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1840.189361] audit: type=1326 audit(1760924551.698:52): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20796 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
[ 1840.995708] audit: type=1326 audit(1760924552.505:53): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20796 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
01:42:44 executing program 1:
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={[{@mpol={'mpol', 0x3d, {'prefer', '=relative', @val={0x3a, [0x32, 0x2d, 0x39, 0x3a, 0x4e]}}}}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000740)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f00000000c0)=@gcm_128={{0x303}, "e8f4918b66baa2ca", "20d9e20af4cd48dfe136aacf3cdf096a", "c6df8366", "32b10e9d9d8fcfaf"}, 0x28)
setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000000)=0x80000000, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000140)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000d80)="c6", 0x1}], 0x1, &(0x7f0000000340)=ANY=[@ANYBLOB="140000000000000029000000080000000500000000000000140000000000000029000000430000000000000000000000580000000000000029000000360000003c070000000000000710000000030280ff7f3d00000000e60000c910fe8000000000000000000000000000bb04016801040000000005020421050200020401000102000004019f0020"], 0xa8}}], 0x1, 0x0)
sendmmsg$inet6(r1, &(0x7f0000003040)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000001c0)="db4d31d6805ecdac87307b14c169d9d9", 0x7ffff000}, {&(0x7f0000000200)="ee91b199cbde153a80cc89fff10933ca330cad7d5e0f004c6e6896c0909b95c3eebca1ddbf38aeb052c2cf7f3c5445bfa4c9cc966edb83bd3436a22c2a8e1cafade0533901774eb216d833be627e96c9a9c78fc0ad06be165d206fdd35dbde963942c7cb29ed300d6551b21ee9c57532", 0x70}], 0x2}}, {{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000300)="ea", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000a00)='m', 0x1}], 0x1}}], 0x3, 0x44894)
name_to_handle_at(r0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="0c0000008100000000000010d600fb0081000000"], &(0x7f0000000100), 0x1000)

01:42:44 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f0000000000)='tracefs\x00', 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xf2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = eventfd2(0x0, 0x0)
fremovexattr(0xffffffffffffffff, 0x0)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000002200), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0)
r3 = syz_io_uring_complete(0x0)
write$binfmt_elf64(r3, &(0x7f0000000680)={{0x7f, 0x45, 0x4c, 0x46, 0x2, 0xb9, 0x2, 0xda, 0x101, 0x3, 0x3, 0xffffffff, 0x1dc, 0x40, 0x63, 0x0, 0x3f, 0x38, 0x1, 0x0, 0x3, 0x6}, [{0x4, 0x0, 0x3, 0x81e, 0x2, 0x7, 0xff, 0x2}], "60c41c4fa4feee7e8df1a01919019669ffeccab5b9a6259de8f7aa34a98cf8fdabff1e35fb6e59d5bb746a1bfbad2baad158368447fe3bc6afbe7cf093df0c259d9e2da763e89868caa8e8a5da186ca17199f86278ecc6417652f1cfe06f0c7699655b36ea36ad1e29ef8505ff2254070b1c05687714f167910f1e6f0f6371b036ebcb3e462b21ce61df65da69f9b9b6049a7962660b550f10eeaa225beea444629bf06536be5a55b919419f65f4d266963c77f60e", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xb2d)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000000040)=""/224, 0xe0, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000300)=[0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8, 0x1, r0, &(0x7f0000000580)="a1668efad33098b0a3cd941c0413ce619160caaad782d2d86979d6ec0d149ba4c1850aae13dfccce64ff3648bd6d88b464c6a78dc02ae00313297b91a0196909d10dce1278e7f97fb43d4041a832a375c5798e7df013c691e410ad479991d49c176bccb5e0246d4c56236354d02d52c154bb04a6fad94aea97fa737bf6b775183c911321472dd13a48025c8f0db6142af9b3e9f23b1cc6bcb1063da94482888a23c5f1a2e555a29c6836bced5d3ef462f0ad0cb1896e2802bacc05689ce88269661d4198335e6549dfafd3a2ccdf0103f07914fbadcf373b97347165eadc2d3a4710df2c3236ff", 0xe7, 0x1, 0x0, 0x2, r4}])
r5 = socket$nl_route(0x10, 0x3, 0x0)
io_submit(0x0, 0x3, &(0x7f0000000480)=[0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x8c1, r3, &(0x7f0000000100)="82694bfb6a22c685ddde74140e1e54395174858317898f84b4d320e3046de5ee82e7b2423705649e7e1f70538355bfae8c7cdff2f2f36b449456f839291d5ad5a0545f4b36f53a793d9a6e30ce890484b43d5a6c35eae5a2e6a39d16f938bb056b1ec86436ba2d3210b10ab183fffd193a05a31e147582f824dfa274b4d184dcaf00bc9c", 0x84, 0x0, 0x0, 0x1}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x5, r5, &(0x7f0000000400)="2afd830d1b428a5c3faf1f6aca0f7d1f2ccb41c0dc0e65af", 0x18, 0x0, 0x0, 0x0, r1}])
ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0)

01:42:44 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
wait4(0x0, 0x0, 0x8, &(0x7f0000000100))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:44 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:42:44 executing program 6:
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x3c, 0x1, 0xa, 0x101, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x3c}}, 0x20000000)
syz_emit_ethernet(0x68, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "6b1000", 0x32, 0x3a, 0x0, @empty, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "61165b", 0x0, 0x33, 0x0, @mcast1, @private0, [], "2db6"}}}}}}}, 0x0)

01:42:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xfdfd, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

[ 1852.902398] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1852.903098] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1852.914331] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1852.915022] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xffff, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1852.977603] tmpfs: Bad value for 'mpol'
[ 1852.986804] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1852.987515] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1852.995892] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1852.996542] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1852.998712] blktrace: Concurrent blktraces are not allowed on sg0
[ 1853.026283] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1853.026959] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1853.035733] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1853.036396] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

01:42:55 executing program 6:
io_setup(0x8, &(0x7f0000000040))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x208, &(0x7f0000000080)=<r1=>0x0)
syz_open_procfs$userns(0x0, &(0x7f0000000380))
r2 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x2, 0x0, 0x10000002})
ioctl$HIDIOCGDEVINFO(r2, 0x801c4803, &(0x7f00000001c0)=""/253)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000012c0)=ANY=[@ANYRES32=r0, @ANYBLOB="04696c65300000"])
eventfd(0x4)
io_submit(r1, 0x1, &(0x7f0000001400)=[&(0x7f0000001280)={0x0, 0x0, 0x0, 0x3, 0x245, 0xffffffffffffffff, &(0x7f0000001200)="4ba2809a36120baada73cd74b20b6fb93cd11edd69f4acff30bdce8a0f13ad5e6818f811d93e3cd8ed4199881cd446da03021ec3385702856c700df86ea6a4c210b0883b3b037ebfb4e92d7cce50602f07ed0119b5bf81af59c7", 0x5a, 0x4, 0x0, 0x3}])
connect$unix(r0, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e)

01:42:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:55 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
clone3(&(0x7f0000000340)={0x20080100, &(0x7f0000000100), &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000240), {}, &(0x7f0000000280)=""/10, 0xa, &(0x7f00000002c0)=""/46, &(0x7f0000000300)=[r1, r3, r1, r0, 0x0, r3, r0, r1, r1], 0x9, {r2}}, 0x58)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x59, 0x3b, 0x7, 0xba, 0x0, 0x4, 0x100000, 0x8, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x910, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x101, 0x10000, 0x472, 0x2, 0x81, 0x3f, 0xfbff, 0x0, 0x43f0, 0x0, 0x1}, r5, 0xa, r2, 0x8)
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
sched_getaffinity(r3, 0x8, &(0x7f0000000000))

01:42:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:42:55 executing program 1:
write$tun(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="00001e74408d0000a6e834b50f474f6edaeb1ff964b113cf65f0be4ab1ffff7a9636645f0ae3094e59e50bfee32de576970308a41f0dd6c2cf47288f8895dca6e8681f1fff4666d7035828c469100bca32"], 0x52)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000140)={<r1=>r0, 0x45e, 0x6, 0x4})
ioctl$TUNSETOFFLOAD(r1, 0x400454d0, 0xaec28766cc91c9f2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000100)={'rose0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth1_vlan\x00'})
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f00000000c0)=0x2)
close(r0)

01:42:55 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:42:55 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
r6 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r11 = dup2(r10, r9)
ioctl$SG_GET_NUM_WAITING(r11, 0x1276, 0x0)
r12 = openat$incfs(r2, &(0x7f00000004c0)='.pending_reads\x00', 0x800, 0x180)
io_submit(0x0, 0x5, &(0x7f0000000540)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xff2e, 0xffffffffffffffff, &(0x7f00000000c0)="f7f9cf", 0x3, 0x323ff335, 0x0, 0x2, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x81, r2, &(0x7f0000000140)="14ec3a0cdfd8759b51c75e4dcebcd00307f76f1bf83e24899c1253947535721f1d0daf7fcb42ea5d98320a3c07c2ec2d431da70ab189809267af3b96164abc471b9da1c812a269cebabb39e2e18892b4ccff4bd4f4fc805b01e5f087c0c3953597479ecfbadf0cb371ad397e0f578a41e69c0ef68bfd060a47e03343f082fb87ac6a8e60d596292302bfd1e189930a7a744f9d2a21bbe50792b7d96e18ff9870fe003904c7a56fccd10423cdee38173002fddd81f1907cbdf268655d66c9f5a2db958c6e33704c0cf0069963180a5e923cfb4602a7b0bc3a72ac126a9c95709bced02b16a5b7a60e884f77019b0fd13876ebdb4ed1a910ae", 0xf8, 0x7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000280)="1d8feffd040e8064a476529d39096dc1b40e1972a44f2e4320d281ba9e91cd525488b82d841a82d2899ab5685609cd375b7bc472f867d1f81abe93b50f8ae4ac65d6f36167ae5576c5dc31c740757f93df6e37a23a2fa08f3ea2be2a4523528d1144685c6972f7670f68b7317083c60d3e85ddbd6a51ef491f73ada1403570a99b6a49102a421b31fd2868bbd125723d1c02c40e", 0x94, 0x3, 0x0, 0x6, r6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x4ac4, r0, &(0x7f0000000380)="6d7c5fefefe09e805c279bcb3a8a532ce39dd04de2c4e2ccf9864baf37f43b3763a5ecf9a60bab46ba61a25c3b2e0bbaa96b07afacd4bac1c03e07c8bb7f10be640aa05fd43b04c75c7ee67bd601d627c195c35c67d64b309ca05827c8491a95cc88fadd1a19e4888b4376fec9d8194afb5d21e765eb916b5d307342bdf86d26a84c5b08c0ffd43693f0bc83c812fcf397b5b6ca7164a20cacf77d1c65ddde6619b6cebfa8e6dbd43da5b9b4cb03b7ab2729c68d4bc695", 0xb7, 0x5, 0x0, 0x1, r8}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x2, r11, &(0x7f0000000480)="0dc92ec547ad90060d3f15c9490760f87071d2ac056b8ef8c7b56b", 0x1b, 0xa94b, 0x0, 0x3, r12}])

[ 1863.579859] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.580553] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.592797] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.593512] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.599844] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.600492] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.635424] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.636756] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:55 executing program 6:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x6f, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x4d, 0x0, @opaque="6cd68c63cdca2832c58487107ea4beb2cbcda9afa08750ea99e46fdcedd77740b07775c21741619389557b7dfa3dbd80e5858b173084418eef390fa4e16896b7b734eac29c"}}}}}, 0x0)
recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000300)=""/78, 0x4e}], 0x2}}], 0x1, 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xfdd444b85606a21b, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)

01:42:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba})

01:42:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x2, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1863.736703] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.737431] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.740764] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.741445] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.752417] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.753103] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:42:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba35})

01:42:55 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
fork()
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
move_pages(r3, 0x5, &(0x7f0000000100)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff0000/0xe000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil], &(0x7f0000000140)=[0xa0000000, 0x3, 0x9, 0x10000, 0x3, 0x2, 0x3], &(0x7f0000000180)=[0x0], 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r5)
r6 = getpgrp(0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r5, &(0x7f0000000140)={r5, r7, 0xfffffffd})
ptrace$setopts(0x4200, r6, 0xa22d, 0x12)
tgkill(r0, r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x6, &(0x7f0000000000)=[{0xe4a, 0x0, 0xc5, 0x624}, {0x8, 0x1f, 0x5, 0x4}, {0x1, 0x3, 0x40, 0x400}, {0xffff, 0x7, 0xd2, 0x1}, {0x8, 0x1f, 0x40}, {0xa90, 0x3f, 0x3, 0x2}]})

[ 1863.855936] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.857258] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:42:55 executing program 6:
r0 = creat(&(0x7f00000003c0)='./file0\x00', 0x0)
pwritev2(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="b77de7d32115041776dbbb67441f994b84abacb480aae33104344588f5f4d34917b6fc06cf41b55b55b374e541bbb63bd295424d0425987e97465da818ced1b468855edf52c071438e45a24e1871fcf847dbe1053e4d26baf3eecfddde479942b3948bafd2262812194110693a", 0x6d}], 0x1, 0x8001, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6002, 0x0)
sendfile(r1, r1, &(0x7f00000000c0)=0x5, 0xfed8)
creat(&(0x7f0000000080)='./file1\x00', 0x42)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x221200, 0x101)

[ 1863.888549] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.889274] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:42:55 executing program 4:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1863.902887] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.903556] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.914482] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.915802] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.952973] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1863.954314] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1863.964545] blktrace: Concurrent blktraces are not allowed on sg0
01:42:55 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
r6 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r11 = dup2(r10, r9)
ioctl$SG_GET_NUM_WAITING(r11, 0x1276, 0x0)
r12 = openat$incfs(r2, &(0x7f00000004c0)='.pending_reads\x00', 0x800, 0x180)
io_submit(0x0, 0x5, &(0x7f0000000540)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xff2e, 0xffffffffffffffff, &(0x7f00000000c0)="f7f9cf", 0x3, 0x323ff335, 0x0, 0x2, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x81, r2, &(0x7f0000000140)="14ec3a0cdfd8759b51c75e4dcebcd00307f76f1bf83e24899c1253947535721f1d0daf7fcb42ea5d98320a3c07c2ec2d431da70ab189809267af3b96164abc471b9da1c812a269cebabb39e2e18892b4ccff4bd4f4fc805b01e5f087c0c3953597479ecfbadf0cb371ad397e0f578a41e69c0ef68bfd060a47e03343f082fb87ac6a8e60d596292302bfd1e189930a7a744f9d2a21bbe50792b7d96e18ff9870fe003904c7a56fccd10423cdee38173002fddd81f1907cbdf268655d66c9f5a2db958c6e33704c0cf0069963180a5e923cfb4602a7b0bc3a72ac126a9c95709bced02b16a5b7a60e884f77019b0fd13876ebdb4ed1a910ae", 0xf8, 0x7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000280)="1d8feffd040e8064a476529d39096dc1b40e1972a44f2e4320d281ba9e91cd525488b82d841a82d2899ab5685609cd375b7bc472f867d1f81abe93b50f8ae4ac65d6f36167ae5576c5dc31c740757f93df6e37a23a2fa08f3ea2be2a4523528d1144685c6972f7670f68b7317083c60d3e85ddbd6a51ef491f73ada1403570a99b6a49102a421b31fd2868bbd125723d1c02c40e", 0x94, 0x3, 0x0, 0x6, r6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x4ac4, r0, &(0x7f0000000380)="6d7c5fefefe09e805c279bcb3a8a532ce39dd04de2c4e2ccf9864baf37f43b3763a5ecf9a60bab46ba61a25c3b2e0bbaa96b07afacd4bac1c03e07c8bb7f10be640aa05fd43b04c75c7ee67bd601d627c195c35c67d64b309ca05827c8491a95cc88fadd1a19e4888b4376fec9d8194afb5d21e765eb916b5d307342bdf86d26a84c5b08c0ffd43693f0bc83c812fcf397b5b6ca7164a20cacf77d1c65ddde6619b6cebfa8e6dbd43da5b9b4cb03b7ab2729c68d4bc695", 0xb7, 0x5, 0x0, 0x1, r8}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x2, r11, &(0x7f0000000480)="0dc92ec547ad90060d3f15c9490760f87071d2ac056b8ef8c7b56b", 0x1b, 0xa94b, 0x0, 0x3, r12}])

01:42:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

[ 1864.069669] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1864.071008] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:07 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
r6 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r11 = dup2(r10, r9)
ioctl$SG_GET_NUM_WAITING(r11, 0x1276, 0x0)
r12 = openat$incfs(r2, &(0x7f00000004c0)='.pending_reads\x00', 0x800, 0x180)
io_submit(0x0, 0x5, &(0x7f0000000540)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xff2e, 0xffffffffffffffff, &(0x7f00000000c0)="f7f9cf", 0x3, 0x323ff335, 0x0, 0x2, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x81, r2, &(0x7f0000000140)="14ec3a0cdfd8759b51c75e4dcebcd00307f76f1bf83e24899c1253947535721f1d0daf7fcb42ea5d98320a3c07c2ec2d431da70ab189809267af3b96164abc471b9da1c812a269cebabb39e2e18892b4ccff4bd4f4fc805b01e5f087c0c3953597479ecfbadf0cb371ad397e0f578a41e69c0ef68bfd060a47e03343f082fb87ac6a8e60d596292302bfd1e189930a7a744f9d2a21bbe50792b7d96e18ff9870fe003904c7a56fccd10423cdee38173002fddd81f1907cbdf268655d66c9f5a2db958c6e33704c0cf0069963180a5e923cfb4602a7b0bc3a72ac126a9c95709bced02b16a5b7a60e884f77019b0fd13876ebdb4ed1a910ae", 0xf8, 0x7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000280)="1d8feffd040e8064a476529d39096dc1b40e1972a44f2e4320d281ba9e91cd525488b82d841a82d2899ab5685609cd375b7bc472f867d1f81abe93b50f8ae4ac65d6f36167ae5576c5dc31c740757f93df6e37a23a2fa08f3ea2be2a4523528d1144685c6972f7670f68b7317083c60d3e85ddbd6a51ef491f73ada1403570a99b6a49102a421b31fd2868bbd125723d1c02c40e", 0x94, 0x3, 0x0, 0x6, r6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x4ac4, r0, &(0x7f0000000380)="6d7c5fefefe09e805c279bcb3a8a532ce39dd04de2c4e2ccf9864baf37f43b3763a5ecf9a60bab46ba61a25c3b2e0bbaa96b07afacd4bac1c03e07c8bb7f10be640aa05fd43b04c75c7ee67bd601d627c195c35c67d64b309ca05827c8491a95cc88fadd1a19e4888b4376fec9d8194afb5d21e765eb916b5d307342bdf86d26a84c5b08c0ffd43693f0bc83c812fcf397b5b6ca7164a20cacf77d1c65ddde6619b6cebfa8e6dbd43da5b9b4cb03b7ab2729c68d4bc695", 0xb7, 0x5, 0x0, 0x1, r8}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x2, r11, &(0x7f0000000480)="0dc92ec547ad90060d3f15c9490760f87071d2ac056b8ef8c7b56b", 0x1b, 0xa94b, 0x0, 0x3, r12}])

01:43:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x8, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:43:07 executing program 1:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x42410, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe00}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x59)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
write(r5, &(0x7f0000000400)="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", 0x215)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r7)
r8 = getpgrp(0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r9, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r8, r8, 0x7, r7, &(0x7f0000000140)={r7, r9, 0xfffffffd})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0xc020f509, &(0x7f0000000180)={<r10=>r0, 0x5, 0x0, 0x465})
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x1f, 0xc3, 0xd9, 0x3, 0x0, 0x80000001, 0x48800, 0x5, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x6, 0x6}, 0x5a000, 0x3, 0xbd, 0x8, 0x80, 0x5, 0x4, 0x0, 0x7, 0x0, 0x7}, 0x0, 0x9, r10, 0xa)
fcntl$setstatus(r1, 0x4, 0x44000)
sendfile(r1, r6, 0x0, 0xfdef)

01:43:07 executing program 4:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:43:07 executing program 6:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000000)="a2", 0x1}], 0x1)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_SNDMTU(r2, 0x112, 0x13, 0x0, &(0x7f0000000180))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x145c02, 0x0)
io_setup(0xfff, &(0x7f0000000040)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000003c0)=[&(0x7f0000000280)={0x0, 0x0, 0x8, 0x0, 0x0, r3, &(0x7f0000000000)="fa", 0x80000}])
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r8=>0xffffffffffffffff, {0x40}}, './file0\x00'})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffd})
perf_event_open(&(0x7f0000000940)={0x5, 0x80, 0x4, 0x81, 0x6, 0x1, 0x0, 0x0, 0x21190, 0x8, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000900)}, 0x18000, 0x4800000000000, 0x21bf, 0x3, 0x7d, 0x5, 0x7, 0x0, 0x8000, 0x0, 0x3ff}, 0x0, 0x5, r0, 0x1)
r9 = syz_mount_image$nfs(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x7, 0x3, &(0x7f0000000540)=[{&(0x7f0000000380)="feeb00514ddf46c8360503de7d9dcf8523cb3a2800fabde22ee45a722a0bdd6733cc6cc1352c3381d0e078e4f9ee312489b0edcb1e45cc5ae8ec394169e3240bf7eca7a904f4c0ee9a78156e992df06cd9ce276e9981d4d116e192def910542418cc269e235b6341e4e0935873ab4822e40aec4aa4fe61d33319b6705204f5ccffb8e6c8ca2464493425943f6f8f5a8f77063ad249fcfb10eb2b16a038b046", 0x9f, 0x2}, {&(0x7f0000000440)="39a084f8886b577bb5b027a79e40cb8da57a4162aa2270ab2bf097ed0c7d84db3d7edd50fde992ab46bcff0e18f16cb5804868d20c32f0f70124da457701042aed23fdb68c97091be3", 0x49, 0x1}, {&(0x7f00000004c0)="d1e43d4b48b591cdcf07daaa2b6c70558038fa3fb3ed3a200f20e3554dc620d5d9269d4262e264e64d3e093e0ce0c07bafae5e608207fd0f339d35bcb69de2ce0998062f3f16dcb8a7d665716da653ec19abff64a8096f401697d7b2e677200752e5090378bd3779043a8370a9e48d8eaaf030aee5b0", 0x76, 0x100000000}], 0xc000, &(0x7f00000005c0)={[{}], [{@dont_hash}]})
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000840)={{0x1, 0x1, 0x18, <r10=>r2, {0x7fff}}, './file0\x00'})
io_submit(r4, 0x5, &(0x7f00000008c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x5, 0x401, r1, &(0x7f00000001c0)="4ee249167f5b469ef417ff23cffa18874b0da20b8e2997e27095f9ba9493bf6e4018e68646f90bfef8bbe4e5b0dce2fc914d1da541ba1baad289d8b6cf34993cf27198dd1d16f1a1024d0a419b57cb0f3f19faac0c1ce28b3586b5747008eea0ad056463cdc82b7d2d46727a3e6b821b80eb9aba2198797503487e8271a71e9fcb93ac95b41406bd9065f683031c59fc1c4e89a780ba68e85d7db7c76c3790cf896323273108585639bee4e10ad55b49c11edb9357f805c59311ba7fcc0ee5122a356e71eecaca19adfe3f3cfe57a6812be255ab31d43097a208ba84c29a871f2f3dfee9b8b17c73c441a3b6a69a361a0786", 0xf2, 0x3, 0x0, 0x2, r7}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2, 0x9, r1, &(0x7f0000000100)="2d39b9276e7af00d8bc74af47bdeee94d61816d3d38bb440f1962ded2cb5ff4e6d77e561e428d4d7a370bfc581046f5df11d1e35d1f466c578724cfc", 0x3c, 0x4, 0x0, 0x0, r8}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x2, 0x7ff, r9, &(0x7f0000000600)="25b891aba8b033af801badfb5b3e101c45a06567dd2f25704f639928be9dad14e1ad8336f618de59bb1d3b6883de70aafb589f93819839e4eed014abee1253316dbdf1eb37adf709262047161ea9077c0667f323c2fb472bfa4784950cc65a5f72f231660dc1f58008dcb8d4cea26bdda798cab2f175ff53bbfbc43e5c22ad2dde66a572789a70ac70dfb27256187484e1a1e688933052aaa18f21c7fc4b089908dad2d70980a32f7c4e45", 0xab, 0x20, 0x0, 0x3}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x4d3, r0, &(0x7f0000000700)="435a443f62846a67c7bc7204625abac21883c87e639cc62040397a4ba6de32dda64a84529e2c8abe89cc67c222f5452cb71ca43855aca5f49d1b94c269f46b01891e6f8dd676b1", 0x47, 0x2, 0x0, 0x3}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x5, 0x5, r2, &(0x7f00000007c0)="8e38620c7e6d2df50cf8423be6739a364576a0e38fdccc84dd0a2f218cd4413f261e208dce3f69f3bd02a5cdfd5d6f61ccced81d7553b1effd75ae2b4e30b05ce8c3bb41e1affe7900e5d3f209612df9ec430abde220", 0x56, 0x4, 0x0, 0x3, r10}])

01:43:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:43:07 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002100)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x2c, 0x2, @thr={&(0x7f0000000100)="7c76e26edc57a80b5cc203cfdf44734ef451b7a4241a67539992a39095de3899beeec8146a8f86f292cdf180493f307df3473a361921380e5b8be08cdfc6b9130b1bdfc26b6525fcdb24a999200117e10a828161f30bb30389ba16f4ef94d1052822fc1992d0ee90be8f26101c3b7a4bab8153e573caa55f980c7f199167fd28e5825cb527295267a5ad2674539b81d7774e17bbce73b45dbfba2e8a230aced19b584cd3216c1d078c1f206e8292171ad3fe66fdd06aa4cb92fe5e628e924ee8ecaa4f7c24c69d888a31ed07aeb93b7515a01b1fe5affbe8f8f96200cabfeeff8e9900f156fa244aac959df497ebde85eeb37e6593d41f3be07970d75ba2d509708b4119a6dec7f75226f22c7a524e50a117b3f6251b4afcb95d73c4caf396360840ad651fa7a53112cec020819d5813fd66826ed976b8a364e9f32fcfdca35e18988521a7afb9349d19a48d89786402ed345b84e9cf750e6a5bb952f121501481736adc30d9e53de930bff390946cb5c366725a5e12e20ac94a7e5be3b1ed45fc530d129b71082f02f58153db7df32b41e03800b2aed005250cda9eec685851f49f1711e20e9a3de72b9df68afb01909a4343d3e56156b25db3fd8a06a391197ea72e5da9c62b5bc1c3baa1dea170ab79f756f8ab74458accee1e4a2215390788695575148437f1c6648e1322e750340f42a8d908530e4c017bbe9d3f920886a59e4e1ec98eb4dc7d274a51193569c266ed98e5b4b6c91413f0a107e3a4f01e11f02e7a40cfef8e82c6c71654d199baae1c3c1fecac2567010b0a9e5995b1f20351ea83643284a6cd9f1f20a7d68e259108a505112c3fd2fe23d34cdfcd7ae079d0a238dc92dbd1d06d2b9997646f446538178ef7972d7ecf8dc155d1c82e2ba48c7bddeae50574d8bbcbc89a142ee18d36892734d38064bbe28261199590ff4721a3a366d7aaac29cfa6fb9f044a62d475000b1d961124f8fe208d8a5b0029b2965dd6a4d3f1154184c319c680ef3d9bd28da2284e25c36840dd4b09dbca562ed6ac7d22fedcea37f26272e5a4edb1559f2424e9c8e1f6acf5eeb11ef0b8eb8c5c16ca46255b9a6b22ea402f56addb850b9b1f896e5946dadc8ad8e3681e566db66abdac513f544601f750c01e1905be2c0f132a3cb8e887e5c692d542d02854ae0e931a10f6d2fd9fffa189381a9fa682b77e57846d65203e777ac37ddffeb1d3214ce4d82392f8f14f4e9f2d1d1cf82cc6c853268e942f4432f58d2d9a7785139e37369cc93f4d90ad43f22adc2b9126fa5553a288695ecceb9aa43d734779125831d6ed071d7d5f700bda7e977e34a2a58d73dbe61408e321971cf018ccd63e5131e402d4fb55b7f1b022f710c49025f0bce986debb60c0dfa7cbb3c6eb90a8e52813307e27b8ea94b8c8fd070b3666d65f2bf30301f712914fdb3ef6e1506db107328406c92249eb79ac1f81522fd02ffb2b9cd7b84e68acf0e3c1702c82b36845e5b4ca1b0a947e68795313974dc3af1531f1dc0b42654b1a66fa26a26e13a22498612e7e4d16f8e8792676e06afc8717e7285df84ebb3c3f3491bebf3ef4a0810c0b61eb8d6a9090b02d4046ec49b8d602aded37829af833f28f4b2e0c26a7079743b4115bf65a86c727e84894c2328ae35b04ca4a572e06d8a41cdf7d7ca95f87d74956097dec92713263044f1f17695e15bf064050ac4fd8545f104fd6da811f4eadb781337db9fc8c347e05eecd48c91181a388160cc3795022b4500b02daa1eefab6762b8879bbfa9453221acf19fb94943a0a3a4bae4d59fd4e2dda093c36d69f2dd09d0e315325a1ca565178ce9e43a8fec742d676d5ad4833e98da6d4cf1cb2193c11827271d2ff0bfe105590940b77325be7e0874443a9426dfa40d2130edc14fea5d731bf53ab7c4193378ced7a58da743cc816d93112023c81c6ce3c42c3c81a38fb6b95e16c44cbda1329ef66523bc8174273f8ce83adfd56076527410134397aebb8510b95095b1c3ad1444f2b3cf6218830c8974f3cf7a3564c9bda2d01694af9b83ef344c26234fa01e4f53d6a9581f8af10503014d8706cfb4281a7b8f7909e4b7df671573d169e2da7ade3dcfbb3280ae69603ba91a32503e59350cf34365affee557cb4db4b61557d2a58588261c62cb72e410e657a4ca50603b211997a46252ce5d831f1d2677d181ceaa811f2352a216cf27709a8835cd1723ffeb6b9f3f96de671d859d949905badd812da1bb84e2637be90b3e43869c01233301df0a0a9854b4fe0a844596cc5170fd32790f4b26fb534fce9f29a6910f3437b245fb575365a8442d26c7cf26a14fa1131c728df2d060eeff8331ff9ddba815cd04680bcc70c66d170ad6b3856044d4499849451b378ad041dfd40d23373ce7953ef0a02563e78ba397fba3d75f8d27bbca68a2d49fdb282b702b5070d45e1cad42511a8dc50971c5e90466ea930b92a53f0c390dbc9247e7ee41d36705cbf3ed35539ef31cfdf987dc42e095fe95e9b26633d32a40a34f93085abe92dc78161d66ef4375e1b33902e7de4aabbc60af36146c91f7a8bf52707cb5486ccc5d46cdb8eab31b656eaf766d7f14c6e5215c715c37d6c49909ac1e45cb4ea7e55644f3d62957448ba8be0aa83fd34fe554c3d6b689eee02829a7cbbb28190426545e07135c148d810808b4d61c138adb9f20bbdfbd68b227e8e6dcf79414b0f1c2e3722b33999b22c110dff4ec4b40455eddd44b0cec400714ed4cbb17f7f4632184ce970b553a45ff4ef97548a2d4c8c4d42b51b06e3346940b53b004df78038c1edb4b812200fb6427e5dcb2ca56e5f81a9e1179909775ffd957365f66eb0aa64f2a43ea8159c70d3809ab8b662859c99b5605c850187810cd73cd410cae48debc7e6201b7b26e8cd962e2b868fde6b3116e2cf1e05888f300c019a79272c637f0283ff914616ebe3333ea6f9fc34b0a1cf1f039892c8ba117c9a8bdbd6dfbf224afe6fc36bc1c644760d45b23214d6aee6b0048f4ca389c9f15bf7280338b066e6b7b18ecbd3dbb38b4f222f99ad2d0d56d2a760e3b5ca888933d0be92aaecb7a8c5b0f443719356e747180a9cf9e72f0853db025fd170bcc5f138b785c737850acde45953104f52f618251e459756063fdcde232509d95bdde231be9a21900772a26b903c3db8ab1321b7f2b70c7b49f2b4dc973f261ea53ab27dc40a5fefbc51f062d36116dd306d42df9e4c73feeefe7739905c8d4a74f07edb8aead55416eca46a5edc40ff3b4656f71286c2b709a86e704d6579d96b8599e43393d5bf35053cf478fb5520ac8e9d48092257e68ed2f247906c0f3a6961185cdc6a59f3ee752459f3ca62a8538e40c9953ac03d5a48ae3ba26776f6bf75fcb82edff995388555a53bee67d71af76e40a1e4ca42a4c82c80d10856c903bb57a4a9fc5f8199e9e47ed917399fc1ee61241d2ce5c0b4cc6c431c3ed40c553a43fc0288f25d366c6be8504a1a5c516748ee6cb6da1474f0726cd25cd6abcc0da99ab560abdc3677759e27fb358964a93fa36a6b54149cc56d78f6b2bacb267a8d620301d43bb26ba6ee764a6b372ba5887631c8604dcd0102be27d3d364b1fc1fc25ee57f8b4ad86f2d8d34bb82390b440809d7772397cb07aa4d924581b47646a4ef92be83a4bd6080905d1bbb57c950c689a1f35669171cd5feef5a53b520f493b7bacdbcd932119b5d2cdce2bb0419cfbe6207f2a94fd1aa5b7a4b6e809062519379c8ab054168cab6c84f438deea182480c4a2aac1b5474aac47e98e31c92e867ce48494428c8bec7e7f43afc416151a0ddac0050b9ec7d10a1d14b1c5b7a3cfbfdeb080bb23c2faede041982627ff52e175fa144e770fb35f3d4e34dad5e71f2a56741fb2ba20037a63889371b30d833638eb932091ed581dcc5bd139879fd3614570cbc627661bc674611b26e9397fefce803430547a84d48bb28fc1cde40fbf900e5579be65c123723255bca223d07f53b85cb27b69252960d175f1c3d02a22b677e95393797e78a4bf194d62e385cfb0d0776589af8bfb67bc1f6094614d1e990b0a75979f03714cc8bc0f7ff93df2ab8bbba506ba1f7ea7651d339dfa4ba93b61dde4eb92f879b7a87b5d78774d75530d15473b1b62f30a1bbc826d2d4161dcc8030e810cc6f00e42a2780649b0bbeb4d61c376f582bd6225e9b159d3ebcf9d19b767512e048724a25d95c250f77bb3b4650b9edde9624d4c48e7e1baed527ad97269a8cacea9dcbeedbbced0055bce70b0927ac73098e6f3b458fbfd9d592e427a21787f7ecbb7c86ac74bc97291cd50cd829a592a090739b4cf66a9620f15a1e70afee97f267a50c8f450b4bf7d60d74d6ca07b8b8e8e3ef330564d89eb2d272fc41c5de8d872072c09fc0a76ef73f044303b22e4aa156726c223931393036bf731c4711432beea6677f8078dd31365eb2a918a0c40a797e88e0ba5e785eb60393297ef9d6b36db05c1741e97b31b74ee9e5f907c2cd1c2ffdfb7b760795d9d58fb5f341134becf88419ed5b750a7336974dbe0ebcca53994a1b131c55d87b8e082ed2cc8407b9dd62b5e45ca0c4eb7aea47206e5b93e1cbb53caeb8893f674087b983a4a6e66861b2300163bb205259b37b0e37706835ae0b6ea555cf9e062c33d1e6735bfec86c7da7e060b7819335e08f949899be0698e226b0b8941524e0be14585370a4a9f6feccec98ad7f929e06e1ab238ac74bf2baeeb6fdf05e1708a078cb3f5ff1721a0b63dd983b2c6b047c1b1646ba5245330a399cf7bcc503fb66b9656e9590b308e0ffb9382e21347ac5bac59459fe53ebc345bf7c71dd168ef998052ad8e730d548aa1dc154b4e3822b4abcd08fe4cacdcc9a1ae414e3af4c87217de0910ebeb1052b33d772149d502e29adb3f88f0ce202cb2dbe4506bb1b8f113df623885513914aaff3460e9436de74d0cab7fb598c16425a9ef057e1cac8a377a70ad61a96a23db1850eba11bbb43870b2d448a231888404188088a08342c3487d3754935c2f7009b01484742363a22a114a7d5c64821be59d5a881c09abf36fdc0be4e3dff407362873cf5b7599abf3ef7845683875197ac1c05b17b838938e95c056b527afa8ef0cbad86921304cebd5cecf2cb7a9cb3cb32a20530d1b0413020136d9f1a7c7d1c61391d2dc250b4c05ff092bffff4a95d9298940a52ab351b7fcfe0be330ce91b6527e52ec590151be13bcd763daad82bb742627e0c3f0284958af578a6c8c4188db53e7f34f394fc781e8802bd33f5d6c08a8d4106c753af1dee735746282430aef7c646dc5a7b202009c07def44ba82852fd12285f5d6ea67e24abb6a4582cd5cfa7a5cbafc1ab3975270518911db4b81be78fa070a87a84fec141264a75e07a23f4be38d001d104478aeede78438c5f898f127d51366faf19035bbf1a6677866146030651cb62ca70edb0991ca3bfbf67da10e22f1d509ad6e0a61b68777c35e213b5ca3347cafefdf604c19555fdbeaac1049df316bf47d3963baa5e8a2bf334be55349db09dadc108cebc18587f65db387290f17d5fbda9a80029cbebe24359bb284686d5d7dc7e48f1c5d2e7cc81156a86f2652440b0af86d6e2c7b845bee7e02aa4fcd937e39c9ee361c40884fe4edf4f4eadb4a8e55834f0602a8d778c8e3c2399cb310994ef32d2f8ba21feb4e8060b5e05cbd28ae931725089110dfcdd357f3d721c2dfd8a48f27850bf3c40b97ff32dec2da23d4733d80b44c5f426cdb837bdca1e5b73130ba443f177", &(0x7f0000001100)="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"}}, &(0x7f0000000080))

[ 1876.074660] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.075367] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.123243] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.124539] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:43:07 executing program 0:
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=<r0=>0x0)
r1 = getpgrp(0x0)
r2 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r1, r2, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x6, &(0x7f0000000000)=[{0x5, 0x40, 0x3f, 0x2}, {0x5f, 0x1, 0x4, 0x7}, {0x8001, 0x81, 0x7f, 0x20}, {0x6, 0x1, 0x40, 0x5}, {0x8000, 0x40, 0x3e, 0x4}, {0x6, 0x7, 0x3f}]})
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001840)={&(0x7f0000000300), 0x6e, &(0x7f00000016c0)=[{&(0x7f0000000380)=""/201, 0xc9}, {&(0x7f0000000480)=""/226, 0xe2}, {&(0x7f0000000580)=""/169, 0xa9}, {&(0x7f0000000640)}, {&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/22, 0x16}], 0x6, &(0x7f0000001740)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe8}, 0x12000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000001880)={0x0, <r5=>0x0})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
clone3(&(0x7f0000001940)={0x2000000, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0), {0x34}, &(0x7f0000000200)=""/94, 0x5e, &(0x7f0000000280)=""/91, &(0x7f0000001900)=[r2, r4, 0x0, r0, r5], 0x5, {r8}}, 0x58)

[ 1876.144397] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.145677] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.197752] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.198467] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x9, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

01:43:07 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
r6 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r11 = dup2(r10, r9)
ioctl$SG_GET_NUM_WAITING(r11, 0x1276, 0x0)
r12 = openat$incfs(r2, &(0x7f00000004c0)='.pending_reads\x00', 0x800, 0x180)
io_submit(0x0, 0x5, &(0x7f0000000540)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0xff2e, 0xffffffffffffffff, &(0x7f00000000c0)="f7f9cf", 0x3, 0x323ff335, 0x0, 0x2, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x81, r2, &(0x7f0000000140)="14ec3a0cdfd8759b51c75e4dcebcd00307f76f1bf83e24899c1253947535721f1d0daf7fcb42ea5d98320a3c07c2ec2d431da70ab189809267af3b96164abc471b9da1c812a269cebabb39e2e18892b4ccff4bd4f4fc805b01e5f087c0c3953597479ecfbadf0cb371ad397e0f578a41e69c0ef68bfd060a47e03343f082fb87ac6a8e60d596292302bfd1e189930a7a744f9d2a21bbe50792b7d96e18ff9870fe003904c7a56fccd10423cdee38173002fddd81f1907cbdf268655d66c9f5a2db958c6e33704c0cf0069963180a5e923cfb4602a7b0bc3a72ac126a9c95709bced02b16a5b7a60e884f77019b0fd13876ebdb4ed1a910ae", 0xf8, 0x7}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x1, r5, &(0x7f0000000280)="1d8feffd040e8064a476529d39096dc1b40e1972a44f2e4320d281ba9e91cd525488b82d841a82d2899ab5685609cd375b7bc472f867d1f81abe93b50f8ae4ac65d6f36167ae5576c5dc31c740757f93df6e37a23a2fa08f3ea2be2a4523528d1144685c6972f7670f68b7317083c60d3e85ddbd6a51ef491f73ada1403570a99b6a49102a421b31fd2868bbd125723d1c02c40e", 0x94, 0x3, 0x0, 0x6, r6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0x4ac4, r0, &(0x7f0000000380)="6d7c5fefefe09e805c279bcb3a8a532ce39dd04de2c4e2ccf9864baf37f43b3763a5ecf9a60bab46ba61a25c3b2e0bbaa96b07afacd4bac1c03e07c8bb7f10be640aa05fd43b04c75c7ee67bd601d627c195c35c67d64b309ca05827c8491a95cc88fadd1a19e4888b4376fec9d8194afb5d21e765eb916b5d307342bdf86d26a84c5b08c0ffd43693f0bc83c812fcf397b5b6ca7164a20cacf77d1c65ddde6619b6cebfa8e6dbd43da5b9b4cb03b7ab2729c68d4bc695", 0xb7, 0x5, 0x0, 0x1, r8}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x2, r11, &(0x7f0000000480)="0dc92ec547ad90060d3f15c9490760f87071d2ac056b8ef8c7b56b", 0x1b, 0xa94b, 0x0, 0x3, r12}])

01:43:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

01:43:07 executing program 4:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:43:07 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)={0x0, "a930b258e1103f88de2fc91eb873e55e4d3c44521eb120a6cada51ba65ddda5e4dde98b13e5c15f25578d787855c16d58a5101c2f0e6f9c89f050be20d009f4e"}, 0x48, 0xfffffffffffffffe)
r1 = memfd_create(&(0x7f0000000100)='\\\x00', 0x6)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x81}}, './file0\x00'})
keyctl$link(0xf, r0, 0xfffffffffffffffc)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
keyctl$invalidate(0x15, r0)
r4 = dup2(r3, r2)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
close_range(r5, r4, 0x2)
vmsplice(r3, &(0x7f0000000580)=[{&(0x7f0000000180)="654ccaae99c827219a5b76fb39753c7e680ef02d55b3d7b0a2ecefc5a577c82c57da08d56724d38d4ca2d896c0b3f92f2199afd6c6eef51cbba09ee4be63699948ccb7654b50f7fb41da38077ecb5b56e57f8b4012dbb35fa1e4420766c55b7cc05bdb6f96", 0x65}, {&(0x7f0000000200)="12d0ecfc0f9d7bcad42200a5cdbef6192dc4a1b1012f79c52a15436484190060ef4ed6f5fc6b90070e4915b10db4e35d884120e0c69be11f3210a92b1c2c72ad39ee47cc78b3620d60982204cfb272269bba0d638329b53a843aaead586bacfd89127a90f3ad2a26466f8b45a159d2bbbff912b092cf149926ecce6cfce3cef0b0bd5d78908f55750b6822d9949bbfcf0fb3f35df8c1df3834bb7af15ed09d495c1ec1c87962795b49f046ae1c72fce8afadd328b4f80b6020f2936b82af1766322f23d8e5bd43d4d97655256e59ac5d2674604fc5", 0xd5}, {&(0x7f0000000300)="823876f0cbd8b3efb68a22fd73907601d47b69400a87157028a8bd16b211c901c768a661d26ba01486f1449a6a8cfe84532e2dbaee99dbaefe20640572b573ac7e5e8df1128c4795e9b678b4e51281590fb7aa1c0498cb06859f2180c80962eb0fe0ffe7e40a025c0fc77aeb843633381b27dd1b4b14aa14e6fc4ff43cc48728736b2fcad233058ff0bc3e7d74e6034ef9974819551798e5259e1c6ae304c580542ce73d186c984d450057b5b3122544ebe70021d0e5d37cf5e056e2f6ff48f310d30baf75134f36dea20c0bd4798099bf", 0xd1}, {&(0x7f0000000400)="f2a9", 0x2}, {&(0x7f0000000440)="f0e008ce8bb08683f1d844ce3cbb03fdffb982fbb4292953aee5a9c4dda741ffedb28a71e92bfcef020828bf26d296c19e1cef17de8ee97ea3e198154f0d2fb66ebf553d74f5dc4d9e2a03", 0x4b}, {&(0x7f00000004c0)="afcb9ea3f68bef8f3210b796fc15a91b430175b7e91132b8555e5b0394dec2262751d6b625b86ce594462d3553df08a90336889a37174eabca25c61cf66cfc940ce1bea6a04c2360486b9b2012c39769a44152cee1b0e0b3f394f69673820aeabce4d3f85f92b88f5c4b7311fd88c94d3254926e40acedac2e643cfccd3355778834fc9319d6730bd4c96addf4f1fcca208f65e01e509531585594131c4e43920d6b3dacce95580c", 0xa8}], 0x6, 0x3)

[ 1876.351391] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.352081] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.363061] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.363718] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.390406] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.391095] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.409713] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.410983] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:07 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1876.435592] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.437101] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:43:07 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000100)={0x0, 0x1, r2, 0x81})
tgkill(r0, r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x6, &(0x7f0000000000)=[{0x1ff, 0x1, 0x8, 0x4}, {0x9, 0x7, 0x0, 0xb96b}, {0x0, 0x0, 0xb9, 0x10001}, {0x1, 0xe6, 0x3, 0x401}, {0x4, 0x36, 0x1, 0x8}, {0x5, 0x2, 0x4, 0x6}]})

01:43:07 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, 0xffffffffffffffff)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = dup2(r9, r8)
ioctl$SG_GET_NUM_WAITING(r10, 0x1276, 0x0)
openat$incfs(r2, &(0x7f00000004c0)='.pending_reads\x00', 0x800, 0x180)

[ 1876.512234] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.512940] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1876.524510] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.525198] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:08 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xd, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:08 executing program 1:
r0 = memfd_create(&(0x7f0000000000)='\x02\xce\x16Td\xa8\x98\x86\xb1:\x8f\xc5\x88{\xbd\xb4\xc2\xb1\x9b\x84\x97R\xcc\xdb<\x01\xfa\x91\x85\xa0\x81\xa9F0!/\x89\xacX\xbd\xcd\x12R|lTn\xac-\xfd\x8b\n\x1a\xbc\xf0^B6\xb6`[/\x95\x17\xdaYz\xd6\xc7\xbc!\xe5\x89\xc8^\x06np\xc6\xe7\x1d\xe4\xbe\xcaa}\x1c\x12\xf9M\x11\xfeA\xcb\x85\xdb?^\x8f\f\nD\xf2\x1f\x11\xaa\x90>N\xb7\x86\x15\x03=\xcc\xbe\x0f\x0f\x14\x84\xde:;\x0f\xb5\xf1\x86\xf2{yt\xa2\xe9\x01\x00\x00\x00\x8e:^v\xc9\x8d\xd7E\xb4\vw\xbe\\\x11J\xf4\xae\xc6\x88F\x9c\xaflM\x1dSHjH\xd6\x8d\xa6\xbd\x96\xe4SR\xe6\x118L*\x9b\xb2\xffbg\xad\x0fRu\xeb\xe4{GO\xa5M\x80-Y\xc6\x1f%\xb8i|\x86\xa9Zm\x1f\xc6\xd9\x1d#\x8a8q\x1e#c\x8c\x193\xab\xdbE\xe1\xc8d=\xe5\r\xe5#\xa2v\x1eY\xf0\xe3\x1c*h\xdbq\x92\xf8a6\x99\x02\xc9}\x14\xfb\x03\xce\xb34\x95/\x18\xacJs0\x9f\x9b>\xae\a2\x01\xa7\x95\xbd\xf2\x99w\x11G\x1c\xd2\xbc\xf0E\x86\xca\x87\xefv\x8e\xad\xb8\xc7u\xc2z\x85\xc1\xd5R\x82\v\x1b\xea\x8f\xad\xc1\x02\x8a$\xd1T\xce\xa6\xa2m\x18K\xd5-\x03\xa0\xeeF^F\vJLx\xdc\xc8\b\xb7\xa1j2l\x8fQ\xc1\x89\xb8\xbef\xc6\x90\r\xae\xd4S\x8f\x7f\xe2[\x1cs\xab&\xa3\x81B<\xc5]n\xfc\x1a\x19\xdf\xc5\xe0O\x8b3\x84?x\xacP\xfb\xb5z\x87\xc0\xa4\x99\xf5\x8fyP\xd5\x8b\x80D\xe1\x979\x06^\xa1\xe0\x11\xa6\xc5:R4\x9c\xad\xac\xed\xa9?`\x80\xa7\x87\xe4(i\xab\xa6\xdbs\xed\xe8\x00'/444, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x4030582b, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x40000000000003})

01:43:08 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

01:43:08 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = dup2(r2, r2)
pread64(r3, &(0x7f0000000100)=""/139, 0x8b, 0x200)
tgkill(r0, r1, 0x0)

[ 1876.596005] blktrace: Concurrent blktraces are not allowed on sg0
[ 1876.664850] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1876.665555] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:17 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

01:43:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x600, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(r8, r7)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)

01:43:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:43:17 executing program 1:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000340)={[0xffffffffffffffbb]}, 0x8, 0x800)
rseq(0x0, 0x0, 0x0, 0x0)
uname(&(0x7f0000000400))
add_key$user(0x0, &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000300)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2, 0x4, 0xffffffffffffffff, &(0x7f0000000080)="22c2b1850d5d", 0x6, 0x0, 0x0, 0x1}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000200)="22395e1bb5c951c2fff459dae80a51655583ce4c8033af5e31f8577909ba31e8931d808013bbfdaa0e66772aa72f697b7539d8ad9c1c87ad290684cc02693064d77b790524dc4c50e736ef3d7b55c4635e775439361644ecc76010c3", 0x5c, 0x1, 0x0, 0x1}])
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='blkio.bfq.io_service_time\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, &(0x7f0000000380)={@id={0x2, 0x0, @b}})
clone3(&(0x7f0000000100)={0x73805100, 0x0, 0x0, 0x0, {0xffffffff}, 0x0, 0x0, &(0x7f00000000c0)=""/15, 0x0, 0x0, {r1}}, 0x58)
read$hidraw(r1, &(0x7f00000002c0)=""/24, 0x18)
io_setup(0x4, &(0x7f0000000000)=<r2=>0x0)
io_destroy(r2)

01:43:17 executing program 0:
r0 = getpgrp(0x0)
getpid()
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000100), 0x6e, &(0x7f0000000580)=[{&(0x7f0000000080)=""/56, 0x38}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000000240)=""/202, 0xca}, {&(0x7f0000000680)=""/101, 0x65}, {&(0x7f00000003c0)=""/87, 0xffffffffffffff6d}, {&(0x7f0000000440)=""/186, 0xba}, {&(0x7f0000000500)=""/69, 0x45}], 0x7, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}, 0x1)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, 0x0, 0x7, r1, &(0x7f0000000140)={r1, 0xffffffffffffffff, 0xfffffffd})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r4)
r5 = getpgrp(0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x2, 0xffffffffffffffff, 0xfff})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000140)={r4, r6, 0xfffffffd})
r7 = getpgrp(r5)
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000000)=r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r7, 0x0)

01:43:17 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:43:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

[ 1885.801511] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1885.802225] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1885.828220] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1885.828918] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1885.833337] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1885.834046] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1885.838406] blktrace: Concurrent blktraces are not allowed on sg0
01:43:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x900, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:17 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x8, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

[ 1885.975739] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1885.976501] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:27 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

01:43:27 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:43:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xd00, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:27 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:43:27 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:43:27 executing program 0:
r0 = getpgrp(0x0)
getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r0, 0x100000)

01:43:27 executing program 1:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

01:43:27 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

[ 1895.927798] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1895.929413] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1895.938650] blktrace: Concurrent blktraces are not allowed on sg0
[ 1895.960164] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1895.961456] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1895.999813] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1896.001122] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1896.008605] blktrace: Concurrent blktraces are not allowed on sg0
[ 1896.009780] blktrace: Concurrent blktraces are not allowed on sg0
01:43:27 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:43:27 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

01:43:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x2000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:27 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

01:43:27 executing program 1:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

01:43:27 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
r4 = getpgrp(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r4, 0x0)

01:43:27 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})

[ 1896.234962] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1896.236219] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1896.239316] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1896.240589] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1896.247142] blktrace: Concurrent blktraces are not allowed on sg0
[ 1896.280939] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1896.282204] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:27 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

[ 1896.309581] blktrace: Concurrent blktraces are not allowed on sg0
01:43:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfdfd, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1896.339697] blktrace: Concurrent blktraces are not allowed on sg0
01:43:27 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

[ 1896.439866] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1896.441140] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1896.475613] blktrace: Concurrent blktraces are not allowed on sg0
01:43:39 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:43:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x80000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:39 executing program 1:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
tgkill(r0, r1, 0x0)

01:43:39 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})

01:43:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:43:39 executing program 0:
r0 = getpgrp(0x0)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x16, 0x4, @thr={&(0x7f0000000100)="d8f1cf30b3329b39a02754f4a486f363ea1ff15a8ecb8192a060fc9bd80d5efeab1228dd09f390f4ebc2b809b2cecc9aacc3ecfa1a185d635df126968f16e76b766862c96b7e962fe62bca54214c0ab483fe5baed06875134333dd3fcd3966bfd9948a855fe8d7bb5c63c02a459c8cdca34b555dbc5891b23f0474542b39316bf00ed02d781be5025b7902a59e59dd7d58739799d6c108b883cb5a96faaf5f73b86ee658ceabae4aac9704d1320ed94b20d1cab73189170be88614772d5f233b5ec3596502ad5c245350d6b41a60fb981f7b1883ccbfc4ccc9470d8795729ddb18cc701828d8d0410c7c330a7fe7ab756747b088f699770da4909ee1", &(0x7f0000000200)="eb37e52b18e92305d2370f76786693c586e1eead077866e0e16cfb32e4e69542617133552898734d781dcd071013e2c2790a5ff4db8498599f6f704bcc24e4adcb87b045d0e00dc8891174e266eadd70e0acdbbf9d39599c83bc27ceb9a6275314cbd16e53d8b91ffe842a1713b0f2bb4f9feb2ab65abf4c5394"}}, &(0x7f0000000080))
r1 = getpgrp(0x0)
syz_mount_image$iso9660(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='cgroup2\x00', 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, &(0x7f0000000040)=0x5)
setuid(r3)
llistxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000002d40)={{{@in6=@private1, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6}, 0x0, @in6=@dev}}, &(0x7f0000002e40)=0xe8)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r5)
r6 = getpgrp(0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r5, &(0x7f0000000140)={r5, r7, 0xfffffffd})
pipe(&(0x7f0000003000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000003080)={&(0x7f00000002c0)=@proc={0x10, 0x0, 0x25dfdbff, 0x40}, 0xc, &(0x7f0000002fc0)=[{&(0x7f0000001800)=ANY=[@ANYRESHEX=r8, @ANYRES32=0x0, @ANYBLOB="08001a00ac1414aa0c009200080000000000000008002600020000000c0070000300000000000000c07033d847f771874e678bdeee499ff473ce0fd02420122ef5e9ddf5f9cbc1368440a9f629b7d87b231c17418417b4365ea115207437595b3d274f03e51dcaa28b077e8463f6073181d72ec174766817d6127a5ec7129931f3459bdd4589e671c7965233195f42548bcc6fef84040ee0590a404de1800073dc16ce00174bbb2f397d96e727a45e05dc761b3d12938535dfb9fb05f293e8758dae21faa615c26ade1b35e479eade442f4233d48e250c4c18cb42d479c0c78654700a28cfd98003e3b5c56e7a2e8a6f4330bc68f895a80e0eab2277a3dde09f5ea8f46745941ea63878a25cefe8e4c524b8b538a66595ddb0a402dbf389cdb674f42727ed6827ba30936a2e30fed796db8f5c4de9b4c7138c45be47790e05b7271a85ca0021e860316011ec8c7804ef4d0b5d62d4bd5b19da39250cd1cfc36b1db52850ee9c93a573e25fec5e402191ea2188a88136f3f3e3bbdc40dc5aeb83cc8e5922e780fb40a0be48f331144554c91b015679b52d0f26170d366202d5e90663cbda9c71f072fde37b3e9fae15b0875f9a93826aeabfa2de681c9e513691524a0a095ff6748fb084a05ec40eea491c83a2f66b5efe56cd900e5dfa7fa8016878ce68f7d3736ddd2fdde7971e479a8cb28147d370523ab40a77d4b4e445b99a882aca2b1b3b1b7146dfdf8e048daa008ef21d6f1f39e1c7b1052da2122a0230bee021c2bb9efd572617835eb1540d10ee90c9f5c0f720256a306b81738ee5e2350c58b3872fb1fafd16c16d4c134c4eac9d617541c44e19adc128442ef7d2442f6c0186458dd2fa764209acd01e51675d49512d1a3c8634b7158556ac8aeb71b093708818ce286bae25b20d07409d525a5561ef78a77b414a46ba2f26f9e0f69b9e294607922a35899c3eecfdd67bd80ac5f780308da932422e4ebb7ab60b48a878eb4fd3cb4bb024327f24bc79b73b8ede1ff778711c407a0c2a9115b94e6864c469d07190a583f61f7ea44ef45b10b3d5d610caa152f8a99fcc6c9b2d28f497f3ce285471c516cbd9fad578119271b2d3e5f96598d10399eb3de46b7ba8e8122278524ed835e7b944eda330c04bfcd6d4a28ba1d7d3ead011f6c78df488e29f149d160e8b3af49e2bf8f1d5e32cfcec5ddc31348a1367bf6b90f0f7bc577c0a1596f71d4fd3f93b24640624cd557b3997b296a4ebc54b9cd231f29096430a1c96f0b6c3f8ec2a3693090f2363fedf99d880d9b0d2ffbcd5dd56b0e59d1c2daea83f15b68c33c00091bfc935dd21fa7b659f4b2e67c48a477628b6f0ec2487366d99b4db4a67e2584f001d7ee6d3c170f96688e2793e2d0f1091bf454e63d9c4365f55ea6c55d71dbae9847c9886ddc287abe9ccb13163cce95193e9a3be77110a4e8b3edac76a06e001ce4185348bc0728f4018c76ea9920a78a8eb2998f10c455550e4243bb06bb6898e1bfdcdf2f31b816fc7de89b9871809fc8d79ddcf9fcd3f018a0fb402bfb8a8150e28813b63e6e80d684840446c73dfdc378e7eb426b789f76d4ffc59469ffa957da2bce66e2884b631fe1784ff68c7763027fe135c5a596e35a143ec632031e3469ea6319ae68cb0aee31d575aa2147c9e094534ecf18b080961ccfcd2964aa2c431ebc9ca101d80d905a5e18128d6eec0072251667dece4d801623acc5122f9d5425382d1879ab4f0617e1ef7dda5ada86a578454e1827e560be4ed53c11e98ffe3a0be2e2526d7fc66ae9f1dd7ea0f7e5c8e217cebcdb37bf6e7ba000ad64e6a657bc83c098a7f18e70d0a98549b7c854dcddc04abc1630b637792dc112e3422a26526cf2b3ccec20065b5bc95479f47696532b75cecf2006c617fd906bc57f0e98a91a475de09a2dc085da18c244442371d182e320f3d7e2e5f0c1d664958eec9ff30880cb0ee903f52954483846511268bcf08e77bd38f66e5d1c9ed0cf7377c23d4e7ffe6fb45088413fd59e7bfd7cf80454638fc9a3ce8d8bc835393e960ca053292c923bf931cc98c676386425e1caef6de61083bd0adfee005e62efabc15825be8191490d09e4cfe0dfe43b38f184d7018c13e5eacdd8cb4b100ecc910a74af05dd5ba325155c7b9caa97104361b104f666e3bdd643026ae31dda11fed9f560a871b36fc1b40802f3028c1c63a8eecb235d6bd66c980c9655998721a63580f3ed66b33a3dc499186a36dd07483867c2a5d2e80273a17d78270a61ac338ce4727b96345b8a431d02d692b99a6faaf619c9bf3001ce46a470e3ea35a66c976c3dd8abe722804ecd7f116960f348186ba0b76dd5d9412cbf0be4bce119f62de197eeb895642b118206de9d2e99971144bc2a22600700af90a43cca66ef6e8580ae42c2e4565e37d2d442f6230ca77de7f2ce91bc0910f8f76102b61f804e51b021c1e63173939e731fe49cd5c5f21ba28deb541874932138aaf1e3fe18a51364ae856a571ec41ca34e756c67d8bd255db36e2e8ddc3941e529a50144c363521e4db6084ee15e20911a8d707cb61260ff0bd8873000ffe7d7a4d80532296098e10be39d08aaec8479fc142ff451a84bbdd631f58ea8aafc136e548c206d0572344ab4f83067d8de9b6f55a5ab59820c7efc3138716c1af8cebd0383f7a030b76779ea526721904f174df63d91fdfb49753c7894b227d8c7c7fb30345cb31d7e7ad8a36b3ac1f947781ac54936e5909c811d0dad77c56ae1298fa73a62ada83fca6f0388030a34d1257accff1eab12d057039163c6cc49342894baa78bb1e94760f07399a0950d16225bb93afc7092a70ea0b049a36a6a01fb91ced55c594dc458f10dd9c3dcc52b627880906feb859d27c9120533faed51a86b83aeaafde55d8886eff06a870e05daab9fdd757ab52e418c33c68bfbfc2e1ea178e06038876a96ad8d69c03d0ad4b7b884bc306b2af56fe297f782e368c54fb51c12fc855c1ceab3a38da8a3ce0767b008fbac63cec6773ab198b606badb497e8d3fb7aa33877d176df498432012fbb1cf9f906b492f828ad74638c3c9acd56ce78d5f48338c3d52932bdefffc61e022321d3b94eb753110ab9b7dae6366cf9f1536f57a62750f0cb34209021877f4002250d4c2489e49841e3399d140d9421954f2a57b427f0e3fbf7886470b16b33a0e1b9ad3ca44e8285e5962e1c1cc1207189a54f29e843eed5955adce7bfc08ca3ced6ef37a928083136de0c47c55cfaf32e77fce71064b6a9bf66b8222b035eb61a6ab526bcd505718ac097b700566dd61bf6db3cc65501372654a2f8a7f4df34e4eb6524429f87201a5ee636e337fb9ac72c4d57e8f93e55cef1647000c13c52173fba9bab9d058e23159e1e5a3211cb15dcf0fc5ed142d32f08a04275bf5d6fef9e5ca0b2283559e9e05882af7c7d3c6f1b900f43a3b6627efe125583398e99cdbdf0783e1626f4821d479ec0fc034ae528a41072fcfe618ec03468d0ed62544c0807776d171403524be23fae724f78419f10589b01823e675652a1068274846e6f090c4b7bb86c471a05f0ed301f36e5aceb842352d9b83991b5c3939d6e7504f8ff58f1fa14c9ad11b08afa57ba0049f8b073334f1940b26682595a1c09cae419282aed819ecce52c2a4c65b44e092fd588499dccdd3e0c9311691926110186e20006acb16005d15dfb421860f0cc89aa7f4269d2af65bc582a38ec0bbf04a0c6e5a729658a5fa90e9f3a8b8779773cc61d1073340c0595cc867e7c05ec0ea26c8742e076947f3beec763235fd6eb75f227d34a1c010bf6edb006ce2b05c8ff75cd3f6642cc36dbad359ea97f8a50c99613b247ea505fcf0c5928153bfd9305ab649077e5a718ecef2be21d67d5354fc7ab40ee3f8df44dd77de46f698f49724854a351c4aff7a2f492ed6e5d50ec5a63f242d020a5eb293719cb0fef54410a9efba2d8355d926f1378eb308d8fc1e45c9e27a9e2c548ea3e33370a3b5adf0d961d3a58cc90fc794f7b90ee7cb159f43ccd501bd07d96544a9ddcb8995430c3dc122d981f52c2d53baf2d2a3a979ba7d50be94a9a87f55fad45ba03a403bea279e1286a7203e643c8a0ef95e7feee7b9daef50cdf0e4ac56231ca3dea3d94e1f1eddae579a696c62c8387d4eadc07057ea84e98e1adbbd3dee76f580394bbd7da166972d13c1c69dc23943dc9c6ccf54dcdb639a5989b273f1e365fe6d1a1908431bf504c7874756d2bb35a2607126ff5a8c261bab8d6208d32a0a17ad6c5d4ac685e69239877d4a6592d61eca5fe640258974608262df5b44916260871d6d9c8123a3969afae6d9ed696eb53a47c48d892e1dccaecd30c3ebee51894cd7ee1aa59b39b7f1defb83cda0af853ccf08112620020c9fe4819ccd33dc4b0593b8a0dd8d03addae61367f71d88b548bfe43ca98af9c93a62efde35e6434060f384012bda44db653ec147783b2b54dc622fa0c9eb1e207a4c79b77aaacf377f0af977f8cf36d696a3b8aa6c3b8b22ad7969dade6eb62ea058454fff8e67f18cf20ffcf48cf1e66561d803c2237f9749414109ffdcd6793daf5f71bc40441aac77aa9bdd95d0e67ad95a5f35c520d40fbeba7b94735aa7ef6388839f639f4c5e8f0550078664bb7fb7fb27a6a2f8f6484ac275966b5a5743241beda133e02db2a53f395b14ec0b4bdfe231ba956e4346199ec15c5a63fe5ce40265346ee82da7e8699b0aec831a3752cc24bccb233ef11b2ed4b39a325e4d3c0407debd2acece6b95fde634e5b83bc41183a71bf66fbc9254a7a6119dbd8d851396bdc04479fcd772fd0595994f832cdd8dfa8a74e733a47427b6c9db1e3d48d44e108802c04c8561177bef8a61fd5f5e36cf441003d14cc6730d4bcb7497c98d3aaf8858dedda04c0d845819238f6eeceef86ed462c5e8923a4d3067197477f88f23f087bc11484a9f79eec490441d002d7290fcaa3dc92b893fb6d3f0055877b1e99f2183ac483bf91954f3b282744d06ae7b10dd2ad57485994343d26ce65f284b787996b8819eaf11f33aaf342e97b6372af6641f960b3d96752de44e57c4e70931dcb516015f3121dd815358d91a2e00b1c0f0f0d1f281387739cdd0bd495e6e44386da493f13daf03807283c6b0748a419c76136fce05dd581f8a75fed990f5099c7d7d1a3ee5cb59a838a8746f01001c857eb1b1550c2b2362380cc3e0c97c5c03b1cf11bf29c2e081dcfd28dca1feb01d4f8f54a687478dfc1a568efc1b7a9b8f15a789ed93f000e9965aab318458284da18eb1dce5987e2153867f4d22d54bbf456659e9ce14920bdc4845cf70ca5f55541e40f9048a981f3eeccdc47ad831d86ba527311448768d7aa3bdf2e3ed64b1cefd06230a57df83940ad7c44c85166cadcf3ad269129b29a94444ea114bbb0fb2e8099b9e8be86c685e939043f68b4592dbca21e8c3775ba8cda8b70aac2a15ec73d08cf3a48c7570c6d16ca981900e2f7006320a179d32a985dbd4f001673a80b8671987a8f96ad3a6afa461a87a6f4f2b4299191ab9635b5a58208436634ce2970bdb9b403f47f51caad9936ff84a3d672b5c6fe8ae3d999ac8f8ad849f9af4dcede662c3f54ecf090130ab6f198edbab25429cbc2d3637de6812933760fb4bb80c3183a59dbe771b7e41ff54aca23a78f1bee28b21cdb47063fd47ad5a32e2e9da719087ffa049152c93d008dd1fa1e97f6864e404fa0c9e3af483cee845b9a87baa3e5003fb253420f8a27c46438f6f4913a76270f312f2f7b6ccbb5989329651751f9979b4ae213cc41e11d367210b22a9057d4088b0755eb102e4e325736bf74361af976760f1455aa099cdbdc224afd99648983f07e513e81b24a26d38f4e49bcb5d6b7faf9fd4f420687b0df31257162b8ad3a8aef23e55eb8c9ede8ee536803f8e38adb1b32f3f29b6131862e3f64d0d68c182a0de26c8da5530e93b0f59ac94d7126c0e56d41756e1cd0d3f88ce2b85764477d285c975caecfb9fa23c993d8a95066842d56bd4eeaa666c57951011f8079cc3ee7865f6e20cdd5dc666eb8a7f421bda1b63fbddfdda05ed69ca88613d6993b11bf20498f4448119ccad71f1ce8290161caef68006afe2e02f409b8a566f2f4e0ded43860faa4f499a55d075b540cab9e7c2413c3eac2593c48982402a8c087aaeef8c702f89a1a545fce3f0ad8e7d67277571f42723ad9c7f657e49c99944cd4edaaa9d1b9be83d020b1ef429380080000008d81a9ad160433025e82aa46a78edd70d16930b6d77a3632d40bd91dfdec935991075610279ba04e611f69b9362faf8102536d4f6e072972b5cf23f6b9931a2a86f2596644657327654f69e065b3614bdda2dc09f403f431750eba851593053aa4dfcdf4a35c99e6158fb177c3c88a63bd227360b6a6a7d65167593d856bb52016df457e794df638d6cb567b942d00580bb409ba3967ef4e0760ead9f22bc8de04b18c7b1a1a6da5bfe2d27e990bfc227e8102d1523512cecfe599e3cf8c06ea819ad25e1bbf0da807ffc0211dcc300b17644971166b9b38d56e699696faffdc3a3c4af6135db252fefc6b9067d0cfb1adfc10345fe0ad6d731ec484e60190314d182dc0e11410ca2ed2a318fbaa3ed137da964aee20051738dbf6b3c84be66147f54ca6a3e5ce88c168f602ea094b77a3c4ced5dc7cd47b57732a098479adfc19f585def3451ed916f88db77931aa08c730a754d849828c4b20e6041a1999d62e88a8641b2e2dae4da226ac424e", @ANYRES32=r3, @ANYBLOB="01018600b783de5fcade59213f73bf73292825c76d231ba49072f43a6e9e16b5a6a29db53dbff8c4360e9f199ee3249724ad05a6a53505947d968fb35688f720f1523d396413153c42209cbe1da3bc428ce2c5db5a6a255c48ed1281e723a2b2e354c4abae4d48235d958271204572c3f7ae9b675843182323c2552d311b52dd012ea10cf33df3a5617728f483de67833853483710eb2093eb5e8efeb0bb839dfe8c5aea29d2dac1ee1b7c4492cb2dd2917fdb8ae2d8dc02a99b5f97519b5380db0b5c4126509fd6cf460c4002eb9dde34844fd8f87c7d63b5d88b9fe00a77a81ee6b2977c0a65b9d0900f4da691b38a7991da072dd88718a86f75654db7b9fd352463c1796a57e58dafbf3ebff1ca278ef3f41900", @ANYRES32=0x0, @ANYBLOB="827801a5cd815b7bd13c504107e7709da413380e242835c9a7bc14eeaf3bec62000000391200"], 0x261c}, {&(0x7f0000002e80)={0x13c, 0x1d, 0x2, 0x70bd2b, 0x25dfdbfe, "", [@typed={0x4, 0x8e}, @nested={0x128, 0x6, 0x0, 0x1, [@generic="36470e", @generic="04ec1da24a737adc0b62af92b88e", @typed={0x8, 0x4c, 0x0, 0x0, @uid=r4}, @typed={0xc, 0x7, 0x0, 0x0, @u64=0x8}, @typed={0x8, 0x56, 0x0, 0x0, @pid=r0}, @typed={0x8, 0x3c, 0x0, 0x0, @ipv4=@broadcast}, @typed={0x8, 0x69, 0x0, 0x0, @pid=r6}, @generic="f6936168b7fff93530bcda549be5613e72a62372fe169c37a8009901e7c5e1d888a30548b8a4f3f1737257ebcab3ff26507b7d7c117728c8bae7403dcdea3165e9cce6a34a949cc1db146b79689285d5afb361576a50e1ecd2e007450751c09a650d5bf1a1d304b7e6b78b46e872c77c03f564a8628e428d7863b2ed96d3435a81d5fe89fe64186382224c010c9b4d78cadbb2342b29e1ed7f5770b7888512876394b6f8def1c4ebaebc992502b88243a54339525cfcd942d7ca08d809b495957905dc3ef54b7e6b11e2c07616f74685474c15d7ff31f26de813784f793beb50a6bfb5925c31d2"]}]}, 0x13c}], 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000010000000100000005ed18751fdb9e905a07a6f0247da9af3237ff4584e5e5db2854624c75859346e8ef96875630d8a55142937af90069f45c6023842b02bb99b2811fe080a748705a8c95d5c77368718564462702ed73552b2bd9840184fbfdf9d6be8cb4e785933092983e817abe17be69af4281c84389e1243c74b238ff862da09f017fc7106d67f9", @ANYRES32=r9, @ANYRES32=r2], 0x18, 0x14}, 0x841)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:43:39 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:43:39 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

[ 1907.635668] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1907.636367] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1907.641095] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1907.641757] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1907.646871] blktrace: Concurrent blktraces are not allowed on sg0
01:43:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x1000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1907.683596] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1907.684927] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:39 executing program 1:
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="0186e9d6051415c90040"], 0xa)
syz_emit_vhci(&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0xd1)
syz_emit_vhci(&(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x130)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x9f)
syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2)
syz_emit_vhci(&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x7)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x4c4c0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x0, &(0x7f0000000000))
syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="02e52110f4c875250ad179ce0800014487223b0000000000000046ca883f149af2bdb82a1f3d89988932c4ae497edcaacd2a71973956a9487f80881d1cb5cfc5f56d5f8bda86e5d1075873118a131e327c250ca795cda0cf4822927d522693d22c999addeb68e6b407c08c6fb28f41408c"], 0x11)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x6, &(0x7f0000000080)=0x40)
r1 = syz_open_dev$rtc(&(0x7f0000000800), 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x40187013, &(0x7f0000000040)={0x0, 0x0, {0x1, 0x35, 0x0, 0x11, 0x0, 0x5}})
fcntl$setpipe(r1, 0x407, 0x7fff)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000085c0), &(0x7f0000008600)=0xc)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000140)={0x9, 0x8a2, 0x7, 0x1ff, 0x3})
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe)

[ 1907.696584] blktrace: Concurrent blktraces are not allowed on sg0
[ 1907.698509] blktrace: Concurrent blktraces are not allowed on sg0
[ 1907.738491] Bluetooth: hci7: ACL packet for unknown connection handle 200
[ 1907.739695] Bluetooth: hci7: ACL packet for unknown connection handle 200
[ 1907.740878] Bluetooth: hci7: SCO packet for unknown connection handle 201
[ 1907.741095] Bluetooth: hci7: unexpected event for opcode 0x0411
[ 1907.743189] Bluetooth: hci7: ACL packet for unknown connection handle 485
[ 1911.768959] Bluetooth: hci7: Controller not accepting commands anymore: ncmd = 0
[ 1911.770993] Bluetooth: hci7: Injecting HCI hardware error event
[ 1911.773674] Bluetooth: hci7: hardware error 0x00
[ 1913.816024] Bluetooth: hci7: Opcode 0x0c03 failed: -110
01:43:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

01:43:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x2000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:48 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x4d})
tgkill(r0, r1, 0x0)

01:43:48 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:43:48 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:43:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:43:48 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})

01:43:48 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = dup2(0xffffffffffffffff, r7)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

[ 1916.959078] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1916.959750] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x6000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

[ 1917.008462] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1917.009125] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1917.034436] blktrace: Concurrent blktraces are not allowed on sg0
[ 1917.038870] blktrace: Concurrent blktraces are not allowed on sg0
01:43:48 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0xb5, 0x80, 0xd6, 0x4, 0x0, 0x200, 0x8, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xbe, 0x0, @perf_config_ext={0x3, 0x7d3}, 0x40067, 0x3b5, 0x401, 0x2, 0x7, 0x3, 0x8c, 0x0, 0x24, 0x0, 0x7}, r1, 0xc, 0xffffffffffffffff, 0xa)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=<r2=>0x0)
ptrace$setopts(0x4200, r2, 0x8de, 0x100001)

[ 1917.105895] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1917.106622] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:43:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:48 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:43:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:43:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x9000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:43:48 executing program 0:
ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000100))
r0 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x111002, 0xc9)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000000c0)={'wg1\x00', {0x2, 0x0, @dev}})
r1 = getpgrp(0x0)
r2 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0xffff, 0xc0, 0x2, 0x8018}, {0x7, 0x35, 0x1, 0x6}, {0x5, 0x3f, 0x7f, 0x89}]})
tgkill(r1, r2, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000180)={0x6, &(0x7f0000000140)=[{0x0, 0x0, 0x7, 0x7fffffff}, {0x5, 0x4, 0xa5, 0x3ff}, {0x3, 0x2, 0x70, 0x1}, {0x6, 0xab, 0x96, 0x5}, {0x40, 0x5, 0x9, 0x800}, {0xfdb9, 0xf9, 0x5, 0x7}]})

01:43:48 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:43:48 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = dup2(0xffffffffffffffff, r7)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

[ 1917.237124] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1917.237789] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1917.252949] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1917.254318] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1917.279953] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1917.281248] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1917.300924] blktrace: Concurrent blktraces are not allowed on sg0
01:43:48 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1917.461720] blktrace: Concurrent blktraces are not allowed on sg0
01:44:00 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:44:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:44:00 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:00 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = dup2(0xffffffffffffffff, r7)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:44:00 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:44:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xd000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:00 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x2}]})
tgkill(r0, r1, 0x0)

[ 1928.633302] blktrace: Concurrent blktraces are not allowed on sg0
[ 1928.641478] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.642174] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1928.667976] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.668617] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1928.687678] audit: type=1326 audit(1760924640.190:54): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=21645 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
01:44:00 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

[ 1928.729705] blktrace: Concurrent blktraces are not allowed on sg0
01:44:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1928.777666] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.778353] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:00 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:44:00 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:00 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

[ 1928.887961] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.889559] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1928.915787] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.916492] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1928.921398] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1928.922939] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:00 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:44:00 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

[ 1929.020426] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1929.021135] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1929.027849] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1929.028495] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1929.507787] audit: type=1326 audit(1760924641.017:55): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=21645 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
01:44:09 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x20000000, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:44:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

01:44:09 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:44:09 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:09 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:44:09 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/hid_cherry', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x6, 0x8, 0x4, 0x8, 0x0, 0x9, 0x2, 0x18, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0x3, 0x8}, 0x40010, 0x800, 0x7fff, 0x5, 0x0, 0x2, 0x401, 0x0, 0x3ff, 0x0, 0x7}, r3, 0x7, 0xffffffffffffffff, 0x1)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000))
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/hid_microsoft', 0x2687c1, 0x181)
close(r6)
dup(r4)
r7 = getpgrp(0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
kcmp$KCMP_EPOLL_TFD(r7, r7, 0x7, r6, &(0x7f0000000140)={r6, r8, 0xfffffffd})
ptrace$setopts(0x4200, r7, 0x100000003, 0x100000)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r5)

[ 1937.864187] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1937.864886] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1937.868198] blktrace: Concurrent blktraces are not allowed on sg0
[ 1937.888492] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1937.889819] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

01:44:09 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:09 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

[ 1937.972508] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1937.973199] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:44:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xf5ffffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:09 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:44:09 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 1938.104457] blktrace: Concurrent blktraces are not allowed on sg0
[ 1938.127978] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1938.129317] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:18 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:44:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

01:44:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

01:44:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xf6ffffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:18 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:44:18 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:18 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:18 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ll={0x11, 0xf5, 0x0, 0x1, 0x4, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000200)="f367f041c470da6da401aca4a15f7894e27eba90d9e338f4d5f3c06f888f264896603bdb69b8", 0x26}], 0x1, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], 0x3d0}, 0x0, 0x8000000, 0x1}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x9c, 0x5}, 0x3000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index, 0x3f, 0x0, 0x0, 0x0, 0x1}, 0x3f)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x5, 0xfffffffffffffffa, 0x0, 0x7f, 0x0, 0x1}, 0x95)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)=<r4=>0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000001240)=ANY=[@ANYBLOB='\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="050000000000000000007e00000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c00dc2da402000000", @ANYRES16=r9, @ANYBLOB="00022bbd7000fddbdf257200000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x10)
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2/custom0\x00', 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r2, &(0x7f0000000140)={r7, r10})
tgkill(r0, r1, 0x0)

01:44:18 executing program 6:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1947.216450] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1947.217778] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1947.231557] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1947.232881] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1947.239602] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1947.240981] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:18 executing program 0:
getpgrp(0x0)
r0 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
tgkill(r2, r0, 0x3b)

01:44:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfdfdffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:44:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1947.418315] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1947.419688] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1947.462622] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1947.463952] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:30 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:44:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:44:30 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = getgid()
fchown(r2, 0xee01, r4)

01:44:30 executing program 6:
getpgrp(0x0)
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:30 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfeffffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:30 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

01:44:30 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

[ 1958.702161] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1958.703772] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1958.756964] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1958.758540] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1958.797804] blktrace: Concurrent blktraces are not allowed on sg0
01:44:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffdfd, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:30 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:44:30 executing program 0:
pipe(&(0x7f0000000000))
r0 = getpgrp(0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pidfd_open(r0, 0x0)
tgkill(0x0, 0x0, 0x1005)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000180))
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000080)=0x100000000, 0x6b)
close(0xffffffffffffffff)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x2, &(0x7f0000000100)=[{0x1f, 0x1, 0x6, 0x5f67}, {0x9, 0x9, 0x5, 0x6e}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, 0xffffffffffffffff, &(0x7f0000000140)={0xffffffffffffffff, r4, 0xfffffffd})
ptrace$setopts(0x4200, r3, 0x4, 0x100022)
close(r2)
r5 = getpgrp(0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r2, &(0x7f0000000140)={r2, r6, 0xfffffffd})
ptrace$setopts(0x4206, r5, 0x9, 0x14)

01:44:30 executing program 4:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r4=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r4})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:44:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

01:44:30 executing program 6:
getpgrp(0x0)
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:30 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

[ 1959.008493] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1959.009928] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:30 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 1959.115440] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1959.116749] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:30 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

[ 1959.143541] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1959.144894] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1959.147173] blktrace: Concurrent blktraces are not allowed on sg0
01:44:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xffffff0f, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:30 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
pidfd_open(r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

01:44:30 executing program 6:
getpgrp(0x0)
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1959.307886] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1959.309383] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba})

01:44:41 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:44:41 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffff5, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:41 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r3)
r4 = getpgrp(0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000140)={r3, r5, 0xfffffffd})
fcntl$setownex(r2, 0xf, &(0x7f0000000000)={0x2, r4})
r6 = openat2(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={0x60000, 0x0, 0x11}, 0x18)
r7 = syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0), r3)
sendmsg$SEG6_CMD_SET_TUNSRC(r6, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, r7, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x1}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x4}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x0, 0x1, 0x3e925ab9, 0x8001]}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xff}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000080}, 0x10)
tgkill(r0, r1, 0x0)

01:44:41 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

01:44:41 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, 0x0, 0x0)

01:44:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

[ 1970.108567] blktrace: Concurrent blktraces are not allowed on sg0
[ 1970.119209] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.119888] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1970.120183] blktrace: Concurrent blktraces are not allowed on sg0
01:44:41 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, 0x0, 0x0)

01:44:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

01:44:41 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffff6, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1970.264614] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.265961] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1970.287115] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.288403] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1970.333204] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.334462] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba35})

01:44:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:44:41 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x8, &(0x7f0000000000)=[{0x4, 0x0, 0x0, 0x7fff0000}, {0x855f, 0x4d, 0x81, 0x7828}, {0xb38, 0x9, 0x9, 0xffff}, {0x97f, 0x7c, 0x8, 0x800}, {0x7, 0xd4, 0x7, 0x9}, {0x8000, 0x0, 0x4, 0x5}, {0xc19, 0x6, 0x2c, 0x81}, {0x0, 0x1, 0x3, 0x6c28}]})
tgkill(r0, r1, 0x0)

01:44:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xfffffffe, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 1970.535136] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.536394] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1970.644706] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1970.645931] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:53 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, 0x0, 0x0)

01:44:53 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:44:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0xffffffff, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:53 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:44:53 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:44:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:44:53 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000085c0)={0x0, 0x0, <r3=>0x0}, &(0x7f0000008600)=0xc)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000480)={{}, {}, [], {}, [{0x8, 0x0, r3}]}, 0x2c, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(r8, r7)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001d00)={&(0x7f00000018c0), 0x6e, &(0x7f0000001c00)=[{&(0x7f0000001940)=""/194, 0xc2}, {&(0x7f0000001a40)=""/65, 0x41}, {&(0x7f0000001ac0)=""/46, 0x2e}, {&(0x7f0000001b00)=""/142, 0x8e}, {&(0x7f0000001bc0)=""/49, 0x31}], 0x5, &(0x7f0000001c80)=[@cred={{0x1c, 0x1, 0x2, {<r10=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000085c0)={0x0, 0x0, <r11=>0x0}, &(0x7f0000008600)=0xc)
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000480)={{}, {}, [], {}, [{0x8, 0x0, r11}]}, 0x2c, 0x0)
r12 = fork()
getgroups(0x4, &(0x7f0000001d40)=[0xee00, 0x0, 0xee01, <r13=>0x0])
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001e00)=[{{&(0x7f0000000100)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000080)=[{&(0x7f0000000180)="5a4350790ab7a3a9e539943a5d64c4c85df5d0c476a2d198de6d120898b711d283a6b22674a07839ebeb94acae7c1255620333fa20556c220bc9abab9b4f5c16a2", 0x41}, {&(0x7f0000000000)="a92b08745c1c6852ef6da86ab6dda488fd8acdf04061d4112859d90f72f98daaddc7536fa3d41bc291c9b0769554ff9dd09d52cc8d14dad8be231d60451f1291", 0x40}], 0x2, &(0x7f0000000240), 0x0, 0x20000890}}, {{&(0x7f00000002c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000340)="f779722d037394a31fc8ab12cfe682b17ab8c509fe0cd1e6a212caabf602b70485282c12cfeff3235a953a834edd4db3cb9d20d7a4f11ab6a83fa061aa04bd7bdd4c05a2e21b", 0x46}, {&(0x7f00000003c0)="120bbb94fc4d8f8605d7a825903fa106884116795c13b0b088fcfd1233ed8e7a5a3a01b5944242b9dec34b9125ea9884000dcd7117278a04b612c3be2ca01226950b0f7b704f247e1e9096074777a116298506da68a172b1b3284f682730de0ce432da710d4ad6fd30d9f72edd1afe41a3bc8b840aaf47753646e3575ceb425894414c5aa5762d8ed15a3a349a66a5ca44430d77aaf934757dc710c722ab00fba30be69d2ef5", 0xa6}, {&(0x7f0000000480)="20d11937abc744b2114ceebc92fea3d272dd52001cec5f3dd7418bdafdd3cb8b5a9a9d7da3cd727426785581e21e25198ba9ec2aa5e06380688f802763197dde86ebc177658fb7a5e8b1a16dd20ad41bf4d908414725689a8d497b59c8ce5d27c58be37b0578cc9a3ceee64158eb94ee707c6e678927088666e74661aca6ccd10ff318c33075202854d75a76d598863b", 0x90}, {&(0x7f0000000540)="b779e3ae2542a88d2ec4c9fec5ccc19bd2da1f3a7ff4b366917660f47fe7ec9073c4f21e8e6c8513cca3a1f8a39e9f85549a079a94582c612a57ed975583826db551da44288408ef3e4f63b39009016f69e756602da2c82567130ea26fabbc2e5eee6ef5a77d16135319b2be585e2ba2b53a30b65efaac0bc2f49654914f32ec4a8c53a37faf770b09d46c9e05ddee526d3f320400614795e00781909dd0d5460e8d7c", 0xa3}, {&(0x7f0000000600)="e3a70d170df48af0ecf4e1f315f1d2db7f29e49088c3a4c997b948dd7547e151bfda5280bd6165fc7a2b6513836ceac0af96c1a0c048cf54c8fe781f244077ad0cd469f3d3a35af76f88404e2c3ad2325ceafd6631cff8e3dfe20be78a0b5aaca3b5a829a035a613385bbe6e21234e87ecad4baaa1160368afdc69ee8032453a88afb421fc66cc270c7cd014cb7b60a5e6e1277c5329f5a0b1d272e31562d5950dc0a46c11cc5aa015a7574dd6da52f5f52017c9541ac554c72e107c0deb6b3c1e38758c922d3306b203a6ff05", 0xcd}, {&(0x7f0000000700)}, {&(0x7f0000000740)="c5ca66e7a8c653d2934614e8386cba5598f2c62d887d0f0748cef65f0a3381ba5049a3e5e9354a3db098c6464dbbec0b0e9652ead80470adb357c19d4f458ea0428d8abb9bb70fa0e2efb8fdb979ae1ec98919e376e2cf65102227582e3f7b6c51238fd4434f7a485173c0442c4b8993946b4ca36af246a246919866f0038db78718ec2f04e4992e21b1ada361b2844d17e40f56e3a557489a9e2ff40c4d1087b2fdbc29801c7aa3e4d7bcb0980246761908c8dc8f", 0xb5}, {&(0x7f0000000800)="e1ba1b6f3320ca079fb5ebd648967406f81c51e148eb488ece482439e8b87502e8033eb6acf083953df24d60c444cc213bfbfb1cfb8224e4e1c819e786ef9a082fb68cdf1ea3b0afd68111151f9626c8991e940400c0242157be6e04862d1beeda2eda6c149996124330474aaff53361e18df67b68fa72d01e03daace6589e329310c5690f7323ff1ab105fea707635f1ba8fe3eb36398a75201e5e9e73e6c49d0984db3aac43ba2b51d1b6916622d5cb8b4a1d7cf39494fd8ef286dc295bdba7a5574218bc12c911424091c78b000d31fa0d2664a9711a5c57ca3dd1bf8c68d43", 0xe1}, {&(0x7f0000000900)="228b9614d6db88d9ed9dee34bde28081b3e6a090451463b9a4ac818d2651c17c602ec4e73762d71da58ec449062131c97c088abedb430fe346d1d6c23332ef833e32e9afc09d400819cbc45c8df45eea596298ad36729960981f023b425e4a8209a8cdce86f8cc81966359898962fcc768ce58d1ac3c4e38219c663a93147e39ebe1e8a07581b30f", 0x88}], 0x9, &(0x7f0000000b00)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38, 0x400c811}}, {{&(0x7f0000000b40)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001080)=[{&(0x7f0000000bc0)="28a80a259fdb29757b1ba664c8054e611ef19c149df059c93320ea786ddb211702dcfce08d3047b8ac2a081e1fdcbebb53f82d062b99ce65d6f0a35d45ec5576e5c23bbadfde30f9ffbaa1fb5c8f43095c38b4b61d6615715792c60cf29dc9dcafa51918af8aabf81be377d60834a1074e62e1051b11ab99558ce414b6532591a2f438148677845f3d5e128c8a5994595adfff260fbfe29ccc471643c28dff2bd7ac781b86567ac26c93ddc8f76e87a60b5f97a36a44f38e795ed029745edbca559d9b3981666fa87bb73906bd3a513009de389f", 0xd4}, {&(0x7f0000000cc0)="7d2f566c6e3e95035bbca7297617cb43ad6ac2f1b65129221f1de59e72c2cdda77c9cee69178c6e20033e56c0d1140b56bb8a2f27c78e0a8b0d6adc6ab1410c994b005e4c4de711a77c684de23ed65f048d8a5bf6f5ff0a166b01135e60fc421904ec1312e184d2e3589864500165fce97745c8d32ff2b876e598d82e955acb677bca06686596b4e4474c3c45fbba4890d3e2a45fe1620383a6d9a4b", 0x9c}, {&(0x7f0000000d80)='1', 0x1}, {&(0x7f0000000dc0)="fa9ad2bd0d8cd93e28ecc791ad9b83b69a6bd6f97b9897a52d05d79241bbb6808313f3a4021848cd92515e0bff1e2e0c879ff55c440a1102a60645dff908e791fba941e85deac8a9c441d0164fece249818928d90196b40ec0ad04cf48f189858cd44d1b2398fff3b26ded145d35eed85c0f6811ba577a3002d6f7436fdd0a6f837c226a8d0b3063a7e83fe2cf", 0x8d}, {&(0x7f0000000e80)="02748a6a7a5ce322d303a3a39a7ee1c46c2329875c588eed1feae896bde547cd7c38f9558c91a872124c9b048f888411b61cf9fad3b2fb5d1288c43feab7de98458da28e27fc81", 0x47}, {&(0x7f0000000f00)="d4ababdca32148aedebaffb01764b221c47f21329263042e8ba7cc6c3611d7624f146ebc2d29a3b2d938373b17697ad91c77b9dd69c9ac1a76917961850744548695f6848c2613df582c70605bd2600ce3088b4076", 0x55}, {&(0x7f0000000f80)="a237ad5f51fc84b0b8737c56b0f5187a3dbf38f4b02a1b5591f1d714eb5f6804dde2f0ab4ca9afe0537bafa578c65e38dc4d6aa48aec234624882e854f9b12172de1757e77fe1ac12ccfb12a7d041b1f9d683c9203f34c892d7106dc71e8387aeaa910986bc807112d32714875327077d26534d0f97e5c546a134b15361bcb295e7bb86537c68c35ba8413ec3bb43cbbcefdb04939d1e82917deb2fa4b75c708451b19f09799cfd4559eb7b485c42abe54858f5be2ed6f6e968a16637e959dc18f876bd65edd0fc7328e13d2377727e29fa61f93f11434c5c83f5d4761ec9802", 0xe0}], 0x7, &(0x7f0000001180)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [r2, 0xffffffffffffffff, 0xffffffffffffffff, r6]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r2, r2, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r2, r2, 0xffffffffffffffff, r2]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r2]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xffffffffffffffff, r3}}}], 0x100, 0x4040}}, {{&(0x7f0000001280)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000001840)=[{&(0x7f0000001300)="eab7ab8bb7852d3382062245b55ff282db679f42dea418c5607879b281244032be9ee002b67e3bc30627fa569e0b5ebf5c5a239a4db189f0ede696a41829b069bac7bb1ca33b07bd967b6d2971f615648d21d2ab0dc7ea95f64c74619dd7820d82f589123a73376cc5d688dbfb885c28effac3846eac638cec10a71c0fb7d47581bd690cfee4b5028ac379a40895e9987d2ae2f755b1160093d3e31ec93ab6e1c98bfaf50372d01fdf02f7e4f90e8fbcb3e64c9f46ac2273744e130c16d70855165cd2e5", 0xc4}, {&(0x7f0000001400)="9426f9544335ab885a2074ad21a7026c04db8d339323b0648ef61d8e4fee2a346d256e543ac0c4fc336b8cfe2b2ac5118ec6e2afbd737d7b6b336c8573b68fcd204f7e688b6f972914459f371acbafc1e946291770253fcb22da92c10510d0a6d0826f463b2fc805b03182b699d2de9a421aa5eb0c291c34b5ece5dad80cdc4a53395899061f479c75d0966719d2420357e5670daf09a579b918bb2bf6c327e68c2b357bf3f5273375afccf5a034fd433bd081ff704ab2af84f29e297369340da0a3c17ba1d1a8bd8a9847718a74100dd1fdb579562d0b7ca4219518cda7964467feeb8fd4e0f30e506eaade319bef9c", 0xf0}, {&(0x7f0000001500)="c223d9eb494d3bbd903b60b4cabe75adb1ac4ace8a49a510d694259de9e1e13cc7c753e85135267276316d3beaa0108f7a7902def36d328788c98456dcd42ab213fbc7", 0x43}, {&(0x7f0000001580)="4600b1f826428881eae54bcf0f1dfc276caf215c1eac1fb60c53779bde84b2f4bb6092d171775982909828382120d09c1606c9bc952f2fdd5865963af628c447336229597e75a82cb84e5e14e03a5f710fec120daac20ccd0cbff84b46b70c872c7c211e9e0075865e07acc30ffb275421b8fe0a9adcec4704a5e8fc18365af1148fceab1e6fc14a63cbd79e7ca9720bdf16387624f224fb86396694ca81127852546315c67ccea44c6bdeeb4d426f0ac5f3402695922b3ab3734c2cac", 0xbd}, {&(0x7f0000001640)="45f8bc18a4d25b6195991ebeab35133847fe42fee7c441b7ce1dc9c1631e430c070e1cd578da9f74a45be1cf5d3c81cf5f096acce3833b7d73f3ae43b3b8bfbdf92c7d8c3b5575bcd722960c0957c135a492a0f8a549b5fcd0fef261a6177213843e958b510e4045b06196ad4666dfd269688139d4dd7b3510c32b4ce886aec6baa455b8e6ca9c544bad9f56fef35b30", 0x90}, {&(0x7f0000001700)="531f8f036e0e670cd2925ca693de955fc99c78e35c4b754a68e370cc52266497edce60e9bbaf7578d103da1e02e7e3bd0fda40ac6fb64be018c41de78b74cb29a18ab9b2dcf04ed701bab15e5ef0baee44536f465d531f4086dc67f7e30fb96e3657cad4b40b5a1be890c6fc87c6f1ea034e7b1e57702e664254dfd8b05c3b98f016e80d2ce2950a69705aba06", 0x8d}, {&(0x7f00000017c0)="ab33f564e4794abe9a6921a9dc53799891e685ac9d291eb10edbd9e1a36478d6126227eb3a6802c88e37c1082e67d85d187cd71486ff9a4570f852a4fcf334ce01ad6f072baa82ab3c30316017235ad3bb293bef22827828e995989c0545e09aef75be7d8bc58a3c2e2adcf3e04e436eda", 0x71}], 0x7, &(0x7f0000001d80)=[@rights={{0x20, 0x1, 0x1, [r2, r6, r9, r2]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, r11}}}, @cred={{0x1c, 0x1, 0x2, {r12, 0xee00, r13}}}], 0x60, 0x8040}}], 0x4, 0x40)

[ 1982.130013] blktrace: Concurrent blktraces are not allowed on sg0
[ 1982.137472] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.138686] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1982.142640] blktrace: Concurrent blktraces are not allowed on sg0
[ 1982.215519] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.216996] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

01:44:53 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 1982.267067] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.268507] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:53 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:44:53 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:44:53 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

[ 1982.376734] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.377954] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:44:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="08ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:44:53 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 1982.413907] blktrace: Concurrent blktraces are not allowed on sg0
[ 1982.546052] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.547357] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1982.588952] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1982.590389] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:05 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba})

01:45:05 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:05 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
r4 = getpgrp(r2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r4, 0xd)

01:45:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:45:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="0aee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:05 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:45:05 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1994.105916] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.107277] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1994.108751] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.110068] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1994.113051] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.114401] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="15ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:45:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba35})

01:45:05 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
getpid()
clone3(&(0x7f00000002c0)={0x43020480, &(0x7f0000000000), &(0x7f0000000080), &(0x7f0000000100), {0x22}, &(0x7f0000000140)=""/6, 0x6, &(0x7f0000000180)=""/247, &(0x7f0000000280)=[r3, r0, r0], 0x3}, 0x58)
tgkill(r0, r1, 0x2)

01:45:05 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 1994.343516] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.344782] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 1994.354323] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.355608] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:05 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 1994.367933] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 1994.369171] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:05 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:45:05 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:24 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:45:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="28ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:24 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x1}]})
tgkill(r0, r1, 0x0)

01:45:24 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:24 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:45:24 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:24 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:45:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

[ 2012.696630] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2012.698120] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2012.731883] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2012.732557] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2012.748974] audit: type=1326 audit(1760924724.258:56): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=22676 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
[ 2012.788044] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2012.788717] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:24 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:45:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:24 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

01:45:24 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:45:24 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:24 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

[ 2012.976962] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2012.978239] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2013.079131] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2013.080377] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2013.206602] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2013.207934] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2013.543253] audit: type=1326 audit(1760924725.051:57): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=22676 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x0
01:45:36 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x40)

01:45:36 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:36 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:45:36 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:36 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:45:36 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:45:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:45:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2fee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2025.064649] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.065353] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2025.067745] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.068418] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

[ 2025.097924] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.098606] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2025.101495] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.102176] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

[ 2025.181323] blktrace: Concurrent blktraces are not allowed on sg0
[ 2025.184985] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.186367] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2025.211310] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.212007] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2025.228041] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.229432] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:36 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:45:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:45:36 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:36 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
r2 = getpgrp(r0)
syz_open_procfs(r2, &(0x7f0000000000)='status\x00')

01:45:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="35ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:36 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

[ 2025.365505] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.366928] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:36 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2025.404973] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.405690] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2025.432890] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2025.433595] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:45:44 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

01:45:44 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:44 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:45:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:45:44 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000080)={0xffffffffffffffff, r4, 0xfffffffd})
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r5)
r6 = getpgrp(0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x9, 0x0, 0x0, 0x100}]})
getpgid(0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000000180))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r7, 0xc0502100, &(0x7f0000000200)={<r8=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r7, 0x40182103, &(0x7f0000000000)={r8, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r5, &(0x7f0000000140)={r5, r7, 0xfffffffd})
tgkill(r3, r6, 0x31)

01:45:44 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2033.504134] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.504887] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2033.547955] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.549227] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

01:45:45 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:45 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2033.573455] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.574784] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2033.627007] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.627788] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2033.636626] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.637274] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

01:45:45 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

01:45:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2033.759361] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.760055] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2033.814636] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.815919] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2033.833137] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2033.834303] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x2, 0x0, 0x0, 0x0})

01:45:55 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:45:55 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:45:55 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

01:45:55 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r4)
r5 = getpgrp(0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
dup2(0xffffffffffffffff, r3)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000140)={r4, r6, 0xfffffffd})
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000080))
recvmmsg$unix(r1, &(0x7f0000002f40)=[{{&(0x7f0000000180), 0x6e, &(0x7f0000000100)=[{&(0x7f0000000200)=""/219, 0xdb}], 0x1, &(0x7f0000000300)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/99, 0x63}, {&(0x7f0000000440)=""/189, 0xbd}], 0x2, &(0x7f0000000540)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd8}}, {{&(0x7f0000000640), 0x6e, &(0x7f0000001740)=[{&(0x7f00000006c0)=""/126, 0x7e}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x2, &(0x7f0000001780)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000001800), 0x6e, &(0x7f0000002a40)=[{&(0x7f0000001880)=""/27, 0x1b}, {&(0x7f00000018c0)=""/62, 0x3e}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000002900)=""/165, 0xa5}, {&(0x7f00000029c0)=""/66, 0x42}], 0x5}}, {{&(0x7f0000002ac0), 0x6e, &(0x7f0000002c40)=[{&(0x7f0000002b40)=""/55, 0x37}, {&(0x7f0000002b80)=""/164, 0xa4}], 0x2}}, {{&(0x7f0000002c80), 0x6e, &(0x7f0000002f00)=[{&(0x7f0000002d00)=""/42, 0x2a}, {&(0x7f0000002d40)=""/199, 0xc7}, {&(0x7f0000002e40)=""/134, 0x86}], 0x3}}], 0x6, 0x2, 0x0)
r8 = getpgrp(r7)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r8, 0x0)

01:45:55 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:45:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:45:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

[ 2044.219993] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.220719] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2044.223104] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.223765] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:45:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

[ 2044.318496] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.319754] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 2044.337729] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.338462] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2044.396649] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.397934] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

[ 2044.467985] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2044.468707] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:45:55 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:06 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:06 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:06 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

01:46:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x6, 0x0, 0x0, 0x0})

01:46:06 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
ioctl$TIOCSPGRP(0xffffffffffffffff, 0x5410, &(0x7f0000000000)=r3)
tgkill(r0, r1, 0x0)

01:46:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

01:46:06 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:46:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

[ 2055.198242] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.199017] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.202319] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.203021] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.208690] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.209389] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.216624] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.217297] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.220531] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.221226] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:46:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x8, 0x0, 0x0, 0x0})

01:46:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:46:06 executing program 4:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:06 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2055.357257] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.357950] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.359700] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.360439] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:06 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2055.424456] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.425149] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:46:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x9, 0x0, 0x0, 0x0})

[ 2055.474418] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.475092] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.501032] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.501709] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2055.514942] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2055.516267] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:19 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

01:46:19 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:19 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:46:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xd, 0x0, 0x0, 0x0})

01:46:19 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:19 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:46:19 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:46:19 executing program 0:
r0 = getpgrp(0x0)
getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = gettid()
tgkill(r1, r0, 0x2a)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r3)
r4 = getpgrp(0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000140)={r3, r5, 0xfffffffd})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r6)
r7 = getpgrp(0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r7, r7, 0x7, r2, &(0x7f0000000140)={r2, 0xffffffffffffffff, 0xfffffffd})
rt_sigqueueinfo(r7, 0x16, &(0x7f0000000100)={0x18, 0x1f, 0x101})

[ 2068.245667] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.247143] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.254202] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.255555] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.256892] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.258323] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.264803] blktrace: Concurrent blktraces are not allowed on sg0
[ 2068.294732] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.296182] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:19 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:46:19 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x600, 0x0, 0x0, 0x0})

01:46:19 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
fcntl$getownex(r2, 0x10, &(0x7f0000000000)={0x0, <r3=>0x0})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r4)
r5 = getpgrp(0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000140)={r4, r6, 0xfffffffd})
tgkill(r3, r5, 0x1c)

01:46:19 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

01:46:19 executing program 3:
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:46:19 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2068.529915] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.531244] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.551915] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.552998] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.578495] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.579864] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.591873] blktrace: Concurrent blktraces are not allowed on sg0
01:46:20 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:46:20 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x900, 0x0, 0x0, 0x0})

[ 2068.748854] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.749862] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2068.786769] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2068.787726] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:30 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:46:30 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:46:30 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:30 executing program 0:
r0 = getpgrp(0x0)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
clone3(&(0x7f00000002c0)={0x40080200, &(0x7f0000000000), &(0x7f0000000080), &(0x7f0000000100), {0x1f}, &(0x7f0000000140)=""/20, 0x14, &(0x7f0000000400)=""/257, &(0x7f0000000280)=[r1, r0, r0, r0, r0, r0], 0x6, {r4}}, 0x58)
r5 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x60, &(0x7f0000000040)=[{0x6, 0x24, 0xff, 0x7fff0000}, {0xfe00, 0x4, 0x1, 0x8}]})
tgkill(r0, r5, 0x0)
pwrite64(r4, &(0x7f0000000340)="5daf0fb5935f3c2b62e1d4f24cea988feb114e8366190f9ccabcac4a66811fd6ca445bd8ace1b788bee072693a4eb53b96a3655b9be14068016b3cf4b441d93601c1e756e28bc0d69c936df029de11e259fa1a0e229dd88cae400ddc259371ef07e3fbb205e9595988f30f8b5c6f4b0079b2f9dd755c349b3d21c65627152948b2846261ce3e511b36b8972127fd15d9c269194b75338eae7aed7eb216218d798ccb419bec0e9ddf23b066eaa14bd3690dabca24c3155234cdde903849e676", 0xbf, 0x1)
gettid()

01:46:30 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x129100, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:46:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xd00, 0x0, 0x0, 0x0})

01:46:30 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

[ 2078.705538] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.706472] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2078.712279] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.713138] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2078.757091] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.758512] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2078.762566] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.763460] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

[ 2078.793946] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.795599] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2078.804739] blktrace: Concurrent blktraces are not allowed on sg0
01:46:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x2000, 0x0, 0x0, 0x0})

01:46:30 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:30 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:46:30 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 2078.870256] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.871093] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:30 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

01:46:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

[ 2078.927685] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2078.928461] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfdfd, 0x0, 0x0, 0x0})

[ 2079.026907] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2079.027669] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2079.061267] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2079.061960] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2079.074970] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2079.076277] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:42 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:42 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0xfe, 0x0, 0x7ffefffc}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
r4 = getpgrp(r2)
getpgrp(0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r6 = fork()
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x2000)
kcmp$KCMP_EPOLL_TFD(r0, r6, 0x7, r7, &(0x7f0000000100)={r1, r5, 0x5})
tgkill(r0, r4, 0x0)

01:46:42 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:42 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:46:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x80000, 0x0, 0x0, 0x0})

01:46:42 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:46:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

01:46:42 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2090.950925] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2090.951644] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2090.953429] audit: type=1326 audit(1760924802.463:58): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=23498 comm="syz-executor.0" exe="/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3bb10cb19 code=0x7ffe0000
01:46:42 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001d40)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000000000)=[{&(0x7f0000000180)=""/86, 0x56}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x90}}, {{&(0x7f00000002c0), 0x6e, &(0x7f0000000540)=[{&(0x7f0000000080)=""/20, 0x14}, {&(0x7f0000000340)=""/104, 0x68}, {&(0x7f00000003c0)=""/50, 0x32}, {&(0x7f0000000400)=""/79, 0x4f}, {&(0x7f0000000480)=""/143, 0x8f}], 0x5}}, {{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000640)=""/24, 0x18}, {&(0x7f0000000680)=""/141, 0x8d}], 0x2, &(0x7f0000000780)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x48}}, {{&(0x7f0000000800)=@abs, 0x6e, &(0x7f0000001c00)=[{&(0x7f0000000880)=""/84, 0x54}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000001900)=""/200, 0xc8}, {&(0x7f0000001a00)=""/238, 0xee}, {&(0x7f0000001b00)=""/203, 0xcb}], 0x5, &(0x7f0000001c80)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}], 0x4, 0x40000000, &(0x7f0000001e40)={0x0, 0x3938700})
getpriority(0x0, r2)
tgkill(r0, r1, 0x0)

01:46:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

01:46:42 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2091.019557] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.020988] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2091.037141] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.037883] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:42 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2091.110562] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.112032] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:42 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:42 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r3, 0x0)
r4 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x5, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x8, 0x0, 0x1, 0x1}, {0x200, 0x5, 0xb7}, {0x4, 0x9, 0x2, 0x4}, {0x61, 0x10, 0x1f, 0x7fff}]})
tgkill(r0, r4, 0x0)

01:46:42 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

[ 2091.143946] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.145316] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x1000000, 0x0, 0x0, 0x0})

01:46:42 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 2091.234730] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.235464] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2091.255952] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2091.257430] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:46:54 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:46:54 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:46:54 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba})

01:46:54 executing program 0:
r0 = getpgrp(0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100))
pidfd_open(r0, 0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x2, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x6, 0x1f, 0x3, 0xffff}]})
tgkill(r0, r1, 0x0)

01:46:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x2000000, 0x0, 0x0, 0x0})

01:46:54 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:46:54 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2102.590276] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2102.591215] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2102.634342] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2102.635706] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:54 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2102.653941] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2102.655228] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x6000000, 0x0, 0x0, 0x0})

01:46:54 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:46:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:46:54 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 2102.739336] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:46:54 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2102.740050] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2102.775857] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2102.776538] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:46:54 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba35})

[ 2102.890593] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2102.891929] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:04 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:47:04 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:04 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:47:04 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:04 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:47:04 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:04 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = fcntl$getown(0xffffffffffffffff, 0x9)
kcmp(r0, r2, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x84000)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000080)={0x0, 0x3, r5, 0x2, 0x80000})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000140)=ANY=[@ANYBLOB="090000000100000018000000", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(r8, r7)
r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x4c0000, 0x0)
ioctl$PTP_PIN_GETFUNC2(r10, 0xc0603d0f, &(0x7f0000000300)={'\x00', 0x2, 0x3, 0x5})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x5, 0x8, 0x6d, 0x0, 0x5, 0x80000, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000180), 0x1}, 0x1000, 0xc11, 0x7f, 0x2, 0xce5, 0x3a, 0x6, 0x0, 0xfff, 0x0, 0xffff}, r0, 0x9, 0xffffffffffffffff, 0x1)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
ioctl$TIOCGPKT(r9, 0x80045438, &(0x7f0000000100))
tgkill(r0, r1, 0x0)

01:47:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x9000000, 0x0, 0x0, 0x0})

[ 2113.499668] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.500961] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.520552] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.521934] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.538934] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.540320] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.548925] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.550109] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.563843] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.564937] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

01:47:05 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:05 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:47:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xd000000, 0x0, 0x0, 0x0})

01:47:05 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:05 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:47:05 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r1)
r2 = getpgrp(0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r1, &(0x7f0000000140)={r1, r3, 0xfffffffd})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r4)
r5 = getpgrp(0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000140)={r4, r6, 0xfffffffd})
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r7)
getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r8 = getpgrp(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r8, 0x0)

[ 2113.774310] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.775708] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.818461] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.819918] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2113.822006] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2113.823172] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:47:05 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

[ 2114.035952] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2114.037373] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2114.048770] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2114.050081] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:16 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:47:16 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfffffff, 0x0, 0x0, 0x0})

01:47:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:47:16 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:16 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:47:16 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x7, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:47:16 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2125.013456] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.014367] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2125.019896] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.020754] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2125.044593] blktrace: Concurrent blktraces are not allowed on sg0
[ 2125.071969] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.073303] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:16 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:47:16 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2125.105443] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.106264] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:16 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:16 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x40, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
write$cgroup_pid(r4, &(0x7f0000000000)=r1, 0x12)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:47:16 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:47:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x20000000, 0x0, 0x0, 0x0})

01:47:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

[ 2125.259016] blktrace: Concurrent blktraces are not allowed on sg0
[ 2125.261621] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.262865] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2125.292115] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.293434] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2125.310471] blktrace: Concurrent blktraces are not allowed on sg0
[ 2125.314478] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.315937] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2125.334948] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.336419] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:16 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:16 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:16 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2125.413121] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2125.414458] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:29 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

01:47:29 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:29 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xf5ffffff, 0x0, 0x0, 0x0})

01:47:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:47:29 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(r0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r7=>r4, {0x8}}, './file0\x00'})
ioctl$TIOCGSID(r7, 0x5429, &(0x7f0000000100)=<r8=>0x0)
kcmp(r3, r8, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x9, 0x7f, 0x0, 0x2d, 0x0, 0x9, 0x204, 0xd, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000000), 0xc}, 0x40000, 0x6, 0x1d41, 0x1, 0x900000000, 0x0, 0x52, 0x0, 0x5}, r1, 0xa, 0xffffffffffffffff, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x0, &(0x7f0000000040)})
tgkill(0x0, r0, 0x0)

01:47:29 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

[ 2138.080629] blktrace: Concurrent blktraces are not allowed on sg0
[ 2138.113350] blktrace: Concurrent blktraces are not allowed on sg0
01:47:29 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:47:29 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2138.127863] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.129104] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.135751] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.137039] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:29 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2138.150305] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.151015] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.152857] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.154078] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.198613] blktrace: Concurrent blktraces are not allowed on sg0
01:47:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:47:29 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:29 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:47:29 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:29 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:47:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:47:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xf6ffffff, 0x0, 0x0, 0x0})

[ 2138.329441] blktrace: Concurrent blktraces are not allowed on sg0
[ 2138.369943] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.371220] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.384267] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.385478] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.387730] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.388988] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.400372] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.401597] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2138.406207] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2138.407434] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfdfdffff, 0x0, 0x0, 0x0})

01:47:41 executing program 0:
r0 = getpgrp(0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000180))
getpgrp(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r1=>0x0)
tgkill(r0, r1, 0x0)

01:47:41 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:47:41 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:41 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:47:41 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:47:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

[ 2149.813567] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.814614] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2149.820899] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.821915] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2149.838397] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.839418] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2149.862734] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.864080] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:41 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
wait4(r3, &(0x7f0000000000), 0x4000000b, &(0x7f0000000100))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:47:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba})

01:47:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfeffffff, 0x0, 0x0, 0x0})

[ 2149.972315] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.973227] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2149.982614] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2149.983443] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

[ 2150.061329] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2150.062590] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2150.073674] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2150.074902] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:52 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:47:52 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:47:52 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:47:52 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0xfeb5}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'lo\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000005180)={0x2c, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}]}, 0x2c}}, 0x0)
ioctl$sock_SIOCDELRT(r2, 0x890c, &(0x7f0000000100)={0x0, @nl=@unspec, @can={0x1d, r6}, @l2tp={0x2, 0x0, @multicast2, 0x4}, 0x4, 0x0, 0x0, 0x0, 0xff, &(0x7f0000000080)='macvlan1\x00', 0x100000001, 0xa92963e, 0x1ff})

01:47:52 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xba35})

01:47:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfffffdfd, 0x0, 0x0, 0x0})

01:47:52 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2161.020731] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.021972] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:52 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

[ 2161.043913] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.045107] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2161.049927] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.051135] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2161.063706] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.064887] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:47:52 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:47:52 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:47:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:47:52 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:47:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xffffff0f, 0x0, 0x0, 0x0})

[ 2161.315873] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.316878] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2161.317850] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.319050] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2161.328195] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2161.329565] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:02 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfffffff5, 0x0, 0x0, 0x0})

01:48:02 executing program 1:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:02 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:48:02 executing program 0:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0))
tgkill(r0, r1, 0x0)

01:48:02 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:02 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

01:48:02 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

[ 2170.908161] blktrace: Concurrent blktraces are not allowed on sg0
01:48:02 executing program 0:
getpgrp(0x0)
getpgrp(0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = openat2(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x900, 0x58}, 0x18)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x22c441, 0x20)
close(r2)
r3 = getpgrp(0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, r2, &(0x7f0000000140)={r2, r4, 0xfffffffd})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r5=>r1, {0x7}}, './file0\x00'})
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x4e, 0x1f, 0x1, 0x7f, 0x0, 0x7d14, 0x420, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7fffffff, 0x0, @perf_config_ext={0x1, 0x20}, 0x400, 0xf8, 0xdc6, 0x2, 0x9, 0x0, 0x5, 0x0, 0x4614, 0x0, 0x63ca}, r3, 0xffffffffffffffff, r5, 0x9)
close_range(r0, 0xffffffffffffffff, 0x2)
io_uring_setup(0x4d5a, &(0x7f0000000100)={0x0, 0xb26e, 0x1, 0x3, 0x17d})
syz_emit_vhci(&(0x7f0000000640)=ANY=[@ANYRES16=0x0], 0x9)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c805000000000100"], 0x9)
syz_emit_vhci(&(0x7f00000003c0)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000200)=@HCI_VENDOR_PKT, 0x2)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040f06000000043ac4debc30e49132f03f69f05ead03007af7d6bdedbbb6a7e80406b69b4e386f5e43bdaf3fe440b9ce9b7c909181e07903b80a0dfc69cc27ed84e71757c4e1c736c0b5dfb02e254c56840b0d4e95dde1e08ff844bc42d62e1086222b5f1ecd155e0b7fe7ef4a7158d452d92fcde3ba282e82b42def15ef7c1af96806f837f8068e08dccbd8edbd4aa3efa300"/157], 0x7)

01:48:02 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:02 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

[ 2170.976278] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2170.977629] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2170.990355] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2170.991031] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2170.996867] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2170.997531] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2171.041190] blktrace: Concurrent blktraces are not allowed on sg0
01:48:02 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:48:02 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

[ 2171.158907] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2171.159650] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2171.205866] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2171.206559] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:11 executing program 3:
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:48:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfffffff6, 0x0, 0x0, 0x0})

01:48:11 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:48:11 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:11 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r3, 0x0)
r4 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x5, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x8, 0x0, 0x1, 0x1}, {0x200, 0x5, 0xb7}, {0x4, 0x9, 0x2, 0x4}, {0x61, 0x10, 0x1f, 0x7fff}]})
tgkill(r0, r4, 0x0)

01:48:11 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

01:48:11 executing program 1:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:11 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2180.366258] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.367531] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.369658] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.370918] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.374932] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.376185] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.390159] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.391404] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:11 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

01:48:11 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xfffffffe, 0x0, 0x0, 0x0})

01:48:12 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

01:48:12 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r3, 0x0)
r4 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x5, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x8, 0x0, 0x1, 0x1}, {0x200, 0x5, 0xb7}, {0x4, 0x9, 0x2, 0x4}, {0x61, 0x10, 0x1f, 0x7fff}]})
tgkill(r0, r4, 0x0)

01:48:12 executing program 1:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2180.589203] blktrace: Concurrent blktraces are not allowed on sg0
[ 2180.606237] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.607443] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.630067] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.631254] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:12 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2180.657044] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.658256] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:12 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:12 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:12 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

01:48:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0xffffffff, 0x0, 0x0, 0x0})

01:48:12 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

[ 2180.815897] blktrace: Concurrent blktraces are not allowed on sg0
[ 2180.825601] blktrace: Concurrent blktraces are not allowed on sg0
[ 2180.832498] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.833714] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.851122] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.852335] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.925666] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.926418] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2180.936878] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2180.937544] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

01:48:21 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:21 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r3, 0x0)
r4 = getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x5, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x8, 0x0, 0x1, 0x1}, {0x200, 0x5, 0xb7}, {0x4, 0x9, 0x2, 0x4}, {0x61, 0x10, 0x1f, 0x7fff}]})
tgkill(r0, r4, 0x0)

01:48:21 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:21 executing program 1:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:21 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:48:21 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2190.532083] blktrace: Concurrent blktraces are not allowed on sg0
[ 2190.576783] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.578068] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2190.593930] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.595226] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:22 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2190.610928] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.612181] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2190.615445] blktrace: Concurrent blktraces are not allowed on sg0
[ 2190.617383] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.618665] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:22 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r2, 0x0)
getpgrp(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x5, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}, {0x8, 0x0, 0x1, 0x1}, {0x200, 0x5, 0xb7}, {0x4, 0x9, 0x2, 0x4}, {0x61, 0x10, 0x1f, 0x7fff}]})

01:48:22 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:22 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x2, 0x0, 0x0})

[ 2190.736179] blktrace: Concurrent blktraces are not allowed on sg0
01:48:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:48:22 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:22 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000040))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2190.854195] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.855459] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2190.872495] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.873740] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2190.926400] blktrace: Concurrent blktraces are not allowed on sg0
[ 2190.942935] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.944230] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2190.964089] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2190.965321] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:34 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r2, 0x0)
getpgrp(0x0)

01:48:34 executing program 6:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:34 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:34 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:48:34 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35ba0000})

01:48:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x6, 0x0, 0x0})

01:48:34 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:48:34 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r3)
r4 = getpgrp(0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000140)={r3, r5, 0xfffffffd})
recvmmsg$unix(r2, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)=""/71, 0x47}, {&(0x7f0000000440)=""/49, 0x31}], 0x2}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000004c0)=""/95, 0x5f}, {&(0x7f0000000540)=""/222, 0xde}], 0x2, &(0x7f0000000680)=[@cred={{0x1c, 0x1, 0x2, {<r6=>0x0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000700)=@abs, 0x6e, &(0x7f0000000900)=[{&(0x7f0000000780)=""/160, 0xa0}, {&(0x7f0000000840)=""/184, 0xb8}], 0x2, &(0x7f0000000940)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f00000009c0), 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000a40)=""/229, 0xe5}], 0x1, &(0x7f0000000b80)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000000c00), 0x6e, &(0x7f0000000ec0)=[{&(0x7f0000000c80)=""/231, 0xe7}, {&(0x7f0000000d80)=""/183, 0xb7}, {&(0x7f0000000e40)=""/76, 0x4c}], 0x3, &(0x7f0000008980)=ANY=[@ANYBLOB="2c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="297aa0043b9bd5d86092dbf9518aadb4afedf2dca32bb56bcaf46dfce5c7691021c1d23fea289a65f76419525cbfbd6ed1b93792f8307d631bf636d9f29734f003430ce593"], 0x50}}, {{0x0, 0x0, &(0x7f0000001100)=[{&(0x7f0000000f80)=""/43, 0x2b}, {&(0x7f0000000fc0)=""/33, 0x21}, {&(0x7f0000001000)=""/134, 0x86}, {&(0x7f00000010c0)=""/3, 0x3}], 0x4}}, {{&(0x7f0000001140)=@abs, 0x6e, &(0x7f0000002980)=[{&(0x7f00000011c0)=""/177, 0xb1}, {&(0x7f0000001280)=""/168, 0xa8}, {&(0x7f0000001340)=""/97, 0x61}, {&(0x7f00000013c0)=""/215, 0xd7}, {&(0x7f00000014c0)=""/90, 0x5a}, {&(0x7f0000001540)=""/15, 0xf}, {&(0x7f00000028c0)=""/181, 0xb5}], 0x7, &(0x7f0000002a00)=[@cred={{0x1c}}], 0x20}}], 0x7, 0x40000042, &(0x7f0000002c00)={0x0, 0x3938700})
r7 = syz_mount_image$msdos(&(0x7f00000085c0), &(0x7f0000008600)='./file0\x00', 0x4, 0x2, &(0x7f0000008740)=[{&(0x7f0000008640)="ddebd40c6b6d96022d563d89f35291cf2e474344a7e6536874fdd98108b8ab637591", 0x22, 0xffffffff}, {&(0x7f0000008680)="f0f7659fc35a647591144dfd47dbfd3a343af27139c3bcd1a098dcd0407575ac71ff87122f964a0e7fc3c91b3e32f5a5ea12a72fd38a31cd4b476e9b5ec628165fa1966e7569b4a6e0b02cbc513fec063577dc2ce467cd78ee3daf159b6c7cce9557926ed79af9ba2cf04d9e355cc355cce5d55847f0dd0bbdc8db0f5d71865c866b5070185311225498ae671d180284964ca7ef205fc074023d79023108328932cebf76c8341569558b4c4800ddedc84066612f22d68c7ef57fbdf2", 0xbc, 0x7}], 0x1000, &(0x7f0000008780)={[{@nodots}, {@dots}, {@nodots}, {@fat=@check_normal}, {@nodots}], [{@pcr={'pcr', 0x3d, 0x2d}}]})
r8 = accept4$unix(r2, &(0x7f0000008800)=@abs, &(0x7f0000008880)=0x6e, 0x80000)
r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r9)
r10 = getpgrp(0x0)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r11, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r10, r10, 0x7, r9, &(0x7f0000000140)={r9, r11, 0xfffffffd})
sendmsg$netlink(r2, &(0x7f0000008940)={&(0x7f0000000040)=@kern={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000008540)=[{&(0x7f0000001600)={0x12a0, 0x3c, 0x1, 0x70bd26, 0x25dfdbfb, "", [@nested={0xdf, 0x4d, 0x0, 0x1, [@generic="0ae3f88fd5c4bef4c922729650d0a0acdada99d53a4dfe9b6d1ef4d327e6ff9bbd7ab87eeb02f309f5948af82d6f38dc90fe26680fd5c54831676958c0a6d302f674f4891d087c654c045247b906843185b5554d7a53c37f32fc70f30272", @generic="03469b1a5109cfd1a664b5c10454e299cb76a13c0e42cac7601eb6b08cefd093c61c5c3826d98723c97e7b2e1bc1b519ca2e6845e6ea86a626c03378d9bb3808aca47e2abd5a9c121662aa2e1001f941b44fc4013a1928dc882d2abaf5ffed8ada5408dee34c52831ccd6a1b32e1bd76e6f1a1be8d0d953ae4cd3e6570"]}, @nested={0x11af, 0x39, 0x0, 0x1, [@generic="6d9ac3cf9cba7511628e56eff855be5974fd90d527c115740c53b0c0db794d8d5ae9f1b3a9f44f72e46a5aa4b0caca890d63fcf15de84b65cf7f674b0e0ec1ae700fc77cd8c80a8efeeec26ec420d9292150ecc03dae2d612641f522cfc91a834a114eb57a6358f0d5cf43552b9bc42b99c7830f75087ae75d75f33738d1b07e09a4f2f163ca5aeaf39e5c02b183e2509401cfbcf98eccd272602d940366db20f7ccd3753117c853794005a146a4ee729cdb63c7fa5e299ba9c40ebe55db288d15539ef42ce5568c0069a9d81dce82fae6fd8356b036a172507fa05f8ad74fe42ce119ab924bebf749834d32c33047f67b2d11", @typed={0x8, 0x40, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x2a, 0x0, 0x0, @u32=0x4}, @typed={0xa5, 0x2b, 0x0, 0x0, @binary="1a4dd44a1b9afb0eccc9d74d5aca11bc91f92470b9414b1971cb347a60446305873e30eb356c0189f6d1feb0d7f5801f1f5573562677642449fd4f13400f3a4bae1fddd8beb16847749541ce5015cd34920af5a3588e94e154f54745502816e59ef1b6ec7c6b65d774a11ce4b0557982cb93e80b5fb8af1ac61eab6f4ecc4df3e933e7fadff21a2c2500f6240863921ba3c797edc40caf23ee40c7fe4f1f44b8c6"}, @generic="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"]}]}, 0x12a0}, {&(0x7f0000000080)={0x17c, 0x37, 0x0, 0x70bd2d, 0x25dfdbfc, "", [@generic="ac750777b750550bd26a369559a79df14d753499d1254cdf9896c1c88cbcaf76b0c4ffa5521c5dd4638259b4464afbea", @nested={0x45, 0x80, 0x0, 0x1, [@generic="96a1688ee8b369855e63c6c60b0b5939db49ef91aeb1236ac40f24048898b510509d01e8e3eea3095361e6c6420a5efca9469aab2094d6380f24c6167d447cda35"]}, @nested={0x71, 0x29, 0x0, 0x1, [@typed={0x8, 0x2d, 0x0, 0x0, @u32=0x527}, @generic="23a7befcf4e8200b9949b01ccc385ca3bd28f11ff1ab6def8b7adf692910cf339560a260622043f057fa6fb88cf1dd420e800fcc095e2093dadc95882ca6291c9155d57547b52958852a60caafa68c6685a7bdbc1cb8a73939d074672c27fc07dc01bd8d7f"]}, @typed={0x8, 0x62, 0x0, 0x0, @u32=0x8}, @generic, @typed={0x9, 0x57, 0x0, 0x0, @str='-{)@\x00'}, @generic="53eb3f1b5c93daf347c541d2976c6237f2ed11aa97f14c367e0964bd3eb7c492367dd1fb877c3ba2e68a72993c90973bed70196c2ff94f145954263bc1be89f62fc0b84a3c793a23d9134f90d0ea2c6b0076b52c29e5a3e7e640eef78eb840e8de423a08caa4346658"]}, 0x17c}, {&(0x7f0000000300)={0x13c, 0x2d, 0x400, 0x70bd2c, 0x25dfdbfe, "", [@typed={0xa6, 0x17, 0x0, 0x0, @binary="9dcf8bab540c1cc863750b8b7c2e675b91979937c983027791c71644b0a19e1a14ea8a5984217e24d4882ac982548f5dd4b6f7db4aaf2cdb100940add327936a76ac7f240cc1fce841d082d8e26ee5ed298453cac77538ef0d058cf59c15fc902d12596089eb56cc84a99725759b8934be5bbd93b2a3e1e71b974929a71dd26a5d5692f8ff6534b15deeb35924cf41570df8c3edce5f708fa9ee59ecde1bc349fdb0"}, @nested={0xc, 0x19, 0x0, 0x1, [@typed={0x8, 0x46, 0x0, 0x0, @ipv4=@broadcast}]}, @generic="a82d3072dec5716f55ac96171ebb11980d6c44a3b4bd9ac49a22b98c2999785657d01db969a0b7b62c540001ae3f6bad5be2f58f8109e768b323e22350e90eb476eb4716802fefa57751216e549ed5eac3d1ea94a36361f3bce2204bfd292d8a96af82465da00bad418f8ac307c2c2d3e67f42a52c186e85"]}, 0x13c}, {&(0x7f0000002c40)={0x2320, 0x30, 0x300, 0x70bd25, 0x25dfdbfc, "", [@generic="e2b1890fcac0b1f36d38505c29e70913cca28db99cc5328ee60387a016b244dbf6e47347cc02010edc7b18da4b5add1bb78fff7650a424af6b1be3119ec059c50451f377a0ba97fbec3fd660e3fece4af2751275", @generic="2aac4ccf317c0453036bfa6e137f7ea0efc165253f3618d2efd5ae6b2a7c951736fe57bf6d6f03094a28a86142be40af0f08481717d102e26c812cfb18f3b514a5d51b3ce243b6f6fa38f2a39d6e6d30a88f7f07b00831514093dd9773dc2c60ca24328e893bd7e66a5b5aa6ee074e973a42bcd103bfe2235ca449d1fe1c2816a25d93e340f41e767b184f5da43ce24cc67a9b751419844a8a6d95bd82ad3fcd18ed38fdc7a2a02900b2cbdc591b1045f8f956c561ee611815c9ee3c063e311c428b076f1adf2b5f9adbe2e73d5a3be04678705c0cc294d7196421adf69b5b5fd5c5d35662897735ee24f83dd29ee40f9b5ceb3f", @nested={0x2110, 0x1, 0x0, 0x1, [@generic="a7c08040099dd61beedc507f6bae8a3e2c223d05ac581cd3d0d7ac031fe4af08b25f4a7ff9d7e31800ed861ed713474f00758d9150bfd2a4b46639db028612ff98bd08cc36e57642918b5adb19d933b7fe1156ab8f48b995e7ca4d97bb4ebdfe8a23a184e67c6103d09558d21a122f7f51c442cc60befb199d58dab1073d052509a9d3502916", @typed={0x8, 0x59, 0x0, 0x0, @uid}, @generic="57d7b601a5458c2f63459fa3db20f3de7c26947da57589cb30042af60e9c7ce492dc945fd60c02ef5366d006df67bdb449e52703b788537eb5d47075f0791912825e957a47860b628d2ec9db2fc696114a66160d5c6573ba68399bd331e5baed8f890dcf983641e30f03", @generic="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", @typed={0x8, 0x70, 0x0, 0x0, @pid=r4}, @generic="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", @typed={0xc, 0x20, 0x0, 0x0, @u64=0x4}]}, @typed={0x8, 0x2b, 0x0, 0x0, @pid=r6}, @generic="40bc0f28cd5462e2155df36e6f4d6edfa5b0466114974d877d9cb4d36aa92137b83ec015ebb02a8664345fb25c052ac62d3d27592a13484d334b970670cf416c3aeee4363c2e0269bb79f71e47bed9ef2f9d3c166697341af408150b02f00483c50944f69a078a7a90f575619ac3ccb1d204dc1ee883f9a2a4f0a4c13c4006be05d912eeb76b4a31e76f1ac1de06bedcf3a2febae5a672dfac2fcac9b4a0350f0949025a904abd2131db9052f246"]}, 0x2320}, {&(0x7f0000004f80)={0x1698, 0x2d, 0x100, 0x70bd2a, 0x25dfdbff, "", [@generic="7fc69d57c837935271af86fd4bf9", @nested={0x1104, 0xe, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @u32=0x1}, @generic="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", @generic="9073d67122e628083ebb43a4d8bc21450e24d024d122b4c4ffe10e48ba7221e92997dad1724e2c0fc652f941b2bc713b6d22b826cdb93fd09280172d05b19e278f9d5a00daa7f8cf4812aef0336b6f9e392334509ba97a9d6e96a0955118f5f62a2c8fce0dc90d24bcd8817b59c983501250d1888bf680092f089b2b5e1909a69f38b13a6dd49e707db67960f3e91963ad69dd4c7dc80a12510e65a5a95638b23b5240c01fb09dff131487a95c0432a661f069bea39f89d4c8febea243d8ec7675d5", @generic="342854f0aff09f4af08f68b657f1ad2f69fa87a9b899883b53b68c5b9d03140b70956eb0f17d3002608e796f1967c9bc7803ca1bd517"]}, @generic="dc7d4fe880745d7ab158e3a6c2c33b13a8a8c20544642576fb796f1ddeecdd8dd370a62d59705d6ffdf85e39bbaa578148225058a57330727393389ff4b26040bf59728ea43b6bdccb1f1c8d9f0088758ee518308acd3c7dbe19836c2d79a7e6d6e2410135d84caa52fa5ee4bde00aa5fb73786f6623ddec0f7174870051669ae8c7f487f32ad244751c7cbd34613f840429f9ac63deec1d13d5b351508018104be02c2793d4907391b7a42090224c6aa73cbc883e3b33212dc7221a486c577b91537a7e0e65c74d26a4", @typed={0x93, 0x87, 0x0, 0x0, @binary="5d550324579676299d0e23ea2cf31bfd6dc1b68e7a422f89146bef473005ae3c062c80895694bc6982aa05acfc2c4be84e420a305289792625f20e8bc439016a60f1d02caf9233af66e659223ae2145a5fa1ffc1b353214259e23cc5ecae0ccf7285c92e79afe3aaff91e1a3d5753958157a618ddb654779600dd5523cfbac57bbddbe7ea045706191fb4cff08ff58"}, @typed={0x5, 0x64, 0x0, 0x0, @str='\x00'}, @generic="d006a70aa27fcce5c69c75e930e5502330f93cbf89530f95aec7c3bc525ca3212d5c5bf1dcdf0503a1a43226fecb03081fc0efba3b459c7bd5a1304227132608bc15874d79fa754a859563f70ba3a921eb9e997ea84c1ade70ff1794d0e951029a6ab8b2c5793b78527d9b0c14ce631741b0dad707ec7068f5fd2e4e7c265b38d17ae1c566abaf67e0a3ad4f1bb329e55ac662cb7213c4509cb620b04d00ac732a75ef9cfb09d2c1f862565a0fe270769f229b65", @nested={0x23a, 0x95, 0x0, 0x1, [@generic="09ae9ef7e650d1", @generic="7f6402fa30da3e5c1918f8ab5f4d780473ea915f58e37d42433c8a243bbd7009d26d35a2246208ac743aa30e054c637d0807713180d02c6c005b3c5c270cd41268d52617d36f7b5e2952c5d0248a3acce85cc41eef18e35a7c7ee2c69d39e9329f87727930c02ee4d17fc2f8358d6ee1b0e5184e70369867d5901d", @typed={0xa1, 0x67, 0x0, 0x0, @binary="202c48ec73e5b0a87350067c1730213c0434676f41a1d19bd15c0aec650e37fba93db7ee73e7db316ab820e982b468c2c8ea22e71897fbca8ea2e033cb7cc8f3c74c6ca36737a51bd6cf7de3d5432ec71edd5cc58e425e017d6dd6f1810d863d02b89d0687b2ec88bfab5e333906edc9c0aa89a904f96da14a5cbaa6b5ca2c901e198d3f16567f984aa700ee598fed43c0061ec4f5d7aa36c6467e1be4"}, @typed={0x4, 0x4c}, @generic, @generic="19a7c31f08c92484a213864e3c21280b33dc479832039fc7b7197aef0af69a465ee34f4649e9a0843691436752d11fc14990a50f5e0513bea122bfe01d7fcbf78e207bd871480a8ffea920338b8ad1eb53ab861b942fd542116ea7c2ab15d239812691a43556a0482a5dfb8d877605ef69955724b9ad0d926a93ed861dbdf2158c0d57698424f2a175587c0330be63ee392b0cb5b5063c879250414047e1ededcd0913e2722604c0e2c846c72a76a3fe4276964d5727f41b773ef0c832d87ed9308895d479c24b7bb6c7a0c896f911f9f79befc78316df86450d5584c53da6f7f92de8665b29d4b4554f0e321ae314918e", @generic="472b8e0e5ec2a59e3f248948c09283e0dc1310", @typed={0x8, 0x45, 0x0, 0x0, @ipv4=@multicast1}]}, @typed={0xb3, 0x7e, 0x0, 0x0, @binary="5cab9b2d337905133292e8b655e8bf625639d8a942830179d480f2770cdd3153631345002a75c74d96f9832c84175b0c298249a2c8dbbb6ba97b70e8b2ddbf66145b42ab0345bd7097fa877c395c734e0eee685446b82c84da7a704d143ed99b35df9732decec04f646d4815f280846dbd3d81d3942839dc2d0d21b75c149c2706a1d728120325b27c8a2dbac79d954159195e8a5725fde6fdad376c18759a14d2a039bc362b17217ca8b7a5c0590a"}, @nested={0x6b, 0x90, 0x0, 0x1, [@typed={0xc, 0x6b, 0x0, 0x0, @u64}, @generic="13d0fc6649306d037b742d6bf8a82673930b38bc05c838154c617a43a5c6d776d07f3ee1141619fd4e189effd66ecd1c2319116682105bf3bcac6b3fbd4be3721e99565c99f4bc20bdc619", @typed={0xd, 0x8c, 0x0, 0x0, @str='/dev/sg#\x00'}]}]}, 0x1698}, {&(0x7f0000006640)={0x648, 0x15, 0x100, 0x70bd26, 0x25dfdbff, "", [@generic="e6ba06fe465ee172ba5f385fa2f022c29740c39558d808d97c4a6feb2c4b8f0f5ecf7fab93e4aaf17ff0802f82ec130d81a0ff462e858b6293d15910b998f2a2afbf23439ad1ac6a2371cc75289ffff448c427e68f70ffd28183f97484243c5c810af1388c4e474ea1bf05a79965aaba4d676203c5d9b19dec0cba81e281129cca38d03bf3d637d624f8bc4da1a4141a435426b26f8c4df14fcbc23b58e19ba768e929598fe4f9e4b0533c2aac1c249f07fe6554b8a36091cfc4eee034f9e768c5b713e0947c6196a0011231307c6343dd9f07ffb1856ea91270cbf934346b6f1ccb049af000e3caf1d63343ee4bd18995db8a", @typed={0xe8, 0x5d, 0x0, 0x0, @binary="ec526afa86c3129ab6bda0bfef73901e429516b19a74925b78cd92ca4758450a82fa97fc6d021a8cdaf61ef0dda3576d40b23293f1930f1fb8cc8779b3af712b698eca818fd14e661dfe7bd581a24acf6115d37e8545d4f2289309c6fda4d95c6897d3164ee3b6b7fe065e73e4d2397b361d3fd1d0be2d150ff02472efaf582a3ebb249f85996edad6c93ac7a399dd2639f13e72121be83bfbd674467a5c6bb2af84ae4011f9e473ef36c87072c4fa10417cbcca934c1b25fcd1d0e5e152dd7eaaa2401a12b41a14cf4e76b18fe38bf42c4bf5e3dbe30e0911ad5bd4585df1ae56ae9c6d"}, @typed={0x4, 0x3a}, @generic="17535177e9b4234759151a6bf64033bafea516fe39b80621080664d17d961f05576228df7c3b56023ddceb724b8e30b3183ee7e32125e6462808a36c5129942f1a7fa545371e78a07442ff39401cc992a6eeacebd015cd0fea88bafccdfef9ba555fb860731a95308a67131add67b88e5160f3abb71f67709c2b2c2bee57bc33016ef18abe74e2984ab6c8d2b67ab0ac068f1fa75f03bddacb3d01532411fb01ac30d9f35f953b8de65d34d943bf860cacc74c9ce57a50b476d66a3db010cc66f6e8aa4d95af217b1a33b54819da9bbce401796a4b8c0d2ae50ca606f4c45106218ad05833a280552dfc87e9ba13b93202cdfafd786d7734", @typed={0xc, 0x16, 0x0, 0x0, @u64=0x7}, @nested={0x25c, 0x46, 0x0, 0x1, [@generic="930d542a46be69d20f56d2037fed854bf72120cbd91ce6f84ddf2dc0076a93585ce07e34a244dc9df8b9374324e4371c188c9503112da2936c34f486064dc2949109a80e7cfe242952fdcc550aa452f624d5fab962558340bfe098af77f61ea7d40338d8c5a019ad8e70c2305ce32b3a04fc29e96b3328992e09e4972a205ecf2e16e1224a7d49ba66c59968798d09d256d02f276895bf90257378190027065a95aa659da2badcb91f18b1aea0b68e4941bed6b84b49ecb92167c8cb6c555c8e20ce2a58995a04860646f0aaac0973681aa3b64ce50aac2b9f639e28d05b5273f211c8ba476c6f9904a34eb40976137559e41f26b9b1bd7206de0ac37905", @typed={0x8, 0x6e, 0x0, 0x0, @fd}, @generic="50708cfecd86d97c862a6ba251f59f152e82164c17cf00c2db5ce83e6d623fecb64e8fd5e23fb12580eb2b5ccac11b29f9736b982b14ef414da62d0bd957c5ab48b551012396691a6a85b8cbfb20a28bae2bf703c0c62701d7dee6f0129fd6", @typed={0x8, 0x1c, 0x0, 0x0, @u32=0x3}, @generic="4352f20e9f79c3c239fe16cf6696eea7b755654ab689d62f5840572579d9e823e01ab022918d8e1e2dcd78b98879752bdaef05b6d4b921d7a6030f93624568a92f73e47775db11dd9bca395edf1b030267750e612cba00b6f2f63accb0d36cd87d818ae75dd13c9a644a59aa4fb1082d9eaf177b45b3598ab0fb7c5513f8efa99896fd24ef6e82d34501ac2353ece5dc8eb8faf6cb10f07a7da39c358784eb5e9b710b738cce40d8318c2c224ed3b7afd843499eb8bbd5958fea0b685fb8592d839252434bacbc542e68438db734b57e3633c5ada895daeb90795f565558b99ce097c08c6979703c8937b9"]}, @generic="d11fa6bf74e0049eed5aa5f8327b615fa8ba924f0b1f740348c0a660e0d9f5ee548094a20caeb7493f4cd863f89f96b5335489740987a38562e5a91b9eafe2dd43703363506d27cea4c397615c7cad049f8f1f63632ae30703e63ace664292939aa60c11a3e5f575c5ea982e0e32e525b2f2571c93809a1f6b83439f06a39bffe51649788344b4b465715f04e55b6ecb4069f33564cb0b3950b10a9e54b7c562e3dfeadd10d64b9eb25609b274ba0f342712ff7cd256e0252aac109da128a1aa817cb79f2c31de0101e87e9540e480691fafb838bc5e234998611eddb99c79543c4410b6528ac618a76d9ac37247534577b6bcc2875699"]}, 0x648}, {&(0x7f0000006cc0)={0x1848, 0x2a, 0x100, 0x70bd28, 0x25dfdbfc, "", [@nested={0x112c, 0x5e, 0x0, 0x1, [@typed={0x1004, 0x91, 0x0, 0x0, @binary="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"}, @generic="b347bdff0d0c62cc3bc511e809a100bf105d54c4db1e56f0", @generic="931521da2a567295eff37cbf962137d01e8d33dddcca8bcb3cd67c7103d415b2c4289d2d5d8573370672b2bca9cd3d83aab72ea1bfba2f7ef9de9fbc62acfcd4f9682cc327b4ffad39b45bc16e649dde5bef3b805e3f4a8bdbc076e6dfcbfbf857605147f5cc420738ccd152f648bd9350c0faf27f08", @generic="0b8809d955f5ba2c5406692fdd1204b5b25e61075e82629a9929f1e3a3ecb0292ac008d494c044d5d41ef305083e127226050dc133aaafef", @typed={0x8, 0x12, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="f0efbd10a5ab140edf5ad728f7d7434a54d4cbc1552a8f4c074d9c21ce367de51aab1b7b0e00e7164643cd9f9d87c5cc8e21bd7da8f868ac6b172c71fdc23755e4", @generic="fbc0f4587294027b5d741cce630dc32dcce2a36c67"]}, @nested={0x4, 0x1c}, @generic="b30f58a45df813f1c26fffa3fac71f28a992e6b06cde741d0d9981997400b10867f781e762bb17dfe500fa9dc62c64a0d502e3e2d2f7616e8974915832acfb0d9f3e55052a3f249ac812f6445740e0b41cb350593f4207f261423e9a610dd3a19b34f45ea54114421b8837c0b087a148360ce751ec0240d183ef8c89e70c5a784a28c61bf0bc9828a924177395151ac000c2cc2aa903b70b3669578f00f0ed72d185fe3f63da0da70c1f87f5c0c171f44d81f03ca7b540a57b47996f660e08097ec24e07fc740cd6", @generic="a0f3f21b328811619f0fbf5980c05d3ffd921f12936395559d8c808d123b642e40c276047ba3d8f1348a78c873221032cde6f03b4ccc09ab020f17730e89e7b8c151beebdd7bfbcc57b2695be02c8880e7ac9bc8de3906e7aa8c8a34656dae1015ae95dadb5eda8d71dade7bae001dd0182bfa0940", @generic="1fb94f6964429f275681d0da599212755c78ddfbcd680696a1fb86e1a06f4c314938dffe6a9f5d1638038ed1fb559be12d12000282a7b86692afeb07ff888098c21263e91f9d7ee8e3e939544f458d2fffe8c20e8f7067b76734900799c8847e0435320d91602c2384e306591d4fe489b3f1c13b15068f82228ee9b254973a311a6767be143a3c8b6e4485020d12bdd4c12e0281cd09a7056522bbf8f5cb7f074067afaea64eabecf5ab70b97c65103c95de7c6f4b22e00f434ea1d0dba49bb0357ede4d9334773ac11aed3ed8", @typed={0x9b, 0x7d, 0x0, 0x0, @binary="e7a0d89801b87c19829223418b195dd580e99418b3f44f36c81f0070e3437a696e046e212adc57bc4fa93f3eeb3edbccff74859278b2556681730bc17903655d1a0b8846998e68eab7d2558bcebd3d67a990681aaf8a3356fd9e27acfd0c0420f78a38b59638f3d78243e92ae0e883a1562dbe148cdc016b626aba74d172942ed71a90e446f38e9a935a3e0c5cd7a167ab0fa71445234c"}, @nested={0x1fb, 0x4a, 0x0, 0x1, [@generic="43422ff40604579d3e4f32a93032e8617f8c1e1da8384104c6c5737b9efd4d35d8d9c57dc72a2bf1211a9b7a3c7bf9b798a9b1441fbae50fa63aece598e28a0263509f6feb237c6baad6d004c0961e5c95", @generic="bf84c8dbcee7a1d022f7bc9abda23c9df400bfe5ff38db93f3ca8acaddb892517dc14b769dd31308a6ac178aa4d3549f8d821ea7a9aa307b729dceb549f0d92208b10e4f0d9ae664c0df44bc0068908a7ecf02eb1e1f6bca742315893542693cb06cfb45bd4e562c31f8e8911a0089295c116abb1436a6201391f41380485d2264d8e00554ba8127c855f73dce8b1bb924d81412bb8459eb6b3dd90603f60c3839dac4dd3808a69589b4b4707e62169d45a8c4cde9d8ca1362b2fd9132715530f789ab1004d1ff1eb02fba69f9419e8106c7d5c0ecaaafaccfee42db65d8c1878c569b92a9884f2c81d5", @generic="9cdfe451b01b11332a1df33eb5316e8c164261aa012a0bedcc64b9b7142e588eaf3fbea9d3be05663d2b26d22f097a6e7ed13f1fc2", @generic, @typed={0x4, 0x73}, @generic="c1231128c639b1d10fd9a5ffb7ecf8d24b4d4269667f6fb86f9ce68689ceb4d3a3994ddffc2951ba4d0e599ad3bff703cc2da02e0bc766abc7c9c9d0c6a7e26ee025481e5a3900f90c9f8cd32919a4c84bf0e8b0622a879c0ea3b3ad05c93f149f7baa5ebf4296dd33283e722cc70d9f84f9a6c4bdd54c9807f7172b87c971c04514e7"]}, @typed={0x14, 0x96, 0x0, 0x0, @ipv6=@loopback}, @nested={0x250, 0x92, 0x0, 0x1, [@generic="328f13ab8d3026cc64fc1253795c0497073a93f3c37cdd6ec017cee363f8023db8306371a5225c5cf4e31d09c083bbd8b8bcd49b340775b1bb0b4865029e695b207594ec9f75ade4adcce7f7ead785cad9b8c9242065e25334fc98694bb32b8286e0961385a0", @generic="613ffce432b6314f7717654b25747866a99df58c444fd587f0b9686aaad741bd6a2e3d3877b56e2b9fd7cb60330b8239c646bb0df359d2af52ebcd56f77de79e18e36c124067a3d9af881af7b0ecf1afd98e7c2b47357d5a94166619a532a13c4c904e1df2c147eb2e00f3e437aac750cd15ac35135c91989181c39a82dc062712fc04", @generic="79def5a3b92da5020bf645e6d3050dc01b6c9524119eae271c7198bf57f1e56107e8595868a2cbffb1e81e20eb678b1788f0f2a5d1cdc97fd47bf950a9a741300be44eba182615a0bf729129c5cd8e6d93a3cc1f8799c63ae606eb02d11112a33a5a3e26c4a7096fef832ed2afccaac32f798688b866fbcbbb14bb89ee04dd5db4d1b3626c5704d6ca9367b3ef18f665e14e42b6cd97bab18bbac7549e1f98321c3a41a8cd97c23986817c1302fc3edef299517107d5daa2895379e608c574debe2c46ded46360c99b07df18077d09a3f9225d71ac", @generic="26a380e868212aff21762de064a8820cb110f4bc2d35a37c90fcbed19940c434d4180b1b2306cfe71c899b5daf63c88ea36dd2d9c6ced3037d5c4cd6c8024b003b0cf051865fd937dac034e014f94f1151a40ea6620b9eea2a47fdf9d312018a4247c551482ad9b8df9690779f7891865520130047c0", @typed={0x8, 0x8, 0x0, 0x0, @u32=0x10000}, @typed={0x8, 0x60, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x8, 0x24, 0x0, 0x0, @pid=0xffffffffffffffff}]}]}, 0x1848}], 0x7, &(0x7f00000088c0)=[@rights={{0x28, 0x1, 0x1, [r0, r7, r0, r8, r0, r2]}}, @cred={{0x1c, 0x1, 0x2, {r10, 0xffffffffffffffff, 0xee00}}}], 0x48, 0x800}, 0x4000081)

[ 2203.230154] blktrace: Concurrent blktraces are not allowed on sg0
[ 2203.232260] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.233030] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.258127] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.258884] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.269132] blktrace: Concurrent blktraces are not allowed on sg0
01:48:34 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

[ 2203.296281] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.297552] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:34 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

[ 2203.318088] loop7: detected capacity change from 0 to 264192
01:48:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x8, 0x0, 0x0})

01:48:34 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, r0, 0x0)

01:48:34 executing program 6:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2203.387456] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.388694] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.390027] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.390775] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.410407] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.411141] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.420469] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2203.421153] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2203.422284] loop7: detected capacity change from 0 to 264192
01:48:34 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r2, 0x0)

01:48:34 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2203.500199] blktrace: Concurrent blktraces are not allowed on sg0
01:48:47 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
perf_event_open(&(0x7f0000000100)={0xa6ba2a3be97cfa6d, 0x80, 0x40, 0x0, 0x8, 0x0, 0x0, 0x8, 0x1410, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x100, 0x15, 0x1, 0x6, 0x41, 0xfffffff7, 0x1, 0x0, 0x18d, 0x0, 0xcd}, 0xffffffffffffffff, 0xe, r2, 0x0)

01:48:47 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:47 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:48:47 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000005c0)={0x0, 0xfffffffffffffffb, 0xef, 0x8, @scatter={0x5, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/33, 0x21}, {&(0x7f0000000080)=""/200, 0xc8}, {&(0x7f0000000180)=""/9, 0x9}, {&(0x7f00000001c0)=""/131, 0x83}, {&(0x7f0000000640)=""/143, 0x8f}]}, &(0x7f0000000440)="7c7a394a3d3419d1c8c3a47770aae528f15ebde52a447feea162db3bb6a6c2d3c2fd6219d6c619866e17dcc1282e0237b398ca6dc01ac5ac9ab5ec8c4498ccaf0a09ce04609790d61cb042ccf819fb4eaff89fb3c13e9b6ad5d11c7a40128ee542145dc2671b9a9e3e61b684ec760f2ab4bc1fb859d18e1a5217607e7bb43b4345f96669a1ead6f46010d0b09d9c59609fc7141dcaeea1a27c785248d971732e764e226024d911fff387135a1d7afae1966aa1748e8a6df7c9d6ec1392c7964538d85a4a13402a5a4ee7530034eaefa5ea25c5f1de011de37dab94da643e3cf4f250181f55d24ceae1566c0e2fc580", &(0x7f0000000540)=""/8, 0xfffffffd, 0x7, 0x2, &(0x7f0000000580)})
dup2(r1, r0)

01:48:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:48:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x9, 0x0, 0x0})

01:48:47 executing program 6:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:47 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, r0, 0x0)

[ 2215.659309] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2215.660736] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2215.664934] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2215.666153] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:47 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x227d, &(0x7f0000000040))
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:48:47 executing program 4:
r0 = getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, r0, 0x0)

01:48:47 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:47 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:48:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xd, 0x0, 0x0})

01:48:47 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

[ 2215.862386] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2215.863445] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2215.942903] blktrace: Concurrent blktraces are not allowed on sg0
[ 2215.991443] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2215.993006] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

01:48:56 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:56 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:48:56 executing program 4:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, 0x0, 0x0)

01:48:56 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:48:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x600, 0x0, 0x0})

01:48:56 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:56 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2224.957556] blktrace: Concurrent blktraces are not allowed on sg0
[ 2224.978197] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:48:56 executing program 4:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, 0x0, 0x0)

[ 2224.979764] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:56 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

[ 2225.005385] blktrace: Concurrent blktraces are not allowed on sg0
[ 2225.014187] blktrace: Concurrent blktraces are not allowed on sg0
[ 2225.024717] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2225.025399] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2225.030050] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2225.031377] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:48:56 executing program 6:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:48:56 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r2 = dup2(r1, r0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/kexec_crash_size', 0x22500, 0x1f5)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:48:56 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:48:56 executing program 3:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:48:56 executing program 4:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
tgkill(0x0, 0x0, 0x0)

01:48:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

01:48:56 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:48:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x900, 0x0, 0x0})

[ 2225.206329] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2225.207056] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2225.216741] blktrace: Concurrent blktraces are not allowed on sg0
[ 2225.224621] blktrace: Concurrent blktraces are not allowed on sg0
[ 2225.254059] blktrace: Concurrent blktraces are not allowed on sg0
01:48:56 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

[ 2225.273300] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2225.274599] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2225.301326] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2225.302618] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:09 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:49:09 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xd00, 0x0, 0x0})

01:49:09 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:49:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
ioctl$TIOCGPKT(r3, 0x80045438, &(0x7f0000000040))
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:09 executing program 4:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:09 executing program 3:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

[ 2237.609084] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2237.610351] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:09 executing program 3:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x2000, 0x0, 0x0})

[ 2237.705715] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2237.706949] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:09 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:09 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2237.800735] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2237.801970] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2237.852140] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2237.853376] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:49:20 executing program 3:
getpgrp(0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:20 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:49:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

01:49:20 executing program 4:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfdfd, 0x0, 0x0})

01:49:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:20 executing program 7:
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x1, 0x8001, 0xffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
connect$unix(r0, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x400, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r4, 0x4c80, r5)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r5)

[ 2248.966878] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2248.967584] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

[ 2249.007580] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.008863] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 4:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

[ 2249.043367] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.044627] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2249.077886] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.078603] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2249.089367] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.090131] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x80000, 0x0, 0x0})

01:49:20 executing program 0:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:49:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x14b403, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r0, {0x800}}, './file0\x00'})
getsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x30400, 0x0)

01:49:20 executing program 7:
ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000140)={'veth1_to_bond\x00', {0x2, 0x0, @empty}})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffe, 0xa, 0x0, @buffer={0x0, 0xfd, &(0x7f0000000040)=""/253}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2249.203244] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.203922] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2249.205861] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.206459] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 0:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:49:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x1000000, 0x0, 0x0})

01:49:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000013c0)={0x53, 0xfffffffffffffffe, 0x5d, 0x6, @scatter={0x3, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/158, 0x9e}, {&(0x7f0000000100)=""/87, 0x57}, {&(0x7f0000000180)=""/190, 0xbe}]}, &(0x7f0000000300)="c73a275acbbbb52a9efbf599aedf888a255fc397477e03ff7200b696271648b65e382b4d914ac5ccef7b982e53c41b698b776825c1eaa840312b4837d6c580d4ca7b8f3da6e8c4fdf07bbd1f0b19a8c928d22370e7c439f92870b048c4", &(0x7f0000000380)=""/4096, 0x0, 0x10007, 0x1, &(0x7f0000001380)})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000001480)=0x400)
dup2(r4, r3)
pipe(&(0x7f0000001440)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
dup3(r4, r5, 0x80000)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
pipe2$9p(&(0x7f00000014c0)={<r9=>0xffffffffffffffff}, 0x80800)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f0000001500)={0xc0000000})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2249.314306] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.315681] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2249.340219] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.340937] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2249.346871] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.347520] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:20 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:49:20 executing program 0:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:49:20 executing program 4:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x2000000, 0x0, 0x0})

[ 2249.418835] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.419542] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2249.449387] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.450082] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2249.487876] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2249.488551] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:31 executing program 6:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

01:49:31 executing program 4:
getpgrp(0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:31 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:49:31 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="f5000000ff010000810000001182d59784ed8bf8c83d20e8e855a21c7a6deacb2ad41fe6cf7c738f0a6aa15cf31000528454d96159cd7e14b16904ac287d489152fa6ef223f5beee049b493af9fb586cd27861463e1e28d7e9b2e966ba6164e7853dacb4795a8ef7e5915dfe28d55be2ded2dea0d821255b3b91050b949b8bcc434ae17d59bd66015cd17f7ea7ae29782089b06938037681cea975e78053ffb9588fa2d4b61ce86c367b62ba40ca1f4db65871f556e9e00e116b805fce86e561c86259307b30e173353a4d490cb0b65e96618b54f96a18e3c2ce18636ebfaf36cf378478dd1a92798d8526fc8622e62e1eb77b052f9c34c159ffffb3aa5e5d7f1e3d68d00b5cee91ac6dd5426d504c6324c9ebf5ceff80099ebb7495a4d5255a69e00726f8a0cba6b5a9e9eb68df5544e4aae214ae75504e2d4ed1fe02b844fe773aed86a9e668bd0722021433425acb6ac3f84a0bae8a9b4d4ac3db1b1ca3e671b0c4efc81607a70a99950efbc1ad4e80c3364855b0ea64c40d519b50be398e777f9ff1ab58414493e7d3b3b7f39f24956e07280be2041985fd000000621b2f53d2e3b43d7d1e3b5f8d387c7045b38ce398cd337ed8a87666"])
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/msr', 0x44040, 0x38)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000580)={0x53, 0xfffffffffffffffc, 0x1a, 0x8, @scatter={0x1, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/233, 0xe9}]}, &(0x7f00000001c0)="645f1ae1ac24ade2eb5b799244248602c1fd715dac1cda7ab0eb", &(0x7f00000004c0)=""/184, 0x3ff, 0x37, 0x3, &(0x7f0000000200)})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:31 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f0000000040)={0x2, 0x0, 0x6, 0x4, 0xa9, &(0x7f0000000300)="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"})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:31 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:31 executing program 3:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:31 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x6000000, 0x0, 0x0})

[ 2260.514575] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.515301] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:32 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

01:49:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x9000000, 0x0, 0x0})

[ 2260.566918] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2260.576375] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.577681] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2260.582930] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.584250] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2260.594767] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.596067] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2260.617204] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:49:32 executing program 4:
getpgrp(0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

[ 2260.634230] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.634908] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2260.637713] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.638993] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2260.641086] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2260.641764] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:32 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:32 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

[ 2270.007272] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2270.008011] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:41 executing program 3:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:41 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:41 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

01:49:41 executing program 4:
getpgrp(0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xd000000, 0x0, 0x0})

01:49:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x8a)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$SG_GET_PACK_ID(r6, 0x227c, &(0x7f0000000040))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xffffffffffffff0e, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = open_tree(r2, &(0x7f0000000040)='./file0\x00', 0x80000)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000080)=0x2)

01:49:41 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:49:41 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2270.095021] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2270.095754] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2270.112994] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2270.114380] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:51 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:49:51 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:51 executing program 7:
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000080))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x6)
ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f00000000c0))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:51 executing program 3:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:51 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:51 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})

01:49:51 executing program 2:
r0 = shmget$private(0x0, 0x2000, 0x54000080, &(0x7f000081b000/0x2000)=nil)
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000040)=""/6)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfffffff, 0x0, 0x0})

[ 2280.173648] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2280.174354] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x5, 0x3, 0x80, 0x8, 0x2, "b54d6c00", 0xe3012eb8, 0xfffffff9})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0x89, 0x0, @buffer={0x0, 0x36, &(0x7f0000000180)=""/54}, &(0x7f0000000080)="205c98dd02d2127cd8cb5d2ee3517e72d5bfb6446cbb3c2fac76582d0c6e7423548b7dd1a40ec6243475774798cec914f3655f7094e8e80dc96353b96076dec5b6350596defe053cb3f2e0bb9e24a9d866facbe6fdced0121eb977d38fd4718d90219c7d076fc7d4732030788314514ef1c045d10371f0612f42bcb79bda0ee2c154e8f69872410f1e", 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0})

01:49:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x20000000, 0x0, 0x0})

[ 2280.242538] blktrace: Concurrent blktraces are not allowed on sg0
[ 2280.244649] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2280.245303] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:51 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2280.296447] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:49:51 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})

[ 2280.297170] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:51 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x400001)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2000, 0x80)
r2 = dup2(r0, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00'})

01:49:51 executing program 4:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x4900, 0x0)
dup2(r3, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x80000000, 0x0)
r6 = dup2(r5, r4)
ioctl$TIOCGPKT(r6, 0x80045438, &(0x7f00000000c0))
ioctl$TIOCGPKT(r4, 0x80045438, &(0x7f0000000040))

01:49:51 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:51 executing program 3:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:49:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xf5ffffff, 0x0, 0x0})

[ 2280.425884] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2280.426596] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:51 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0x0, 0x8})

01:49:52 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:49:52 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0xff, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:49:52 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0x0, 0x8})

01:49:52 executing program 4:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:49:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xf6ffffff, 0x0, 0x0})

[ 2280.574728] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2280.575434] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2280.583701] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2280.584389] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:49:52 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:49:52 executing program 3:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:03 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:03 executing program 4:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:50:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfdfdffff, 0x0, 0x0})

01:50:03 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
dup2(r0, r0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000040))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:03 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0x0, 0x8})

01:50:03 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:50:03 executing program 3:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x16080, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
openat(r4, &(0x7f0000000040)='./file0\x00', 0x20000, 0x102)
r5 = dup2(r1, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r6 = pidfd_getfd(r5, r1, 0x0)
ioctl$SG_GET_LOW_DMA(r6, 0x227a, &(0x7f00000000c0))

[ 2292.214913] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2292.215706] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2292.220574] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2292.221318] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
vmsplice(r0, &(0x7f00000004c0)=[{&(0x7f0000000180)="af1f3fbf738373397880553b115d645bfe5bfcc3fea74c74f1db89592b5d998374d81b2ce43a100db1bc46191839f5c22965195d8b48f66b61e3356f6a3235f7229d37b56e5c9d68c99be039621e83c5e03ffec01a2bb94d42a0ac0ef9ade92711126961d69736a7f9b0bbea60a2f2a012432bd1e3cd7ca8fede9b5c99387c9ecf1920305486f2754ccf8c4001b9fc0689d0bd364500867088a3cf26ef54eae0f488bce09571e5e3", 0xa8}, {&(0x7f0000000300)="0f441b4c2e3c896e4f08beee26e9dd48e6fd1eb0631837d856fac0324f9b76d06eff28b115296049cd019d652b1788f219ed5e89d41011c8b17700bb5fb0e257fd3df1e261e5070ec3f12b6b400d71b8bb61e3cce44d7fa826b9b8b0bf284f80529f1eddb079aaac70c19cf904b9bde787cd44a0bf2c74656c3c476f36d17c564244f8627626e3ef241c58427343634a5c", 0x91}, {&(0x7f00000003c0)="8bdae5604602c9cbfbf4374075bbf3b0f213d46546bc34e85f3958255032bfa9daa2d0e7158d085b199a20644e5075d8a7ba9c327eb953e67d594a410f76b659b9f2c672b948ff6b07f33ddf10001a95208e4d1bdea43248082ea326643f3d07042d744bd57548cca16b67126c69afc457e76e5a8f59fcd5668c21bc77d494bb10508d3ee9af47c48281ec63ddba3feb94e4f86d537ae2cb3b13e057af99273cf18551e43e71f4de1b6e8b9733e88ec8d860e303508a60d54e151515ace9fe93d94b1870eebb0c6bf7282a8ac0db9bb162ba6d0c701194aea5d66ad40afba32c85ff9c2ee5f88099e3849084f6efb05170c379", 0xf3}, {&(0x7f0000000240)="37b7b875d8cac2d1b90c033fd5986d2624fea897423038d543124ff1041f9a3f734ef9bb20399460af9c5f125293d9c92f6d60df8f", 0x35}], 0x4, 0xa)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x2, 0xa, 0x10, @buffer={0x0, 0x81, &(0x7f0000000040)=""/129}, &(0x7f0000000280)="2aee7162a76254cea16a", 0x0, 0xfffffffd, 0x0, 0xfffffffd, 0x0})
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x101400, 0x0)
ioctl$TIOCGPKT(r2, 0x80045438, &(0x7f0000000140))

[ 2292.278869] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2292.279610] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:03 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:03 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
syz_open_dev$sg(&(0x7f0000000080), 0x7, 0x10082)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffd, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:03 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0x0, 0x8})

[ 2292.406673] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2292.407385] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:13 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0x0, 0x8})

01:50:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfeffffff, 0x0, 0x0})

01:50:13 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffd, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:13 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:50:13 executing program 4:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:50:13 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:13 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:13 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000040)={0x4, 0xfff, 0x3, 0x800, 0xa5, "701085cbea39bf6f2900a7ac60febc5e2c9588", 0x7, 0x4})
pipe2(&(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x800)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r3, 0x5000940e, &(0x7f0000000300)={{r4}, "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"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x242140)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
r7 = dup2(r6, r0)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2302.108338] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2302.109022] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfffffdfd, 0x0, 0x0})

01:50:23 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:23 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:23 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000040))
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:23 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

01:50:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:50:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x80000)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:23 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0x0, 0x8})

[ 2311.607551] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.608238] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$VT_DISALLOCATE(r2, 0x5608)
r3 = dup2(r1, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2311.676758] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.677999] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 6:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

01:50:23 executing program 4:
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})

01:50:23 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2311.729222] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.729883] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2311.741418] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.742051] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)

01:50:23 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$TIOCGPKT(r2, 0x80045438, &(0x7f0000000040))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
ioctl$TIOCL_BLANKSCREEN(r3, 0x541c, &(0x7f00000000c0))

01:50:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xffffff0f, 0x0, 0x0})

01:50:23 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:23 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:23 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)

[ 2311.912591] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.913297] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2311.924388] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2311.925063] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:23 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

01:50:23 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:23 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000140)={0x884509542237ffef, 0x40, 0xed, &(0x7f0000000040)=""/237})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2312.058368] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2312.059040] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2312.066169] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2312.066763] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:35 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

01:50:35 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:35 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x4, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:35 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:50:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfffffff5, 0x0, 0x0})

01:50:35 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffd, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:35 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20184)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2323.622870] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2323.623752] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfffffff6, 0x0, 0x0})

01:50:35 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:35 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, 0x0)

01:50:35 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r5, 0x80049367, &(0x7f0000000040)=0x9)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0xfffffffd, 0x0, 0x0, 0x0})

01:50:35 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:50:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:35 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2323.783725] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2323.784529] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2323.849667] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2323.850913] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2323.867719] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2323.868917] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2335.258000] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2335.258727] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:46 executing program 7:
getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000040)={'filter\x00', 0x0, [0x0, 0x800, 0x5]}, &(0x7f00000000c0)=0x44)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:46 executing program 2:
pwritev(0xffffffffffffffff, &(0x7f0000000a00)=[{&(0x7f0000000180)="62fe51fba85e2a7cc5e19c0062cbd6f943fd2b7d8cdf87498d3464271cae12e5bcc78149fb524e2e67e641cd7c3def7b1ea8d88c3213255bb61c389cbff408d2f414349cbd92bc05958eccbea4cec5f39a8d9c991d3995ed4f926680dd7153dc72e806e3ba10caa4ecb218b5914c44d6bdbcfb4c289526a8aa127fa9b7aaf669b6a86a8a9b5fcc80f0f0c26a72506b763becd3dcec2d641066eee31736605e06fee9", 0xa2}, {&(0x7f0000000700)="542409e9c7c2675f5b41b53354a0990ae02fd78ea0bb1a6729cbf639b96cc72d2361f8f4ab22e0b61d316d219f88fc5fbca3cd1ef2238999b2d5b8c2f807d205a0816935acaccbb1aaa68ade3a76f463033ca4e1ca384960b97463db4eaedec9d7da2e6796f117cc430e10dc9460a66b79a2571ee5188f1571b2c214e8a4685699859604d57d0e68f6bd418b1fc041b24dc1a87909ec27", 0x97}, {&(0x7f00000007c0)="17e8b7e189b83b4a6e05ebe24eace012b89bf914a29c753bf3b7b78ccf6424b91db8c95439ea099a0f019cac03c23e27f698ec211cd955f044da76c0b281d5f6396289aaa7e75d3cc8177dc4adb57716bb0479865b0c95ff2bfbd9ac79cf7c22fdcbe2bbc1869bca562511c5dd470a", 0x6f}, {&(0x7f0000000840)="10fe2146beafa728e64f28eb42ea2a02c2d9e6ef7bc214c4b8791301da16f7bad8be0a7b786fe7d087f5750335068ab8c0dab1229b81ee8366aaff52b183000460defb82c5dd8f56a9ed56eb2aa9c180202a137c8fa596b1081530f346b4ab840a7d4e9bb05edb6ddccb70bd5c613bf7ba1095e861c05435198006a86b766676449776779bfc555df906", 0x8a}, {&(0x7f0000000900)="1db1fdcee0aacedc8323d97e3ad2f8be97557cedccd3f39629e6672033337dcb8375b6edf5bd00c7f101d454b7ee9a3a1efd1be346e1197253284366c4c8b1d423e3bd19351c6f2783582a1c443cef705115e23a16dcbb0db9f2e54f1983a2bd490bd0391644eec89a94bac79751479470bd8b677bd9fb1c8819e98b92a34e9ae7036491f3b93111639c5a409be1753019a8e6fe0e017b16246c27436131bef744cca02562596a47f85fd892f167c56eac42768c9dc7df87abe8dc667de160b1b781ea861f7550a6cec75619114db22de0dd1520b9", 0xd5}], 0x5, 0x426, 0x8)
pipe2(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000b00)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000001600)={0x21d4, 0x12, 0x800, 0x70bd2a, 0x25dfdbfc, {0x1, 0x40, 0x20, 0x1, {0x4e20, 0x4e22, [0x80000000, 0x2, 0x2, 0x74], [0x1000, 0x9, 0x4, 0x400], 0x0, [0xef, 0x7ff]}, 0x6, 0x5}, [@INET_DIAG_REQ_BYTECODE={0x79, 0x1, "01b12886dfa166e2962b8ab6958f54e2759180ef85aecc0e22563e131bf31db76b697c3291a6f65fb8df3be9ecf116a8d4b3484627806fef6972f439840cc0e4e86c7724324e2463a9ddd1f9a243c4ecf02d4292e9a76534ff4ef6aea641fd909d57e39fee06a9afb6c12becb18124576fb6f7c624"}, @INET_DIAG_REQ_BYTECODE={0x7d, 0x1, "da7c05c0b895798244b531d90ad37ab245f058f5cb3c7f28993c799962f4875bdbf060b0e28abde01c15873fd253a1326c0241bbe13f18a67e217967460aa9326e49c9f55cd8c7d3191aac7cc2f7f7552a67f38c38d6b372767c36c33976f4665104f7ca02dc20147de32828c4ed54a97b9ce93ca029b40427"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0x81, 0x1, "92031a660639fffc96ca3c6dbc5f8454d903811e4e5412a48c00ce9b9b0767489ac94aa71c1652cc3f96584383b2427e103bb0bb736c8674c4cb051ba2ea6f6f41c4609586b5f128174062131fcc2a424f1bfa1ef1781244686052f628648ada98a6bb505d29318c8b8a6615f2b4014aef9b750756cf48e3a7699fe67c"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}]}, 0x21d4}, 0x1, 0x0, 0x0, 0x2008cc4}, 0x24000090)
sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x14, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x8)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000b40), 0x40, 0x0)
ioctl$FITHAW(r1, 0xc0045878)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000b80))
ioctl$PIO_FONTX(0xffffffffffffffff, 0x4b6c, &(0x7f0000000140)={0x9a, 0x18, &(0x7f0000000300)="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"})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x0, 0xffffffffffffffff, 0x1e, 0x0, @scatter={0x3, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000280)=""/64, 0x40}, {&(0x7f0000000d00)=""/230, 0xe6}, {&(0x7f0000000e00)=""/29, 0x1d}]}, &(0x7f0000000cc0)="2aee7562a76254ba3560984fcfedb49fc301ac627c120b99a41c4bfb378f", 0x0, 0x7, 0x0, 0x2, 0x0})

01:50:46 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})

01:50:46 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:50:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xfffffffe, 0x0, 0x0})

01:50:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2335.322777] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2335.323609] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xc5, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a76254ba3560521d0437a97ddbedf30e7b343a01fe7049e57f1882b3750f79a7b153e7d05e23c5009131e1bc1f22ff7cf9104bc18d6328a21dd6ea20626adba49f1fc808626d0cce1734d122e7eb9f6ba97d505bd823dc42398e7599c9762173987dc5a92488fa71b76b35dfc09f64c3e3b7b38cb88a780db142b658127af620a7146fa24223e8258e4c771b739789e96d3776ca61e8195e2441b532f08b0b318dc5ae32fc6f5ba2e93daa9353473363762ab08607562900"/197, 0x0, 0x10000, 0x0, 0x0, 0x0})

01:50:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:46 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})

01:50:46 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:50:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
clock_gettime(0x0, &(0x7f00000000c0)={<r6=>0x0, <r7=>0x0})
ppoll(&(0x7f0000000080)=[{r5, 0x84a8}], 0x1, &(0x7f0000000100)={r6, r7+60000000}, &(0x7f0000000140)={[0x8]}, 0x8)
ioctl$TIOCSPTLCK(r4, 0x40045431, &(0x7f0000000040)=0x1)
r8 = dup2(r1, r0)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0xffffffff, 0x0, 0x0})

[ 2335.487253] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2335.488040] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:57 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x0, 0xf833, 0xecd6, 0x8})

01:50:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
r5 = dup2(r4, r2)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000080)={0xda, 0x1000, 0x1, "e3d1fd5b3299d4c59874185d5fcd6948b07def8e028cd9d15bf75cd4dde9b87f3bf92e8f64971ae447db24a37ff15ae30616bc42d2e740ba74d68adcbeb43d7160541d3cd4a3ee38e3339e76a5fae15f029117cb4eead59dc57521743aa5fdc451c0467d4e50552b143dd7a4e2a228e528ae32051727762268e2650c0e2c9eb26bdf215eb052d3d463b9baebe4aaaf80e66d14baeceefc7a673d0cde57a5eb9fa47b27e54fe0b47713c48bd7bd8ad5f00b32f355df33af9fdb3d17a1f0c5b655ac0394b2cb458c90a8b13781f1e164342b310b505628c73bb28e"})
r6 = dup2(r1, r0)
readv(r1, &(0x7f0000000040)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:57 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:50:57 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:50:57 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:50:57 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

01:50:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:50:57 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
close_range(r4, r6, 0x0)
r8 = accept4$packet(r7, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x800)
recvmmsg$unix(r4, &(0x7f0000000ec0)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000140)=""/136, 0x88}, {&(0x7f0000000200)=""/47, 0x2f}, {&(0x7f0000000240)=""/38, 0x26}, {&(0x7f0000000300)=""/121, 0x79}], 0x4, &(0x7f00000003c0)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f00000004c0)=""/158, 0x9e}, {&(0x7f0000000580)=""/119, 0x77}, {&(0x7f0000000600)=""/44, 0x2c}, {&(0x7f0000000640)=""/204, 0xcc}], 0x4, &(0x7f0000000780)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{&(0x7f0000000800), 0x6e, &(0x7f0000000980)=[{&(0x7f0000000880)=""/150, 0x96}, {&(0x7f0000000940)=""/7, 0x7}], 0x2, &(0x7f00000009c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000000a40)=@abs, 0x6e, &(0x7f0000000c40)=[{&(0x7f0000000ac0)=""/100, 0x64}, {&(0x7f0000000b40)=""/250, 0xfa}, {&(0x7f0000001600)=""/4096, 0x1000}], 0x3, &(0x7f0000000c80)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x150}}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000e00)=""/3, 0x3}, {&(0x7f0000002600)=""/4096, 0x1000}], 0x2, &(0x7f0000000e80)=[@cred={{0x1c}}], 0x20}}], 0x5, 0x10103, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r9, 0x2275, &(0x7f0000001000)=0x3)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r11 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r11, r10)
close_range(r8, r10, 0x2)
r12 = dup2(r1, r0)
ioctl$SG_IO(r12, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2345.712058] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.712731] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2345.716696] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.717360] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:57 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})

01:50:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x2, 0x0})

01:50:57 executing program 0:
getpgrp(0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)

[ 2345.819217] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2345.830919] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.832218] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:50:57 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2345.854155] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.855461] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2345.892079] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.893358] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2345.919910] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2345.920596] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2346.579313] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2346.580878] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:09 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})

01:51:09 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)

01:51:09 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:09 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
getsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:09 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:51:09 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:51:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x6, 0x0})

01:51:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040))
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2357.639224] blktrace: Concurrent blktraces are not allowed on sg0
01:51:09 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2357.672883] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.673567] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2357.692191] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.693521] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2357.726164] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.726873] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:09 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)

01:51:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2357.796225] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.796967] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2357.805859] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.806527] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x8, 0x0})

01:51:09 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0x0, 0xecd6, 0x8})

01:51:09 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:51:09 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)

01:51:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000300)={0x0, 0xfffffffffffffffc, 0xd8, 0x40, @scatter={0x1, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)=""/3, 0x3}]}, &(0x7f00000000c0)="b0e33804af9b2c04c740b5e8004b727f40b0d72bbfb94eb1406b5c8e3e197130fb4131e337711859efeda1c8f894ea213a4dded17345036c2bf2480543841d9834142390b853181f35c0d77b25c81e5010aed3995c3b40a93c55bf1a56c6817cff1d9cf39dc5f05a93fd667184e52c3829396f3842911a9e09c4f18e8a88e52448c14d4f085bca133f99da368eb1b9c6f9d10b139edea7c944ba98ad3e48dd771fc4c1168d169e1ea04a6d44126453a5890e6e55f6da8aba283f57a2a06d42a22d702446b524fb416ae2c01d45a0b927f04c833bd9aa861b", &(0x7f00000001c0)=""/115, 0x4, 0x1, 0x1, &(0x7f0000000240)})

01:51:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x210040, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = syz_open_dev$hiddev(&(0x7f0000000040), 0x8f1, 0x101400)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000080))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2357.883775] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.884477] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:09 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2357.925648] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.926366] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2357.936714] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2357.937405] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:09 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000200)={0x0, 0xfffffffffffffffb, 0x12, 0x1, @buffer={0x0, 0x90, &(0x7f0000000040)=""/144}, &(0x7f0000000100)="afc07ef0137a789a9fdd01116e990b5629da", &(0x7f0000000140)=""/92, 0x7, 0x0, 0x2, &(0x7f00000001c0)})

01:51:09 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:51:09 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)
syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x208000)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0xa, 0x1f, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:09 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x9, 0x0})

[ 2358.101887] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2358.102619] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2358.107918] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2358.109194] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:20 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})

01:51:20 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:51:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x10180)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
dup2(r5, r1)
ioctl$SG_EMULATED_HOST(r3, 0x2203, &(0x7f0000000040))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="eeee7962a76254ba3560", 0x0, 0x0, 0x11, 0x0, 0x0})

01:51:20 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xd, 0x0})

01:51:20 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:20 executing program 0:
getpgrp(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:51:20 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

01:51:20 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
r5 = dup2(r4, r2)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000080)={0xda, 0x1000, 0x1, "e3d1fd5b3299d4c59874185d5fcd6948b07def8e028cd9d15bf75cd4dde9b87f3bf92e8f64971ae447db24a37ff15ae30616bc42d2e740ba74d68adcbeb43d7160541d3cd4a3ee38e3339e76a5fae15f029117cb4eead59dc57521743aa5fdc451c0467d4e50552b143dd7a4e2a228e528ae32051727762268e2650c0e2c9eb26bdf215eb052d3d463b9baebe4aaaf80e66d14baeceefc7a673d0cde57a5eb9fa47b27e54fe0b47713c48bd7bd8ad5f00b32f355df33af9fdb3d17a1f0c5b655ac0394b2cb458c90a8b13781f1e164342b310b505628c73bb28e"})
r6 = dup2(r1, r0)
readv(r1, &(0x7f0000000040)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2368.975394] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2368.976796] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2368.989058] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2368.990379] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2369.015921] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2369.017305] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid command operation code
01:51:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:20 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:51:20 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/43, 0x2b, 0x63)
r3 = memfd_secret(0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r3)

[ 2369.169796] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2369.173428] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2369.174103] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2369.232379] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2369.233083] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x600, 0x0})

01:51:32 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:32 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
r5 = dup2(r4, r2)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000080)={0xda, 0x1000, 0x1, "e3d1fd5b3299d4c59874185d5fcd6948b07def8e028cd9d15bf75cd4dde9b87f3bf92e8f64971ae447db24a37ff15ae30616bc42d2e740ba74d68adcbeb43d7160541d3cd4a3ee38e3339e76a5fae15f029117cb4eead59dc57521743aa5fdc451c0467d4e50552b143dd7a4e2a228e528ae32051727762268e2650c0e2c9eb26bdf215eb052d3d463b9baebe4aaaf80e66d14baeceefc7a673d0cde57a5eb9fa47b27e54fe0b47713c48bd7bd8ad5f00b32f355df33af9fdb3d17a1f0c5b655ac0394b2cb458c90a8b13781f1e164342b310b505628c73bb28e"})
r6 = dup2(r1, r0)
readv(r1, &(0x7f0000000040)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:32 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:32 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:32 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000000040)="a0896fbd5aed4d04c1d94880ded764e18bf047db02ba7cc35c75575ff56397c162e7e4c5984dc8cfbd91adf45aefe55a87cb68469a6a5311f5d4ad38be1b96e59b34beab7bff3eb697d34d83e0cabb9d508b9a8f689810a567cff4ca760cf8eda0a9d54939d73ce27706329c1e75b769320ef8e6eda89d718ea28c9243f8b24629cca1141bb8b2d20fde1695d5c2986d8cbc81d91236f6c72b9a54329676")
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000100)={0x3b, 0x5, 0x200, "da8863055f971574cdf7e47c78f0596a07b1931346f6d61e7232ece502605c38bc6c9212f4cb9a461b506cf552fd8720bc24b638c3bf3313d59779"})

01:51:32 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:32 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2381.250029] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.250755] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2381.256907] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2381.265846] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.266528] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2381.267221] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2381.306390] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.307798] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2381.309577] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.310950] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:32 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:32 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2381.346971] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.348390] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2381.409650] program syz-executor.0 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2381.487215] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2381.487956] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:44 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000002, 0x2010, r1, 0x8bfd0000)

01:51:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x680801, 0x0)
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x3fd1)
syz_open_pts(r1, 0x8000)
io_setup(0x4, &(0x7f0000000080)=<r2=>0x0)
io_destroy(r2)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x402, 0x0)
r4 = dup2(r3, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x3, 0x0})
r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0)
r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = socket$inet6_icmp(0xa, 0x2, 0x3a)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(0xffffffffffffffff, r8)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
io_submit(r2, 0x8, &(0x7f00000009c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x9, r5, &(0x7f00000000c0)="8765786f9a1549d498", 0x9, 0x1, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0xa3, r0, &(0x7f00000001c0)="a2e92ab438b45b19e76ab5db90808023bd091909867bd1654026c8e0ede94e9cd5752f90188ac50640ba28a549ef8340159fac6ad2829eac376d936bef05929b3d069458bab55bb124a8348ed525f226dec162c5bddb35ec87bf84e7b6579b76cb9d0a25639f8649c883a062959b4d9f52dd1c8faba71407ad7f92ebfb621fd595edc58ef52fe880f03feef9eb5664726a0e1791633ba0ed848bcad8ec05b3ee29", 0xa1, 0x28, 0x0, 0x2, r3}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0xfffb, r3, &(0x7f0000000a00)="3dd30919189657bb85bf36b4f1a209c5c3b91efdbcca3470d7646b8f22659d7a9380c6c5ed5bd9fbd165899f213568b36acc749b7fe46df1d44727bac24ff2bd57b15a6c6818a4c4bcc31ae26a723ee49feabf051fd85eca9cd2185cc00a6ff4de00bbd60deb77b60e0ebfd58e8d57e419529ccc8eb1ec18e0c7ee27802a07ac2d9b9447bc4ae464c851817389cd37bf3611baf022c330414c25212909d74527c6baef14defa135eff0753b414fee21d77aebdc1178f4fc50277bcc6c8a7d6f7df9c420121db1581e185c8f434c91cb88f9fa26f03d59665201efe16cc297dd4f2ae8004af50ec29533b0267c9b55b4dcf085034b758c690fdc2a69bd1a417703ebca625a62793eb8137522128d998c91baa34c65e204fd0981971dc3bade11b465d53215bfa0da3207938f69d0f01bbabeacbf6b1740e05e1c71ad395e4f900d20c8bfd28556bc32fa48e601005690358b0efad40f6ca73c12b639bcbd389ee98ce77d7713391c66b323283568bc0196e2be037453803f40639aad6e119e5f2d891e47b95a3476c6b49fce2e8749ddc8ff1912bc519a009e48281e9b8de1ceabeb8251a26d07c00c21dd6519b106a2d0a2f601183a76d4ba9b3b3", 0x1bb, 0x100000001, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x6, 0xff7f, r1, &(0x7f0000000480)="34a06a9ce4a570580485a3517d6001f9399f3a41051650d595a47e8cfe11d2c0a85c93fd82398d28f8e925d8d7ff20687b444586013b41cb4d7aab5b4d2532f0ae9eef228580106aa81b904042c5e3729f0a3d2b5e2f2c3e0bf906f07acafeb43fd0305c1fddc6f9d24567ff26cb7eff5ec1e9cf2333a21d1009a96334b4cca0e8c00426689011aade3f6089b47bb2712675e549753f7ca2d7be3a0777fb17eaa31e2b9bc2f79f39675db28bc130ce079f5d4eb5fe6954c068b49f165af52eabfa3fca9412facc5c0091ac3a4e66a9566a", 0xd1, 0x40}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x5, 0x2, 0xffffffffffffffff, &(0x7f0000000600)="d053ada97fdb526d8b2e9f22f35398182ff670b7c3d0ddc306dbef4abbeea7010c345ff2d15c9752666e65c411df7aeab19168a412b4d8e7df52", 0x3a, 0x8, 0x0, 0x2}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x1, 0x5, 0xffffffffffffffff, &(0x7f00000006c0)="8c5337fca57cd7ffcb02395d3863603b77b1dbc827a790c85251be99a6769ec0971c0e9c02dce44f16cacaebee504d802e0905641cd4a2c03fffdee02ab02e834957f352b4638005bcf5a296da7cd9a3758a734d30c76b839feeefd8a93b86f111d13f932bf5d32cf321aec756ed24f6809eb9a12cf2bc92e40ba1e32483dbe91db9819315c9cf9b2211508e61c3a35860ef58b34034989d12facda009581c2a508e7ee4bda772b7cba873afdfe9c6c40c95ae1b4f5e544f47", 0xb9, 0xfff, 0x0, 0x2, r4}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x8, 0x1f, r5, &(0x7f0000000340)="9959985bbde1efb9902af95f07906d03fc9ee7064ac5079f39148caf3053d5f7f2c6c2b54d5b0949aea419856eed51aa7cbd8a7968918a043ff5127242cf3f77ccc2e1b9c2cd4b04da9b1fbe647ae4f99c0b771875493699bdd25aee3122bc10c5236aad10a43bdbab5fb6013b82785417f1083fbe5fc1d0311dc4ddef16328120b70088939db4705bb758eb8e69819ea98828efed9e1812cb698941adc05a392842df4b6b6b91892e6b9f53021313325c9ba72e37976ae5ba0d17bafe5a3da2a4d172959ac7303db5d26a10f414a1ff19e13cfb426a2a8b4b", 0xd9, 0x9, 0x0, 0x0, r6}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2, 0x5, r7, &(0x7f0000000900)="398c2835a86c6d8d1a8ae58bb71678ab3b744c855590e938744d2bfa8621b792fb0376c653df98248839edbcbfd7c83706a7deeb8bea96dd545137bf0e83db14bcfce48dbc96f901c6c1ed49b09a664126395336529924214e38340b6173ef653b509631366473dc85604f2ab73f38ef", 0x70, 0x5, 0x0, 0x0, r9}])
dup(r5)
ioctl$TIOCGPTPEER(r3, 0x5441, 0x4)

01:51:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x900, 0x0})

01:51:44 executing program 4:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0x0, 0x8})

01:51:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:44 executing program 3:
getpgrp(0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0x0, 0x8})

[ 2392.596585] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.597941] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2392.599221] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.599876] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2392.602857] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.603490] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffe, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2392.687654] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.688363] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:44 executing program 3:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(0x0, r0, 0x0)

01:51:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write(r3, &(0x7f0000000900)="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", 0x200)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x24800, 0x0)
sendfile(r3, r4, 0x0, 0xfdef)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r5 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write(r5, &(0x7f0000000900)="5ed0b2ff68d76fb346352b602a2a1295cbe01cb3f64fbed9e7f9bc9be0f300cb97f6a204cc586e45dfb949002f61f8fb969dd435dd0c37c5077e5b10cfeafd75205e215b167323a3b971b0ec98e6c3d4d825cae01271cb35cdd091e4872367f354e0dc81a7e4ac79775bc1dcaafe2f5079da79d1989f1ddce6722fc438a7217526cfe75d53471624d6f091e19a7fb699ea27efa9e0fd1914e7c35f297afd9b9b85ff0ce7a982f4fa0c172ea5f06479eec302f30e5df66273717e028f4ca7d4c5b6bc8a3c3c67f688195f22488a15d9e1f7e5fed3a6c2aba7bc308b0e2c5657f4538f4a3bf9b975bb887a901ab3c85261be3e331b741313e78b5ad63b7b1b378e9c79dc4a95b2b4d15cd1d1b808844378f882a72af1e5b0eefd356e0247246e60643204c3b46183dbe4e066c55cb1dcdaa7b70ef43ab2fa4d2b8c4c1a89cb0e325fd9716874d3856cf368efd1f92d21214e55e4de647c37c71887d11f74f9afe1616e3054ceae601e4b3555e243c1882ad42c7730caeb309e7714ad87c55e9fba308cfc4161e562abde3ac4f3d7e0a3584d4928100197f102307c05c0b4b4898b0591bc1433af443478979f28e6136ffb21aaeac2be5490475a08e96bb94fd9d9d3aa2f8a1e147a80ba9bfd04dac3f476ff128476c693ea71f7be47a508c98eddc479eb703d6f17cc5be2182f7c39b0a47eb23e0808b5d87dd2a9ce88eb48a601", 0x200)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x24800, 0x0)
sendfile(r5, r6, 0x0, 0xfdef)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8936, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3, 0x14, 0x14}}, 0x4})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xd00, 0x0})

01:51:44 executing program 0:
perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x5000, 0x1800, &(0x7f0000ffb000/0x5000)=nil)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(r0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2392.808954] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.809609] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:44 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2392.856249] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.857539] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2392.887224] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.888440] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2392.984293] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2392.984977] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:55 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x1000000, 0xa0901)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:51:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x2000, 0x0})

01:51:55 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:51:55 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:51:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
read(r1, &(0x7f0000000080)=""/183, 0xb7)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r5, 0x5382, &(0x7f0000000040))

01:51:55 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2403.694606] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.695426] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2403.698173] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.698924] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfdfd, 0x0})

[ 2403.743554] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.744323] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2403.767707] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.769050] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2403.771260] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.772005] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x6)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f00000013c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB="020027a8000000e3ff002e2f66696c653000"])
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001340)={0x0, 0xfffffffffffffffc, 0xb0, 0x7f, @scatter={0x2, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/72, 0x48}, {&(0x7f0000000300)=""/4096, 0x1000}]}, &(0x7f0000000140)="5afc884aebd93a6f0c3c726c6ed75cd7a3b0125cb7e829ecf75b8f717af24730b23e439bf3e7d36373cbcb0c07c89ef8d49bee1569b8dfb2ebbff5d90e7b448b9171ab313db5905ab27b740284877525040ff11fb21326db2633ea70144129110af2555704274197ad083d9e6cb887733cb79a6661e56d72f6b4702cd63554b9aa906e2ea4737a3b1a663b32c3cefc8760ecdbdca6d9f9c720523c192f172c9b32e40846aa8355e6752b41f03a5409e1", &(0x7f0000000200)=""/126, 0x6, 0x0, 0x1, &(0x7f0000001300)})

01:51:55 executing program 0:
r0 = getpgrp(0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, 0x0, 0x0)

01:51:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x80000, 0x0})

01:51:55 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2403.896794] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.897611] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:51:55 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2403.958911] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.960264] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 3:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:51:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x1000000, 0x0})

[ 2403.980431] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2403.981777] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 0:
getpgrp(0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r1=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

[ 2404.042281] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2404.043098] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:51:55 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = signalfd(r2, &(0x7f00000003c0)={[0x5]}, 0x8)
ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f0000000400))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0xfffffffffffffffd, 0xfa, 0x1, @buffer={0x0, 0xab, &(0x7f0000000040)=""/171}, &(0x7f0000000100)="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", &(0x7f0000000200)=""/122, 0x4, 0x5, 0x3, &(0x7f0000000300)})

[ 2404.158702] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2404.160072] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2404.175196] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2404.176531] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:05 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x2000000, 0x0})

01:52:05 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
r3 = dup2(r0, r2)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
dup(r6)
r7 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x408481, 0xc, 0x8}, 0x18)
ioctl$SG_GET_PACK_ID(r7, 0x227c, &(0x7f00000000c0))

01:52:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x5, 0x0, 0x0, 0x0})

01:52:05 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

01:52:05 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:05 executing program 3:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:52:05 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:05 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:05 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2413.659148] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2413.659912] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2413.662243] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2413.663557] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2413.667547] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2413.668202] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2413.709401] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2413.710102] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x6000000, 0x0})

01:52:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2413.827262] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2413.827994] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:15 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x9000000, 0x0})

01:52:15 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)

01:52:15 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:15 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

01:52:15 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = accept4$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000080)=0x14, 0x800)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x61, 0x200)
sendfile(r3, r4, &(0x7f0000000100)=0x1000, 0x7)

01:52:15 executing program 3:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:52:15 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2423.718570] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.719904] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2423.727905] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.729322] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2423.737237] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.738601] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2423.755258] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.755911] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2423.764123] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.765480] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:15 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:15 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$VT_WAITACTIVE(r0, 0x5607)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)

01:52:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xd000000, 0x0})

01:52:15 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x4c4b81, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fcntl$getown(r4, 0x9)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000200)={0x0, 0xfffffffffffffffd, 0x27, 0x5, @scatter={0x0, 0x0, &(0x7f0000000040)}, &(0x7f0000000080)="406fdbc381e40c3e1408961e83ad85b84193baa8c6f1e03660542441f3999985f407b5aa95806a", &(0x7f00000000c0)=""/193, 0xae, 0x10010, 0x3, &(0x7f00000001c0)})
r5 = dup2(r1, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:15 executing program 3:
getpgrp(0x0)
r0 = getpgrp(0x0)
getpgid(r0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r2=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r2})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})

01:52:15 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:15 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2423.988049] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2423.989338] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2424.009513] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2424.010861] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2424.012917] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2424.014195] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2424.022530] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2424.023854] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2424.049051] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2424.050329] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:27 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:52:27 executing program 3:
r0 = getpgrp(0x0)
r1 = getpgrp(0x0)
getpgid(r1)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={<r3=>0x0}, &(0x7f0000000080)=0xc)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x81, 0x9, 0xf833, 0xecd6, 0x8, r3})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
tgkill(r0, r1, 0x0)

01:52:27 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:27 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:27 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:27 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x24200, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0xaac0, 0x1000, 0xffffff27, 0x80, 0x5})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0xa00, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x20, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0x5, 0x32}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8090}, 0x40040)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfffffff, 0x0})

01:52:27 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r0, 0xffffffffffffffff)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
syz_io_uring_setup(0x6fb6, &(0x7f0000000000)={0x0, 0xb953, 0x0, 0x0, 0x1ac}, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
syz_open_dev$tty20(0xc, 0x4, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000000)={0x0, @xdp={0x2c, 0x0, 0x0, 0x34}, @in={0x2, 0x4e24, @empty}, @llc={0x1a, 0xffff, 0x1, 0xff, 0x0, 0xff}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x10000000007f, 0x2})
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r5, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r7})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r7, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback, 0x0, 0x20}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000740)=<r8=>0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB="dc0100001800000125bd7000fedbdf25000000000000000000000000000000000a0101020000000000000000000000004e2404014e2300000000000000000000005232c5631a1d434f42f8ca5776bd6687aacaf5d7eb630080743b56b9bf4c6651c3acf092efcc9e6878d11a5d78", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0a010100000000000000000000000000000004d33300000064010100000000000000000000000000c5ffffffffffffff05000000000000000104000000000000210000000000000000000000000000004000000000000000030000000000000000fcffffffffffff0104000000000000d10200000000000009000000000000000800000000000000000800bb0200000002000027bd70000740bf49916e7bb313eb5f1b3500000a0006060200000000000000b500000000000000e4000600fe800000000000000000000000000037000000000000000000000000000000004e20009b4e23", @ANYRES32=r7, @ANYRES32=r8, @ANYBLOB="ac1414aa000000000000000000000000000004d46c00000000000000000000000000000000000000dd0e0000000000004d0000000000000000010000000000000200000000000000060000000000000005000000000000001f00000000000000000005000000000000005f9300000000000008000000000000002000000007000000500f000028bd700007350000060002d64700"/168], 0x1dc}, 0x1, 0x0, 0x0, 0x4000011}, 0x40084)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xf0a)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x6e9ee39e9041554a, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee71629371cf080000", 0x0, 0x4, 0x22, 0xffffffffffffffff, 0x0})

[ 2435.749016] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.749747] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2435.762712] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.763417] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2435.776126] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.777060] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x20000000, 0x0})

01:52:27 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:27 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESTART(r1, 0x1274, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:27 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:27 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:52:27 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:27 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:52:27 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x3}, 0x1c)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0xffffffffffffffff, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10000, 0x0, 0x0})

[ 2435.902588] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.903325] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2435.909879] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.910577] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2435.913354] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.914069] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:27 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2435.977925] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2435.978661] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2436.006131] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2436.006862] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:37 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:37 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:52:37 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:37 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xf5ffffff, 0x0})

01:52:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000400)={0x0, 0xfffffffffffffffc, 0xcb, 0x5, @buffer={0x0, 0xe1, &(0x7f0000000040)=""/225}, &(0x7f0000000140)="dcf9081c9b5e212226f1b5242861ced75c64a5000453ba43b4c5921574966baf790cac32179dec91f007eb595b22e0963da50763b0a5563bc149fc715eb4b7ebd21d21eeebbdb6e10b57049abebe5739f547ae5cc646044286693a141999da35c68499873c1b4daa43d2f77761f22d90d92f6fa78b884bccecdc9eaf1c685fbb9245bf2663596bd1415a6cb90c5cb97d6aa76ae0792adeffb42ac96f75efcff17ab6d62347f9280cbeef21c1bf26acbdccbf20035a8886896dccf54e4fc6c0a3f368b1068c50642028b857", &(0x7f0000000300)=""/226, 0x8, 0x10000, 0x1, &(0x7f0000000240)})

01:52:37 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

01:52:37 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
dup2(r2, r4)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2446.239411] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2446.240761] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2446.261313] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2446.262662] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2446.269629] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2446.270920] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:37 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:37 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2446.304726] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2446.306018] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:37 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:37 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = dup2(0xffffffffffffffff, r5)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:52:48 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xf6ffffff, 0x0})

01:52:48 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = dup2(0xffffffffffffffff, r5)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:52:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
creat(&(0x7f0000000040)='./file0\x00', 0x2)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x2, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/181, 0xb5}, {&(0x7f0000000180)=""/61, 0x3d}]}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0})

01:52:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
mknodat$loop(r2, &(0x7f0000000080)='./file0\x00', 0x20, 0x1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)

01:52:48 executing program 3:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)

01:52:48 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2457.116576] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.117791] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.126562] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.127724] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:48 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfdfdffff, 0x0})

01:52:48 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000040))
dup(r1)
r4 = dup2(r1, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)

01:52:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x4)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0x100000000, 0x3e30e7ee})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:48 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:52:48 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = dup2(0xffffffffffffffff, r5)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:52:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2457.405960] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.407295] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.424322] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.425526] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.453036] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.454317] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.456862] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.458047] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.472719] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2457.473930] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2457.474659] FAULT_INJECTION: forcing a failure.
[ 2457.474659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2457.476735] CPU: 1 UID: 0 PID: 25456 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2457.476766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2457.476779] Call Trace:
[ 2457.476787]  <TASK>
[ 2457.476796]  dump_stack_lvl+0xfa/0x120
[ 2457.476833]  should_fail_ex+0x4d7/0x5e0
[ 2457.476865]  _copy_from_user+0x30/0xd0
[ 2457.476894]  blk_trace_setup+0x9a/0x1b0
[ 2457.476930]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2457.476962]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2457.476992]  ? proc_fail_nth_write+0x97/0x220
[ 2457.477022]  ? find_held_lock+0x2b/0x80
[ 2457.477046]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2457.477076]  ? lock_is_held_type+0x9e/0x120
[ 2457.477102]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2457.477145]  sg_ioctl+0x69d/0x2720
[ 2457.477181]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2457.477210]  ? __pfx_sg_ioctl+0x10/0x10
[ 2457.477236]  ? __fget_files+0x34/0x3b0
[ 2457.477261]  ? find_held_lock+0x2b/0x80
[ 2457.477283]  ? __fget_files+0x203/0x3b0
[ 2457.477307]  ? lock_release+0xc8/0x290
[ 2457.477347]  ? selinux_file_ioctl+0xb9/0x280
[ 2457.477373]  ? __pfx_sg_ioctl+0x10/0x10
[ 2457.477406]  __x64_sys_ioctl+0x18f/0x210
[ 2457.477444]  do_syscall_64+0xbf/0x390
[ 2457.477472]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2457.477495] RIP: 0033:0x7fa15dc46b19
[ 2457.477512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2457.477534] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2457.477557] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2457.477572] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2457.477586] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2457.477599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2457.477612] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2457.477649]  </TASK>
01:52:59 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:52:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:59 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:59 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
eventfd2(0x3ff, 0x800)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffe, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x1000e, 0x5, 0x0})

01:52:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfeffffff, 0x0})

01:52:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x4000000000000, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:59 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:59 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:52:59 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2467.856744] FAULT_INJECTION: forcing a failure.
[ 2467.856744] name failslab, interval 1, probability 0, space 0, times 1
[ 2467.858783] CPU: 0 UID: 0 PID: 25483 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2467.858821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2467.858834] Call Trace:
[ 2467.858842]  <TASK>
[ 2467.858851]  dump_stack_lvl+0xfa/0x120
[ 2467.858882]  should_fail_ex+0x4d7/0x5e0
[ 2467.858914]  should_failslab+0xc2/0x120
[ 2467.858944]  __kmalloc_cache_noprof+0x81/0x6b0
[ 2467.858975]  ? __pfx___mutex_lock+0x10/0x10
[ 2467.859000]  ? find_held_lock+0x2b/0x80
[ 2467.859024]  ? do_blk_trace_setup+0x22d/0xc30
[ 2467.859065]  ? do_blk_trace_setup+0x22d/0xc30
[ 2467.859096]  do_blk_trace_setup+0x22d/0xc30
[ 2467.859137]  blk_trace_setup+0xdc/0x1b0
[ 2467.859172]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2467.859204]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2467.859233]  ? proc_fail_nth_write+0x97/0x220
[ 2467.859275]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2467.859319]  sg_ioctl+0x69d/0x2720
[ 2467.859355]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2467.859386]  ? __pfx_sg_ioctl+0x10/0x10
[ 2467.859413]  ? __fget_files+0x34/0x3b0
[ 2467.859437]  ? find_held_lock+0x2b/0x80
[ 2467.859460]  ? __fget_files+0x203/0x3b0
[ 2467.859484]  ? lock_release+0xc8/0x290
[ 2467.859526]  ? selinux_file_ioctl+0xb9/0x280
[ 2467.859552]  ? __pfx_sg_ioctl+0x10/0x10
[ 2467.859585]  __x64_sys_ioctl+0x18f/0x210
[ 2467.859625]  do_syscall_64+0xbf/0x390
[ 2467.859654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2467.859676] RIP: 0033:0x7fa15dc46b19
[ 2467.859694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2467.859716] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2467.859737] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2467.859752] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2467.859765] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2467.859778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2467.859791] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2467.859828]  </TASK>
[ 2467.873610] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2467.889359] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2467.921529] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2467.922542] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:59 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2467.939898] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2467.940925] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:59 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfffffdfd, 0x0})

01:52:59 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:52:59 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_SCSI_RESET(r3, 0x2284, 0x0)
r4 = syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x1, 0x6, &(0x7f0000000400)=[{&(0x7f00000000c0)="d62d4c790701a96493ac2986f8207dbf64c08041e5f2653763dd01bedca88b61b69c367e8baf30a2f41a3e13341957c4d31f928217e387a71fbf0a260080f8cf41e08d709e5fd166c3c94cac4997bf9f92f4cc74e19cb36cd4f92fab6a946a536b7f7c9d85fc021fa5f0edd4b6acbf2ab2c0d476e45a2826", 0x78, 0x8000}, {&(0x7f0000000140)="7a9d1dde671b649fb1e7451ec27357e13923a923f68fb4e085368299d97ad3389f7af1d809f3247cddbb4e8cf7c3a229bd7021921094", 0x36, 0x401}, {&(0x7f0000000180)="c16c2ab1339a1563c6210bdc4e7bee9532e1c81deef812298d21a9dddb920c7cc67d5f711f0f0370028a060caecb9281a23824ec0ffbdde8f2b5eeed0b710a", 0x3f, 0x100}, {&(0x7f0000000300)="85b8c73467cbef53e847265427d1e88dafc496e8d8f1d79b1826e74ec6d8e61c7a48f663f336af04539e29b875ec3285643a28d272b0a0d6ed5b836c9767ffc75f2144ea7e839df983e43e3c546c8fddcdbcddb4e7ff9ebb6160e5aed37e471e9b15b971ea9f434f5dbda3c0da9cd737eeb2dfe0680ba36e54e3fb8361e6edc47a0a5cbabe30b782eafef7501e30e7ba70ac56156ec45cfeb1a989e882ae9fe2ac5d2a729561d42a193fd44680391100eae219c5751861b60efaed7f42e7cf23434631cc3b0a1eb55022b16cd2560a6506f363f83e104754f69d61", 0xdb, 0x8}, {&(0x7f00000001c0)="5361b4fb534029ab0aad8515498e3aa471d73b82e53e1dde6d4de9e191161c0f2d474f9c3a1ce3c7f58c686c5087ce2a2d6dca67ebe5f2154c5a93acf644", 0x3e, 0x1}, {&(0x7f0000000200)="1670369028b20b26d1a09e1399bd6661f4a1f5ec441768d0c8d36875a4a435fc99732ff73559d8b0c1d6c024ee872efb", 0x30, 0x4b}], 0x2006, &(0x7f00000004c0)={[{}, {@sb={'sb', 0x3d, 0x8}}, {@user_xattr}, {@commit={'commit', 0x3d, 0x6}}], [{@subj_type}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x32, 0x63, 0x64, 0x38, 0x35, 0x61, 0x66], 0x2d, [0x33, 0x35, 0x63, 0x36], 0x2d, [0x35, 0x32, 0x38, 0x35], 0x2d, [0x31, 0x65, 0x61, 0x64], 0x2d, [0x66, 0x65, 0x64, 0x33, 0x39, 0x36, 0x34, 0x64]}}}, {@audit}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@euid_eq}]})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r9, r8)
poll(&(0x7f0000000240)=[{r7, 0xa}, {r9, 0x8050}], 0x2, 0xe349)
r10 = io_uring_setup(0x5bde, &(0x7f0000000580)={0x0, 0xb973, 0x4, 0x3, 0x2ba})
dup2(r4, r10)
r11 = dup2(r1, r0)
ioctl$SG_IO(r11, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:52:59 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 3)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:52:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_GET_PACK_ID(r2, 0x227c, &(0x7f0000000040))

[ 2468.140360] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2468.141267] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2468.144378] loop7: detected capacity change from 0 to 128
01:52:59 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2468.152963] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2468.154054] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2468.174403] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2468.175207] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:59 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000002c0)={0x1000, 0x6419, 0xffffdc74, "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"})
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000040))

[ 2468.253884] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2468.254684] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:52:59 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:52:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xffffff0f, 0x0})

[ 2468.335971] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2468.338256] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2468.382542] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2468.383276] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2468.955594] loop7: detected capacity change from 0 to 128
[ 2469.018551] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2469.019393] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:12 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:12 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:12 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_IBSS(r2, &(0x7f0000001300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x40, r3, 0x4, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BSS_BASIC_RATES={0x20, 0x24, [{0x12}, {0x2}, {0x18, 0x1}, {0x30}, {0x60, 0x1}, {0xb, 0x1}, {0x18}, {0x0, 0x1}, {0x4, 0x1}, {0x1b, 0x1}, {0x24, 0x1}, {0x5}, {0x1b, 0x1}, {0x12}, {0x5, 0x1}, {0x30, 0x1}, {0x24, 0x1}, {0x60, 0x1}, {0x1, 0x1}, {0x1b}, {0x49}, {0x3, 0x1}, {0x5}, {0x6, 0x1}, {0x16, 0x1}, {0x16, 0x1}, {0x1b, 0x1}, {0x36, 0x1}]}, @NL80211_ATTR_CONTROL_PORT={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x20004081)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_PACK_ID(r7, 0x227c, &(0x7f0000000040))
r9 = dup2(r5, r4)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000000100)={0x0, 0xfffffffffffffffc, 0xa, 0x4, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000080)="ea71cf38c1d99fa88888", &(0x7f0000001600)=""/4096, 0x401, 0x14, 0xffffffffffffffff, &(0x7f00000000c0)})
ioctl$SG_IO(r9, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:12 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:12 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xb, 0x80, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="2aee71010062e53c8cdd1c", 0x0, 0x0, 0x10002, 0x3, 0x0})
ioctl$GIO_FONT(r0, 0x4b60, &(0x7f0000000300)=""/4096)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040))

01:53:12 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfffffff5, 0x0})

01:53:12 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2480.864160] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2480.865412] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2480.869360] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2480.870692] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2480.885192] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2480.886552] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2480.979723] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2480.981096] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:24 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:24 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
vmsplice(r1, &(0x7f0000000240)=[{&(0x7f0000000040)="c92a4879ac612cd15532cc8da979ffce9a95378b2df1c72cc8f8bd44b3d07a4b6c9effee2d63de3b24b0bb72a00eb41c09c8e5e7b12cc155b4aebc95a3807cd98dc24d65e19baecea1c80c8e1e74b5080f2adaf4dbacccb8fbdfec2b461f87b88f7d8cb1912404b67b7c329b776fffe7b7f7a919073deb3f2baeda6cd4f54e2bf01d92e11dc705b4f9b9ceebbfbc4788c370f7aae7322f298bb9bbdbb51019f0a5f45b1481ddebfca0ed45cab40193fa0e523ca87906efe2e038a789c3f938db6072f4755b16a1bfb28a26b14c9ec90c842944dc243a9a4bd295a3306a0e15ccebfdf6d043e4e74eac7d0a", 0xeb}, {&(0x7f0000000140)="372b5057cd72cfdd024fb30b916ec35439e7c7fb534d162040029e6dd577c03a7d117a3bfcd9b8da0a7b21e59679e585a46e0b62b664e616dde3700000ad379656ef8b6bdd5285c0e6ba1d985043206930f15173bd6294c99bf9ed0bcea23f77f44277f7a6dffc766e474cd5d022d159c255fbe362aeb871e64b0c2f08ecb5f8c5d1fb9b0afb3e65f57f89f6744a3c2c4f0a9d116f3a35518e0f2cb5e2288ba51781cd802be5023690db22a0c1b48d20d331944826907932f5d7c93de3b1e3ae1648124894131a280931f60264434ff62aae1ba38378aa307154dba6b43b998ba157dc090ac3bf", 0xe7}, {&(0x7f0000000300)="7ca13de2e6fe74930c5ea35daf6d39dffe5a1b34189fb9b461c99b696325127476b5a6ddbf0bd9ee984eb5ec1d1a437bfc61e8ddfda0968176e7823a302d1dd3be2ff52c80cf6a879b9428cd7a293d8564ee19f983ab5c97f4d5857d22a2de49553a09fc8aea3ecc192b3fddaca8152d1adfd16e0a53b20503811bf39a6658d4b0f42c5a068362be6cbf7053", 0x8c}, {&(0x7f00000003c0)="c37919637a9cd1275cea336e909f809eae43c974bcbc3043326ffa8a385f1ca0192f45691559f14859d383f92066f7a742bee94a86a9077fa5441ae50c80b10432a32f2fdf2842", 0x47}], 0x4, 0x7)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfffffff6, 0x0})

01:53:24 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 5)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:24 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:24 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:53:24 executing program 6:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2493.274659] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.275389] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2493.311224] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.312633] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:24 executing program 6:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xfffffffe, 0x0})

[ 2493.339943] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.341287] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:24 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:24 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0xfffffffffffffffd, 0x60100)
syz_open_dev$sg(&(0x7f00000000c0), 0x3, 0x2280)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x12, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="2aee71621325d7c4610167ce4c1954ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0xe5, 0x4})

[ 2493.429258] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.429957] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:24 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 6)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:24 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$BTRFS_IOC_QUOTA_CTL(r1, 0xc0109428, &(0x7f0000000040)={0x2, 0x85ff})

01:53:25 executing program 6:
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:25 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0xffffffff, 0x0})

01:53:25 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, 0xffffffffffffffff)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

[ 2493.603956] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.605317] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2493.608950] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.609615] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2493.610192] FAULT_INJECTION: forcing a failure.
[ 2493.610192] name failslab, interval 1, probability 0, space 0, times 0
[ 2493.612262] CPU: 0 UID: 0 PID: 25795 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2493.612293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2493.612307] Call Trace:
[ 2493.612315]  <TASK>
[ 2493.612325]  dump_stack_lvl+0xfa/0x120
[ 2493.612357]  should_fail_ex+0x4d7/0x5e0
[ 2493.612390]  ? __d_alloc+0x31/0xa10
[ 2493.612418]  should_failslab+0xc2/0x120
[ 2493.612449]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2493.612485]  ? perf_trace_lock+0xb5/0x5d0
[ 2493.612519]  ? __mutex_add_waiter+0x202/0x210
[ 2493.612564]  ? __d_alloc+0x31/0xa10
[ 2493.612589]  __d_alloc+0x31/0xa10
[ 2493.612617]  ? lock_acquire+0x15e/0x2f0
[ 2493.612655]  d_alloc_parallel+0x112/0x13c0
[ 2493.612692]  ? lock_release+0xc8/0x290
[ 2493.612727]  ? 0xffffffffa0000000
[ 2493.612747]  ? __is_insn_slot_addr+0x140/0x290
[ 2493.612781]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2493.612831]  ? lockdep_init_map_type+0x4b/0x240
[ 2493.612868]  ? lockdep_init_map_type+0x4b/0x240
[ 2493.612912]  __lookup_slow+0x192/0x480
[ 2493.612950]  ? __pfx___lookup_slow+0x10/0x10
[ 2493.612983]  ? __d_lookup+0x73/0x490
[ 2493.613050]  ? d_lookup+0xcd/0x140
[ 2493.613095]  lookup_noperm+0xe3/0x110
[ 2493.613133]  simple_start_creating+0xd3/0x1b0
[ 2493.613165]  debugfs_start_creating+0xc2/0x180
[ 2493.613202]  debugfs_create_dir+0x27/0x5b0
[ 2493.613242]  do_blk_trace_setup+0x822/0xc30
[ 2493.613288]  blk_trace_setup+0xdc/0x1b0
[ 2493.613325]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2493.613360]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2493.613391]  ? proc_fail_nth_write+0x97/0x220
[ 2493.613435]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2493.613481]  sg_ioctl+0x69d/0x2720
[ 2493.613519]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2493.613552]  ? __pfx_sg_ioctl+0x10/0x10
[ 2493.613581]  ? __fget_files+0x34/0x3b0
[ 2493.613606]  ? find_held_lock+0x2b/0x80
[ 2493.613631]  ? __fget_files+0x203/0x3b0
[ 2493.613656]  ? lock_release+0xc8/0x290
[ 2493.613701]  ? selinux_file_ioctl+0xb9/0x280
[ 2493.613729]  ? __pfx_sg_ioctl+0x10/0x10
[ 2493.613765]  __x64_sys_ioctl+0x18f/0x210
[ 2493.613806]  do_syscall_64+0xbf/0x390
[ 2493.613838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2493.613863] RIP: 0033:0x7fa15dc46b19
[ 2493.613880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2493.613903] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2493.613926] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2493.613942] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2493.613956] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2493.613970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2493.613984] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2493.614024]  </TASK>
[ 2493.656113] blktrace: debugfs_dir not present for sg0 so skipping
01:53:25 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:25 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:25 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x8800)
fsetxattr$trusted_overlay_upper(r0, &(0x7f00000000c0), &(0x7f0000000300)={0x0, 0xfb, 0x1015, 0x3, 0x1, "155ad98ed0f8d615f5071f60f6e4406e", "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"}, 0x1015, 0x1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000000040)=0x5b79)
r5 = dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r5, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r6=>r2}, './file0\x00'})
ioctl$TIOCGPTPEER(r6, 0x5441, 0x2)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:25 executing program 4:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2493.777872] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.778588] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2493.792733] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2493.793417] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:35 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:35 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0xfe, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
socket$unix(0x1, 0x2, 0x0)

01:53:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 7)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:35 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:35 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:53:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:53:35 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x420000)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TCFLSH(r0, 0x540b, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x3f, &(0x7f0000000040), 0x4)

01:53:35 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2503.991521] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2503.992853] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2504.010500] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2504.011729] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2504.053903] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2504.055113] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:35 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:53:35 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2504.209260] FAULT_INJECTION: forcing a failure.
[ 2504.209260] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.210857] CPU: 1 UID: 0 PID: 25842 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2504.210885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2504.210897] Call Trace:
[ 2504.210905]  <TASK>
[ 2504.210913]  dump_stack_lvl+0xfa/0x120
[ 2504.210942]  should_fail_ex+0x4d7/0x5e0
[ 2504.210972]  ? alloc_inode+0x67/0x250
[ 2504.211000]  should_failslab+0xc2/0x120
[ 2504.211032]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2504.211074]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2504.211107]  ? alloc_inode+0x67/0x250
[ 2504.211134]  alloc_inode+0x67/0x250
[ 2504.211173]  new_inode+0x1e/0x160
[ 2504.211208]  debugfs_create_dir+0x9a/0x5b0
[ 2504.211245]  do_blk_trace_setup+0x822/0xc30
[ 2504.211289]  blk_trace_setup+0xdc/0x1b0
[ 2504.211321]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2504.211358]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2504.211386]  ? proc_fail_nth_write+0x97/0x220
[ 2504.211426]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2504.211467]  sg_ioctl+0x69d/0x2720
[ 2504.211500]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2504.211528]  ? __pfx_sg_ioctl+0x10/0x10
[ 2504.211553]  ? __fget_files+0x34/0x3b0
[ 2504.211575]  ? find_held_lock+0x2b/0x80
[ 2504.211596]  ? __fget_files+0x203/0x3b0
[ 2504.211618]  ? lock_release+0xc8/0x290
[ 2504.211657]  ? selinux_file_ioctl+0xb9/0x280
[ 2504.211681]  ? __pfx_sg_ioctl+0x10/0x10
[ 2504.211711]  __x64_sys_ioctl+0x18f/0x210
[ 2504.211748]  do_syscall_64+0xbf/0x390
[ 2504.211775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2504.211803] RIP: 0033:0x7fa15dc46b19
[ 2504.211820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2504.211840] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2504.211861] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2504.211874] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2504.211886] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.211898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2504.211910] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2504.211945]  </TASK>
[ 2504.240595] debugfs: out of free dentries, can not create directory 'sg0'
01:53:35 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x101001)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2504.290202] blktrace: debugfs_dir not present for sg0 so skipping
[ 2504.308268] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2504.309635] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:47 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x24480, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
dup2(r2, r0)
syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x56402)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffb, 0xa, 0x1f, @scatter={0x0, 0x0, 0x0}, &(0x7f00000000c0)="2aee7162a76254ba3560", 0x0, 0x0, 0x10, 0xfffffffc, 0x0})

01:53:47 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$TIOCPKT(r5, 0x5420, &(0x7f00000000c0)=0x6)

01:53:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:53:47 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 9)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:47 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:47 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2515.715379] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2515.716502] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2515.747631] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2515.748757] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2515.774770] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2515.776113] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2515.799036] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:53:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, 0x0)

[ 2515.800335] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:47 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
dup2(r2, r2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100004bf5e49a010100000018000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="2aee7162a76254ba3560", 0x0, 0x7, 0x0, 0x1, 0x0})

01:53:47 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = eventfd(0x1)
ioctl$BTRFS_IOC_RM_DEV(r2, 0x5000940b, &(0x7f0000001600)={{r1}, "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"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x70)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000900)={0x0, 0xfffffffffffffffd, 0xcf, 0xfa, @scatter={0x3, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)=""/37, 0x25}, {&(0x7f00000000c0)=""/101, 0x65}, {&(0x7f0000000140)=""/163, 0xa3}]}, &(0x7f0000000700)="ef582600d761c1699f5ef56cd8b78292c2ca94712188e117eb61644fe11e90b00486b72783f029e22fd5efddee0ec2e610cd96d1c96ad03c6f6bf3c69b0a52b4c6753805ad6b71d9283fe6c1558edd5715b366fed986fa557a016cd7f38cefc0006eb8156a914a977ecd0e36699f1170999a03b8d7e9c4052a877ff60b7f7ece710ae1eef20b2af6ade8bdca66f4fda9307aaf96c3d8dbd5ec2690a6860de92d94ba8b0fcd86638619fef32ff73a5cbcd8a6830ec23b9c8fa327e3f0e9b2f808ad7bc957b2a0db3a648253af37a36a", &(0x7f0000000800)=""/212, 0x0, 0x10004, 0x2, &(0x7f0000000240)})
dup2(r4, r3)
ioctl$KDFONTOP_GET(r3, 0x4b72, &(0x7f0000000040)={0x1, 0x0, 0x16, 0x1d, 0x1e6, &(0x7f0000000300)})
r6 = dup2(r1, r0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:47 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:53:47 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, 0x0)

01:53:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:53:47 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2516.017571] FAULT_INJECTION: forcing a failure.
[ 2516.017571] name failslab, interval 1, probability 0, space 0, times 0
[ 2516.019319] CPU: 1 UID: 0 PID: 25884 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2516.019350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2516.019364] Call Trace:
[ 2516.019371]  <TASK>
[ 2516.019380]  dump_stack_lvl+0xfa/0x120
[ 2516.019412]  should_fail_ex+0x4d7/0x5e0
[ 2516.019444]  ? security_inode_alloc+0x3e/0x130
[ 2516.019469]  should_failslab+0xc2/0x120
[ 2516.019498]  kmem_cache_alloc_noprof+0x80/0x690
[ 2516.019532]  ? __pfx_map_id_range_down+0x10/0x10
[ 2516.019577]  ? security_inode_alloc+0x3e/0x130
[ 2516.019600]  security_inode_alloc+0x3e/0x130
[ 2516.019627]  inode_init_always_gfp+0xc94/0xff0
[ 2516.019654]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2516.019691]  alloc_inode+0x8d/0x250
[ 2516.019724]  new_inode+0x1e/0x160
[ 2516.019758]  debugfs_create_dir+0x9a/0x5b0
[ 2516.019803]  do_blk_trace_setup+0x822/0xc30
[ 2516.019848]  blk_trace_setup+0xdc/0x1b0
[ 2516.019883]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2516.019915]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2516.019946]  ? proc_fail_nth_write+0x97/0x220
[ 2516.019988]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2516.020039]  sg_ioctl+0x69d/0x2720
[ 2516.020090]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2516.020121]  ? __pfx_sg_ioctl+0x10/0x10
[ 2516.020148]  ? __fget_files+0x34/0x3b0
[ 2516.020172]  ? find_held_lock+0x2b/0x80
[ 2516.020195]  ? __fget_files+0x203/0x3b0
[ 2516.020219]  ? lock_release+0xc8/0x290
[ 2516.020261]  ? selinux_file_ioctl+0xb9/0x280
[ 2516.020287]  ? __pfx_sg_ioctl+0x10/0x10
[ 2516.020320]  __x64_sys_ioctl+0x18f/0x210
[ 2516.020359]  do_syscall_64+0xbf/0x390
[ 2516.020390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2516.020414] RIP: 0033:0x7fa15dc46b19
[ 2516.020449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2516.020469] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2516.020490] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2516.020506] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2516.020519] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2516.020533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2516.020546] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2516.020585]  </TASK>
[ 2516.054240] debugfs: out of free dentries, can not create directory 'sg0'
[ 2516.110916] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2516.112210] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, 0x0)

[ 2516.131380] blktrace: debugfs_dir not present for sg0 so skipping
[ 2516.148579] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2516.149419] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:53:59 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:53:59 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000040)="e16950273fcb1e8e4d6c57446577293804dcf89d34b890db106cea2a8bf2059ed516eba8dac814e8adef6c850f9f658ab0c0b165263b19808c7da6114c12060a367412f889ebbe55fd69dc377eaa3a2ecf2fdf56e26b6aff5f1dc5a62328ce7d98be6a1a401b17be33809860db4b854213492b70df37ebffa7206cd1ad6f5c5a4a04ba936ca9b4aa6178fdaeae51f00544a0e5ee75c0ed22fb3ee90fae1cdcaa392890a97f3faf0d3b1bf5f743e262f056dab761", 0xb4}, {&(0x7f0000000300)="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", 0x1000}], 0x2)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:59 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:53:59 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 11)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:53:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)=0xc5)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000240)=0x3ff)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000300)={0x0, 0xfffffffffffffffb, 0x2, 0x1, @scatter={0x1, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)=""/110, 0x6e}]}, &(0x7f0000000140)="a20d", &(0x7f0000000180)=""/113, 0x6df, 0x0, 0x2, &(0x7f0000000200)})

01:53:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:53:59 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2528.390429] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2528.391752] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2528.396718] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2528.398008] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2528.432162] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2528.433430] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2528.471446] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2528.472686] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:10 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:54:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:10 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)

01:54:10 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 12)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:10 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:10 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x407203, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:54:10 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="ff7f00e4000000002e2f666960653000"])
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f00000001c0))
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/tty/drivers\x00', 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000080)={0x53, 0x0, 0xa, 0x4, @buffer={0x0, 0x3d, &(0x7f0000000100)=""/61}, &(0x7f0000000040)="2aee7162a76254ba3560", 0x0, 0x0, 0x14, 0x0, 0x0})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
ioctl$HIDIOCGUSAGES(r6, 0xd01c4813, &(0x7f0000000300)={{0x2, 0x3, 0x91a, 0x5, 0x9, 0x1f}, 0x2a3, [0x8, 0x5, 0x6, 0x1, 0x1ff, 0x8, 0x400, 0x689, 0x0, 0x4, 0x7fff, 0x1f, 0x10000, 0x80, 0x9, 0x5, 0x800, 0x1, 0x2, 0x0, 0x6, 0xcc4, 0x2d3b, 0x6, 0x8000, 0x1, 0x6, 0x1000, 0x1f, 0xfffffffc, 0x4, 0x200, 0x7, 0x5, 0x2, 0x1cd5fd63, 0x1, 0x64, 0x7, 0x43, 0x1, 0x3, 0x100, 0x9, 0x10000, 0x7f, 0xfffffff8, 0x40, 0x10000, 0x4, 0x1, 0x17, 0x5, 0x4, 0x3, 0x8, 0x200, 0x81, 0xffffff45, 0x7, 0x6, 0x3, 0x83, 0x101, 0x4, 0x5, 0x7, 0x10000, 0x0, 0x10001, 0x1, 0x0, 0x800, 0xffffffff, 0x7ff, 0x8, 0x64a3, 0x7, 0x5, 0x8, 0xa60, 0x3, 0x80000001, 0x3, 0x0, 0x2, 0x3ff, 0x1, 0x4, 0x80000001, 0x0, 0xe964, 0xd2, 0x9, 0x57b5, 0x2, 0x8, 0xc4, 0x3, 0xc1, 0x2, 0x257, 0x6, 0xeb, 0xba3d, 0x0, 0x4, 0x3ff, 0x1, 0x2, 0x1, 0x6, 0x8001, 0x9, 0x800, 0x9, 0xfffffffa, 0xaf, 0x6, 0x8000, 0x800, 0x2a, 0x6, 0xffff, 0x101, 0x8000, 0xfffff800, 0x7, 0x8, 0x1, 0x0, 0x1f, 0x4, 0x0, 0x5, 0x7, 0x7, 0x4, 0x5, 0x1, 0x7, 0x4, 0x1f, 0x2, 0x2, 0x7, 0x7, 0x0, 0x7fff, 0x7, 0x1, 0x79, 0x8, 0x1, 0x9, 0x10001, 0x2, 0x3, 0x0, 0xfffffff9, 0x0, 0x3f, 0x1000, 0x8, 0x8, 0x6274, 0xffff0000, 0x6, 0xfffffffc, 0x7ff, 0x0, 0xfffeffff, 0x8000, 0x2, 0x4, 0xffff, 0x3f, 0x1ff, 0x4804cb64, 0x8, 0x0, 0xfffffff9, 0x7, 0x2, 0xffffffff, 0x1f, 0x0, 0x7, 0x4, 0x20, 0x6, 0x7fffffff, 0x3, 0x1cc6, 0x7, 0x10001, 0x4, 0xfffffffc, 0x800, 0x81, 0x200, 0x101, 0x7f, 0x101, 0x2, 0xffff8001, 0xd2, 0x3, 0x9, 0x9, 0x8, 0x6, 0x7b, 0x0, 0xf7, 0xffffffff, 0xf3d6, 0x1, 0x101, 0x9ce5, 0x1, 0x6, 0x2, 0x8, 0x40, 0x77, 0xe663, 0x7fffffff, 0x4, 0x7, 0x5, 0x6, 0x6, 0x7f, 0x4, 0x3ff, 0x7, 0x8d, 0x9, 0x3, 0x5, 0x1f, 0x4, 0x2, 0x90000000, 0x3, 0x7, 0x4, 0x7fffffff, 0x0, 0x9, 0x20b50000, 0x20, 0x80000000, 0x7b2, 0x2, 0x7, 0x8, 0x3, 0x3, 0x6, 0x78bf, 0x1, 0x1, 0x7, 0xabd5, 0xffffffce, 0xffffff7f, 0x7, 0xff, 0x3, 0x0, 0x5, 0x8, 0x8, 0x7, 0xff, 0x0, 0x7, 0x40000000, 0x4, 0xf8, 0x1, 0xffffcffc, 0x8, 0x1, 0x5, 0x3c6b, 0x6, 0x0, 0x3ff, 0x2d, 0x0, 0x8, 0x8, 0x1, 0x10001, 0x3, 0x1, 0x0, 0x5, 0x2, 0xfffffffa, 0x1, 0x10001, 0x4b, 0x80000001, 0x6, 0x7b5, 0x9, 0x80, 0xfffffffb, 0x1c50834e, 0x8, 0x1, 0x200, 0x2, 0x8922, 0x85, 0x8, 0x7f, 0x1, 0xb29, 0x7, 0x100, 0x3f, 0x5, 0x3f3, 0x7fffffff, 0x8, 0x1ab3d5b8, 0xffff3a86, 0x37c00000, 0x80000000, 0x5, 0x3, 0x7, 0x8, 0x5, 0x0, 0x2, 0x8000, 0x6, 0x7, 0x7, 0x101, 0x6, 0x80000000, 0x46, 0x4, 0xffff, 0x3, 0x401, 0x0, 0xa31, 0x5, 0x8000, 0x18268000, 0x8, 0x5, 0x32cf, 0x7, 0x95df, 0x7, 0x3, 0x1, 0x9, 0x2, 0x4, 0x80000001, 0x5, 0x1, 0xc67, 0x4, 0xfffffffe, 0x1, 0x7fffffff, 0x3ff, 0x0, 0x7, 0x2, 0x41, 0x4, 0xffffffff, 0x7, 0x5, 0x21, 0x4, 0x3, 0x9, 0x6, 0x9, 0x8001, 0x401, 0x8, 0x5, 0x10000, 0xc0, 0xff, 0x2, 0x10001, 0x40, 0x2, 0x5, 0x0, 0x5, 0x7fffffff, 0x9, 0xa3, 0x9, 0x6, 0x1, 0x4, 0xae4e, 0x7, 0x3, 0x7, 0x20, 0x5, 0x3c, 0x7, 0x8, 0x3, 0xf4d, 0x6, 0x80000000, 0x1, 0x7aa, 0x4, 0x4, 0xe75, 0x1, 0x401, 0xfff, 0x3ff, 0x0, 0x9, 0x4, 0x8, 0x1, 0x1000, 0x7fffffff, 0x401, 0x9, 0x2, 0x4, 0x1, 0x0, 0x7, 0x732, 0x9, 0x10000, 0x2, 0x43, 0x5, 0xa2800000, 0x8, 0x4, 0x8, 0xffffffe1, 0x10000, 0x4, 0x1000, 0x8, 0x81, 0x2, 0x83, 0x7, 0x6, 0x0, 0xe744, 0x2, 0x15, 0x3, 0x3f, 0xbb6, 0x1, 0x8, 0x7, 0x0, 0x1ff, 0x9, 0x800, 0x2, 0x0, 0x101, 0x9, 0xf5, 0x3, 0x0, 0x3, 0x6, 0x9, 0x40, 0x1f, 0x8, 0xfffffffb, 0x80, 0x1, 0xfffffffb, 0x4, 0x101, 0x1, 0x8000, 0x3, 0xaf5, 0x5, 0x2, 0x4, 0x4, 0x6, 0x18, 0x7, 0x4c, 0x7f, 0xa21, 0xda, 0x712676a6, 0x3, 0xd69, 0x8, 0xfffffffb, 0x3, 0x10000, 0x0, 0x0, 0x8, 0x2, 0x7, 0x0, 0x465, 0x8ca, 0x5, 0x40, 0x0, 0x3, 0x7, 0x401, 0x9, 0x1, 0x7fff, 0x3, 0x1, 0x8001, 0x4, 0x80000000, 0x1ff, 0x80000000, 0x1f, 0x5, 0x1, 0x2, 0x33, 0xde, 0x0, 0x1, 0x8, 0x94c8, 0x4, 0xb8, 0x7fffffff, 0x4, 0x7, 0x7, 0x9, 0x9, 0x80, 0x7fff, 0x6, 0x9, 0x7, 0x5, 0x8000, 0x4, 0x200, 0x3, 0x8, 0x4, 0x80000000, 0x401, 0x0, 0x2, 0x32, 0x101, 0x9, 0x6, 0x3, 0x1, 0xb7, 0x2, 0xc35, 0xbe6, 0x3, 0xfffeffff, 0x7fff, 0xfff, 0x400, 0x400, 0x9, 0x20, 0x7ff, 0x6, 0xfff, 0x6, 0x6, 0x8000, 0x0, 0x0, 0x8, 0x7, 0x1, 0x200, 0x8, 0x3, 0x3, 0x8, 0x8, 0xfffff800, 0x6, 0x4, 0x5, 0x7, 0x8, 0x81, 0xfffff800, 0x1, 0x6, 0x2, 0x5, 0x1, 0x4, 0x200, 0x0, 0x80000, 0x1, 0x7ff, 0x3f, 0x5, 0x373c, 0x8, 0x5, 0x80000000, 0x7, 0x1, 0xba13, 0x1ff, 0x7, 0x5, 0x4, 0x3f4, 0x6b, 0x20, 0x3f, 0x3, 0x6, 0x5, 0x8fda, 0x9, 0x10000, 0x7, 0xe669, 0x80000001, 0x80, 0x1, 0x9, 0x7fffffff, 0xffffffff, 0xffffffff, 0x1, 0x6, 0x7f, 0x660, 0x8, 0x86c, 0x9839, 0x80, 0x7, 0x3517, 0x9cb, 0x7, 0xd0, 0x0, 0x81, 0x10001, 0xa9a2, 0x3, 0xe67, 0x3, 0x4, 0x6, 0x2, 0x1, 0x6, 0x3, 0xffff, 0xffff, 0x6, 0x7, 0x5, 0x2, 0x401, 0xff, 0x3, 0x0, 0xfffffffd, 0x2, 0x401, 0x1, 0x1, 0x1, 0x2, 0x2, 0x2, 0xffffffff, 0x1ff, 0x3dd70c77, 0xb, 0x2e, 0xc99, 0xb7c, 0x23b, 0xfffffffb, 0x3, 0xacd6, 0x1, 0x40, 0x5, 0xab53, 0x1, 0xfffffff7, 0x7, 0x9, 0x81, 0x8000, 0x8e, 0x7, 0x6c1, 0x2, 0xfb66, 0x0, 0x80, 0x5c, 0x5, 0x5f3f, 0x1000, 0x8, 0xfffff215, 0x1, 0x0, 0xffff, 0xb6d, 0x1, 0x7, 0x401, 0x5, 0xffffffff, 0x7fffffff, 0x4, 0x3, 0x4, 0xfffffff9, 0x5, 0x7, 0x9, 0x1, 0x8, 0x2, 0x8, 0x615, 0x5, 0x6, 0x2, 0x1, 0x200000, 0x80000001, 0x4, 0x5, 0x4, 0x6, 0x7ff, 0x101, 0x7, 0x1ff, 0x5, 0x1, 0x8da, 0x9, 0x4, 0x2, 0x6, 0x3c4, 0x4, 0xb34, 0x3, 0x6, 0x3, 0x7, 0x0, 0x0, 0x5, 0x1, 0x3, 0x81, 0x9, 0x800, 0x9, 0x7fffffff, 0x7f, 0x401, 0x481, 0x6, 0x4, 0xfffffe01, 0x9, 0xfff, 0x5, 0x0, 0x1f, 0x1, 0x0, 0x9, 0x10000, 0x5, 0x0, 0x347ed554, 0x9, 0x7, 0x9, 0x2, 0x3f, 0x4e1a, 0x0, 0x2, 0x40, 0x1ff, 0x100, 0x9, 0x40, 0x401, 0x5, 0x0, 0x0, 0x1, 0x91, 0x8000000, 0x7, 0x1ff, 0x2, 0x3, 0x3, 0x200, 0x10000, 0x0, 0xfffffff8, 0xda, 0x7f, 0x10000, 0xab, 0x100, 0x2, 0x20, 0x800, 0x8, 0x3ff, 0x0, 0x2, 0x7, 0x6b, 0xc0000000, 0x10001, 0x0, 0x0, 0x20, 0xdcff, 0x2d98, 0x1, 0xf9, 0x0, 0x7, 0xb0, 0x4, 0x6, 0x9, 0xf0000000, 0x6, 0x0, 0x0, 0x9, 0x3f, 0x1000, 0x1, 0x8000, 0xfffffffc, 0x1000, 0x9, 0x1f, 0xcb21, 0x3, 0x1, 0x0, 0x3f, 0x7, 0x4, 0x4, 0x4, 0xffffff01, 0x1, 0xffff, 0x3, 0x200, 0x82, 0x6b0, 0x2, 0x7, 0x6, 0x4, 0x4, 0x5, 0x9, 0x3ffb, 0xeb4, 0x58e, 0x48, 0x5, 0x7ff, 0x10000, 0x1000, 0x7fff, 0x9, 0x29e219b2, 0x5, 0x100, 0x3, 0x4, 0xc625, 0x2, 0xb6bb, 0xe9, 0x1, 0x3ff, 0x2, 0x8001, 0xf929, 0x1d84, 0x101, 0x6, 0x6, 0x3, 0x2, 0xa9, 0x0, 0x5, 0x80000001, 0xbe20, 0x8, 0x101, 0x9, 0x71a9, 0xe67, 0x6, 0x6, 0x6be, 0x1, 0x3, 0x80000001, 0x0, 0xfa0, 0x1, 0x2, 0xfffffffa, 0x7, 0x5, 0x5, 0x60bf, 0x80000000, 0x0, 0x3, 0x80000000, 0x7f, 0x10000, 0x0, 0x4, 0x8, 0xfffffff7, 0x12000, 0x8, 0xfffffbff, 0x8, 0xfffffff9, 0x1, 0xbc62, 0x0, 0x8, 0xe06, 0x6, 0x93, 0x800, 0x4, 0x6, 0x0, 0xfff, 0xcfd0, 0x1, 0xca90, 0x9, 0x6154, 0xe04f, 0x2, 0x94c2, 0x3, 0x8, 0x7, 0x0, 0x3bf, 0x8f7, 0x2, 0x1, 0x0, 0x8, 0x28000, 0x400, 0xfffffffb, 0x0, 0xfffffffb]})

[ 2538.619181] FAULT_INJECTION: forcing a failure.
[ 2538.619181] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2538.621255] CPU: 1 UID: 0 PID: 26044 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2538.621287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2538.621301] Call Trace:
[ 2538.621309]  <TASK>
[ 2538.621318]  dump_stack_lvl+0xfa/0x120
[ 2538.621350]  should_fail_ex+0x4d7/0x5e0
[ 2538.621384]  should_fail_alloc_page+0xe0/0x110
[ 2538.621418]  prepare_alloc_pages+0x1eb/0x550
[ 2538.621445]  ? find_held_lock+0x2b/0x80
[ 2538.621477]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2538.621513]  ? 0xffffffffa0000000
[ 2538.621533]  ? __is_insn_slot_addr+0x140/0x290
[ 2538.621566]  ? kernel_text_address+0x5b/0xc0
[ 2538.621599]  ? __kernel_text_address+0xd/0x40
[ 2538.621631]  ? unwind_get_return_address+0x59/0xa0
[ 2538.621653]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2538.621691]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2538.621731]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2538.621771]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2538.621812]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2538.621852]  ? __lock_acquire+0xc65/0x1b70
[ 2538.621881]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2538.621921]  ? policy_nodemask+0xeb/0x4e0
[ 2538.621963]  alloc_pages_mpol+0xed/0x340
[ 2538.622000]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2538.622036]  ? do_raw_spin_lock+0x123/0x260
[ 2538.622075]  ? find_held_lock+0x2b/0x80
[ 2538.622106]  alloc_pages_noprof+0x9d/0x180
[ 2538.622146]  get_free_pages_noprof+0x10/0xb0
[ 2538.622170]  inode_doinit_with_dentry+0x8f3/0x1210
[ 2538.622207]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[ 2538.622231]  ? find_held_lock+0x2b/0x80
[ 2538.622256]  ? new_inode+0x10c/0x160
[ 2538.622298]  selinux_d_instantiate+0x27/0x30
[ 2538.622322]  security_d_instantiate+0x58/0xb0
[ 2538.622356]  d_instantiate+0x5e/0xa0
[ 2538.622389]  debugfs_create_dir+0x173/0x5b0
[ 2538.622430]  do_blk_trace_setup+0x822/0xc30
[ 2538.622479]  blk_trace_setup+0xdc/0x1b0
[ 2538.622516]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2538.622568]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2538.622613]  sg_ioctl+0x69d/0x2720
[ 2538.622651]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2538.622682]  ? __pfx_sg_ioctl+0x10/0x10
[ 2538.622711]  ? __fget_files+0x34/0x3b0
[ 2538.622737]  ? find_held_lock+0x2b/0x80
[ 2538.622761]  ? __fget_files+0x203/0x3b0
[ 2538.622786]  ? lock_release+0xc8/0x290
[ 2538.622831]  ? selinux_file_ioctl+0xb9/0x280
[ 2538.622859]  ? __pfx_sg_ioctl+0x10/0x10
[ 2538.622894]  __x64_sys_ioctl+0x18f/0x210
[ 2538.622935]  do_syscall_64+0xbf/0x390
[ 2538.622967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2538.622990] RIP: 0033:0x7fa15dc46b19
[ 2538.623008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2538.623030] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2538.623053] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2538.623069] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2538.623083] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2538.623096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2538.623110] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2538.623150]  </TASK>
[ 2538.676932] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.678279] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:10 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2538.683903] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.685222] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2538.697985] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.699574] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:54:10 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 13)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:10 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r3)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)

01:54:10 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000040)={0x74ffd081, 0x90b, 0x81, 0x2, 0x5, "3a3e6306786b49f60bc26c8327ff3bedaa6d96", 0x7, 0xfff})
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000080)={0x2b, 0xc58f, 0x1f, "1518d111d23f853ec52b5508f8eae8843811b87016c960da532d0beb38a9d7ffa847528deb12c11286bcb9"})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2538.886223] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.886922] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2538.889873] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.891145] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:10 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2538.937866] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.938581] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2538.954867] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2538.955567] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:10 executing program 7:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x102)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x8000)

[ 2538.968136] FAULT_INJECTION: forcing a failure.
[ 2538.968136] name failslab, interval 1, probability 0, space 0, times 0
[ 2538.969103] CPU: 0 UID: 0 PID: 26168 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2538.969120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2538.969127] Call Trace:
[ 2538.969132]  <TASK>
[ 2538.969137]  dump_stack_lvl+0xfa/0x120
[ 2538.969156]  should_fail_ex+0x4d7/0x5e0
[ 2538.969174]  ? __d_alloc+0x31/0xa10
[ 2538.969189]  should_failslab+0xc2/0x120
[ 2538.969206]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2538.969226]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2538.969251]  ? __d_alloc+0x31/0xa10
[ 2538.969265]  __d_alloc+0x31/0xa10
[ 2538.969283]  d_alloc_parallel+0x112/0x13c0
[ 2538.969303]  ? trace_sched_exit_tp+0xbf/0x100
[ 2538.969317]  ? __schedule+0xf95/0x3e30
[ 2538.969342]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2538.969359]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2538.969380]  ? lockdep_init_map_type+0x4b/0x240
[ 2538.969399]  ? lockdep_init_map_type+0x4b/0x240
[ 2538.969421]  __lookup_slow+0x192/0x480
[ 2538.969440]  ? __pfx___lookup_slow+0x10/0x10
[ 2538.969457]  ? __d_lookup+0x73/0x490
[ 2538.969489]  ? d_lookup+0xcd/0x140
[ 2538.969512]  lookup_noperm+0xe3/0x110
[ 2538.969531]  simple_start_creating+0xd3/0x1b0
[ 2538.969547]  debugfs_start_creating+0xc2/0x180
[ 2538.969567]  __debugfs_create_file+0x62/0x660
[ 2538.969589]  debugfs_create_file_full+0x41/0x60
[ 2538.969610]  do_blk_trace_setup+0x429/0xc30
[ 2538.969633]  blk_trace_setup+0xdc/0x1b0
[ 2538.969651]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2538.969669]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2538.969684]  ? proc_fail_nth_write+0x97/0x220
[ 2538.969707]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2538.969732]  sg_ioctl+0x69d/0x2720
[ 2538.969752]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2538.969769]  ? __pfx_sg_ioctl+0x10/0x10
[ 2538.969784]  ? __fget_files+0x34/0x3b0
[ 2538.969801]  ? find_held_lock+0x2b/0x80
[ 2538.969813]  ? __fget_files+0x203/0x3b0
[ 2538.969826]  ? lock_release+0xc8/0x290
[ 2538.969848]  ? selinux_file_ioctl+0xb9/0x280
[ 2538.969862]  ? __pfx_sg_ioctl+0x10/0x10
[ 2538.969880]  __x64_sys_ioctl+0x18f/0x210
[ 2538.969901]  do_syscall_64+0xbf/0x390
[ 2538.969918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2538.969931] RIP: 0033:0x7fa15dc46b19
[ 2538.969941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2538.969953] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2538.969965] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2538.969973] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2538.969980] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2538.969987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2538.969994] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2538.970014]  </TASK>
01:54:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:54:10 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$TCSETAW(r2, 0x5407, &(0x7f0000000080)={0x3, 0xffff, 0x6, 0x8, 0x14, "97bd42602c8d0b63"})
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e24, 0x6, @private2, 0xffff21e2}, 0x1c)
r3 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7, 0x105800)
ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x8)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2539.120645] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2539.121430] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:20 executing program 2:
readv(0xffffffffffffffff, &(0x7f0000001800)=[{&(0x7f0000000300)=""/255, 0xff}, {&(0x7f0000000400)=""/57, 0x39}, {&(0x7f0000000440)=""/248, 0xf8}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/33, 0x21}, {&(0x7f0000001600)=""/244, 0xf4}, {&(0x7f0000001700)=""/217, 0xd9}], 0x7)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000000040)=""/206, 0xce}, {&(0x7f0000000140)=""/153, 0x99}, {&(0x7f0000000200)=""/30, 0x1e}], 0x3, 0x2, 0x9)

01:54:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:20 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
write$binfmt_aout(r0, &(0x7f0000000300)={{0x107, 0x1, 0x5, 0x160, 0x88c2, 0x2, 0x342, 0x3}, "035d1ff0c06db758a9bada50b8dfde2246b4cd3a51a4876cceccb925b2d90ae835eb930b1878", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x646)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:20 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 14)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:20 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:54:20 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:20 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

[ 2549.523386] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.524686] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2549.583481] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.584851] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:21 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:21 executing program 2:
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, &(0x7f0000000040)=0xf77)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0xffffffffffffffe1, 0x200000)
r2 = dup2(r1, r0)
ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f00000000c0)={0x0, 0x7, 0x0, 0x9})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 15)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000080), 0x1, 0xc0)
r2 = syz_open_pts(r0, 0x400800)
ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000040)=0x9)
r3 = dup2(r1, r0)
r4 = syz_open_pts(r3, 0x200)
ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f00000000c0))
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:21 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2549.784397] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.785656] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:21 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:21 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2549.827447] FAULT_INJECTION: forcing a failure.
[ 2549.827447] name failslab, interval 1, probability 0, space 0, times 0
[ 2549.829366] CPU: 1 UID: 0 PID: 26221 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2549.829396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2549.829408] Call Trace:
[ 2549.829416]  <TASK>
[ 2549.829424]  dump_stack_lvl+0xfa/0x120
[ 2549.829456]  should_fail_ex+0x4d7/0x5e0
[ 2549.829487]  ? alloc_inode+0x67/0x250
[ 2549.829517]  should_failslab+0xc2/0x120
[ 2549.829546]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2549.829590]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2549.829625]  ? alloc_inode+0x67/0x250
[ 2549.829653]  alloc_inode+0x67/0x250
[ 2549.829684]  new_inode+0x1e/0x160
[ 2549.829719]  __debugfs_create_file+0xd3/0x660
[ 2549.829759]  debugfs_create_file_full+0x41/0x60
[ 2549.829804]  do_blk_trace_setup+0x429/0xc30
[ 2549.829847]  blk_trace_setup+0xdc/0x1b0
[ 2549.829882]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2549.829914]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2549.829944]  ? proc_fail_nth_write+0x97/0x220
[ 2549.829986]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2549.830030]  sg_ioctl+0x69d/0x2720
[ 2549.830066]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2549.830097]  ? __pfx_sg_ioctl+0x10/0x10
[ 2549.830124]  ? __fget_files+0x34/0x3b0
[ 2549.830147]  ? find_held_lock+0x2b/0x80
[ 2549.830170]  ? __fget_files+0x203/0x3b0
[ 2549.830194]  ? lock_release+0xc8/0x290
[ 2549.830237]  ? selinux_file_ioctl+0xb9/0x280
[ 2549.830263]  ? __pfx_sg_ioctl+0x10/0x10
[ 2549.830296]  __x64_sys_ioctl+0x18f/0x210
[ 2549.830335]  do_syscall_64+0xbf/0x390
[ 2549.830365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2549.830388] RIP: 0033:0x7fa15dc46b19
[ 2549.830405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2549.830426] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2549.830448] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2549.830463] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2549.830476] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2549.830489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2549.830502] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2549.830540]  </TASK>
[ 2549.842697] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.843447] debugfs: out of free dentries, can not create file 'dropped'
[ 2549.844136] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2549.885162] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.886400] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2549.901882] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2549.903150] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:33 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:33 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, 0xffffffffffffffff)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:54:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:54:33 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

01:54:33 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:33 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 16)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:33 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MLSLVLLST={0x8, 0x8, 0x0, 0x1, [{0x4}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x30}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000019300)={0x1c, r3, 0xd, 0x0, 0x0, {0x24}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x7c, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x20000004)
r5 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f00000000c0)={0x1f, 0x0, @none}, &(0x7f0000000100)=0xe, 0x800)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
io_cancel(0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x4, r5, &(0x7f0000000140)="ec3eeeca364a4d930d2496540113a08a97b6d6a24bfa9728df090d84d8e664a95bf04e05d15992da86cbbd8de42d8f43e94d175f46f396ad1dc1069188e6994d9c517faab552cc578d73a298062000a95adb8c49b3338b60db9c69a6e3e23ddafa5bea5edd76c707506e353cc358ee99478eb2bba84dd907dc38c17d0f4bd76d3669d14417dbfb65bb7e1bc10c3f40343b3b44364dc285", 0x97, 0x701, 0x0, 0x2, r8}, &(0x7f0000000240))
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)=ANY=[@ANYBLOB="0100230001b8000018000000", @ANYRES32=<r10=>r9, @ANYBLOB="ba000000000000002e2f66696c653000"])
ioctl$TCSETSF2(r10, 0x402c542d, &(0x7f0000000080)={0x1, 0x6, 0x1, 0x8, 0x1, "3a5569840c6f1fd8e238e76a2a1680685ec30d", 0x10000, 0x75})
r11 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r12 = dup2(r11, r9)
ioctl$SG_IO(r12, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:33 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2562.039937] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2562.041473] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2562.053548] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2562.054998] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:33 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 17)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2562.108713] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2562.109709] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

[ 2562.182215] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2562.183155] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2562.184981] FAULT_INJECTION: forcing a failure.
[ 2562.184981] name failslab, interval 1, probability 0, space 0, times 0
[ 2562.186424] CPU: 1 UID: 0 PID: 26359 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2562.186447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2562.186458] Call Trace:
[ 2562.186464]  <TASK>
[ 2562.186471]  dump_stack_lvl+0xfa/0x120
[ 2562.186496]  should_fail_ex+0x4d7/0x5e0
[ 2562.186519]  ? security_inode_alloc+0x3e/0x130
[ 2562.186538]  should_failslab+0xc2/0x120
[ 2562.186560]  kmem_cache_alloc_noprof+0x80/0x690
[ 2562.186585]  ? __pfx_map_id_range_down+0x10/0x10
[ 2562.186619]  ? security_inode_alloc+0x3e/0x130
[ 2562.186635]  security_inode_alloc+0x3e/0x130
[ 2562.186656]  inode_init_always_gfp+0xc94/0xff0
[ 2562.186681]  alloc_inode+0x8d/0x250
[ 2562.186705]  new_inode+0x1e/0x160
[ 2562.186732]  __debugfs_create_file+0xd3/0x660
[ 2562.186763]  debugfs_create_file_full+0x41/0x60
[ 2562.186798]  do_blk_trace_setup+0x429/0xc30
[ 2562.186829]  blk_trace_setup+0xdc/0x1b0
[ 2562.186855]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2562.186879]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2562.186902]  ? proc_fail_nth_write+0x97/0x220
[ 2562.186934]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2562.186966]  sg_ioctl+0x69d/0x2720
[ 2562.186993]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2562.187017]  ? __pfx_sg_ioctl+0x10/0x10
[ 2562.187037]  ? __fget_files+0x34/0x3b0
[ 2562.187055]  ? find_held_lock+0x2b/0x80
[ 2562.187072]  ? __fget_files+0x203/0x3b0
[ 2562.187089]  ? lock_release+0xc8/0x290
[ 2562.187121]  ? selinux_file_ioctl+0xb9/0x280
[ 2562.187141]  ? __pfx_sg_ioctl+0x10/0x10
[ 2562.187166]  __x64_sys_ioctl+0x18f/0x210
[ 2562.187196]  do_syscall_64+0xbf/0x390
[ 2562.187219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2562.187237] RIP: 0033:0x7fa15dc46b19
[ 2562.187251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2562.187267] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2562.187284] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2562.187295] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2562.187305] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2562.187315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2562.187325] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2562.187353]  </TASK>
[ 2562.216205] debugfs: out of free dentries, can not create file 'dropped'
[ 2562.324641] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2562.325929] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:54:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000080)={0x2, 0x1, 0x2d, 0x8, 0x6, "1f7bd23859ef408b4c0263f18439b3b05a36b6", 0x2, 0x2})
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))

01:54:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r3)
r4 = getpgrp(0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, r3, &(0x7f0000000140)={r3, r5, 0xfffffffd})
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r6)
ioctl$SG_GET_NUM_WAITING(r8, 0x1276, 0x0)
clone3(&(0x7f0000000200)={0x1018000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140), {0x23}, &(0x7f0000000180)=""/15, 0xf, &(0x7f0000000300)=""/208, &(0x7f00000001c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4], 0x4, {r8}}, 0x58)
r9 = openat$cgroup_ro(r2, &(0x7f0000000040)='pids.current\x00', 0x0, 0x0)
ioctl$TIOCGSID(r9, 0x5429, &(0x7f0000000080))

01:54:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:44 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:54:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2573.491893] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.493130] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2573.497236] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.498447] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2573.506540] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.507748] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2573.532921] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.534135] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(0x0, 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee71", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

[ 2573.635934] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.637242] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:45 executing program 2:
prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000040))
prctl$PR_GET_UNALIGN(0x5, &(0x7f0000000240))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x109881, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
prctl$PR_GET_UNALIGN(0x5, &(0x7f00000001c0))
dup2(r1, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffb, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0xffffffff, 0x0})
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="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"])

01:54:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 19)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2573.759255] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.760508] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee71", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2573.830336] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2573.831566] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2573.833306] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:54:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$FS_IOC_GETVERSION(r3, 0x80087601, &(0x7f0000000040))
r4 = dup2(r1, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2573.875067] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:54:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2573.899288] FAULT_INJECTION: forcing a failure.
[ 2573.899288] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2573.901295] CPU: 0 UID: 0 PID: 26405 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2573.901329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2573.901343] Call Trace:
[ 2573.901352]  <TASK>
[ 2573.901362]  dump_stack_lvl+0xfa/0x120
[ 2573.901397]  should_fail_ex+0x4d7/0x5e0
[ 2573.901434]  should_fail_alloc_page+0xe0/0x110
[ 2573.901471]  prepare_alloc_pages+0x1eb/0x550
[ 2573.901502]  ? find_held_lock+0x2b/0x80
[ 2573.901535]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2573.901576]  ? 0xffffffffa0000000
[ 2573.901597]  ? __is_insn_slot_addr+0x140/0x290
[ 2573.901632]  ? kernel_text_address+0x5b/0xc0
[ 2573.901669]  ? __kernel_text_address+0xd/0x40
[ 2573.901702]  ? unwind_get_return_address+0x59/0xa0
[ 2573.901726]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2573.901766]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2573.901827]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2573.901863]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2573.901906]  ? __lock_acquire+0xc65/0x1b70
[ 2573.901937]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2573.901980]  ? policy_nodemask+0xeb/0x4e0
[ 2573.902026]  alloc_pages_mpol+0xed/0x340
[ 2573.902066]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2573.902104]  ? do_raw_spin_lock+0x123/0x260
[ 2573.902145]  ? find_held_lock+0x2b/0x80
[ 2573.902179]  alloc_pages_noprof+0x9d/0x180
[ 2573.902221]  get_free_pages_noprof+0x10/0xb0
[ 2573.902248]  inode_doinit_with_dentry+0x8f3/0x1210
[ 2573.902288]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[ 2573.902314]  ? find_held_lock+0x2b/0x80
[ 2573.902340]  ? new_inode+0x10c/0x160
[ 2573.902386]  selinux_d_instantiate+0x27/0x30
[ 2573.902412]  security_d_instantiate+0x58/0xb0
[ 2573.902449]  d_instantiate+0x5e/0xa0
[ 2573.902484]  __debugfs_create_file+0x239/0x660
[ 2573.902531]  debugfs_create_file_full+0x41/0x60
[ 2573.902576]  do_blk_trace_setup+0x429/0xc30
[ 2573.902624]  blk_trace_setup+0xdc/0x1b0
[ 2573.902663]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2573.902700]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2573.902733]  ? proc_fail_nth_write+0x97/0x220
[ 2573.902780]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2573.902829]  sg_ioctl+0x69d/0x2720
[ 2573.902870]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2573.902903]  ? __pfx_sg_ioctl+0x10/0x10
[ 2573.902934]  ? __fget_files+0x34/0x3b0
[ 2573.902960]  ? find_held_lock+0x2b/0x80
[ 2573.902986]  ? __fget_files+0x203/0x3b0
[ 2573.903013]  ? lock_release+0xc8/0x290
[ 2573.903061]  ? selinux_file_ioctl+0xb9/0x280
[ 2573.903091]  ? __pfx_sg_ioctl+0x10/0x10
[ 2573.903129]  __x64_sys_ioctl+0x18f/0x210
[ 2573.903173]  do_syscall_64+0xbf/0x390
[ 2573.903207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2573.903233] RIP: 0033:0x7fa15dc46b19
[ 2573.903251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2573.903275] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2573.903299] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2573.903316] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2573.903331] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
01:54:45 executing program 2:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x10bc03, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x1}}, './file0\x00'})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, 0x3, 0x8, 0x301, 0x0, 0x0, {0x3, 0x0, 0x8}, [@CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x588}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0xaa11}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0x140d}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000850}, 0x8001)
r2 = syz_open_dev$sg(&(0x7f0000000040), 0x10008, 0x48241)
r3 = dup2(r2, 0xffffffffffffffff)
mlockall(0x6)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x80010, r2, 0x9f78f000)
mlockall(0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000000))
mlockall(0x6)

[ 2573.903345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2573.903360] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2573.903403]  </TASK>
01:54:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x3, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee71", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2574.089004] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2574.090106] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2574.099347] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2574.100413] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x400004, 0x0)
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:54:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:54:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
syz_io_uring_setup(0x70a9, &(0x7f0000000040)={0x0, 0x7729, 0x2, 0x3, 0x108}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r3=>0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x30, 0xffffffffffffffff, 0x49f50000)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000240)={0x56ab, 0x4, 0x7, 0x10001, 0x3f, "2085fc8cd671cb835390f17fa8091051aee75d", 0x80, 0x4})
syz_io_uring_submit(0x0, r3, &(0x7f0000000200)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r6, 0x0, &(0x7f0000000140)="d471dd61c0e09ded1be332649d634bcc50b7b27ba502a04a1f1118f2758f48aa1bb46c9a7d8328be5906d110048c40061f4304f0e21efcc0db5f0fb8ce3c2ebe097883597dc4b80751e6a19abbd8dfafff92d6538512fabb46b1579738e278138eeddcc214f268ebbadf9d63bc482a6646adb3780990a6a936ea855c2f58c77cd1", 0x81, 0x2042, 0x1, {0x0, r7}}, 0x20)

[ 2574.331879] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2574.333163] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2574.416139] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2574.417432] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2574.420970] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2574.422227] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:56 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:56 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:54:56 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffd, 0xf, 0x1f, @scatter={0x3, 0x0, &(0x7f0000000200)=[{&(0x7f0000000040)=""/225, 0xe1}, {&(0x7f0000000140)=""/71, 0x47}, {&(0x7f00000001c0)=""/11, 0xb}]}, &(0x7f0000000240)="937ce13b8a3a5bc8e7597ea4b8a7a5", &(0x7f0000000300)=""/89, 0x6, 0x10002, 0x3, &(0x7f0000000380)})
dup(r4)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = dup2(r9, r8)
ioctl$SG_GET_NUM_WAITING(r10, 0x1276, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r10, 0x40505412, &(0x7f0000000440)={0x5, 0xb4, 0x5, 0x0, 0x1})

01:54:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:54:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x4, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:56 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:56 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:54:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a7", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2584.743215] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.744506] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid command operation code
[ 2584.746933] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.748184] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2584.751771] FAULT_INJECTION: forcing a failure.
[ 2584.751771] name failslab, interval 1, probability 0, space 0, times 0
[ 2584.754477] CPU: 0 UID: 0 PID: 26457 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2584.754507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2584.754520] Call Trace:
[ 2584.754528]  <TASK>
[ 2584.754536]  dump_stack_lvl+0xfa/0x120
[ 2584.754567]  should_fail_ex+0x4d7/0x5e0
[ 2584.754599]  ? __d_alloc+0x31/0xa10
[ 2584.754624]  should_failslab+0xc2/0x120
[ 2584.754654]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2584.754704]  ? __d_alloc+0x31/0xa10
[ 2584.754729]  __d_alloc+0x31/0xa10
[ 2584.754763]  d_alloc_parallel+0x112/0x13c0
[ 2584.754805]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2584.754838]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2584.754881]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2584.754922]  ? lockdep_init_map_type+0x4b/0x240
[ 2584.754956]  ? lockdep_init_map_type+0x4b/0x240
[ 2584.754997]  __lookup_slow+0x192/0x480
[ 2584.755032]  ? __pfx___lookup_slow+0x10/0x10
[ 2584.755063]  ? __d_lookup+0x73/0x490
[ 2584.755123]  ? d_lookup+0xcd/0x140
[ 2584.755165]  lookup_noperm+0xe3/0x110
[ 2584.755200]  simple_start_creating+0xd3/0x1b0
[ 2584.755229]  debugfs_start_creating+0xc2/0x180
[ 2584.755264]  __debugfs_create_file+0x62/0x660
[ 2584.755305]  debugfs_create_file_full+0x41/0x60
[ 2584.755344]  do_blk_trace_setup+0x44a/0xc30
[ 2584.755387]  blk_trace_setup+0xdc/0x1b0
[ 2584.755421]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2584.755453]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2584.755482]  ? proc_fail_nth_write+0x97/0x220
[ 2584.755523]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2584.755567]  sg_ioctl+0x69d/0x2720
[ 2584.755603]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2584.755633]  ? __pfx_sg_ioctl+0x10/0x10
[ 2584.755660]  ? __fget_files+0x34/0x3b0
[ 2584.755684]  ? find_held_lock+0x2b/0x80
[ 2584.755706]  ? __fget_files+0x203/0x3b0
[ 2584.755730]  ? lock_release+0xc8/0x290
[ 2584.755772]  ? selinux_file_ioctl+0xb9/0x280
[ 2584.755798]  ? __pfx_sg_ioctl+0x10/0x10
[ 2584.755831]  __x64_sys_ioctl+0x18f/0x210
[ 2584.755869]  do_syscall_64+0xbf/0x390
[ 2584.755899]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2584.755922] RIP: 0033:0x7fa15dc46b19
[ 2584.755939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2584.755960] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2584.755982] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2584.755996] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2584.756010] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2584.756023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2584.756035] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2584.756073]  </TASK>
[ 2584.772749] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.795557] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2584.796898] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.798115] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a7", 0x0, 0x0, 0x0, 0x0, 0x0})

01:54:56 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:54:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

[ 2584.925929] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.927236] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid command operation code
[ 2584.932897] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2584.934142] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:54:56 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 21)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:54:56 executing program 2:
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x19500010}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)={0x1f8, 0x0, 0x20, 0x70bd2d, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0xc2}, {0x6, 0x11, 0x8002}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x73b4}, {0x6, 0x11, 0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x5}}, {{@pci, {0x8}}, {0x8, 0xb, 0x8}, {0x1, 0x11, 0x7ff}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x2}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x8001}, {0x6, 0x11, 0x3}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x7}}, {{@pci={{0x1}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x9}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x7f}}]}, 0x1f8}}, 0x2000c805)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x7, 0x6, 0x3, 0x8, 0x15, "8f3b930c0ed7379ff518fd61c8564476721a01"})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000140)=0x40)
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x100000000)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2585.044198] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2585.045522] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2585.159029] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2585.160295] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:07 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x10a1, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@mmap}], [{@subj_role={'subj_role', 0x3d, '-\\,[\'$'}}, {@smackfsdef}, {@context={'context', 0x3d, 'user_u'}}, {@pcr={'pcr', 0x3d, 0x1d}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@uid_lt={'uid<', 0xee00}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x3b, 0x38, 0x36, 0x31, 0x61, 0x62, 0x39], 0x2d, [0x38, 0x30, 0x63, 0x31], 0x2d, [0x35, 0x31, 0x30, 0x64], 0x2d, [0x30, 0x30, 0x61, 0x62], 0x2d, [0x65, 0x64, 0x33, 0x37, 0x62, 0x61, 0x35, 0x36]}}}]}})
openat$cgroup_freezer_state(r5, &(0x7f00000001c0), 0x2, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:07 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 22)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x5, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a7", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:07 executing program 7:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:07 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:07 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:55:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

[ 2595.577758] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2595.579181] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2595.602625] FAULT_INJECTION: forcing a failure.
[ 2595.602625] name failslab, interval 1, probability 0, space 0, times 0
[ 2595.603826] CPU: 0 UID: 0 PID: 26599 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2595.603845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2595.603855] Call Trace:
[ 2595.603860]  <TASK>
[ 2595.603866]  dump_stack_lvl+0xfa/0x120
[ 2595.603889]  should_fail_ex+0x4d7/0x5e0
[ 2595.603909]  ? alloc_inode+0x67/0x250
[ 2595.603929]  should_failslab+0xc2/0x120
[ 2595.603949]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2595.603977]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2595.603999]  ? alloc_inode+0x67/0x250
[ 2595.604016]  alloc_inode+0x67/0x250
[ 2595.604040]  new_inode+0x1e/0x160
[ 2595.604069]  __debugfs_create_file+0xd3/0x660
[ 2595.604094]  debugfs_create_file_full+0x41/0x60
[ 2595.604117]  do_blk_trace_setup+0x44a/0xc30
[ 2595.604145]  blk_trace_setup+0xdc/0x1b0
[ 2595.604171]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2595.604194]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2595.604214]  ? proc_fail_nth_write+0x97/0x220
[ 2595.604240]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2595.604268]  sg_ioctl+0x69d/0x2720
[ 2595.604291]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2595.604310]  ? __pfx_sg_ioctl+0x10/0x10
[ 2595.604327]  ? __fget_files+0x34/0x3b0
[ 2595.604349]  ? find_held_lock+0x2b/0x80
[ 2595.604371]  ? __fget_files+0x203/0x3b0
[ 2595.604393]  ? lock_release+0xc8/0x290
[ 2595.604435]  ? selinux_file_ioctl+0xb9/0x280
[ 2595.604460]  ? __pfx_sg_ioctl+0x10/0x10
[ 2595.604491]  __x64_sys_ioctl+0x18f/0x210
[ 2595.604529]  do_syscall_64+0xbf/0x390
[ 2595.604559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2595.604580] RIP: 0033:0x7fa15dc46b19
[ 2595.604596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2595.604617] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2595.604637] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2595.604651] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2595.604664] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2595.604676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2595.604688] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2595.604729]  </TASK>
[ 2595.604737] debugfs: out of free dentries, can not create file 'msg'
[ 2595.604970] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2595.642863] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2595.717920] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2595.719213] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:17 executing program 2:
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000040)='rose0\x00', 0x10)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:55:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 23)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:17 executing program 7:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x8, 0x14081)
dup2(r0, 0xffffffffffffffff)

01:55:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 24)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2606.070744] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.071431] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2606.102776] FAULT_INJECTION: forcing a failure.
[ 2606.102776] name failslab, interval 1, probability 0, space 0, times 0
[ 2606.104123] CPU: 1 UID: 0 PID: 26621 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2606.104140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2606.104148] Call Trace:
[ 2606.104153]  <TASK>
[ 2606.104157]  dump_stack_lvl+0xfa/0x120
[ 2606.104177]  should_fail_ex+0x4d7/0x5e0
[ 2606.104195]  ? security_inode_alloc+0x3e/0x130
[ 2606.104209]  should_failslab+0xc2/0x120
[ 2606.104226]  kmem_cache_alloc_noprof+0x80/0x690
[ 2606.104244]  ? __pfx_map_id_range_down+0x10/0x10
[ 2606.104269]  ? security_inode_alloc+0x3e/0x130
[ 2606.104281]  security_inode_alloc+0x3e/0x130
[ 2606.104295]  inode_init_always_gfp+0xc94/0xff0
[ 2606.104315]  alloc_inode+0x8d/0x250
[ 2606.104332]  new_inode+0x1e/0x160
[ 2606.104351]  __debugfs_create_file+0xd3/0x660
[ 2606.104374]  debugfs_create_file_full+0x41/0x60
[ 2606.104395]  do_blk_trace_setup+0x44a/0xc30
[ 2606.104418]  blk_trace_setup+0xdc/0x1b0
[ 2606.104437]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2606.104454]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2606.104470]  ? proc_fail_nth_write+0x97/0x220
[ 2606.104493]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2606.104517]  sg_ioctl+0x69d/0x2720
[ 2606.104537]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2606.104554]  ? __pfx_sg_ioctl+0x10/0x10
[ 2606.104568]  ? __fget_files+0x34/0x3b0
[ 2606.104580]  ? find_held_lock+0x2b/0x80
[ 2606.104593]  ? __fget_files+0x203/0x3b0
[ 2606.104605]  ? lock_release+0xc8/0x290
[ 2606.104628]  ? selinux_file_ioctl+0xb9/0x280
[ 2606.104642]  ? __pfx_sg_ioctl+0x10/0x10
[ 2606.104660]  __x64_sys_ioctl+0x18f/0x210
[ 2606.104682]  do_syscall_64+0xbf/0x390
[ 2606.104699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2606.104711] RIP: 0033:0x7fa15dc46b19
[ 2606.104721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2606.104733] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2606.104745] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2606.104753] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2606.104760] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2606.104767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2606.104774] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2606.104799]  </TASK>
[ 2606.123146] debugfs: out of free dentries, can not create file 'msg'
[ 2606.134874] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.135521] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r7, 0x80049367, &(0x7f0000000080)=0xfffffffffffffffb)
dup2(r4, r3)
ioctl$BLKTRACESTOP(r4, 0x1275, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x2, @buffer={0x0, 0xae, &(0x7f0000000100)=""/174}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10001, 0x0, 0x0})
close(0xffffffffffffffff)
r8 = getpgrp(0x0)
r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r9, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r8, r8, 0x7, 0xffffffffffffffff, &(0x7f0000000140)={0xffffffffffffffff, r9, 0xfffffffd})
kcmp(0x0, r8, 0x2, r4, r1)
ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000040)=0x2)

01:55:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x5)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:55:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2606.264888] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.265561] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2606.297080] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.297717] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2606.323260] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.324675] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 25)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2606.337358] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.338761] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:17 executing program 2:
mlockall(0x1)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
r4 = dup2(r0, r3)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffffffffffd, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x1, 0x0, 0x0})
r5 = open$dir(&(0x7f0000000180)='./file0\x00', 0x410000, 0x104)
fchmodat(r4, &(0x7f0000000300)='./file0\x00', 0x110)
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1040, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@debug={'debug', 0x3d, 0x8}}, {@posixacl}, {@nodevmap}, {@privport}, {@cache_fscache}, {@version_L}, {@version_L}], [{@measure}, {@smackfsroot={'smackfsroot', 0x3d, '*)'}}]}})
r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000340)={[0x5]}, 0x8, 0x0)
ioctl$SG_GET_PACK_ID(r6, 0x227c, &(0x7f0000000380))
mlockall(0x2)
r7 = accept4$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000400)=0x14, 0x80000)
perf_event_open(&(0x7f0000000480)={0x3, 0x80, 0x7f, 0x0, 0x2, 0x3f, 0x0, 0xd9, 0x0, 0x18, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0x2, @perf_bp={&(0x7f0000000440), 0x2}, 0x10066, 0x9, 0x3, 0x9, 0x7fffffff, 0x2, 0x16b1, 0x0, 0x9a78, 0x0, 0x5193}, 0xffffffffffffffff, 0xc, r4, 0x0)
read(r7, &(0x7f0000000500)=""/80, 0x50)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r4, &(0x7f00000000c0)={0x40000001})

01:55:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:55:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), r2)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000880)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)={0x20, r4, 0xb267, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x20}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f0000000140)={0x9c, 0x6, 0x7, "dd2d82e595e6ee199c06387fa2fb010b75cda597d1a0c3d48ef82a51c159af18cccf706079e2192899c9f215562cbef83716aaf8bdcab2dc032d8d7ac55edeedf9cea415955525a297066d424f8d2a4bbd30a612e2e243845c9b1902562133c6e21aaff666e26af9cb4513b9c82c9e8f8aa95ff83a0aac0bb2585a6371d6694d54f6c48fbd68392c2bdcc911ae9d3044e030edf124181d2290a03318"})
r7 = dup2(r1, r0)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
ioctl$TCSETAW(r8, 0x5407, &(0x7f0000000100)={0x78a, 0x889, 0x2, 0x4a3, 0x11, "c87134d6c3970645"})
ioctl$SG_IO(r7, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x76, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a76254ba35601e0a33f8158b3c8fe26e51ecea86e0fc5d346471671487b8a4a1f81c48770b5201928bf2069035ecbe1ac09092166a4b06cc7532f86ea0e9a30db1c88e2631b7bde9a134e80c55c662f72862b39e730603c311d66a7c4d3e9b95e6fbafce30010b018d672d60d66f96ad5b57", 0x0, 0x0, 0x5, 0x0, 0x0})

01:55:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 26)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2606.563889] FAULT_INJECTION: forcing a failure.
[ 2606.563889] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2606.565031] CPU: 1 UID: 0 PID: 26661 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2606.565048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2606.565055] Call Trace:
[ 2606.565060]  <TASK>
[ 2606.565064]  dump_stack_lvl+0xfa/0x120
[ 2606.565084]  should_fail_ex+0x4d7/0x5e0
[ 2606.565102]  should_fail_alloc_page+0xe0/0x110
[ 2606.565121]  prepare_alloc_pages+0x1eb/0x550
[ 2606.565135]  ? find_held_lock+0x2b/0x80
[ 2606.565152]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2606.565171]  ? 0xffffffffa0000000
[ 2606.565181]  ? __is_insn_slot_addr+0x140/0x290
[ 2606.565198]  ? kernel_text_address+0x5b/0xc0
[ 2606.565216]  ? __kernel_text_address+0xd/0x40
[ 2606.565232]  ? unwind_get_return_address+0x59/0xa0
[ 2606.565244]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2606.565264]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2606.565289]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2606.565306]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2606.565326]  ? __lock_acquire+0xc65/0x1b70
[ 2606.565341]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2606.565361]  ? policy_nodemask+0xeb/0x4e0
[ 2606.565383]  alloc_pages_mpol+0xed/0x340
[ 2606.565401]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2606.565419]  ? do_raw_spin_lock+0x123/0x260
[ 2606.565438]  ? find_held_lock+0x2b/0x80
[ 2606.565454]  alloc_pages_noprof+0x9d/0x180
[ 2606.565488]  get_free_pages_noprof+0x10/0xb0
[ 2606.565500]  inode_doinit_with_dentry+0x8f3/0x1210
[ 2606.565519]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[ 2606.565532]  ? find_held_lock+0x2b/0x80
[ 2606.565544]  ? new_inode+0x10c/0x160
[ 2606.565567]  selinux_d_instantiate+0x27/0x30
[ 2606.565579]  security_d_instantiate+0x58/0xb0
[ 2606.565597]  d_instantiate+0x5e/0xa0
[ 2606.565614]  __debugfs_create_file+0x239/0x660
[ 2606.565637]  debugfs_create_file_full+0x41/0x60
[ 2606.565658]  do_blk_trace_setup+0x44a/0xc30
[ 2606.565681]  blk_trace_setup+0xdc/0x1b0
[ 2606.565700]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2606.565717]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2606.565733]  ? proc_fail_nth_write+0x97/0x220
[ 2606.565756]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2606.565778]  sg_ioctl+0x69d/0x2720
[ 2606.565803]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2606.565819]  ? __pfx_sg_ioctl+0x10/0x10
[ 2606.565833]  ? __fget_files+0x34/0x3b0
[ 2606.565846]  ? find_held_lock+0x2b/0x80
[ 2606.565858]  ? __fget_files+0x203/0x3b0
[ 2606.565871]  ? lock_release+0xc8/0x290
[ 2606.565894]  ? selinux_file_ioctl+0xb9/0x280
[ 2606.565908]  ? __pfx_sg_ioctl+0x10/0x10
[ 2606.565926]  __x64_sys_ioctl+0x18f/0x210
[ 2606.565947]  do_syscall_64+0xbf/0x390
[ 2606.565963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2606.565976] RIP: 0033:0x7fa15dc46b19
[ 2606.565985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2606.565997] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2606.566009] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2606.566017] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2606.566024] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2606.566031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2606.566038] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2606.566058]  </TASK>
[ 2606.575232] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2606.605898] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2606.677828] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2606.710704] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:55:28 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:28 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000040))
r4 = dup2(r1, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:28 executing program 7:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$KDSETLED(r1, 0x4b32, 0x5)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
writev(r4, &(0x7f0000000240)=[{&(0x7f0000000040)="58cc35f0f542684f9ef285bbedbab2d34822f4221552654c78cf9495317d4f2240e0b8a6e95dd63186b29a2bb91b2e27990e70f68ab0da7ebd2ad40e08f29d91f717ed859c2b5a3aa1085c533491d9d620afc8081c8cc85c281ebe63f7683fe4f305b82059c8bf313905214960708ac37479e0c4ac8e2df71841a30340a3ddbcdeca5dd2a726fe2bc3361cf698e7b656f02cbe542ba2b110d32d2ec4e432124da26dcaeaaa5645f9cf166c0709a2be00d9d560e6961bf06384ed58c9049ff00ab5e9ab85a29b459bdaa40d00adf05ceac699ebe3c1e85b506034bb25ab9733abd834ef9cee29", 0xe6}, {&(0x7f0000000140)="282140b60c2efdd21abd584de06ac960d3bc0c1042e795be9b2577f79acc68381226d353afe2038f434c0663122f637336f8aa3ae71d6ed704f2cbbec7503c2fc47d92973dc157d896fdb03fa52bb6c1361b9c0ae6215684e2c17633a12467a892b646fc9ef692b8a4877de53cb37825f8f12ff9b1794643b596b454530b387dc211f69e1080466b94d247c1d564cf349943c4d7a8896fdab9b580a6d1ab2a7acc598e82346c2ad7da3efc2a23cfbdf6f8b9aa7d14086fd37ac9b303c93ec51834802435ff105c4196971be69d", 0xcd}], 0x2)
r5 = syz_io_uring_complete(0x0)
dup2(r5, r2)
dup2(r2, r1)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000300), 0x5, 0x52d903)
dup2(r7, r6)
dup2(r0, r6)
r8 = dup2(r0, r2)
syz_open_dev$sg(&(0x7f0000000340), 0x43e189d2, 0x1d5381)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @buffer={0x0, 0x0, &(0x7f0000000380)=""/235}, &(0x7f0000000480)="2aee7162a740cb2667628c74e40461fab6f0e4a5cf9686889ed6fe2d03c5e80bb1cf4a66ca1010e2020000006e16e187d55523e9e54227c90c17b6d3844c58c9e3dd1156484579a7ea29b8278b3073cab8274c315410f1a964600c5e96654c7acf9d6bcfe3015b54053f94b65f262ba6f546dc0e8df09de0217a34399205946518aa19e72f97fe542aec29da8b90668a226a4e9a649c2895ad2388597c857732d99ab1c30608506879a4d2cfe5e4a3c86b31873b35cf92b45400949b35b8788b1492abf4f88fefb0fe896455eec6071a5bc55a04957457f6d0f08036450b5723d57961", 0x0, 0x0, 0x0, 0x3, 0x0})

01:55:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:55:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 27)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

01:55:28 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)

01:55:28 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

[ 2617.065548] FAULT_INJECTION: forcing a failure.
[ 2617.065548] name failslab, interval 1, probability 0, space 0, times 0
[ 2617.066626] CPU: 0 UID: 0 PID: 26687 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2617.066644] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2617.066651] Call Trace:
[ 2617.066656]  <TASK>
[ 2617.066660]  dump_stack_lvl+0xfa/0x120
[ 2617.066681]  should_fail_ex+0x4d7/0x5e0
[ 2617.066700]  should_failslab+0xc2/0x120
[ 2617.066717]  __kmalloc_cache_noprof+0x81/0x6b0
[ 2617.066736]  ? up_write+0x195/0x520
[ 2617.066755]  ? relay_open+0x121/0xa70
[ 2617.066773]  ? relay_open+0x121/0xa70
[ 2617.066785]  relay_open+0x121/0xa70
[ 2617.066802]  ? debugfs_create_file_full+0x41/0x60
[ 2617.066825]  do_blk_trace_setup+0x4ba/0xc30
[ 2617.066849]  blk_trace_setup+0xdc/0x1b0
[ 2617.066867]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2617.066885]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2617.066901]  ? proc_fail_nth_write+0x97/0x220
[ 2617.066925]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2617.066949]  sg_ioctl+0x69d/0x2720
[ 2617.066969]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2617.066986]  ? __pfx_sg_ioctl+0x10/0x10
[ 2617.067001]  ? __fget_files+0x34/0x3b0
[ 2617.067015]  ? find_held_lock+0x2b/0x80
[ 2617.067028]  ? __fget_files+0x203/0x3b0
[ 2617.067041]  ? lock_release+0xc8/0x290
[ 2617.067064]  ? selinux_file_ioctl+0xb9/0x280
[ 2617.067079]  ? __pfx_sg_ioctl+0x10/0x10
[ 2617.067096]  __x64_sys_ioctl+0x18f/0x210
[ 2617.067118]  do_syscall_64+0xbf/0x390
[ 2617.067137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2617.067151] RIP: 0033:0x7fa15dc46b19
[ 2617.067160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2617.067173] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2617.067186] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2617.067194] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2617.067201] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2617.067208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2617.067215] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2617.067236]  </TASK>
[ 2617.073208] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2617.093936] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2617.105270] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2617.105979] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2617.114422] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2617.115696] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2617.122906] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2617.124422] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2617.186873] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2617.187520] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:38 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000040), 0x9, 0x600900)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:55:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:55:38 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:55:38 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:38 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000180), 0x80000)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f0000000200)={0x6, 0x38, '\x00', 0x1, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r0)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1000}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x2}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x44010}, 0x60008840)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
r6 = syz_open_procfs(0x0, &(0x7f0000000240)='net/raw\x00')
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10010, 0x0, 0x0})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r9 = dup2(r8, r7)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
fcntl$setstatus(r9, 0x4, 0x0)

01:55:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 28)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)

01:55:38 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2626.743204] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2626.743941] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2626.750250] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2626.750932] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2626.759851] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2626.760542] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:38 executing program 7:
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000040))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x74, 0x1, 0x3, 0x101, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFQA_VLAN={0x54, 0x13, 0x0, 0x1, [@NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x40}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x100}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x2b1dc648203b0bad}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0xfff}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x88a8}]}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0x70}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000001c0)={0x1, 0x1, 0x32ac})

01:55:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:55:38 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:38 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 29)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)

[ 2626.968438] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2626.969610] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2626.976898] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2626.978099] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:38 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:38 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:55:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 30)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:38 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
dup2(0xffffffffffffffff, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2627.145782] FAULT_INJECTION: forcing a failure.
[ 2627.145782] name failslab, interval 1, probability 0, space 0, times 0
[ 2627.147249] CPU: 1 UID: 0 PID: 26742 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2627.147266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2627.147274] Call Trace:
[ 2627.147278]  <TASK>
[ 2627.147283]  dump_stack_lvl+0xfa/0x120
[ 2627.147302]  should_fail_ex+0x4d7/0x5e0
[ 2627.147321]  should_failslab+0xc2/0x120
[ 2627.147337]  __kmalloc_cache_noprof+0x81/0x6b0
[ 2627.147357]  ? relay_open_buf.part.0+0x91/0xc70
[ 2627.147376]  ? relay_open_buf.part.0+0x91/0xc70
[ 2627.147388]  ? pcpu_alloc_noprof+0x12d/0x1160
[ 2627.147402]  relay_open_buf.part.0+0x91/0xc70
[ 2627.147423]  relay_open+0x625/0xa70
[ 2627.147436]  ? debugfs_create_file_full+0x41/0x60
[ 2627.147458]  do_blk_trace_setup+0x4ba/0xc30
[ 2627.147481]  blk_trace_setup+0xdc/0x1b0
[ 2627.147499]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2627.147516]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2627.147533]  ? proc_fail_nth_write+0x97/0x220
[ 2627.147556]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2627.147579]  sg_ioctl+0x69d/0x2720
[ 2627.147600]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2627.147617]  ? __pfx_sg_ioctl+0x10/0x10
[ 2627.147631]  ? __fget_files+0x34/0x3b0
[ 2627.147645]  ? find_held_lock+0x2b/0x80
[ 2627.147658]  ? __fget_files+0x203/0x3b0
[ 2627.147670]  ? lock_release+0xc8/0x290
[ 2627.147693]  ? selinux_file_ioctl+0xb9/0x280
[ 2627.147707]  ? __pfx_sg_ioctl+0x10/0x10
[ 2627.147725]  __x64_sys_ioctl+0x18f/0x210
[ 2627.147750]  do_syscall_64+0xbf/0x390
[ 2627.147769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2627.147782] RIP: 0033:0x7fa15dc46b19
[ 2627.147796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2627.147808] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2627.147820] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2627.147829] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2627.147836] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2627.147842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2627.147849] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2627.147870]  </TASK>
[ 2627.193383] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2627.194761] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:53 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:53 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:55:53 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:55:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/93, 0x5d}], 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYRES32, @ANYRES32=<r4=>0xffffffffffffffff, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000102000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xd8}, 0x4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x84419, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@debug={'debug', 0x3d, 0x7}}, {@cache_loose}, {@access_user}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}], [{@subj_role={'subj_role', 0x3d, '(('}}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/ptmx\x00'}}, {@obj_type={'obj_type', 0x3d, '-\x89+\xbd:!'}}, {@context={'context', 0x3d, 'system_u'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/ptmx\x00'}}, {@appraise}, {@dont_measure}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@seclabel}, {@dont_measure}]}})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r6 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, &(0x7f0000000480))
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r9, r8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r10=>r2, {0x5}}, './file0\x00'})
r11 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r12 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r12, r11)
r13 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000540), 0x414000, 0x0)
ppoll(&(0x7f0000000580)=[{0xffffffffffffffff, 0x3500}, {0xffffffffffffffff, 0x8011}, {r5, 0x80b0}, {r9, 0x410}, {r10, 0x4000}, {r11, 0x500a}, {r6, 0x846c}, {r13, 0x4200}], 0x8, &(0x7f00000005c0)={0x77359400}, &(0x7f0000000600)={[0x7d36]}, 0x8)

01:55:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

01:55:53 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:53 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 31)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:53 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
dup(r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SCSI_IOCTL_START_UNIT(r4, 0x5)
preadv(r2, &(0x7f0000000500)=[{&(0x7f0000000080)=""/226, 0xe2}, {&(0x7f0000000180)=""/239, 0xef}, {&(0x7f0000000300)=""/205, 0xcd}, {&(0x7f0000000400)=""/209, 0xd1}], 0x4, 0xfffff5f8, 0x3)

[ 2642.477956] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.478698] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:54 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:55:54 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2642.554647] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.556043] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.562969] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.564305] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000040)={0x4, 0x1c, 0x280000, 0x1, 0x16, "c3df4e11d2fd783b95983be29e3176c6c7f6d8"})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2642.596748] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.598144] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.643892] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.644787] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.651421] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.652271] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:55:54 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 32)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:55:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SCSI_IOCTL_SYNC(r2, 0x4)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x80, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x7, 0x10012, 0x0, 0x0})

01:55:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:55:54 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:55:54 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000001300)={0x77, 0x8000, 0x8, "bb3e6097947a046cd6cdb4867aa447fcaac83dd808773d2a05a3c378bc58d587b0daa74f4e2ec5a306b35c272e91d55fad30fa09013ffde81e995f88f77b4b7bb5bca3a60ec76314edca353dfec6d05dc6a522e6a25acc552f438428f971892f9d27190f37a2065ae722a0e550b74de279d13abe7f704c"})
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'lo\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000014c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000c0000000c00038004000100040003800c00018008000100", @ANYRES32=r7, @ANYBLOB="104327f17cfd2f7133ac1e3595821b26952530d3d0e3601c006b1356411cdaf7344a2dae2296ca09d33528c67eb9"], 0x2c}}, 0x0)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'lo\x00', <r11=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000280)={'team0\x00', <r12=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r9, &(0x7f00000013c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001440)={0x38, r8, 0x1, 0x3, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x0, 0x5, "2a1d796359bbc9235eb8593078caee80e9f2c8fa0f37fcd25dc6e07cbd33640088c6e655d3900b6126db7e42d4567f56f3cc146594"}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}]}, 0x38}}, 0x0)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001600)={<r13=>0x0, @rand_addr, @remote}, &(0x7f0000001640)=0xc)
getpeername$packet(r2, &(0x7f0000001680)={0x11, 0x0, <r14=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000016c0)=0x14)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000001880)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001840)={&(0x7f0000001700)={0x104, 0x0, 0x800, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x4008010}, 0xc005)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0xa, 0x0, @scatter={0x2, 0x0, &(0x7f0000000240)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000140)=""/247, 0xf7}]}, &(0x7f0000000040)="2aee6562886254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2642.788391] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.789091] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.799836] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.800488] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.844666] FAULT_INJECTION: forcing a failure.
[ 2642.844666] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2642.845839] CPU: 1 UID: 0 PID: 26888 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2642.845856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2642.845865] Call Trace:
[ 2642.845869]  <TASK>
[ 2642.845874]  dump_stack_lvl+0xfa/0x120
[ 2642.845902]  should_fail_ex+0x4d7/0x5e0
[ 2642.845922]  should_fail_alloc_page+0xe0/0x110
[ 2642.845940]  prepare_alloc_pages+0x1eb/0x550
[ 2642.845956]  ? __kernel_text_address+0xd/0x40
[ 2642.845977]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2642.846004]  ? stack_trace_save+0x8e/0xc0
[ 2642.846024]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2642.846048]  ? kasan_save_stack+0x34/0x50
[ 2642.846062]  ? kasan_save_stack+0x24/0x50
[ 2642.846077]  ? kasan_save_track+0x14/0x30
[ 2642.846091]  ? __kasan_kmalloc+0x7f/0x90
[ 2642.846104]  ? relay_open_buf.part.0+0x91/0xc70
[ 2642.846117]  ? relay_open+0x625/0xa70
[ 2642.846127]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2642.846145]  ? blk_trace_setup+0xdc/0x1b0
[ 2642.846161]  ? sg_ioctl+0x69d/0x2720
[ 2642.846177]  ? __x64_sys_ioctl+0x18f/0x210
[ 2642.846196]  ? do_syscall_64+0xbf/0x390
[ 2642.846211]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2642.846224]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2642.846246]  ? policy_nodemask+0xeb/0x4e0
[ 2642.846268]  alloc_pages_mpol+0xed/0x340
[ 2642.846286]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2642.846306]  ? mark_held_locks+0x49/0x80
[ 2642.846328]  ___kmalloc_large_node+0x11a/0x160
[ 2642.846343]  ? __create_object+0x59/0x80
[ 2642.846363]  __kmalloc_large_node_noprof+0x16/0x60
[ 2642.846380]  __kmalloc_noprof+0x4ca/0x680
[ 2642.846399]  ? relay_open_buf.part.0+0xf9/0xc70
[ 2642.846415]  relay_open_buf.part.0+0xf9/0xc70
[ 2642.846436]  relay_open+0x625/0xa70
[ 2642.846449]  ? debugfs_create_file_full+0x41/0x60
[ 2642.846471]  do_blk_trace_setup+0x4ba/0xc30
[ 2642.846493]  blk_trace_setup+0xdc/0x1b0
[ 2642.846512]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2642.846529]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2642.846546]  ? proc_fail_nth_write+0x97/0x220
[ 2642.846569]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2642.846592]  sg_ioctl+0x69d/0x2720
[ 2642.846610]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2642.846627]  ? __pfx_sg_ioctl+0x10/0x10
[ 2642.846641]  ? __fget_files+0x34/0x3b0
[ 2642.846655]  ? find_held_lock+0x2b/0x80
[ 2642.846667]  ? __fget_files+0x203/0x3b0
[ 2642.846680]  ? lock_release+0xc8/0x290
[ 2642.846703]  ? selinux_file_ioctl+0xb9/0x280
[ 2642.846717]  ? __pfx_sg_ioctl+0x10/0x10
[ 2642.846734]  __x64_sys_ioctl+0x18f/0x210
[ 2642.846755]  do_syscall_64+0xbf/0x390
[ 2642.846770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2642.846781] RIP: 0033:0x7fa15dc46b19
[ 2642.846795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2642.846807] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2642.846819] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2642.846828] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2642.846836] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2642.846843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2642.846850] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2642.846871]  </TASK>
[ 2642.852138] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2642.891358] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2642.920364] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2642.989487] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2643.091182] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.7'.
01:56:04 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:04 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:04 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000040)=0x7f)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:04 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:56:04 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
write$binfmt_aout(r4, &(0x7f0000000300)={{0x107, 0x0, 0x1, 0x3dc, 0x303, 0xcd, 0x2a3, 0x1}, "c6028db28f5e48ec117102a20ad685636bd8ac31413af56c2ee7223ca1ac486b25653e7502d15e224616cf4278c9d91c21bcc193ec1e30a82e796297b409b90b792ac289346071ea764d6bc47ad7787d5cd58987ead433d5b60a74d983effe396146fc83628df0bb25", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x789)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
r5 = dup2(r1, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xffffff20, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:56:04 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:04 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2652.624404] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.625140] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2652.628589] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.629905] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2652.660857] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.661554] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:04 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 34)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:04 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r2, 0x1, &(0x7f0000000300)={0x67, 0x3ff, 0x4, "5106871204eeded4064fef9bc56a559c32a51dc6fbaac4068ad277109f03f8b99cae1f5cd4f16393d1b2fce1e19f263197e9c654bc480d22f646530c189b4e0e6e8a9a24bc94930b6ab6ccd1a30a9ddaf0ad0ab078edd519af80de31f4b124301bdf1864989a35"})
ioctl$TIOCL_UNBLANKSCREEN(r2, 0x541c, &(0x7f0000000c00))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
close(r0)
ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000bc0))
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff, {<r4=>r0}}, './file0\x00'})
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000200)={0x53, 0xfffffffffffffffb, 0x24, 0x81, @buffer={0x0, 0x8f, &(0x7f0000000080)=""/143}, &(0x7f0000000140)="daaf04d0cb362b07deda9722a5309a956e9c657c6264cd75121377c62c6d933e4c0bbf02", &(0x7f0000000180)=""/59, 0x1, 0x20, 0x1, &(0x7f00000001c0)})
getresuid(&(0x7f0000000400), &(0x7f0000000440)=<r5=>0x0, &(0x7f0000000480))
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000b00), 0x20200, 0x0)
getsockopt$bt_BT_POWER(r7, 0x112, 0x9, &(0x7f0000000b40)=0x8, &(0x7f0000000b80)=0x1)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000000)={0x0, <r8=>0x0}, &(0x7f0000000040)=0x5)
setuid(r8)
mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x4000c, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u}, {@access_client}], [{@rootcontext={'rootcontext', 0x3d, 'root'}}, {@obj_role={'obj_role', 0x3d, '*'}}, {@euid_lt={'euid<', r5}}, {@fowner_eq={'fowner', 0x3d, r8}}]}})
sendmsg$IPVS_CMD_NEW_DAEMON(r4, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a00)={0x44, 0x0, 0x20, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}]}, 0x44}, 0x1, 0x0, 0x0, 0x200000c5}, 0x40810)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000940)={0x53, 0xe59844a58fb24778, 0x28, 0x7f, @scatter={0x5, 0x0, &(0x7f0000000800)=[{&(0x7f0000000580)=""/174, 0xae}, {&(0x7f0000000d00)=""/176, 0xb0}, {&(0x7f0000000700)=""/42, 0x2a}, {&(0x7f0000000640)=""/60, 0x55}, {&(0x7f0000000780)=""/117, 0x75}]}, &(0x7f0000000880)="a5a2029ba6a0a1b678cbf6d39909fd04067410d3bd4413822e84d6cd6d070000008a4786de44834b", &(0x7f0000000680)=""/43, 0x7, 0x10000, 0x1, &(0x7f00000006c0)})
getsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000c80), &(0x7f0000000cc0)=0x4)

[ 2652.719761] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.720455] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:04 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:04 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2652.761729] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:56:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

[ 2652.769440] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.770103] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:04 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:56:04 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2652.841157] FAULT_INJECTION: forcing a failure.
[ 2652.841157] name failslab, interval 1, probability 0, space 0, times 0
[ 2652.843097] CPU: 0 UID: 0 PID: 26935 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2652.843130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2652.843145] Call Trace:
[ 2652.843154]  <TASK>
[ 2652.843163]  dump_stack_lvl+0xfa/0x120
[ 2652.843197]  should_fail_ex+0x4d7/0x5e0
[ 2652.843231]  should_failslab+0xc2/0x120
[ 2652.843264]  __kvmalloc_node_noprof+0x11f/0x770
[ 2652.843291]  ? trace_kmalloc+0x1f/0xb0
[ 2652.843318]  ? __kmalloc_noprof+0x274/0x680
[ 2652.843352]  ? relay_open_buf.part.0+0x19d/0xc70
[ 2652.843390]  ? relay_open_buf.part.0+0x19d/0xc70
[ 2652.843414]  relay_open_buf.part.0+0x19d/0xc70
[ 2652.843458]  relay_open+0x625/0xa70
[ 2652.843484]  ? debugfs_create_file_full+0x41/0x60
[ 2652.843528]  do_blk_trace_setup+0x4ba/0xc30
[ 2652.843575]  blk_trace_setup+0xdc/0x1b0
[ 2652.843614]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2652.843650]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2652.843683]  ? proc_fail_nth_write+0x97/0x220
[ 2652.843729]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2652.843777]  sg_ioctl+0x69d/0x2720
[ 2652.843825]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2652.843859]  ? __pfx_sg_ioctl+0x10/0x10
[ 2652.843889]  ? __fget_files+0x34/0x3b0
[ 2652.843916]  ? find_held_lock+0x2b/0x80
[ 2652.843942]  ? __fget_files+0x203/0x3b0
[ 2652.843969]  ? lock_release+0xc8/0x290
[ 2652.844016]  ? selinux_file_ioctl+0xb9/0x280
[ 2652.844046]  ? __pfx_sg_ioctl+0x10/0x10
[ 2652.844083]  __x64_sys_ioctl+0x18f/0x210
[ 2652.844127]  do_syscall_64+0xbf/0x390
[ 2652.844161]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2652.844188] RIP: 0033:0x7fa15dc46b19
[ 2652.844209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2652.844232] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
01:56:04 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:04 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2652.844256] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2652.844272] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2652.844287] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2652.844302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2652.844316] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2652.844359]  </TASK>
[ 2652.894920] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.896165] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2652.913900] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2652.915167] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:14 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:56:14 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 35)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:14 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:14 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:14 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:56:14 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000000)={0x0, @xdp={0x2c, 0x0, 0x0, 0x34}, @in={0x2, 0x4e24, @empty}, @llc={0x1a, 0xffff, 0x1, 0xff, 0x0, 0xff}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x10000000007f, 0x2})
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x3}}, 0x0, r5})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000180)={'syztnl1\x00', r5, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback, 0x0, 0x20}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000740)=<r6=>0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000240)=ANY=[@ANYBLOB="dc0100001800000125bd7000fedbdf25000000000000000000000000000000000a0101020000000000000000000000004e2404014e2300000000000000000000005232c5631a1d434f42f8ca5776bd6687aacaf5d7eb630080743b56b9bf4c6651c3acf092efcc9e6878d11a5d78", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0a010100000000000000000000000000000004d33300000064010100000000000000000000000000c5ffffffffffffff05000000000000000104000000000000210000000000000000000000000000004000000000000000030000000000000000fcffffffffffff0104000000000000d10200000000000009000000000000000800000000000000000800bb0200000002000027bd70000740bf49916e7bb313eb5f1b3500000a0006060200000000000000b500000000000000e4000600fe800000000000000000000000000037000000000000000000000000000000004e20009b4e23", @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="ac1414aa000000000000000000000000000004d46c00000000000000000000000000000000000000dd0e0000000000004d0000000000000000010000000000000200000000000000060000000000000005000000000000001f00000000000000000005000000000000005f9300000000000008000000000000002000000007000000500f000028bd700007350000060002d64700"/168], 0x1dc}, 0x1, 0x0, 0x0, 0x4000011}, 0x40084)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000140)={0x4, 0x7fff, 0x5, 0x0, 0x18, "afd55f6730692714b1ccb56f75d2ff4942d7af"})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@ll={0x11, 0xf5, r5, 0x1, 0x4, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000200)="f367f041c470da6da401aca4a15f7894e27eba90d9e338f4d5f3c06f888f264896603bdb69b8", 0x26}], 0x1, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], 0x3d0}, 0x0, 0x8000000, 0x1, {0x0, r7}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x9c, 0x5, 0x0, {0x0, r7}}, 0x3000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index, 0x3f, 0x0, 0x0, 0x0, 0x1, {0x0, r7}}, 0x3f)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x5, 0x1, 0x0, 0x7fff, 0x1, 0x0, {0x0, r7}}, 0x8001)
syz_io_uring_setup(0x61f2, &(0x7f0000000040)={0x0, 0x7134, 0x0, 0x1, 0x348}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(0x0, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000140)={0x614000, 0xa0, 0x1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x23456}, 0x7f)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:14 executing program 7:
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f00000000c0)=0x3, 0x4)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000040))
r3 = openat2(r2, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x24300, 0x4, 0x5}, 0x18)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="e50000000200000055e500005b75892d90828e892afdb5f87742acbb52de9d5a1348f199132730ee0800000000000000afb2e015f3b159f175d210c709a22a5f84624f6a706054d945c67b9075409c7143cb432de4f795d2d85f09f11bb520ae27b3fec5549a7403523ab051651a2ec862c9603d5fafbe0d918ce17b6af74ad4699c24687ced21b98c9c1520a5259ba4f052627ed71461221e8e7844e34d22daab7604b24f6e5f11869ec15b292e032fe56f74bd3d512f622bbfbe393767331cab176d5bfe891a56c28c61d7064f637cd1f1ddb23efc4465a36c1f3aa3ccb2a7812cdb4099c61d07b4baad87af080d7da4049cf5283334"])
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000080)={0x4, 0x6, 0xfbff})

01:56:14 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:14 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 36)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2663.253275] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.254584] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2663.270427] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.271078] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2663.278374] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.279639] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2663.282897] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.284163] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:14 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:14 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2663.344406] FAULT_INJECTION: forcing a failure.
[ 2663.344406] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2663.345474] CPU: 1 UID: 0 PID: 26971 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2663.345491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2663.345499] Call Trace:
[ 2663.345504]  <TASK>
[ 2663.345508]  dump_stack_lvl+0xfa/0x120
[ 2663.345529]  should_fail_ex+0x4d7/0x5e0
[ 2663.345548]  should_fail_alloc_page+0xe0/0x110
[ 2663.345567]  prepare_alloc_pages+0x1eb/0x550
[ 2663.345587]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2663.345604]  ? relay_open+0x625/0xa70
[ 2663.345617]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2663.345634]  ? blk_trace_setup+0xdc/0x1b0
[ 2663.345652]  ? do_syscall_64+0xbf/0x390
[ 2663.345667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2663.345681]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2663.345705]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2663.345729]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2663.345746]  ? do_raw_spin_lock+0x123/0x260
[ 2663.345769]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2663.345795]  ? policy_nodemask+0xeb/0x4e0
[ 2663.345817]  alloc_pages_mpol+0xed/0x340
[ 2663.345835]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2663.345853]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2663.345867]  ? trace_kmalloc+0x1f/0xb0
[ 2663.345880]  ? __kmalloc_noprof+0x274/0x680
[ 2663.345901]  alloc_pages_noprof+0x9d/0x180
[ 2663.345920]  relay_open_buf.part.0+0x26f/0xc70
[ 2663.345942]  relay_open+0x625/0xa70
[ 2663.345955]  ? debugfs_create_file_full+0x41/0x60
[ 2663.345977]  do_blk_trace_setup+0x4ba/0xc30
[ 2663.345999]  blk_trace_setup+0xdc/0x1b0
[ 2663.346018]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2663.346035]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2663.346050]  ? proc_fail_nth_write+0x97/0x220
[ 2663.346074]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2663.346097]  sg_ioctl+0x69d/0x2720
[ 2663.346129]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2663.346146]  ? __pfx_sg_ioctl+0x10/0x10
[ 2663.346161]  ? __fget_files+0x34/0x3b0
[ 2663.346175]  ? find_held_lock+0x2b/0x80
[ 2663.346187]  ? __fget_files+0x203/0x3b0
[ 2663.346200]  ? lock_release+0xc8/0x290
[ 2663.346223]  ? selinux_file_ioctl+0xb9/0x280
[ 2663.346237]  ? __pfx_sg_ioctl+0x10/0x10
[ 2663.346255]  __x64_sys_ioctl+0x18f/0x210
[ 2663.346278]  do_syscall_64+0xbf/0x390
[ 2663.346293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2663.346305] RIP: 0033:0x7fa15dc46b19
[ 2663.346315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2663.346328] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2663.346340] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2663.346348] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2663.346355] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2663.346363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2663.346370] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2663.346391]  </TASK>
[ 2663.370867] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.371487] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:14 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$sg(&(0x7f0000000040), 0x9, 0x2)

01:56:14 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff})

01:56:14 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:14 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

[ 2663.474018] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.474779] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2663.483071] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.483738] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2663.494852] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2663.495479] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:25 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 37)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:25 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:25 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:25 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:25 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:25 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:25 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2673.836286] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2673.837427] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2673.841876] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2673.843011] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2673.852363] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2673.853487] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2673.902452] FAULT_INJECTION: forcing a failure.
[ 2673.902452] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2673.904473] CPU: 1 UID: 0 PID: 27007 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2673.904505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2673.904519] Call Trace:
[ 2673.904527]  <TASK>
[ 2673.904537]  dump_stack_lvl+0xfa/0x120
[ 2673.904571]  should_fail_ex+0x4d7/0x5e0
[ 2673.904606]  should_fail_alloc_page+0xe0/0x110
[ 2673.904641]  prepare_alloc_pages+0x1eb/0x550
[ 2673.904679]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2673.904714]  ? relay_open+0x625/0xa70
[ 2673.904737]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2673.904774]  ? do_syscall_64+0xbf/0x390
[ 2673.904807]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2673.904834]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2673.904880]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2673.904931]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2673.904965]  ? do_raw_spin_lock+0x123/0x260
[ 2673.905009]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2673.905049]  ? policy_nodemask+0xeb/0x4e0
[ 2673.905091]  alloc_pages_mpol+0xed/0x340
[ 2673.905128]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2673.905165]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2673.905190]  ? trace_kmalloc+0x1f/0xb0
[ 2673.905216]  ? __kmalloc_noprof+0x274/0x680
[ 2673.905256]  alloc_pages_noprof+0x9d/0x180
[ 2673.905296]  relay_open_buf.part.0+0x26f/0xc70
[ 2673.905338]  relay_open+0x625/0xa70
01:56:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

[ 2673.905364]  ? debugfs_create_file_full+0x41/0x60
[ 2673.905407]  do_blk_trace_setup+0x4ba/0xc30
[ 2673.905451]  blk_trace_setup+0xdc/0x1b0
[ 2673.905487]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2673.905522]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2673.905553]  ? proc_fail_nth_write+0x97/0x220
[ 2673.905598]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2673.905643]  sg_ioctl+0x69d/0x2720
[ 2673.905682]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2673.905714]  ? __pfx_sg_ioctl+0x10/0x10
[ 2673.905743]  ? __fget_files+0x34/0x3b0
[ 2673.905769]  ? find_held_lock+0x2b/0x80
[ 2673.905793]  ? __fget_files+0x203/0x3b0
01:56:25 executing program 7:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000240)={0x4, 0x7fff, 0xa8, 0x2, 0x101})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000003c0)={0x0, 0xfffffffffffffffb, 0x5a, 0x0, @buffer={0x0, 0xf7, &(0x7f0000000080)=""/247}, &(0x7f0000000180)="2795dc60a3021ca4b15705dc8e32bf764c282f35728eadda0b815b933ee30b5ff9ae3a63689be75d5692de2a1bf7be3c5d3be8381901994f361bbe46dc4733d36b727089a26b6a4526996d0ac62c255c5342ef5e73fbb3a81248", &(0x7f0000000300)=""/130, 0x0, 0x4, 0x0, &(0x7f0000000200)})
write$binfmt_script(r1, &(0x7f0000000440)={'#! ', './file0', [{}, {0x20, '/dev/sg#\x00'}, {0x20, '/dev/ptmx\x00'}, {0x20, '{}@'}, {0x20, '/dev/ptmx\x00'}], 0xa, "f73023bb122c83b4f86ce8336684718e8c55922dacedee166e77dfc69333b076908c458c8c328c09c8098f001936a9d7c797811190fcf1f8c23b2005a254f5126d006a30709b2bd50d99970407c27bb30266e643f26e879da5c983a7f9d10bd092692157520172b935e6084fdcbc0f73c5d4136cf55722303706bf28656b0e22b75ab6d4f93b06c269cca7b55af008f078f1651643145114645b11904ee623ab2c532d6e316e8ec35616007ccbfa8c96cb7c536dd3144ed669bb5d0b278fada2868fc352c83a7df8688a03644d1527ea5da540a14787cd0a34d62d28bab80c"}, 0x10f)
r3 = dup2(r2, r1)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2673.905819]  ? lock_release+0xc8/0x290
[ 2673.905863]  ? selinux_file_ioctl+0xb9/0x280
[ 2673.905891]  ? __pfx_sg_ioctl+0x10/0x10
[ 2673.905927]  __x64_sys_ioctl+0x18f/0x210
[ 2673.905969]  do_syscall_64+0xbf/0x390
[ 2673.906000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2673.906023] RIP: 0033:0x7fa15dc46b19
[ 2673.906042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2673.906065] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2673.906088] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2673.906103] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2673.906118] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2673.906132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2673.906145] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2673.906186]  </TASK>
[ 2674.056243] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2674.057275] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:25 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:25 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000000c0), 0x1000000000004, 0x84800)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$rtc(&(0x7f0000000080), 0x0, 0x0)
r3 = accept4$packet(r2, &(0x7f0000000000), &(0x7f0000000100)=0x14, 0x800)
io_cancel(0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x4, r3, &(0x7f0000000140)="e033a35e58ba9cc9357fcedb70f3731854", 0x11, 0x400000000000001}, &(0x7f00000001c0))

01:56:25 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 38)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:25 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2674.122610] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2674.123981] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:25 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

[ 2674.242762] FAULT_INJECTION: forcing a failure.
[ 2674.242762] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2674.244776] CPU: 1 UID: 0 PID: 27128 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2674.244811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2674.244824] Call Trace:
[ 2674.244833]  <TASK>
[ 2674.244846]  dump_stack_lvl+0xfa/0x120
[ 2674.244877]  should_fail_ex+0x4d7/0x5e0
[ 2674.244910]  should_fail_alloc_page+0xe0/0x110
[ 2674.244941]  prepare_alloc_pages+0x1eb/0x550
[ 2674.244977]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2674.245009]  ? relay_open+0x625/0xa70
[ 2674.245030]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2674.245064]  ? do_syscall_64+0xbf/0x390
[ 2674.245088]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2674.245112]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2674.245155]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2674.245200]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2674.245231]  ? do_raw_spin_lock+0x123/0x260
[ 2674.245273]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2674.245311]  ? policy_nodemask+0xeb/0x4e0
[ 2674.245350]  alloc_pages_mpol+0xed/0x340
[ 2674.245384]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2674.245418]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2674.245442]  ? trace_kmalloc+0x1f/0xb0
[ 2674.245466]  ? __kmalloc_noprof+0x274/0x680
[ 2674.245504]  alloc_pages_noprof+0x9d/0x180
[ 2674.245543]  relay_open_buf.part.0+0x26f/0xc70
[ 2674.245585]  relay_open+0x625/0xa70
[ 2674.245609]  ? debugfs_create_file_full+0x41/0x60
[ 2674.245648]  do_blk_trace_setup+0x4ba/0xc30
[ 2674.245690]  blk_trace_setup+0xdc/0x1b0
[ 2674.245723]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2674.245756]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2674.245784]  ? proc_fail_nth_write+0x97/0x220
[ 2674.245826]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2674.245868]  sg_ioctl+0x69d/0x2720
[ 2674.245904]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2674.245934]  ? __pfx_sg_ioctl+0x10/0x10
[ 2674.245961]  ? __fget_files+0x34/0x3b0
[ 2674.245986]  ? find_held_lock+0x2b/0x80
[ 2674.246008]  ? __fget_files+0x203/0x3b0
[ 2674.246032]  ? lock_release+0xc8/0x290
[ 2674.246074]  ? selinux_file_ioctl+0xb9/0x280
[ 2674.246100]  ? __pfx_sg_ioctl+0x10/0x10
[ 2674.246133]  __x64_sys_ioctl+0x18f/0x210
[ 2674.246172]  do_syscall_64+0xbf/0x390
[ 2674.246200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2674.246222] RIP: 0033:0x7fa15dc46b19
[ 2674.246254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2674.246275] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2674.246295] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2674.246310] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2674.246323] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2674.246336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2674.246348] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2674.246387]  </TASK>
[ 2674.302257] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2674.303212] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:35 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
r2 = syz_open_dev$vcsn(&(0x7f0000000040), 0x1, 0x0)
ioctl$TIOCMGET(r2, 0x5415, &(0x7f00000000c0))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000180)={0x53, 0xfffffffffffffffc, 0x0, 0xea, @buffer={0x0, 0x37, &(0x7f0000000080)=""/55}, &(0x7f00000000c0), &(0x7f0000000100)=""/37, 0xeb, 0x20, 0xffffffffffffffff, &(0x7f0000000140)})

01:56:35 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
syz_open_dev$char_usb(0xc, 0xb4, 0x98)
r3 = eventfd(0xff)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x141100, 0x0)
ioctl$TIOCSISO7816(r4, 0xc0285443, &(0x7f00000000c0)={0x860000, 0x96a, 0x5, 0xf3ef, 0x8})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0xc4089434, &(0x7f0000000300)={0x0, 0x9, 0x1, [0x3fdfcc3d, 0x5, 0x6a, 0x7fffffff, 0x8c0], [0x4, 0xffffffffffffffe2, 0x849d, 0x5, 0x2, 0x9, 0x800, 0x0, 0x774a873c, 0x66, 0x0, 0x1, 0xaae0, 0x0, 0x0, 0x1200, 0x0, 0x2cca, 0x6, 0x200, 0x4, 0x320, 0x6, 0x8, 0x3, 0x909, 0x6, 0x2, 0x7, 0x7, 0x9, 0x7ff, 0x1ff, 0x5, 0x400, 0x8b2, 0x1, 0x10000, 0x6d, 0x1, 0x8, 0x5, 0x9, 0x8, 0x7, 0x8, 0x9, 0x9, 0x7, 0x5, 0x5, 0x1, 0xffffffffffffff80, 0x5, 0x3, 0x6, 0x2, 0xfffffffffffffffb, 0x3, 0x0, 0x1, 0x5, 0x4, 0x81, 0xeaa1, 0x114164aa, 0x8001, 0x3, 0x100000000, 0xffffffffffffffff, 0x400, 0xb57, 0xc814, 0xfff, 0xec1, 0x5, 0x8, 0x8, 0x1000, 0xfffffffffffffff8, 0x1, 0x7, 0x9, 0x200, 0x1f, 0x7, 0xca, 0xffffffffffffaa7d, 0x4c, 0x101, 0x3, 0x1, 0x5, 0x25, 0x9, 0x4, 0x100000001, 0x401, 0x10000, 0x8001, 0x7, 0x8, 0xfffffffffffffffd, 0x7ff, 0x0, 0x2, 0x200, 0x0, 0x400, 0x318a, 0x5, 0x6, 0x685, 0x380, 0x7, 0x5, 0xed48, 0x7, 0x2, 0x1ff, 0x3]})
r7 = dup2(r0, r3)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:35 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:35 executing program 0:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 39)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:35 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

01:56:35 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2683.872981] FAULT_INJECTION: forcing a failure.
[ 2683.872981] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2683.874005] CPU: 0 UID: 0 PID: 27147 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2683.874022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2683.874030] Call Trace:
[ 2683.874035]  <TASK>
[ 2683.874040]  dump_stack_lvl+0xfa/0x120
[ 2683.874061]  should_fail_ex+0x4d7/0x5e0
[ 2683.874081]  should_fail_alloc_page+0xe0/0x110
[ 2683.874100]  prepare_alloc_pages+0x1eb/0x550
[ 2683.874120]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2683.874138]  ? relay_open+0x625/0xa70
[ 2683.874151]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2683.874170]  ? do_syscall_64+0xbf/0x390
[ 2683.874184]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2683.874198]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2683.874223]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2683.874247]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2683.874264]  ? do_raw_spin_lock+0x123/0x260
[ 2683.874287]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2683.874309]  ? policy_nodemask+0xeb/0x4e0
[ 2683.874331]  alloc_pages_mpol+0xed/0x340
[ 2683.874357]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2683.874375]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2683.874388]  ? trace_kmalloc+0x1f/0xb0
[ 2683.874402]  ? __kmalloc_noprof+0x274/0x680
[ 2683.874422]  alloc_pages_noprof+0x9d/0x180
[ 2683.874443]  relay_open_buf.part.0+0x26f/0xc70
[ 2683.874464]  relay_open+0x625/0xa70
[ 2683.874476]  ? debugfs_create_file_full+0x41/0x60
[ 2683.874499]  do_blk_trace_setup+0x4ba/0xc30
[ 2683.874521]  blk_trace_setup+0xdc/0x1b0
[ 2683.874540]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2683.874557]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2683.874572]  ? proc_fail_nth_write+0x97/0x220
[ 2683.874596]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2683.874619]  sg_ioctl+0x69d/0x2720
[ 2683.874639]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2683.874656]  ? __pfx_sg_ioctl+0x10/0x10
[ 2683.874670]  ? __fget_files+0x34/0x3b0
[ 2683.874684]  ? find_held_lock+0x2b/0x80
[ 2683.874697]  ? __fget_files+0x203/0x3b0
[ 2683.874709]  ? lock_release+0xc8/0x290
[ 2683.874732]  ? selinux_file_ioctl+0xb9/0x280
[ 2683.874746]  ? __pfx_sg_ioctl+0x10/0x10
[ 2683.874764]  __x64_sys_ioctl+0x18f/0x210
[ 2683.874790]  do_syscall_64+0xbf/0x390
[ 2683.874805]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2683.874817] RIP: 0033:0x7fa15dc46b19
[ 2683.874827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2683.874840] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2683.874853] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2683.874861] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2683.874869] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2683.874876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2683.874883] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2683.874904]  </TASK>
[ 2683.899142] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2683.899248] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2683.926064] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2683.927266] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2683.963257] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2683.963926] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:35 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:35 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:35 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 40)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:35 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r3, 0x80049367, &(0x7f0000000080)=0xb9)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2684.005919] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2684.007364] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:35 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

[ 2684.063143] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2684.063832] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:35 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2684.102107] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2684.102742] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2684.118920] FAULT_INJECTION: forcing a failure.
[ 2684.118920] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2684.121070] CPU: 1 UID: 0 PID: 27172 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2684.121101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2684.121114] Call Trace:
[ 2684.121121]  <TASK>
[ 2684.121129]  dump_stack_lvl+0xfa/0x120
[ 2684.121161]  should_fail_ex+0x4d7/0x5e0
[ 2684.121194]  should_fail_alloc_page+0xe0/0x110
[ 2684.121226]  prepare_alloc_pages+0x1eb/0x550
[ 2684.121260]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2684.121292]  ? relay_open+0x625/0xa70
[ 2684.121313]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2684.121347]  ? do_syscall_64+0xbf/0x390
[ 2684.121372]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2684.121396]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2684.121439]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2684.121483]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2684.121514]  ? do_raw_spin_lock+0x123/0x260
[ 2684.121556]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2684.121594]  ? policy_nodemask+0xeb/0x4e0
[ 2684.121633]  alloc_pages_mpol+0xed/0x340
[ 2684.121667]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2684.121701]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2684.121724]  ? trace_kmalloc+0x1f/0xb0
[ 2684.121748]  ? __kmalloc_noprof+0x274/0x680
[ 2684.121785]  alloc_pages_noprof+0x9d/0x180
[ 2684.121829]  relay_open_buf.part.0+0x26f/0xc70
[ 2684.121869]  relay_open+0x625/0xa70
[ 2684.121892]  ? debugfs_create_file_full+0x41/0x60
[ 2684.121933]  do_blk_trace_setup+0x4ba/0xc30
[ 2684.121973]  blk_trace_setup+0xdc/0x1b0
[ 2684.122008]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2684.122040]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2684.122068]  ? proc_fail_nth_write+0x97/0x220
[ 2684.122110]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2684.122152]  sg_ioctl+0x69d/0x2720
[ 2684.122189]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2684.122219]  ? __pfx_sg_ioctl+0x10/0x10
[ 2684.122246]  ? __fget_files+0x34/0x3b0
[ 2684.122271]  ? find_held_lock+0x2b/0x80
[ 2684.122293]  ? __fget_files+0x203/0x3b0
[ 2684.122317]  ? lock_release+0xc8/0x290
[ 2684.122370]  ? selinux_file_ioctl+0xb9/0x280
[ 2684.122396]  ? __pfx_sg_ioctl+0x10/0x10
[ 2684.122429]  __x64_sys_ioctl+0x18f/0x210
[ 2684.122468]  do_syscall_64+0xbf/0x390
[ 2684.122495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2684.122517] RIP: 0033:0x7fa15dc46b19
[ 2684.122534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2684.122556] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2684.122578] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2684.122593] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2684.122606] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2684.122619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2684.122631] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2684.122668]  </TASK>
01:56:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:56:35 executing program 7:
delete_module(&(0x7f00000000c0)='/dev/sg#\x00', 0xa00)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff})
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000080)=0x1)
delete_module(&(0x7f0000000100)='/dev/ptmx\x00', 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a7625b00930a", 0x0, 0x0, 0x0, 0x4, 0x0})

[ 2684.201151] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2684.201873] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2684.210120] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2684.210839] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:46 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 41)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

01:56:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x88000)
ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000080)={0x4, 0x400})
r3 = dup2(r1, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
r5 = memfd_secret(0x0)
dup2(r4, r5)

[ 2694.575649] FAULT_INJECTION: forcing a failure.
[ 2694.575649] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2694.577584] CPU: 1 UID: 0 PID: 27192 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2694.577614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2694.577626] Call Trace:
[ 2694.577634]  <TASK>
[ 2694.577642]  dump_stack_lvl+0xfa/0x120
[ 2694.577672]  should_fail_ex+0x4d7/0x5e0
[ 2694.577704]  should_fail_alloc_page+0xe0/0x110
[ 2694.577736]  prepare_alloc_pages+0x1eb/0x550
[ 2694.577771]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2694.577810]  ? relay_open+0x625/0xa70
[ 2694.577831]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2694.577865]  ? do_syscall_64+0xbf/0x390
[ 2694.577890]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2694.577914]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2694.577958]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2694.578003]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2694.578035]  ? do_raw_spin_lock+0x123/0x260
[ 2694.578077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2694.578115]  ? policy_nodemask+0xeb/0x4e0
[ 2694.578155]  alloc_pages_mpol+0xed/0x340
[ 2694.578189]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2694.578222]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2694.578247]  ? trace_kmalloc+0x1f/0xb0
[ 2694.578273]  ? __kmalloc_noprof+0x274/0x680
[ 2694.578312]  alloc_pages_noprof+0x9d/0x180
[ 2694.578349]  relay_open_buf.part.0+0x26f/0xc70
[ 2694.578388]  relay_open+0x625/0xa70
[ 2694.578412]  ? debugfs_create_file_full+0x41/0x60
[ 2694.578452]  do_blk_trace_setup+0x4ba/0xc30
[ 2694.578505]  blk_trace_setup+0xdc/0x1b0
[ 2694.578539]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2694.578571]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2694.578600]  ? proc_fail_nth_write+0x97/0x220
[ 2694.578641]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2694.578683]  sg_ioctl+0x69d/0x2720
[ 2694.578719]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2694.578749]  ? __pfx_sg_ioctl+0x10/0x10
[ 2694.578775]  ? __fget_files+0x34/0x3b0
[ 2694.578800]  ? find_held_lock+0x2b/0x80
[ 2694.578823]  ? __fget_files+0x203/0x3b0
[ 2694.578846]  ? lock_release+0xc8/0x290
[ 2694.578888]  ? selinux_file_ioctl+0xb9/0x280
[ 2694.578914]  ? __pfx_sg_ioctl+0x10/0x10
[ 2694.578946]  __x64_sys_ioctl+0x18f/0x210
[ 2694.578986]  do_syscall_64+0xbf/0x390
[ 2694.579014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2694.579035] RIP: 0033:0x7fa15dc46b19
[ 2694.579052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2694.579074] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2694.579096] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2694.579111] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2694.579124] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2694.579138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2694.579151] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2694.579188]  </TASK>
[ 2694.665260] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2694.666505] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2694.668774] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2694.670049] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2694.716904] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2694.718200] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:46 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:56:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 42)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2694.827449] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2694.828692] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2694.851648] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2694.852896] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000040)={0x0, 0x6, 0x7f})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$TIOCSPTLCK(r7, 0x40045431, &(0x7f0000000080))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_SET_KEEP_ORPHAN(r6, 0x2287, &(0x7f00000000c0))

[ 2694.947641] FAULT_INJECTION: forcing a failure.
[ 2694.947641] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2694.949603] CPU: 0 UID: 0 PID: 27218 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2694.949634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2694.949646] Call Trace:
[ 2694.949654]  <TASK>
[ 2694.949662]  dump_stack_lvl+0xfa/0x120
[ 2694.949694]  should_fail_ex+0x4d7/0x5e0
[ 2694.949726]  should_fail_alloc_page+0xe0/0x110
[ 2694.949758]  prepare_alloc_pages+0x1eb/0x550
[ 2694.949801]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2694.949833]  ? relay_open+0x625/0xa70
[ 2694.949855]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2694.949889]  ? do_syscall_64+0xbf/0x390
[ 2694.949914]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2694.949939]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2694.949983]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2694.950028]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2694.950059]  ? do_raw_spin_lock+0x123/0x260
[ 2694.950101]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2694.950139]  ? policy_nodemask+0xeb/0x4e0
[ 2694.950179]  alloc_pages_mpol+0xed/0x340
[ 2694.950214]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2694.950248]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2694.950272]  ? trace_kmalloc+0x1f/0xb0
[ 2694.950296]  ? __kmalloc_noprof+0x274/0x680
[ 2694.950334]  alloc_pages_noprof+0x9d/0x180
[ 2694.950371]  relay_open_buf.part.0+0x26f/0xc70
[ 2694.950411]  relay_open+0x625/0xa70
[ 2694.950435]  ? debugfs_create_file_full+0x41/0x60
[ 2694.950488]  do_blk_trace_setup+0x4ba/0xc30
[ 2694.950530]  blk_trace_setup+0xdc/0x1b0
[ 2694.950564]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2694.950596]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2694.950625]  ? proc_fail_nth_write+0x97/0x220
[ 2694.950667]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2694.950710]  sg_ioctl+0x69d/0x2720
[ 2694.950746]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2694.950776]  ? __pfx_sg_ioctl+0x10/0x10
[ 2694.950804]  ? __fget_files+0x34/0x3b0
[ 2694.950829]  ? find_held_lock+0x2b/0x80
[ 2694.950852]  ? __fget_files+0x203/0x3b0
[ 2694.950876]  ? lock_release+0xc8/0x290
[ 2694.950917]  ? selinux_file_ioctl+0xb9/0x280
[ 2694.950944]  ? __pfx_sg_ioctl+0x10/0x10
[ 2694.950977]  __x64_sys_ioctl+0x18f/0x210
[ 2694.951018]  do_syscall_64+0xbf/0x390
[ 2694.951046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2694.951068] RIP: 0033:0x7fa15dc46b19
[ 2694.951085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2694.951108] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2694.951129] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2694.951144] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2694.951158] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2694.951172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2694.951185] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2694.951223]  </TASK>
[ 2695.065222] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 2695.096334] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:56:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
lstat(&(0x7f00000019c0)='./file0\x00', &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
write$P9_RGETATTR(r2, &(0x7f0000001a80)={0xa0, 0x19, 0x1, {0x2adc, {0x20, 0x1}, 0x4, 0x0, r3, 0x3, 0xb947, 0x101, 0x1f, 0x1, 0x0, 0x7, 0x1, 0x4, 0x80000000, 0x3, 0x21c1, 0x2, 0xdbc1, 0x8}}, 0xa0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xb0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4900}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioprio_get$pid(0x1, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r4)
r5 = dup2(r4, r2)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r7, r6)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_GET_REQUEST_TABLE(0xffffffffffffffff, 0x2286, &(0x7f0000000300))
ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000100)=0x8001)
sendmsg$NFNL_MSG_CTHELPER_DEL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x2, 0x9, 0x401, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xf}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x20}, @NFCTH_STATUS={0x8}]}, 0x2c}}, 0x4095)
ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000040)=0x800)
ioctl$TCXONC(r0, 0x540a, 0x2)

01:56:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 43)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:56:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2695.213915] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2695.215197] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2695.291280] FAULT_INJECTION: forcing a failure.
[ 2695.291280] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2695.293046] CPU: 0 UID: 0 PID: 27339 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2695.293076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2695.293089] Call Trace:
[ 2695.293097]  <TASK>
[ 2695.293105]  dump_stack_lvl+0xfa/0x120
[ 2695.293137]  should_fail_ex+0x4d7/0x5e0
[ 2695.293170]  should_fail_alloc_page+0xe0/0x110
[ 2695.293203]  prepare_alloc_pages+0x1eb/0x550
[ 2695.293239]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2695.293272]  ? relay_open+0x625/0xa70
[ 2695.293293]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2695.293328]  ? do_syscall_64+0xbf/0x390
[ 2695.293352]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2695.293377]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2695.293421]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2695.293465]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2695.293497]  ? do_raw_spin_lock+0x123/0x260
[ 2695.293539]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2695.293577]  ? policy_nodemask+0xeb/0x4e0
[ 2695.293616]  alloc_pages_mpol+0xed/0x340
[ 2695.293651]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2695.293684]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2695.293709]  ? trace_kmalloc+0x1f/0xb0
[ 2695.293733]  ? __kmalloc_noprof+0x274/0x680
[ 2695.293770]  alloc_pages_noprof+0x9d/0x180
[ 2695.293814]  relay_open_buf.part.0+0x26f/0xc70
[ 2695.293853]  relay_open+0x625/0xa70
[ 2695.293877]  ? debugfs_create_file_full+0x41/0x60
[ 2695.293916]  do_blk_trace_setup+0x4ba/0xc30
[ 2695.293957]  blk_trace_setup+0xdc/0x1b0
[ 2695.293991]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2695.294023]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2695.294051]  ? proc_fail_nth_write+0x97/0x220
[ 2695.294093]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2695.294135]  sg_ioctl+0x69d/0x2720
[ 2695.294170]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2695.294200]  ? __pfx_sg_ioctl+0x10/0x10
[ 2695.294227]  ? __fget_files+0x34/0x3b0
[ 2695.294251]  ? find_held_lock+0x2b/0x80
[ 2695.294274]  ? __fget_files+0x203/0x3b0
[ 2695.294298]  ? lock_release+0xc8/0x290
[ 2695.294339]  ? selinux_file_ioctl+0xb9/0x280
[ 2695.294365]  ? __pfx_sg_ioctl+0x10/0x10
[ 2695.294398]  __x64_sys_ioctl+0x18f/0x210
[ 2695.294437]  do_syscall_64+0xbf/0x390
[ 2695.294465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2695.294500] RIP: 0033:0x7fa15dc46b19
[ 2695.294516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2695.294538] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2695.294560] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2695.294575] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2695.294588] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2695.294601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2695.294614] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2695.294651]  </TASK>
[ 2695.343639] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2695.344899] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:56:58 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 44)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:56:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:56:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

01:56:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x2, 0x0, 0x0, 0x0})

01:56:58 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
write$binfmt_aout(r3, &(0x7f0000000300)={{0xcc, 0x1, 0x83, 0x20d, 0x23c, 0x8796, 0x2e8}, "11b5d79a5508eee049ee8d552938ad95572be8b7a816d95ebab8ae7b12e40bf0fd4752caf2ac3c0dc4119606e4ed78db0ac135e8fa327b0e565309977a97e9741dadec32d85eb191b3152eb19a51f9792a3de066bf977b340c9047aa3beff643030890f8738f33f3d378827d943afa6710798bdd18ed7c5adf5a545e874b0295686b06fe346d4530d64674f8ffc74e88de9627fcc7ca89568756a6dc7ad31caf372e", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5c2)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:56:58 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2706.825117] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2706.826943] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2706.854923] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2706.855610] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2706.861688] FAULT_INJECTION: forcing a failure.
[ 2706.861688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2706.862669] CPU: 0 UID: 0 PID: 27362 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2706.862686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2706.862693] Call Trace:
[ 2706.862698]  <TASK>
[ 2706.862703]  dump_stack_lvl+0xfa/0x120
[ 2706.862723]  should_fail_ex+0x4d7/0x5e0
[ 2706.862741]  should_fail_alloc_page+0xe0/0x110
[ 2706.862760]  prepare_alloc_pages+0x1eb/0x550
[ 2706.862779]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2706.862801]  ? relay_open+0x625/0xa70
[ 2706.862813]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2706.862832]  ? do_syscall_64+0xbf/0x390
[ 2706.862846]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2706.862860]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2706.862884]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2706.862908]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2706.862925]  ? do_raw_spin_lock+0x123/0x260
[ 2706.862948]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2706.862968]  ? policy_nodemask+0xeb/0x4e0
[ 2706.862990]  alloc_pages_mpol+0xed/0x340
[ 2706.863009]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2706.863027]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2706.863040]  ? trace_kmalloc+0x1f/0xb0
[ 2706.863053]  ? __kmalloc_noprof+0x274/0x680
[ 2706.863073]  alloc_pages_noprof+0x9d/0x180
[ 2706.863093]  relay_open_buf.part.0+0x26f/0xc70
[ 2706.863115]  relay_open+0x625/0xa70
[ 2706.863127]  ? debugfs_create_file_full+0x41/0x60
[ 2706.863149]  do_blk_trace_setup+0x4ba/0xc30
[ 2706.863171]  blk_trace_setup+0xdc/0x1b0
[ 2706.863190]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2706.863207]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2706.863222]  ? proc_fail_nth_write+0x97/0x220
[ 2706.863246]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2706.863269]  sg_ioctl+0x69d/0x2720
[ 2706.863289]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2706.863306]  ? __pfx_sg_ioctl+0x10/0x10
[ 2706.863321]  ? __fget_files+0x34/0x3b0
[ 2706.863335]  ? find_held_lock+0x2b/0x80
[ 2706.863347]  ? __fget_files+0x203/0x3b0
[ 2706.863360]  ? lock_release+0xc8/0x290
[ 2706.863382]  ? selinux_file_ioctl+0xb9/0x280
[ 2706.863396]  ? __pfx_sg_ioctl+0x10/0x10
[ 2706.863414]  __x64_sys_ioctl+0x18f/0x210
[ 2706.863436]  do_syscall_64+0xbf/0x390
[ 2706.863451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2706.863462] RIP: 0033:0x7fa15dc46b19
[ 2706.863472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2706.863485] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2706.863497] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2706.863505] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2706.863512] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2706.863519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2706.863526] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2706.863546]  </TASK>
01:56:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2706.913173] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2706.913869] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x400000)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2706.948110] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2706.949364] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:56:58 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:56:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 45)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2707.168202] FAULT_INJECTION: forcing a failure.
[ 2707.168202] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2707.170089] CPU: 1 UID: 0 PID: 27378 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2707.170119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2707.170131] Call Trace:
[ 2707.170139]  <TASK>
[ 2707.170147]  dump_stack_lvl+0xfa/0x120
[ 2707.170178]  should_fail_ex+0x4d7/0x5e0
[ 2707.170210]  should_fail_alloc_page+0xe0/0x110
[ 2707.170242]  prepare_alloc_pages+0x1eb/0x550
[ 2707.170277]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2707.170309]  ? relay_open+0x625/0xa70
[ 2707.170330]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2707.170363]  ? do_syscall_64+0xbf/0x390
[ 2707.170387]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2707.170412]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2707.170455]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2707.170499]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2707.170529]  ? do_raw_spin_lock+0x123/0x260
[ 2707.170571]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2707.170608]  ? policy_nodemask+0xeb/0x4e0
[ 2707.170659]  alloc_pages_mpol+0xed/0x340
[ 2707.170694]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2707.170727]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2707.170751]  ? trace_kmalloc+0x1f/0xb0
[ 2707.170775]  ? __kmalloc_noprof+0x274/0x680
[ 2707.170819]  alloc_pages_noprof+0x9d/0x180
[ 2707.170857]  relay_open_buf.part.0+0x26f/0xc70
[ 2707.170896]  relay_open+0x625/0xa70
[ 2707.170920]  ? debugfs_create_file_full+0x41/0x60
[ 2707.170959]  do_blk_trace_setup+0x4ba/0xc30
[ 2707.171000]  blk_trace_setup+0xdc/0x1b0
[ 2707.171034]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2707.171067]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2707.171095]  ? proc_fail_nth_write+0x97/0x220
[ 2707.171137]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2707.171179]  sg_ioctl+0x69d/0x2720
[ 2707.171215]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2707.171245]  ? __pfx_sg_ioctl+0x10/0x10
[ 2707.171272]  ? __fget_files+0x34/0x3b0
[ 2707.171296]  ? find_held_lock+0x2b/0x80
[ 2707.171319]  ? __fget_files+0x203/0x3b0
[ 2707.171342]  ? lock_release+0xc8/0x290
[ 2707.171384]  ? selinux_file_ioctl+0xb9/0x280
[ 2707.171410]  ? __pfx_sg_ioctl+0x10/0x10
[ 2707.171443]  __x64_sys_ioctl+0x18f/0x210
[ 2707.171482]  do_syscall_64+0xbf/0x390
[ 2707.171510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2707.171531] RIP: 0033:0x7fa15dc46b19
[ 2707.171549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2707.171571] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2707.171593] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2707.171608] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2707.171621] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2707.171634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2707.171646] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2707.171684]  </TASK>
01:57:10 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:57:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:57:10 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 46)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:10 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xfa)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f00000000c0))
r3 = dup2(r1, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aa67162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:10 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0)

01:57:10 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:10 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x444380)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2718.622197] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2718.622942] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2718.685065] FAULT_INJECTION: forcing a failure.
[ 2718.685065] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2718.687088] CPU: 0 UID: 0 PID: 27398 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2718.687118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2718.687131] Call Trace:
[ 2718.687139]  <TASK>
[ 2718.687148]  dump_stack_lvl+0xfa/0x120
[ 2718.687180]  should_fail_ex+0x4d7/0x5e0
[ 2718.687213]  should_fail_alloc_page+0xe0/0x110
[ 2718.687245]  prepare_alloc_pages+0x1eb/0x550
[ 2718.687280]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2718.687312]  ? relay_open+0x625/0xa70
[ 2718.687333]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2718.687367]  ? do_syscall_64+0xbf/0x390
[ 2718.687392]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2718.687417]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2718.687452]  ? queued_spin_lock_slowpath+0xe8/0xb60
[ 2718.687480]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2718.687525]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2718.687556]  ? do_raw_spin_lock+0x1dc/0x260
[ 2718.687598]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2718.687636]  ? policy_nodemask+0xeb/0x4e0
[ 2718.687675]  alloc_pages_mpol+0xed/0x340
[ 2718.687709]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2718.687743]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2718.687767]  ? trace_kmalloc+0x1f/0xb0
[ 2718.687799]  ? __kmalloc_noprof+0x274/0x680
[ 2718.687837]  alloc_pages_noprof+0x9d/0x180
[ 2718.687874]  relay_open_buf.part.0+0x26f/0xc70
[ 2718.687914]  relay_open+0x625/0xa70
[ 2718.687937]  ? debugfs_create_file_full+0x41/0x60
[ 2718.687977]  do_blk_trace_setup+0x4ba/0xc30
[ 2718.688018]  blk_trace_setup+0xdc/0x1b0
[ 2718.688052]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2718.688084]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2718.688113]  ? proc_fail_nth_write+0x97/0x220
[ 2718.688154]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2718.688196]  sg_ioctl+0x69d/0x2720
[ 2718.688232]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2718.688262]  ? __pfx_sg_ioctl+0x10/0x10
[ 2718.688289]  ? __fget_files+0x34/0x3b0
[ 2718.688314]  ? find_held_lock+0x2b/0x80
[ 2718.688336]  ? __fget_files+0x203/0x3b0
[ 2718.688360]  ? lock_release+0xc8/0x290
[ 2718.688401]  ? selinux_file_ioctl+0xb9/0x280
[ 2718.688427]  ? __pfx_sg_ioctl+0x10/0x10
[ 2718.688460]  __x64_sys_ioctl+0x18f/0x210
[ 2718.688499]  do_syscall_64+0xbf/0x390
[ 2718.688528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2718.688549] RIP: 0033:0x7fa15dc46b19
[ 2718.688567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2718.688589] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2718.688611] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2718.688625] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2718.688639] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2718.688652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2718.688664] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2718.688702]  </TASK>
[ 2718.699009] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2718.716856] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2718.739567] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2718.740875] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:22 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:22 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x94003, 0x0)

01:57:22 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0)

01:57:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff})

01:57:22 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:22 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:57:22 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 47)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x7654c2, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2730.578458] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.579741] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2730.596741] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.597969] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2730.646310] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.647673] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2730.672479] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.673843] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2730.674133] FAULT_INJECTION: forcing a failure.
[ 2730.674133] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2730.676715] CPU: 0 UID: 0 PID: 27422 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2730.676745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2730.676758] Call Trace:
[ 2730.676766]  <TASK>
[ 2730.676775]  dump_stack_lvl+0xfa/0x120
[ 2730.676811]  should_fail_ex+0x4d7/0x5e0
[ 2730.676843]  should_fail_alloc_page+0xe0/0x110
[ 2730.676875]  prepare_alloc_pages+0x1eb/0x550
[ 2730.676909]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2730.676940]  ? relay_open+0x625/0xa70
[ 2730.676961]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2730.676994]  ? do_syscall_64+0xbf/0x390
[ 2730.677018]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2730.677042]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2730.677085]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2730.677128]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2730.677158]  ? do_raw_spin_lock+0x123/0x260
[ 2730.677198]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2730.677236]  ? policy_nodemask+0xeb/0x4e0
[ 2730.677274]  alloc_pages_mpol+0xed/0x340
[ 2730.677307]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2730.677340]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2730.677363]  ? trace_kmalloc+0x1f/0xb0
[ 2730.677386]  ? __kmalloc_noprof+0x274/0x680
[ 2730.677422]  alloc_pages_noprof+0x9d/0x180
[ 2730.677458]  relay_open_buf.part.0+0x26f/0xc70
[ 2730.677496]  relay_open+0x625/0xa70
[ 2730.677519]  ? debugfs_create_file_full+0x41/0x60
[ 2730.677557]  do_blk_trace_setup+0x4ba/0xc30
[ 2730.677596]  blk_trace_setup+0xdc/0x1b0
[ 2730.677629]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2730.677660]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2730.677688]  ? proc_fail_nth_write+0x97/0x220
[ 2730.677728]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2730.677768]  sg_ioctl+0x69d/0x2720
[ 2730.677802]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2730.677831]  ? __pfx_sg_ioctl+0x10/0x10
[ 2730.677857]  ? __fget_files+0x34/0x3b0
[ 2730.677880]  ? find_held_lock+0x2b/0x80
[ 2730.677902]  ? __fget_files+0x203/0x3b0
[ 2730.677925]  ? lock_release+0xc8/0x290
[ 2730.677965]  ? selinux_file_ioctl+0xb9/0x280
[ 2730.677990]  ? __pfx_sg_ioctl+0x10/0x10
[ 2730.678021]  __x64_sys_ioctl+0x18f/0x210
[ 2730.678060]  do_syscall_64+0xbf/0x390
[ 2730.678086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2730.678107] RIP: 0033:0x7fa15dc46b19
[ 2730.678124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2730.678145] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2730.678166] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2730.678180] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2730.678193] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2730.678206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2730.678218] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2730.678254]  </TASK>
01:57:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x20202, 0x0)
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x3, 0x400a00)
r3 = dup2(r2, r0)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000003, 0x11, r3, 0x6f51c000)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x4, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee5678203d7d12a8fc", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080))
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xa, 0x180013, r1, 0xb35d5000)

01:57:22 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040)=0x7ff)
r3 = dup2(r1, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:22 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:22 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(0x0, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:22 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:22 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2730.935434] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.936490] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2730.976628] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2730.977901] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:22 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2730.998659] FAULT_INJECTION: forcing a failure.
[ 2730.998659] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2731.000097] CPU: 0 UID: 0 PID: 27540 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2731.000122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2731.000134] Call Trace:
[ 2731.000140]  <TASK>
[ 2731.000148]  dump_stack_lvl+0xfa/0x120
[ 2731.000174]  should_fail_ex+0x4d7/0x5e0
[ 2731.000200]  should_fail_alloc_page+0xe0/0x110
01:57:22 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0)

[ 2731.000227]  prepare_alloc_pages+0x1eb/0x550
[ 2731.000256]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2731.000282]  ? relay_open+0x625/0xa70
[ 2731.000299]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2731.000327]  ? do_syscall_64+0xbf/0x390
[ 2731.000347]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2731.000367]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2731.000396]  ? queued_spin_lock_slowpath+0xe8/0xb60
[ 2731.000419]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2731.000454]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2731.000480]  ? do_raw_spin_lock+0x1dc/0x260
[ 2731.000514]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2731.000544]  ? policy_nodemask+0xeb/0x4e0
[ 2731.000576]  alloc_pages_mpol+0xed/0x340
[ 2731.000604]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2731.000630]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2731.000649]  ? trace_kmalloc+0x1f/0xb0
[ 2731.000669]  ? __kmalloc_noprof+0x274/0x680
[ 2731.000699]  alloc_pages_noprof+0x9d/0x180
[ 2731.000728]  relay_open_buf.part.0+0x26f/0xc70
[ 2731.000760]  relay_open+0x625/0xa70
[ 2731.000779]  ? debugfs_create_file_full+0x41/0x60
[ 2731.000817]  do_blk_trace_setup+0x4ba/0xc30
[ 2731.000850]  blk_trace_setup+0xdc/0x1b0
[ 2731.000877]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2731.000903]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2731.000926]  ? proc_fail_nth_write+0x97/0x220
[ 2731.000960]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2731.000993]  sg_ioctl+0x69d/0x2720
[ 2731.001022]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2731.001046]  ? __pfx_sg_ioctl+0x10/0x10
[ 2731.001069]  ? __fget_files+0x34/0x3b0
[ 2731.001089]  ? find_held_lock+0x2b/0x80
[ 2731.001107]  ? __fget_files+0x203/0x3b0
[ 2731.001126]  ? lock_release+0xc8/0x290
[ 2731.001160]  ? selinux_file_ioctl+0xb9/0x280
[ 2731.001181]  ? __pfx_sg_ioctl+0x10/0x10
[ 2731.001207]  __x64_sys_ioctl+0x18f/0x210
[ 2731.001239]  do_syscall_64+0xbf/0x390
[ 2731.001261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2731.001279] RIP: 0033:0x7fa15dc46b19
[ 2731.001293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2731.001311] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2731.001328] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2731.001340] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2731.001351] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2731.001361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2731.001371] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2731.001401]  </TASK>
01:57:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000039c0)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r2, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@l2tp={0x2, 0x0, @private=0xa010100, 0x1}, 0x80, &(0x7f0000003900)=[{&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000001600)="d0d316d32ee6d0095bdb16d30f9fb5911e1009bf5df84ea0baa113c508360876f822b25edadfe865fa4b25aa42cb8f64fcad4f0dd483e544853387f78f13f4c7050a84c3d212f4900186204b2940f66210946f658ed202fe68636e84c189680718406745b61f3aeaa371737dd18e0f6b76409c6d8af2e2091c08bf042e37155ca7bfe949ac56d377f0ceec6734219aa3a357905dc4413d4b4054e7f9365370df7751d91f971c59fdba2552f0671dfb6ad1c06a9d6729fe0d990f3a64c3d5dc9df37c5d483707874959e4a91667b99d93ae0ecf4dfb947be51c8fb9c4278ee1d24fdfd8d0f365fea514c889ef9eed740a9cdee99a76455a5b3c5f9762cbdde75ccd5cec84ab5c054433c16be9ed2a0aa024527b9d71f761017ebf23fded483f360a4050f23c1772e710e2a5fdbf7f6de56b1e860044f62b543c82009555fcd0f021dcd06b0c5e531212f5be720976e1abf83a065266b0b2ca9969a8ec12d00c92fab9908d5da4a6204e27fa9b59f61d37a0899f8928b96f61b8d997eec903a108acab3840702fc49a4361adb841bb7674dc164d9f9aa230416bb80cd773bec3c87f5ed4ea7285815f4bb2cee2d98b161a3413a11db8d4fa0d979ab36be7fe7d77f8e83efff0cf1c0a22b60809e1e6a7741197c0252e6034843ae78e5f0da07d177c1768e9c5198d66df0ca4fe8ec84b1bba490ef6fbb27085f07dc6d646192d2cac88ef95b283f22fa2292ef76bd222471d77084bf6226aedb1ef1a0c91f2fc9c7faa6662fbd1f450b64aba68ffc98348880cfedfbc1587d1b0f26109e66836d8bf1cfb8d13936674b1cb28cf9a2fc7620702a74b891f80f8b5f38a40ea9893b27e0e0e353936b90da5af3cb78bc8612ba30379ee85ac4460c162ec02d2616d155952e87a68101e69acdd83d9ba59679db5fbb90cc4567449ceca583ccb35827b7f61d91fb28e3331c78b0335176920d35deec462bd7484eac2b9368f6c42922e5b9c59583df3be9d7f0a1884f9f66af3b79455c9f1d3d83813e1ba3740f6424e33fae06c7c01d82452264fc280a743216f0c742c2b0264cdbbc705da52fea8c36d9368a61355af2baa436d2df34184feec172557beb1918c3edd8df2cd476f16c37bbf40527e6cc3d15a0682c62e86aaaa4ff762f676b611df6f0fe2f7e19bd32761ddf245baba9c9a39e100f65a73d3b7a9b772d26defa2d4492ef4ac818b95bef48653a78e63b4ba21dc786af439b804faac7f2d9a3838cdc9ad2a00cafe6c6bf3f5b606f8945443665fac814047d834e0522c7194655becad73d9d68b4a887a8566c56a1868863f8c3c62b3ace17ab685b340d06458cc9a7078150524fb1a8dee7c22066394d211bc558f86897a32b8fb258111ac54777716f9e1889bfe169eefd5c6f9b56d1c99c09afcf2b66a1f64809a7a0fac4244dd5efdc281446fc27f43f7e6b2ad61b07f89a9df656819ddd70fb1217a0d6246c55eae542c70b87ce62b161626dbbbb44246e66fd874bb80ad84a0eea08702a6aa60b91322434602c11338bc7b84dd961d836e9daa43fd561c3657d8a4b640aa19600f27192387205ba73f6af6c59d91cc034199c6cfc9a90cc73f7d76117c14a3d52e6d6a6691b9626b5ca75021ebef828831acf3841387786ad3b1cb8eca4447a46f4514b81907f5306d66c0d7091727147c0e089eed518b22d0efe5eb111e79c9cc27fb475f6089c4bbec768972fe7cd62803dd674f9e1d06dc02ce4ac45635febf28f1f39fd484a0758e9230160155faf0b33bf039b31157fc991d6dff3ce6f2fd65317432e9803ea04c0943dd0ad0e093152ba117ccb144a5b45b3697246ab6181622f89774793067ee1439abe151dde2a84b96636f113cf507e9ff13ce95fd7e27651bc3ef7b8ef11cf079ab54cdf9233abb6664b50e364063bfe052985d235ec09c52066ae984dd6a2d54e1eaee878d02699d22743781fefd1b8751dc6e59f50ee135e68d24cc0792fbe2d44e6faa57f49cf1113c085acd531d0733ca5e926a298d8f573be8565c186c852a647d28a466a0888bd0b0aca240d4b07ade60550829909433ab461176777e499fcb405641371c34ff635a3543e887afc240c7290028cedcd3bb9213bde3fa629f07bd94aa416838ccd3b4d7cde722f88c02aec8d4c73e8578b338771d67b286f43ec82354b11213efe86f347e70b16210787b48f6993927bca5bb2d66ac18ef09a8e1bf469e9f9d2a506f9fb2799a69b122f84abf6b4449ad025fe603eebd571bad8f30fa70ded03a2870150900c933bd88b3cabca47e2b29e4f9051cf2102190d2210602c329b62fde7a9aa55877909ba6499cdbba732119099f4e9725d8d63c942355c8cd829db69311c4bba819fe897fae29be7a38e2f3d24f411648d7fa9d504ecc2f146c8ae57472402e01ceac3044c48d50bd8a27a9e778ef169805714147e1a1eecff8593d3f73858fec88fa5e43a06fc3ac9eaded61ceb6dd940a739e44c8f8d6f4ade1644c2566c58871c4a6e6ab2dd9bff9813fc104223d8ebf2b0fb3172bd6dc652bd704d609670352c3a56e08954a50f8717379ac2b21f5f923608c4ea34bd40189c6daac973035f6dc463ea7a1e837923f71aff0e52d44aab16a061de9fdfa5b7dfdbe5a5b80205bbc93029f8c952be410babb6610621244a73e8e6946e0e74596f8da299eba7729a846fa883a1d25bcc02aa90ee189ba912371ec842c452751d7912b4595568124eca5d292a17c2ee9458c312202e1ab21c5535678d16379e19d9802088fa4d6292993fa73ac8dcc6773f5cef84faa5c55b0971ecc528fb95aac9be16877ed3220574db0a0d6afd004dee6610c7a188bcf5d48cdedf864609dafe9f6bc9b09fa9c3d3efdd732226383041d4da2827e310e9b28240f50937a478552f06ea662113e390970082054667198d71d164c80e54cf18ee5c44acc6685f7d4ceaef014a9a5bb6327b64fcc1ab1d44458ed697a2a9896e403d351e250705e132687becc503c36b419cff1b03c80d430363677c333a650fb5c26f43ea83fd4f82aefe5801374541fb9d660e0190f023bb3088f4bd267325127bacfd9bdc2e7109a49c15b242343456a3743978970fed9f112498313d9409934028c115afe236dfc472b03abdfdf4e06213575e2a50a8291082582b5f7bafbb4017670b68297516f699ea722ecf157e0bba70d03db74b63b2f009cc6095ceb710669a4326dba72f826c723328a59dcf7f6ab729c4291823937d2e4e1f5398e8cc907478eee68788f8dd1834ddd3ee0edb1600d1da1f16ccadf853f67838080eb11f7ef4dc0aed84aa3a53909e0aa342f5488f66b147359a3848c851f1c43002c208d4479fb15216abeb2f1ebef3f7c9030ac10dbd2b0201748c54c8b7c4ceacc44a6ce166757d8073f9d7a15f64bbe03f170443619b24da55510db7a36d5e16e5c2234e1a3d5dce74b38c542afad71f8c8a2076bfc33970180760506d58d496253343df2066ebd334d9269dfd06c4239c197b8f66bb9ded40ca93d47521d6db84d011cbb789de4ab30c29dab5e3db483ef1e9b2c77ad406051f35839465ededb0c01cf5eda6d9ffcd08582c0b3ae2f7e1283978d77faec94fa077344f7ddaf55c85a25533adb948bc9dca90d0a8834023957d3af02e33771de382ed8fe755dac3f411968ca3dd2d442cdb760bfd13021c2c1c8f42ca60fe4c5bb31086628772127b8e8941afe69153e8e86215c5a40d75f42f0c77e1862c4ec3de4008718638ce0c327586024a08ebdabd78bc586bcf3ec980c3faf3f75ee53bf83c7068531834dbed7ca2eee81fb966ab980369afc98be293ce5b6e82dca50c6635dd893b0444aabf277c90f5a1ec04cc7423c8aa618540471bec737a4f4ab10c5102fcbc8682e0040f7ca64e3cdb98dbcb29c72d644182d1b2bbeb351ed3b7b9504deaf656f53c8dc5e1487488921ac177c7c8bc9151ea48a405db35eb14554995b014de3310b24de96b1e5f733bffdb3522446e3d18a3e3cca5dbc6c9cb04b92a0c7053d3578aa0d56465452a110865b1bca555618544c44f5dd807901d4de93c0bdab42368b66f335af9e9e36ace9edbb6142206ecd99552b269c37a0e8236f7c5bebe60adea7d1de2ff7a8f0966f8bc23e680515eceee1c949ccef8013fd135a0b4671ceebdce6cded878a18948cc963713bb4860b4429ec3d889105881c89d5c337c71d2502a338fbd752ec7c42b2529c5523e1f15a87c527e926a3e30dd8438e2756ebbe221bd9159f3ee4922625bc5ceecebad9733659aa170939de9407f3877ee133664c0ebe019a9b9c2500bd44b24fa82e115a33d892ab89c80027b2ed0ac6ee1d4a5c9791ae1ae7ac44ae3369c84486a5c9c41a494f8fb904dcfd45056f92fe31d3a7fab56842679c5f4ef7f0de7c892d5414d7850487b4a39469bfa17aa830631924ab1f637c7c4a87569f476eec2955b923f46b309c33993d1f2de5981198e9c8f3ed8f06ba28007d913179058fed2062b256d3c267698728c54889379c1545570657ab061ca1314dca5dd22c3b683390b3d01274fd6c50d3c5952f8ce95ddb3ef3d944eaa69dd0940e3de530040e265f16ca22515d9c3f2a60423a6b00e104a518b3e8e9c878e44eba989dc94b1a4283cb61ca188b8e92a415ed2c418d711c78b13d64482c13a0a397153d8e8416a05ca332c5a72e64eb62895e96d76393f2d904d1fde8ecc94915c869ef77b1de4222bb1b5ec9530f93bc0abf623491acb5a509bce4ad325d729199b0e17845d6165eefd3b869b930a318f453d5a044ebdcf53073eb0c4c11d650abe53c2c43bd4f07a46408d3c22ec19e20b2a094521d357997b9a55027cff397f072522b7ce3222704be4b4b7257d94c0f32f87f43c566ca70099d281508790d83e012df8db46a929cfc342b801d7610e18b1b7d6e72f39a84e880b112331939c180f672ac572a75941effe1214786f4048b98d1170fedce31f5fa19f94d32aeb52281a37015cdf286e1fdb5d9488be26215a3e43a19051f69984f52a3a3221f6d795f67f5137c60a29d7aecda319bbc2c6dd87455a13ca300db2d9cf91be12e15dbfaebfb44844d61c9f9e60f8fad56ee0bf817cd9c9d653d9431fd0838a1bae2c61b50034b8628dc6367fcb76c3b07998c375f59793d636dadd453045655a4d63906254873fd3629090596951512fd0299ef021b6008ac9e361223ba6e7270d1897ae41bf7e6f993e109350a2bacf1dcf6e1e429adb6c922ba268eb30fb627430011750870197ba1f50d25dcb89ce3cd245abb10f0ce8e3ebb5fb0a8caa5cdaf28fa08a7c32c178eef191ce4ac713967a718080a95201d632424b90922c418257e9028be3771a02405b761838176f7f73f5a1db8b66dd44931e819560b9656403441df4c6eaab9f07c0c4dbef377e7b49d0648c4d1527039e688218aabc6aafa129ddd837c01526d222c8b39394542704f46faccffe99d0049b3c25ff3de68ee8cd44432101f69c707adbc8c9adcb7a70e08a8c21fc4386541ab930f580fd31cd71bbc76fad6e096325502b8f0b9df026c1169b93b4d010826f1f160df2bda67f210a0e15e82c3c7fcff66334e2b7d2f34be0c91d09df0b5788e3c937cbd46a1be6f27bb400ca59cdb23e0be5628ab7a19a05661e5654aee8c015937b30948c809519e7960f873f2468e21df6a68c57f4fbd4c25dc3cc4d1334040ecd84362abb9d295eb2cbd25dcae6f9710e26ed34b1dfdd3ed2401e1a9c22dcc69fc8ef9d80a1ee8d2234909d07e5d6837cc1b", 0x1000}, {&(0x7f0000001380)="b2b05140082ea2702d1f81d82c3868ab0fb3a0ef46e68f39c8a968119fca3593e3b4ed714a3347683c26d86be8fa65f1f2b7109af2707efdfe8d0bebd5407d92700f5d372f89021759505faeb949300776fdbc3e7f66d6e02d85c5", 0x5b}, {&(0x7f0000002600)="40f54c715eb29dd6bcc3cf4e1e991ecebafc570cae3e88aecb020d00810e3519e56009de3c7ec3c058f9fa089ed4080d434a84c15718f879531c7446a8ce8456d3d91ec9a0f8a37953702f273714fafee5813ee9c95e1c8f53f323976f49b10ce1b80b6dff810c96aa056a499052da3a4ffa34d8440cd5d0a5da694a6c99c920598c9efc42a1f6e0df023d23a7c70ab2d35c930643079fa3d7b6e70a8506e05b1e33c52ed9a1b287c42f2f0533dc9acaa1db6359737e57961dbb8d12ccf21194e081b31949c00daa0ab4f2d2cc2d29c448c6bba1eb5e126f38ffc9bfa74e63df39bf0fab6e7d6e3ca167175498a2411574bf71bd7d08f01f060f641843d6966ee637503bcf0eafb94d5e01b8318b550f4dded3d0ed60040bf9e94e088763db8f1e01f7240c98db89f77fc56cf45f7624a5baa43bee5ce88bc705b587a27a8bb01c4cf346e01c505ebafeaf849eb8a2a12dee9594c377d839aca873e717f0f3fd6bf6eaf724166025b544e584769a2419fef159eccb8245d493a96c9d97bbcf0a6e0e06c6a8e1fc8a493417fcc729df6adec8b4593c4e4792bc02e3fc7acf7385cb74b2f4eca9518e2fd8101ebd8e4ea8656fd13f8ed114a5ce52510e6f9ca21a1a5e288935b04328ca5efb79ea0f55bc4db2169e4606e5e9597a4b03b43a0174e2469aa9c6ed40bb3165cb33bc36483bea58a7e1ceb7863ebafed04e21b41b2371266fc3fd86369390332ee6f0700ffe19f6eaf02a16f53ef216086ac9d0568ba23192c04138934c73350f2774705e408010b907bffe085a87f50cd057ca9ff4b615ca02731ee6eaa2215614355cc4bcb8924aaf856082273ee884742fb3f3e396795ff347604d95fd7cf7918035bfaef9c2039935adc52b28c3456692acb30a7908d0966b8f429dcd8eb20a72a0c91354f3d05edea05b4fa6bd7bc0cb4b7fb244fc915552e0c89a03eb291a1075cd58060a5d7c520839a48153707f686e9a306171ddd0c09b68beaa389be1604ad6f2144f366c950a80e90333a86812b42fae49ecae58403ce7c4ec969ef2cbbfedd5d1754cdeb066901772196f513a9c92666eb0868182813e4b6ee904032bbc7fbcffd580e242551d534e1d45fad90204ef7fcc0f33b138c000f2e5e8d497f3949e515ed37e1f53a7cb4b3df4b776d74f980090bc27852d3baac19e4aa57399e014b328d2480a643dedf9073a99ebcccaabf308cd19bd3419d0853fa1b5ff85c241c1694a4d534c6b477e4c857ff55cc4ddaff0e70f321136bcabed3039c509d158c51e44bef3531a0aa382155485fd51e55f473ab07a2ffe164e564219786decada0d99154cc2a1a744377d2400b0472384ef1028293b32eefe967d7e71a8d879922ba5ea8530670fc6816d6339d305444001b15df4e9295ca1e1b2f6f91f11f0d77fd46eba687cfa3c7cf9219c23e44b8498469388701f4c0f082372de08845f7d640ef155296260c9dbff8749fcdd6991b275eb593857ee7b14a96300a2ebe52a2956b553a9721197b3ee89d0f986876e4eb07996c600fd9311670b0edbe133af0a8718bdf0b6cf5a991ed6c598ebd513b22ebd0ce40f7cd2028ed2b0afacae4a2def9f82fb3730be68ea96b8556106572542a8b85e798de7c8d73f9ef539c45ee69f8a60e3a6bbeb2b7be880465fd886e8f21b8dcda3dbc2cf9974bb14aba0978a9f7bf11fd563dfed3ca71cc6b518327ffcdd9b51abf17f13a085376cab26cfb518a383058de56b22fcd6a94cd9701a2f250c93795a43e8b1a2148d46643a938d079f380aae23c8799dbfabb11a3630a085398cb6f22d28ef0eaa38e90964ac3a700bc41c1a676146102a09b7bb9a668b311b0b0bb55d14539a158be76bfeae85294f4c0146e811b5ab2a9e439dd073e51eeab92215c0daf1931b35cfc6d39eb31c9b800fd7781f2a068ab4d7f2582ea7629f30c1e56dadfad951828d84abc27bb052d25eb9446eb6622c62d0fe94ab0b111aa30efb366f0cf63415e1af462c445d349df2db2e31b7045e9d13feb9dd5aa917dd449e52d5cfd5d3221e479b1b041d72b1d1ac737c4669382177cf6ae1146c2b4f42acddc7c9f89caf78fad13ed714c212521613e6376bafeaf3ba8625de361bc4967158944e268937365265c20e6b0431d529f47c0a06fa646254ca2f17281f3227fc03192cab25368a8be443d9c5d20c2e5e366496131f5a801c9e43bc629946f6fb08fddeb491c2d2314db60c65c64b620b7bee81b6d3e8813bbc006fe31e38656de8c9d4bc9449a04475405843c953361c523dd4232f3f1a0b5b7bd556a51b9f4bd68042ace48349277fbc2d98c7c8a322bf49ad72235e6fe7266e4857099b3a3d3469081972df5ec618cdf1c074c4252082ea4d96c72d9c690d94dccdf3fa9ef06e4fa8c2132a8e579db4547357089413f8ebf4a69b6c0de36b4d49c11a66c14e8e75fb1929e7ce260988c0a3ff2676836b46a260b0f2007f51f6717fdd208bd00decbd770a9514c8196cb558a6ff7b525c841026b6cf971ee94ec419f8d1d5b0fcb4158ec21f1002ec54ce83292f078bcbe045d3c7fbfb92be6440a75133b82fdd5a152b5a8c05a6dc536c6fe5aed4ec562bfab55ddeac525b7cdb19093f95a5f42d8096441a5ccbcf3907ff1b18d69926625784585553e67525d591d080456335414c8e6c18387eb785ebe12ab12606bd1ca06ca69c3ed38dfafd38a3c37e004702d3b30e1aba5e95bb8787931ad2125eea0422b7c67d2f4a0ddcec79a6d9e60b848d68dc86f47007c0b1784df3c2170f88562376eb2cd6763526e3a428edf1c1e3c5562918f0b9b5d6fdaca3792015bd34e8277c0ad662c114a9eb56fe11bce2784cd6869291569b9653b61ddffbba01c4e11c142e83ce957415cd35fb9dce382c59e358c5172229ed6c46dbca8e592d332d5da049de7af400c0e9d27bdbe55395e8e28330e6ccc1958902b9a349cc0604b5b5065e369bdcba8978248c103d80945273fc9431022459e7ef5ade699a21fe348b0aa66f26fad65127314304d9a2530d8ccae2d1482a4efbb79dfeee8bd7db545be8ec34d6c273f8852821bc3f048bd1323f88dd8c899a60b38405dee9eec8c9a7ab9f46666ef59ea5c00878baec2396a86c580ae27f9251963fbfb32c23dfb7aca7f6924febdd275693ed4fa8a752353ab6c0129c9293ddeeac575b9d4b7f55e8a488f02717fe2e0737dda6547eb55e5af6dac0ff20c2d52eaf7c1ea497301f0404130baefb785447b0bcc059f9aa97043692762182f9e77cd5ca0f86ba2cc2e55f56b8727f63be76ad9d190cdf184c47357e6fe7f3c4a4b00058ff473bf60699d483b038c343155633457357a8c37bb05a1b264ff892132077afee6cb190cb194383a31a50e863d0b1308f564e478d069a1aa94b7bb9598a4648ded0c9e826c578b6758fac6af64ceb462ebbd5ecf6bed7fe93112a2ed3ee23fd1e026aff413f00dbdb38f954a369f319bbc3177f5f0dc2085b05af66f4b9ce9691af2d43b7fefdc04e7018453422167522f86d606e23c4d06549d5c7ce5217c9e3fcc547cedbd6e59390979fdc71b22a5792a02f3254035ee785e2af85c11209f0054e82e8061163fa0afcfdaf5ec589621a391498eb9af893037facf0a24b82d3dfe24fde1dff6378fc56b9ed8b95c3cbd16a8f72fc0e50007e497d1051efcda2c641b73fc8420be130fc9da00bae2205d1bf78dc8d3c75ea4bdf270923362eff851c99df9feeede9cbc41e6f492c057e16891b8413de5aa5cd07bd3f4f9b4f89bc896b952d407885ad4c3ca32bf6123e2266a2caba066f834715357daff0251234c08ba20d0d1e8a6fcba3a7087a342a9ea6cd733dc341ee0f92d133fe485ca3edc14c0a69a4212f45dc009e25fcc37033f22ac072d1cf0868cf03fcc22104f0fac3c1bc470ff9b737cdce4ce673c3f8f888a679fe64a4621d2af84350879114365b69d6ddf349c5468b814545c99ac4dc38e52b546e2c5669ad5e93ef1e78b585f9f0c130d22d387ee09703948f8b2b8b22177a84de01f01b80249899e2e1511740c0782784fe87287c7774482f9622217ba012369312fb01f3c1bc5f87ccd6ad11ce8cd0903814d5c4237eb9eff688e93fa3ae1622550f7cb5ab8b35132b9c28435c00e37a96dd2530b633dcdca44c58c4c5b2ca9ba0508961f0fca374e5597a186d4caf3db6a8569a3a8ba0e5637ccb084c4bfc28236e7301ded42ea858a0ec3f71d6b6b1765c3ef806a1f53ed7a2f2255e4294745d7caaff358ad47edba43a2c28f04929575eb4d3b550d8185fb0d6e7ca709435931ad16691ac70e381d653e7c9e58ada4fed6b61de62467a43642bb5ba7798e64e4f74bd703b03ec6b39e21fe0e41914acac6ebed180ba54316122f66814961147771e46aef92b5e7387f0c2e0f3416a61a297ab6ca65ab43a84013673247b867c8469c7f23896522f9b60a453b6339a9d1df80fa31081e8e9e70fb1aaba17d9334b9482c4d5ba3cc3c67b390db19d799b41562693371108eefcf6a7c6480f438b152692411813aa8f7a9e10049e04d68ce15d2711fcaad58ac718f2f4ea79152802777d935db1dfd4f89964e7dc3ada11ef22916127f034167f2a07c395a511673353fc27464d34b8842c6dba7b931d09fac8e7926170f6acfe0aecf6d2f6b8bcae73ea5165410d2a94715289d78da2c002d6751d9a26a50e208d115b07a8ccb84f703ca5dcaa932e213577b0142bba15942b754ba637d75caf2c1ce053b5e82d156b72aba3a1bf553c34e4b2af249fc88f34ec93956cff576c00974cdf57f5dc7ecd9ffecd2debc870ef7b0d5117b54bc31ffb1d48022126fbd455dfb8145fe106bb46a3822efa9e7fe10082eb9c3511a23c2b96595545684ee882b3828f9f79b6d18acf2d1a0269f64db72feddd0dcaa3819e169947b9cca0e64e223b2117c18ee51ee3617467ac27d8e77fc58ab139fdc6aaec4d4db858ce283d030dfe8fe98e94ce1ca64b2bc04ec28608a7004bfe8c741a2ff412f1811148f2208517437d835cc9e445e6665027167829a610ad510338ae76024ab489f59ccdae75ffb1113314b5593c427f45fa5ffee811b91f28f73776ee9b0b7246105683ca54887936c09350f02015037b96cb551d298d1d46d1f920c383bc01702c240f6546e4c7aa99e5d6990478fec5bb53da8cc7a9a7e347e0abf23537715ff42699e296376604c070902611347d6b191bb539f8ccc0fc5fb59cc75de6606bc1664915190cd3bc2fe8db24b1b7d8cd5901d985f4fcf13201524e2119e144966b2cb0db9b644992347b83d6bceb67553d5549f465d5ce35b99e883f655a6e5ebbd98391979ebdfcce809b70a68a117ec40725fea07799d13fb537f53dbf2a28c6f688de17ea8b51152eb52243aea26c2f215d80255b9424caba6ec68f2b612d791a0b6292bb38bfd870dc0c37d22fad135a8499d950019033d485ed597058fe7ff213949d3310527ce35ecd3bdfc3f6728e010f5d6192740fa825b27126c2018673c22803e239bbbacc4a860490e695e18eadd6f2f9a4ca811ef360bfb9871f52dcaed2259461e753849678acd85592857be6be0e504cfa2035cc366df8911c9725fc08efd0e9d667c26130791d3bac90a628f849a8d552e10c7c7081a11f34ddf05ea8edfad9600f91410b5ef5a9c575e63a01f350b00ca22f98dbe8ee0253298324f208c5b6c4e100321a6e5ff8ee4fcc6c6f2ddca06038fa16e4d5ebe2506756bab88e4ff140b2ca74651f401920668e1676ab15b53ed2b3454", 0x1000}, {&(0x7f0000001400)="b53526d5388b13d1d2309e99dd04af6d788f65099c0ed43f53676736d1959e03afdd5506d829869399034f1e13c28753097b1060aca94e921acc6971352e02d50d54f64ae9616a0ef15d0c99c7b98d776e9180e9d6848b1333cf459424cd0c91adc32bf3d23d6a40ae7ef36783fa32eff717f41c4c09b44bd591eda7321841f1e75f909363b4687970d8d8135fc5b717427e7ec3325960d17cbdf8885e4ec7a8d67c0a01b6fed01536f48b79580e98076ca98a87d265285de1150bb937642d045adfc1fc8c0395955708d3255aa0066491b7edebd1dcec", 0xd7}, {&(0x7f0000001500)="a8dc79ff0decbba5498e1756c0188d059141ec8acaeb93b6230dcbfb57f71f2a2f0fb8e4653d6744d2769b1eae4a7e9ba6699f239c142a8b89c51b96e8f62d6c18229033aa945936289f2216fab40c3b711f403936b6efef4fb5f0e0a324a79457cf71eeb52ae0", 0x67}, {&(0x7f0000003600)="412a5203a46cb8bb956f182997ff6acf4c3e1bac5a9c04f801ba709f4f0031361302371610badc0657a2f00663e36b7491683e8343ebc6523c1a00c1d7f7382d661f3aba73a4c7da7af01481581040a0893acd90b96b5b343a7132d72fa9baa144717cfc8d2881a1e9a85c3006ee67e870e6991dbd48e4c28453a609fc9a7478aa2bab46d3195e734304ea862db19d2cdd720864375b64978b3a29182d", 0x9d}, {&(0x7f00000036c0)="7acfeb8a029d8dbbe40ad2c7b5c607d812b2e316469dcc584a079bbe3873bb0e9baaa9eef8193e40c5a83e0294c5a77295d029ae15a09433272d03c247c3bdd9e5a7f154453d703ac87532397955fcee92ffe100b89cdce06c9ef85bbc655bfb3dd4dfb82fd43b9d2065ef4730485a4a07f385a6f1cfa10da13446ce5ebdd5a25b6010eedcf936e2fcb027e82fb409ce44e7418a7e78f0ae9bf6a59fe3b9e9449e17fcd887930ad914c46e0a3ce8", 0xae}, {&(0x7f0000003780)="b4b25587dc15fc087dc522d64f5a2902f348bfedc50423eec7e9a168af929125cf84afcbd3bda66ef53a0af432e13925db26489bb1af68bdb7439e20f1b6c0815f7681d8c1c0918b85f6d1e5be4501e046eb793d106ec45c43516b96acc74a07dba16747fb26ec0aabb2a843c0c7bed7e2c71a0ad2172566e20f0867c3fa8d73c4088a0304d276a4f2ad99e155c234762a6581b7e8c6efd32e91957934ae8fb5d24313bbee1ae939d561eedec2e3144553176f0549dec96a36898b11e07326f794ccfee25fe3f48186a3568c02bef568b63e0441973840", 0xd7}, {&(0x7f0000003880)="7159e882f03943573d5af51bc615a645801f57542be53f9c4ec5ef9731e8d1ac958f336eda24413ba36cde637cc7c9ee4f832085990f2ab856c23f97aa6c20a65c22401ea7671ea0a3", 0x49}], 0xa}, 0x0, 0x10}, 0x3)
dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r7, r6)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r6, 0x40089413, &(0x7f0000000100)=0x9)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = dup2(r9, r8)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x8001, 0x0, 0x0, 0x0})
r11 = openat$cgroup_devices(r10, &(0x7f0000000040)='devices.allow\x00', 0x2, 0x0)
fsetxattr$security_ima(r11, &(0x7f0000000080), &(0x7f00000000c0)=@v1={0x2, "f2451145a88a2eb4085a881f"}, 0xd, 0x3)

01:57:22 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

01:57:22 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x6481c0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCGPKT(r3, 0x80045438, &(0x7f0000000080))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2731.154900] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2731.155886] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2731.167030] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2731.167897] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2731.207705] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2731.208967] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2731.211209] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2731.212439] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2731.272608] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2731.273887] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:33 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$TIOCSWINSZ(r5, 0x5414, &(0x7f0000000040)={0x7ff, 0x6, 0x5, 0x9})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:33 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

01:57:33 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:57:33 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 49)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:33 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:33 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:33 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0xfff, 0x101200)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2742.447976] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.448716] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:34 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x109040)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4001, 0x28)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000005c0)={0x0, 0xfffffffffffffffc, 0x6e, 0x3, @scatter={0x5, 0x0, &(0x7f0000000400)=[{&(0x7f0000000080)=""/123, 0x7b}, {&(0x7f0000000640)=""/94, 0x5e}, {&(0x7f0000000180)=""/241, 0xf1}, {&(0x7f0000000300)=""/58, 0x3a}, {&(0x7f0000000340)=""/186, 0xba}]}, &(0x7f0000000480)="35d279dae58002c73b4353c8d26e5106829cc426d93c9246156ed441413c390e1e275d9cc086055b5530717d1d435c5397c39d4b45f27158fed673debbde87977716f5a84b41c2cc68e92d74cefca32068f58c5916b051f1b438278859a94bbd315f096380e3d3cebc48c5fe274e", &(0x7f0000000500)=""/91, 0xbebb, 0x4, 0x1, &(0x7f0000000580)})
r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000008c0)='./binderfs/binder-control\x00', 0x0, 0x0)
read(r3, &(0x7f0000001600)=""/4096, 0x1000)
r4 = dup2(r1, r0)
pwrite64(r0, &(0x7f0000000900)="cadc425337c4668970932ba1531133d065777a4bdef0b796a541a38173bfce4806bfe5d6eefcab2cf190e1acc2bc8bffcd614190b0d2be95890d03c936e643aaeeca15d10433234d05e44fd831152acaf7690e94", 0x54, 0x6)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000840)={0x53, 0xfffffffffffffffc, 0x62, 0x7f, @scatter={0x0, 0x0, &(0x7f0000000100)}, &(0x7f00000006c0)="8200c273174d63386d5b411c21ae32a7df64a59cbd21c8c94a84486e70debb50c33921174ee9bdfdec025cf7be9115093946de75bca28f3b8ae6b9fd7b71dd668a7d62547b38d60ca08f047a745be372c5f90019e8e8303e7b4c0fc70498af8ead80", &(0x7f0000000740)=""/237, 0x3c, 0x3, 0xffffffffffffffff, &(0x7f0000000140)})
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$TIOCSIG(r5, 0x40045436, 0x21)
ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0)
ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000100))

[ 2742.516849] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.517569] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2742.549174] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.549883] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2742.557863] FAULT_INJECTION: forcing a failure.
[ 2742.557863] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2742.558975] CPU: 1 UID: 0 PID: 27584 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2742.558992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2742.558999] Call Trace:
[ 2742.559003]  <TASK>
[ 2742.559008]  dump_stack_lvl+0xfa/0x120
[ 2742.559035]  should_fail_ex+0x4d7/0x5e0
[ 2742.559053]  should_fail_alloc_page+0xe0/0x110
[ 2742.559072]  prepare_alloc_pages+0x1eb/0x550
[ 2742.559090]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2742.559108]  ? relay_open+0x625/0xa70
[ 2742.559119]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2742.559138]  ? do_syscall_64+0xbf/0x390
[ 2742.559152]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2742.559166]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2742.559190]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2742.559214]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2742.559231]  ? do_raw_spin_lock+0x123/0x260
[ 2742.559254]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2742.559274]  ? policy_nodemask+0xeb/0x4e0
[ 2742.559295]  alloc_pages_mpol+0xed/0x340
[ 2742.559314]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2742.559332]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2742.559345]  ? trace_kmalloc+0x1f/0xb0
[ 2742.559358]  ? __kmalloc_noprof+0x274/0x680
[ 2742.559378]  alloc_pages_noprof+0x9d/0x180
[ 2742.559398]  relay_open_buf.part.0+0x26f/0xc70
[ 2742.559419]  relay_open+0x625/0xa70
[ 2742.559432]  ? debugfs_create_file_full+0x41/0x60
[ 2742.559454]  do_blk_trace_setup+0x4ba/0xc30
[ 2742.559476]  blk_trace_setup+0xdc/0x1b0
[ 2742.559494]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2742.559512]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2742.559527]  ? proc_fail_nth_write+0x97/0x220
[ 2742.559550]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2742.559572]  sg_ioctl+0x69d/0x2720
[ 2742.559593]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2742.559610]  ? __pfx_sg_ioctl+0x10/0x10
[ 2742.559624]  ? __fget_files+0x34/0x3b0
[ 2742.559638]  ? find_held_lock+0x2b/0x80
[ 2742.559650]  ? __fget_files+0x203/0x3b0
[ 2742.559663]  ? lock_release+0xc8/0x290
[ 2742.559685]  ? selinux_file_ioctl+0xb9/0x280
[ 2742.559699]  ? __pfx_sg_ioctl+0x10/0x10
[ 2742.559717]  __x64_sys_ioctl+0x18f/0x210
[ 2742.559738]  do_syscall_64+0xbf/0x390
[ 2742.559753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2742.559765] RIP: 0033:0x7fa15dc46b19
[ 2742.559774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2742.559791] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2742.559803] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2742.559811] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2742.559818] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2742.559824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2742.559831] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2742.559851]  </TASK>
01:57:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

01:57:34 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2742.632049] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.632742] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:34 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:34 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
eventfd2(0x3ff, 0x800)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffe, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x1000e, 0x5, 0x0})

01:57:34 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000040)={0x40000000})
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:34 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2742.774442] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.775149] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2742.781856] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.782539] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2742.816042] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.816714] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2742.832560] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2742.834028] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:57:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

01:57:45 executing program 2:
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000900)={'wlan1\x00', <r0=>0x0})
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000180)='/dev/sg#\x00'], &(0x7f0000000300)=[&(0x7f0000000200)='-)-\\@\'\'-#@\x1c\x00', &(0x7f0000000240)='%/./\x00'], 0x1000)
r1 = openat$incfs(0xffffffffffffffff, &(0x7f00000009c0)='.pending_reads\x00', 0x600401, 0xc6)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a40), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000a80)={&(0x7f0000001600)={0xc78, r2, 0x100, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0xffff, 0x23}}}}, [@NL80211_ATTR_TID_CONFIG={0x70, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x4f}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x3b}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x6d}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}]}]}, @NL80211_ATTR_TID_CONFIG={0x1ec, 0x11d, 0x0, 0x1, [{0x170, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x150, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc0, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0xff70, 0x6, 0x200, 0x8c58, 0x800, 0x0, 0xffb6]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x7ff, 0xb2f, 0x6, 0x7, 0x81, 0x7, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x4, 0x9}, {0x7, 0x6}, {0x0, 0x8}, {0x4, 0x8}, {0x0, 0x9}, {0x4, 0x5}, {0x0, 0x2}, {0x2, 0x3}, {0x2, 0x9}, {0x1, 0x8}, {0x5, 0x1}, {0x1, 0x4}, {0x4, 0x2}, {0x4, 0x7}, {0x3, 0x7}, {0x3, 0x4}, {0x6, 0x3}, {0x7, 0x6}, {0x3, 0x1}, {0x3, 0x5}, {0x5}, {0x3, 0x3}, {0x2, 0x6}, {0x5, 0x3}, {0x0, 0x5}, {0x6}, {0x2, 0x9}, {0x7, 0x6}, {0x0, 0x9}, {0x0, 0x8}, {0x4, 0x7}, {0x0, 0xa}, {0x5}, {0x0, 0x8}, {0x2, 0x1}, {0x1, 0x4}, {0x6, 0x2}, {0x1, 0x8}, {0x7, 0x2}, {0x6, 0x2}, {0x3, 0x2}, {0x5, 0x2}, {0x3, 0x8}, {0x1, 0x8}, {0x0, 0x6}, {0x3, 0x7}, {0x2, 0x7}, {0x2, 0x9}, {0x2, 0x6}, {0x3, 0x2}, {0x4, 0x9}, {0x4, 0x5}, {0x1, 0x7}, {0x5, 0x7}, {}, {0x4, 0x2}, {0x5, 0x8}, {0x1, 0x3}, {0x0, 0x4}, {0x2, 0x8}, {0x0, 0x8}, {0x1, 0x1}, {0x1, 0x7}, {0x0, 0x5}, {0x6, 0x5}, {0x7, 0x4}, {0x0, 0x2}, {0x7, 0x8}, {0x2, 0x8}, {0x6, 0x8}]}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x30, 0x5d, 0x5, 0x18, 0xb, 0x36, 0xc]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfffa, 0x20, 0xa80, 0x3f, 0xe000, 0xffff, 0x8, 0x804]}}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x4, 0x7}, {0x6}, {0x6, 0x6}, {0x0, 0x5}, {0x5, 0x7}, {0x1, 0x4}, {0x5, 0x4}, {0x0, 0x5}, {0x0, 0x1}, {0x2, 0x3}, {0x2, 0x9}, {0x2, 0x7}, {0x6, 0x8}, {0x7, 0x7}, {0x4, 0x9}, {0x7, 0x7}, {0x3, 0x4}, {0x3, 0x9}, {0x7, 0x4}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_5GHZ={0x8c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x7, 0x7, 0x1, 0x1000, 0x7ff, 0x2b1c, 0x3ff]}}, @NL80211_TXRATE_HT={0x14, 0x2, [{0x3, 0x9}, {0x4, 0x4}, {0x3, 0x3}, {0x2, 0x5}, {0x1, 0x8}, {0x5, 0x1}, {0x6, 0xa}, {0x1, 0x4}, {0x4, 0x7}, {0x1, 0x1}, {0x4, 0x5}, {0x5}, {0x5, 0x5}, {0x0, 0x7}, {0x3, 0x3}, {0x2, 0x4}]}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x60, 0x48, 0x48, 0xb, 0x16, 0x5, 0x9, 0x60, 0x1b, 0x48, 0x60, 0x4, 0x1b, 0xb, 0x1, 0x18, 0x0, 0x1]}, @NL80211_TXRATE_HT={0x18, 0x2, [{0x5, 0x6}, {0x0, 0x9}, {0x1, 0x9}, {0x0, 0x3}, {0x1}, {0x3, 0x6}, {0x7, 0xa}, {0x7, 0x3}, {0x5, 0x4}, {0x6, 0x8}, {0x0, 0x7}, {0x4, 0x2}, {0x1}, {0x1}, {0x6}, {0x0, 0x5}, {0x5, 0x8}, {0x5, 0x9}, {0x4, 0x1}, {0x2, 0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0xfa, 0x2a, 0xfff, 0x0, 0xb36f, 0xffff, 0x4]}}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x17, 0x2]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x401, 0x0, 0x100, 0x7, 0x400, 0x3, 0x8]}}]}]}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4d}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x40, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x8b}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x100000001}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xe4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xee}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x6f}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x2}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x48}]}]}, @NL80211_ATTR_TID_CONFIG={0x480, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x7c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x64, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x40, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0x48, 0x6c, 0x0, 0xb, 0x5, 0x3, 0x1b, 0x6, 0xb, 0x12, 0xe, 0x3b, 0x18, 0x4, 0x9, 0x6c, 0x1b, 0x12]}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x48, 0x36, 0x12, 0x4, 0x4, 0x9]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x8001, 0x81, 0x4, 0x400, 0x8000, 0x8, 0x1]}}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x1f, 0x7f, 0x60, 0x0, 0xbb, 0x1, 0x8]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4d}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x1b}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x2}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xaa}]}, {0x4}, {0x4}, {0x3a0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x68, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x64, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x3, 0x30, 0x6]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x3d, 0x2, [{0x4, 0x2}, {0x1, 0x3}, {0x2}, {0x3, 0x7}, {0x7, 0x3}, {0x1, 0xa}, {0x6, 0x8}, {0x0, 0x2}, {0x3, 0x6}, {0x7}, {0x1, 0x8}, {0x0, 0x2}, {0x7, 0xa}, {0x1, 0x5}, {0x1, 0x3}, {0x2, 0x4}, {0x6, 0x6}, {0x4, 0x2}, {0x0, 0xa}, {0x3, 0x7}, {0x7, 0x9}, {0x3, 0x7}, {0x5}, {0x5, 0x5}, {0x2, 0x3}, {0x7, 0x8}, {0x1, 0x2}, {0x6, 0x4}, {0x3, 0xa}, {}, {0x3, 0x9}, {0x4, 0x1}, {0x4, 0x2}, {0x2, 0x2}, {0x6, 0x5}, {0x3, 0x6}, {0x2, 0x6}, {0x4, 0x4}, {0x0, 0x4}, {0x0, 0xa}, {0x2, 0x5}, {0x0, 0x18}, {0x2, 0x5}, {0x6, 0x2}, {0x2, 0x7}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0x6}, {0x1, 0x4}, {0x3, 0x9}, {0x4, 0x7}, {0x6}, {0x1, 0x8}, {0x4, 0xa}, {0x2, 0x7}, {0x3, 0x6}, {0x0, 0x7}]}]}]}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x30c, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x3c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x19, 0x1, [0x6c, 0x16, 0x1, 0x1, 0xc, 0xf, 0x6, 0x6c, 0x24, 0x6c, 0x24, 0x6, 0x23, 0xb, 0xc, 0x6c, 0x48, 0x16, 0x0, 0x9, 0x36]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x2, 0x800, 0x81, 0x8001, 0x98, 0x2, 0x800]}}]}, @NL80211_BAND_6GHZ={0xc8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x9, 0x1, [0x36, 0x4, 0x12, 0x6c, 0x18]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0xe25, 0xffff, 0x1ff, 0x8, 0x7, 0x4, 0xfffb]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x0, 0x1, 0x7, 0x9, 0x3, 0x1, 0xfffd]}}, @NL80211_TXRATE_HT={0x39, 0x2, [{0x3, 0x1}, {0x3, 0x6}, {0x2, 0x9}, {0x6, 0x5}, {0x3, 0x5}, {0x0, 0x5}, {0x4, 0x9}, {0x5, 0x1}, {0x0, 0xa}, {0x6, 0x1}, {0x2, 0x2}, {0x0, 0x8}, {0x6, 0x5}, {0x1, 0x7}, {0x2, 0x9}, {0x7, 0x7}, {0x6, 0x5}, {0x0, 0xa}, {0x4, 0x8}, {0x0, 0x9}, {0x1, 0x3}, {0x6, 0x4}, {0x5, 0x4}, {0x4, 0x3}, {0x5, 0x3}, {0x7, 0x4}, {0x4, 0x9}, {0x1, 0x7}, {0x7, 0x8}, {0x0, 0x2}, {0x2, 0x6}, {0x3, 0x8}, {0x1, 0x8}, {0x1, 0x6}, {0x7, 0xa}, {0x1, 0x5}, {0x3, 0x5}, {0x4, 0x7}, {0x6, 0xa}, {0x3}, {0x7, 0x8}, {0x3, 0x6}, {0x2, 0x8}, {0x2, 0x8}, {0x1, 0x3}, {0x2, 0x1}, {0x5, 0x5}, {0x2, 0x5}, {0x0, 0x4}, {0x5}, {0x1, 0x4}, {0x6, 0xa}, {0x2}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7ff, 0x9, 0x3, 0x9, 0x6d0, 0x8463, 0xe494, 0x40]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x37, 0x2, [{0x3, 0x3}, {0x6, 0x7}, {0x3, 0x1}, {0x0, 0x9}, {0x7, 0x8}, {0x5, 0x7}, {0x4, 0x2}, {0x6, 0x6}, {0x3, 0x2}, {0x6, 0x3}, {0x1, 0x2}, {0x0, 0x7}, {0x0, 0x5}, {0x0, 0xa}, {0x0, 0x1}, {0x1, 0x3}, {0x6}, {0x3}, {0x0, 0x9}, {0x4, 0x4}, {0x5, 0x8}, {0x7, 0x4}, {0x7}, {0x3, 0x8}, {0x6}, {0x6, 0x6}, {0x0, 0x7}, {0x0, 0x3}, {0x5, 0x8}, {0x5, 0x5}, {0x4, 0x4}, {0x7}, {0x5, 0x8}, {0x0, 0x2}, {0x5, 0xa}, {}, {0x3, 0x4}, {0x1, 0x6}, {0x4, 0x3}, {0x1, 0x9}, {0x2, 0x4}, {0x7, 0x5}, {0x0, 0x4}, {0x7, 0x3}, {0x3, 0xa}, {0x5, 0x3}, {0x1, 0x2}, {0x0, 0x5}, {0x0, 0xa}, {0x7, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_6GHZ={0x88, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x2, 0x7f, 0x7fff, 0x58, 0x5, 0x6, 0x1]}}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x2, 0x8}, {0x3, 0x9}, {0x2, 0x2}, {0x1, 0x5}, {0x3, 0x2}, {0x1, 0x1}, {0x6, 0x7}, {0x3, 0xa}, {0x6, 0x2}, {0x6, 0xa}, {0x7, 0x5}, {0x5, 0x8}, {0x4, 0xa}, {0x4, 0x2}, {0x4, 0x2}, {0x5, 0xa}, {0x4, 0x1}, {0x3}, {0x2, 0x7}, {0x0, 0x7}, {0x0, 0x3}, {0x0, 0x4}, {0x5, 0xa}]}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x0, 0x36, 0x6, 0x6, 0x6c, 0x60, 0x2]}, @NL80211_TXRATE_HT={0x1c, 0x2, [{0x0, 0xa}, {0x3, 0xa}, {0x0, 0x8}, {0x1, 0x4}, {0x0, 0x8}, {0x0, 0x9}, {0x2, 0x7}, {}, {0x2, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x7}, {0x2, 0x5}, {0x2, 0x3}, {0x1}, {0x5, 0x5}, {0x3, 0x6}, {0x7, 0x9}, {0x3, 0x2}, {0x1, 0x2}, {0x5, 0x9}, {0x6}, {0x6, 0x4}, {0x7, 0x4}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x6c, 0x24, 0x60, 0x9, 0x9, 0x9, 0x30, 0x7b, 0x12]}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x1, 0x18]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x80, 0xffe1, 0xcb07, 0x9, 0x800, 0xfffd, 0x3]}}]}, @NL80211_BAND_2GHZ={0x80, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xfffa, 0x20, 0x9, 0xff, 0x3, 0x1ff, 0x3, 0x1]}}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x18, 0x7a, 0x30, 0x3, 0x12, 0x3, 0x6, 0x9, 0x48, 0x4, 0x6, 0x30, 0x2, 0x30, 0x6, 0x3, 0x18]}, @NL80211_TXRATE_HT={0x8, 0x2, [{0x3, 0x6}, {0x1, 0x7}, {0x6, 0x5}, {0x4, 0x8}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x3f, 0x2, [{0x2, 0x7}, {0x3, 0x8}, {0x6, 0x3}, {0x7, 0x5}, {0x6, 0x7}, {0x0, 0xa}, {0x0, 0x8}, {0x5, 0x9}, {0x0, 0x4}, {0x2, 0x9}, {}, {0x0, 0x1}, {0x1, 0x5}, {0x1, 0x7}, {0x6, 0x5}, {0x2, 0x5}, {0x7, 0x4}, {0x3, 0x5}, {0x4, 0x5}, {0x1, 0x6}, {0x2, 0x5}, {0x3, 0x7}, {0x4, 0x1}, {0x1, 0x8}, {0x5, 0x9}, {0x3, 0x9}, {0x0, 0x3}, {0x0, 0x2}, {0x5, 0x8}, {0x0, 0x9}, {0x1, 0xa}, {0x0, 0x1}, {0x6, 0x4}, {0x1, 0x3}, {0x7, 0x7}, {0x7, 0xa}, {0x7, 0x1}, {0x6, 0x8}, {0x0, 0x8}, {0x6, 0x8}, {0x0, 0x2}, {0x2, 0x4}, {0x2, 0x8}, {0x6, 0x7}, {0x1, 0x6}, {0x6, 0x8}, {0x4, 0x1}, {0x0, 0x4}, {0x1, 0x1}, {0x7, 0xa}, {0x6, 0x5}, {0x7, 0x6}, {0x2, 0x4}, {0x3, 0x6}, {0x0, 0x7}, {0x2, 0x6}, {0x6, 0x1}, {0x2, 0x5}, {0x2, 0x1}]}]}, @NL80211_BAND_60GHZ={0x3c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x6, 0x8, 0x2, 0x6, 0x7ff, 0x9, 0x7f]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x6, 0x6, 0x3, 0x24, 0x2, 0x12, 0x3, 0x0, 0x24, 0x6c, 0x6, 0x48, 0x30]}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x4, 0x6, 0x3f, 0x5, 0x1b, 0x4, 0x1, 0x2, 0x0, 0x2, 0x16, 0x12]}]}, @NL80211_BAND_6GHZ={0x64, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x3}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x30, 0x2, 0x12, 0x16, 0x2, 0xb, 0xf6890ae01a3bec5c, 0x4a, 0x60, 0x9, 0x26]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x5, 0x61a, 0x7f, 0x2, 0x7, 0x7, 0x7e]}}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0x18, 0x60, 0x12, 0xc, 0x9, 0x18, 0x36, 0x4]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x6, 0x1, 0x3, 0x8, 0x1, 0xcecb, 0x1]}}]}, @NL80211_BAND_2GHZ={0x5c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x41, 0x2, [{0x5, 0x4}, {0x0, 0x5}, {0x7, 0x8}, {0x7, 0xa}, {0x7, 0x9}, {0x1, 0xa}, {0x0, 0x3}, {0x1, 0x5}, {0x1, 0x7}, {0x3, 0x5}, {0x3, 0x4}, {0x7, 0x6}, {0x5}, {0x6, 0x5}, {0x6, 0x8}, {0x0, 0x8}, {0x1, 0x9}, {0x1, 0x6}, {0x2, 0x9}, {0x5, 0x5}, {0x6, 0x1}, {0x1}, {0x1, 0x5}, {0x3, 0x1}, {0x0, 0x8}, {0x4, 0x3}, {0x6, 0x7}, {0x6, 0x6}, {0x7, 0x2}, {0x7, 0xa}, {0x6, 0x3}, {0x0, 0x7}, {0x3, 0x8}, {0x6, 0x7}, {0x6, 0x3}, {0x1, 0x2}, {0x5, 0x9}, {0x5, 0xa}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0xa}, {0x3, 0x5}, {0x3, 0x9}, {0x5, 0x8}, {0x0, 0x4}, {0x4, 0x3}, {0x4, 0x2}, {0x4, 0x6}, {0x6, 0x8}, {0x2, 0x7}, {0x2, 0x9}, {0x1, 0x8}, {0x6, 0x2}, {0x4, 0x9}, {0x1, 0x6}, {0x0, 0x2}, {0x3, 0x1}, {0x1, 0xa}, {0x5, 0x5}, {0x1, 0x9}, {0x1, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x1, 0xf10, 0xdf, 0x259, 0x7fff, 0xbf34, 0x2]}}]}]}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x20}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}]}, @NL80211_ATTR_TID_CONFIG={0x574, 0x11d, 0x0, 0x1, [{0x550, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x2dc, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x78, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x42, 0x2, [{0x7, 0xa}, {0x7, 0xa}, {0x4, 0x2}, {0x3, 0x9}, {0x1, 0x7}, {0x0, 0x8}, {0x0, 0x7}, {0x0, 0x1}, {0x6, 0x8}, {0x0, 0x9}, {0x7, 0x2}, {0x2, 0x1}, {0x3, 0x8}, {0x2, 0x6}, {0x1, 0x7}, {0x2, 0x2}, {0x1, 0x8}, {0x7}, {0x0, 0x3}, {0x7, 0x3}, {0x2, 0x3}, {0x1, 0x9}, {0x2, 0x1}, {0x2, 0x7}, {0x5, 0x7}, {0x1}, {0x4, 0x5}, {0x1, 0x4}, {0x3, 0x7}, {0x7}, {0x4, 0x5}, {0x6, 0x8}, {0x3, 0x9}, {0x1, 0x2}, {0x2, 0x5}, {0x5, 0x8}, {0x4, 0x7}, {0x3, 0x3}, {0x6, 0x3}, {0x0, 0x7}, {0x4, 0x7}, {0x0, 0x8}, {0x1, 0x3}, {0x0, 0x3}, {0x2, 0x8}, {0x7, 0x8}, {0x5, 0x2}, {0x0, 0x6}, {0x1, 0x9}, {0x6, 0x4}, {0x1, 0xa}, {0x3, 0x8}, {0x2, 0x5}, {0x1, 0x3}, {0x7, 0x2}, {0x0, 0x1}, {0x4, 0x1}, {0x4}, {0x4, 0x1}, {0x1, 0x5}, {0x5, 0x8}, {0x5, 0x1}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x3, 0x1, 0x60, 0x4, 0x36, 0x24, 0x36, 0x48, 0x5]}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0xb, 0x30, 0x3, 0x24, 0xb, 0x24, 0x18, 0x1, 0x0, 0x77, 0x60, 0x32, 0x24, 0x16, 0x1b, 0x45, 0x1, 0x30, 0x60, 0x5, 0x6, 0x4, 0x9, 0x30, 0x13, 0x1b, 0x6]}]}, @NL80211_BAND_6GHZ={0x34, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x1, 0x0, 0x2, 0x4, 0xf6a, 0x9, 0x7ff]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x71, 0x4, 0x6, 0x84, 0x4, 0x2, 0x2]}}]}, @NL80211_BAND_6GHZ={0x34, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xc, 0x1, [0xb, 0x48, 0x16, 0xc, 0x48, 0x36, 0x60, 0x9]}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x3, 0x36, 0x24, 0x16, 0x60, 0x36, 0xb, 0x24, 0x60, 0x5, 0x9, 0x30, 0x9, 0xc, 0x9, 0x9, 0x1b, 0x3, 0x6, 0x2, 0x1b, 0x12, 0x0, 0x9, 0x2, 0x5, 0x60, 0x12, 0xb, 0x5, 0x30]}]}, @NL80211_BAND_60GHZ={0x18, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x10, 0x0, 0x9, 0x64d9, 0x7, 0x8001, 0x40, 0x6f]}}]}, @NL80211_BAND_2GHZ={0x90, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x17, 0x1, [0x6c, 0x30, 0x30, 0x1, 0x5, 0x1, 0x36, 0x6, 0x6, 0x16, 0xc, 0x4, 0xc, 0x18, 0x3, 0x36, 0x6c, 0x24, 0x1]}, @NL80211_TXRATE_HT={0x1d, 0x2, [{0x0, 0x1}, {0x3, 0x2}, {0x1, 0xa}, {0x7, 0x9}, {0x0, 0x2}, {0x6, 0xa}, {0x1, 0x1}, {0x6, 0x3}, {0x7, 0x4}, {0x0, 0x8}, {0x0, 0x4}, {0x1}, {0x6, 0x1}, {0x6, 0x7}, {0x7, 0x6}, {0x2, 0xa}, {0x0, 0x7}, {0x5, 0x7}, {0x5, 0x8}, {0x3}, {0x0, 0x1}, {0x1, 0x5}, {0x0, 0x1}, {0x6, 0x8}, {0x6, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0xb, 0x9, 0x4, 0x9, 0x18, 0x5, 0x1, 0x2, 0x3, 0x6, 0x36, 0x18, 0x12, 0x4, 0x60, 0x6, 0x8, 0x2]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xf2dd, 0x4, 0xfbb5, 0xff, 0x3, 0x0, 0x4, 0x5]}}]}, @NL80211_BAND_60GHZ={0x8c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x3f, 0x4, 0x44, 0xfff, 0x4c5, 0x2, 0x0, 0x8]}}, @NL80211_TXRATE_HT={0xa, 0x2, [{0x5, 0x8}, {0x5, 0x4}, {0x0, 0x3}, {0x2, 0xa}, {0x5}, {0x4}]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x9, 0x30, 0x75, 0x30]}, @NL80211_TXRATE_HT={0x48, 0x2, [{0x2, 0x9}, {0x4, 0x6}, {0x2, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {0x5, 0x6}, {0x1, 0x9}, {0x5, 0x3}, {0x3, 0x4}, {0x6, 0x3}, {0x5, 0x1}, {0x3, 0x6}, {0x7, 0x8}, {0x3, 0x5}, {0x1, 0x8}, {0x4, 0x8}, {0x5, 0x4}, {0x2, 0x5}, {0x6, 0x6}, {0x6}, {0x6, 0x6}, {0x1}, {0x2, 0x1}, {0x5, 0xa}, {0x0, 0x5}, {0x6, 0x2}, {0x0, 0x4}, {0x2, 0x5}, {0x3, 0x8}, {0x4, 0x7}, {0x0, 0x7}, {0x7}, {0x5, 0x3}, {0x5, 0x6}, {0x7, 0xa}, {0x6, 0xa}, {0x2, 0x2}, {0x2, 0x6}, {0x2, 0x7}, {0x3, 0x6}, {0x4, 0x7}, {0x0, 0x9}, {0x5, 0xa}, {0x4, 0x2}, {0x0, 0x6}, {0x6, 0x2}, {0x5, 0x13}, {0x3, 0x9}, {0x1, 0x3}, {0x0, 0xa}, {0x4, 0x4}, {0x4, 0x1}, {0x4}, {0x7}, {0x0, 0x7}, {0x3, 0xa}, {0x3, 0x7}, {0x1, 0x6}, {0x5, 0x7}, {0x4, 0x9}, {0x1, 0x7}, {0x3, 0x4}, {0x1, 0x7}, {0x5, 0x5}, {0x7}, {0x1, 0x3}, {0x4, 0x6}, {0x0, 0x3}]}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x48, 0x3, 0x60, 0x2, 0x2, 0x24, 0x48, 0x60, 0x1, 0xc, 0x1b, 0x30, 0x9, 0x1b, 0x4, 0x6, 0x0, 0x1b, 0x36]}]}, @NL80211_BAND_6GHZ={0xc4, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x6c, 0x6, 0x48, 0x16, 0x5, 0x5, 0x36, 0x4, 0x12]}, @NL80211_TXRATE_LEGACY={0x22, 0x1, [0xc, 0xb, 0xb, 0x1b, 0xb, 0x2, 0x18, 0x18, 0x12, 0x24, 0x6, 0x62, 0x60, 0x6, 0x36, 0x24, 0x1b, 0x6, 0x3, 0x9, 0xb, 0x6, 0x18, 0x24, 0x5, 0x1b, 0x24, 0x2, 0x30, 0x6c]}, @NL80211_TXRATE_HT={0x1f, 0x2, [{0x2, 0x1}, {0x5, 0x1}, {0x5, 0xa}, {0x6, 0x5}, {0x2, 0xa}, {0x1, 0xa}, {0x3, 0x8}, {0x3, 0x8}, {}, {0x2, 0x9}, {0x1, 0x5}, {0x5, 0x5}, {0x6, 0x6}, {0x6, 0x9}, {0x3, 0x8}, {0x7, 0x2}, {0x1, 0x3}, {0x1, 0x6}, {0x3, 0x4}, {0x6, 0x4}, {0x0, 0x3}, {0x4, 0x5}, {0x1, 0x6}, {0x6, 0x5}, {0x0, 0xa}, {0x5, 0x3}, {0x6, 0x7}]}, @NL80211_TXRATE_HT={0x1d, 0x2, [{0x5, 0x9}, {0x7, 0x3}, {0x0, 0x5}, {0x3, 0x1}, {0x3, 0x3}, {0x7, 0x6}, {0x1, 0x5}, {0x4, 0x3}, {0x3, 0x8}, {0x2}, {0x6, 0x2}, {0x3, 0x9}, {0x2, 0x2}, {0x2, 0x3}, {0x5, 0x2}, {0x1, 0x5}, {0x1, 0x1}, {0x0, 0x1}, {0x3, 0x5}, {0x1, 0xa}, {0x4, 0x1}, {0x2, 0xa}, {0x4, 0x7}, {0x2, 0x2}, {0x0, 0x2}]}, @NL80211_TXRATE_HT={0x3b, 0x2, [{0x4, 0x4}, {0x7, 0xa}, {0x7, 0x3}, {0x3, 0x2}, {0x4}, {0x6, 0xa}, {0x3, 0x8}, {0x4, 0x7}, {0x4, 0x9}, {0x6, 0x2}, {0x4, 0x3}, {0x4, 0x2}, {0x6, 0xa}, {0x2, 0x8}, {0x0, 0x3}, {0x1, 0x3}, {0x2, 0xa}, {0x6}, {0x7, 0x5}, {0x7, 0x6}, {0x5, 0x3}, {0x4, 0x3}, {0x5}, {0x1, 0x5}, {0x6}, {0x6, 0x6}, {0x7, 0x4}, {0x7, 0x4}, {0x7, 0x6}, {0x7, 0x9}, {0x3}, {0x4, 0x7}, {0x0, 0x5}, {0x6, 0x1}, {0x5, 0x9}, {0x6, 0x3}, {0x7, 0xa}, {0x7, 0x4}, {0x5}, {0x2, 0x9}, {0x3, 0x5}, {0x6, 0x2}, {0x2, 0x5}, {0x1, 0x3}, {0x6, 0x8}, {0x1, 0x5}, {0x2, 0x7}, {0x7, 0x5}, {0x5, 0x3}, {0x3, 0x8}, {0x4, 0x6}, {0x0, 0x7}, {0x5, 0x2}, {0x5, 0x1}, {0x5, 0x6}]}, @NL80211_TXRATE_GI={0x5}]}]}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xb5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x240, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x2c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x8, 0x2, [{0x5, 0xa}, {0x1, 0x4}, {0x6, 0x4}, {0x6, 0x6}]}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x12, 0x60, 0x6]}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x6, 0x36, 0x30, 0x36, 0x60, 0x1, 0x1, 0x6, 0x56cba359e9e78179, 0x2, 0x2, 0x16, 0x16, 0x30, 0x6, 0x2, 0x1b, 0x6]}]}, @NL80211_BAND_60GHZ={0x28, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x40, 0x5, 0x0, 0x9, 0xffff, 0x1ff, 0x2]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_5GHZ={0x28, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x0, 0x6, 0x1f, 0x1, 0x94, 0x100, 0x80]}}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x3, 0xa}, {0x1, 0x4}, {0x2, 0x8}, {0x0, 0x8}, {0x6, 0x4}, {0x1, 0x5}, {0x3, 0x8}, {0x5, 0x7}, {0x3, 0x5}]}]}, @NL80211_BAND_60GHZ={0xd4, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x23, 0x1, [0x1b, 0xc, 0x9, 0x5, 0x4, 0x16, 0x5, 0x4, 0x9, 0x0, 0x1b, 0x0, 0x6c, 0x30, 0x48, 0x3, 0x18, 0x5, 0x18, 0x24, 0x24, 0x44, 0x12, 0x9, 0x5, 0x1b, 0x2, 0x60, 0x3, 0x18, 0x16]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x27, 0x2, [{0x2, 0x8}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x8}, {}, {0x3, 0x7}, {0x2, 0x5}, {0x6, 0x8}, {0x4, 0x3}, {0x1, 0x2}, {0x1, 0x6}, {0x2, 0x5}, {0x5, 0x4}, {0x2, 0x7}, {0x6, 0x8}, {0x3, 0x1}, {0x1, 0x8}, {0x2, 0x3}, {0x0, 0x1}, {0x0, 0x2}, {0x1}, {0x2, 0x4}, {0x4}, {}, {0x4, 0x8}, {0x5, 0x2}, {0x2, 0x4}, {0x0, 0x8}, {0x0, 0x6}, {0x1, 0xa}, {0x1, 0x7}, {0x0, 0x2}, {0x3, 0x1}, {0x7, 0x3}, {0x1, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x0, 0x4, 0x100, 0x97, 0x3ff, 0x40, 0xac]}}, @NL80211_TXRATE_HT={0x2b, 0x2, [{0x0, 0xa}, {0x2, 0x2}, {0x6, 0x6}, {0x6, 0x8}, {0x5, 0xa}, {0x7, 0x6}, {0x0, 0x9}, {0x7, 0x1}, {0x5, 0x8}, {0x0, 0x2}, {0x2, 0x2}, {0x2, 0x1}, {0x3, 0x1}, {0x2, 0x9}, {0x1, 0xa}, {0x7, 0x4}, {0x2, 0x6}, {0x3, 0x3}, {0x3, 0x5}, {0x0, 0xa}, {0x5, 0xa}, {0x7, 0x3}, {0x1, 0x5}, {0x0, 0x4}, {0x3}, {0x7, 0x2}, {0x5, 0x4}, {0x0, 0x4}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x5}, {0x4, 0x2}, {0x0, 0x7}, {0x2, 0x3}, {0x1}, {0x1, 0x2}, {0x2, 0x2}, {0x6, 0x4}, {0x7}]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x2f, 0x2, [{0x2, 0x6}, {0x2, 0x2}, {0x2, 0x2}, {}, {0x7, 0x4}, {0x2, 0x1}, {0x6, 0x3}, {0x2, 0x2}, {0x7, 0x4}, {0x6, 0x7}, {0x3, 0x4}, {0x1}, {0x3, 0x9}, {0x3, 0xa}, {0x4, 0x9}, {0x3, 0x8}, {0x5, 0x5}, {0x3, 0x2}, {0x2}, {0x7, 0x1}, {0x4, 0x7}, {0x6, 0x6}, {0x1, 0x6}, {0x4}, {0x3, 0x5}, {0x0, 0xa}, {0x4, 0x2}, {0x1, 0x9}, {0x7, 0x4}, {0x6, 0x2}, {0x3, 0x8}, {0x3, 0x3}, {0x5, 0x2}, {0x0, 0x2}, {0x1, 0xa}, {0x4}, {0x7, 0x6}, {0x3, 0xa}, {0x2, 0x5}, {0x0, 0x9}, {0x1, 0x4}, {0x0, 0x7}, {0x2, 0x7}]}]}, @NL80211_BAND_2GHZ={0x90, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xffc, 0x7fff, 0x3f, 0x7f, 0x0, 0x8, 0x7fff, 0x1]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8001, 0x8, 0x2f, 0x401, 0xfffd, 0x8, 0x800, 0x1]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff9, 0x0, 0x8, 0x6, 0xfff9, 0x6, 0x6, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x93e, 0x4, 0x51, 0x20, 0x80, 0xfffd, 0x400, 0x1000]}}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x4, 0x5, 0xb, 0x6c, 0x6c, 0x4, 0x1, 0x48, 0x9, 0x1, 0xb, 0x60]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3312, 0x3ff, 0xa9, 0x9, 0x100, 0x4, 0x1f, 0x3]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x40, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2c, 0x2, [{0x0, 0xa}, {0x1, 0x6}, {0x0, 0x6}, {0x6, 0x2}, {0x1, 0x4}, {0x1, 0x2}, {0x3, 0x4}, {0x2, 0x9}, {0x0, 0x8}, {0x0, 0x6}, {0x2, 0x5}, {0x6, 0x9}, {0x3, 0x1}, {0x4, 0x8}, {0x0, 0x2}, {0x3, 0x6}, {0x0, 0xa}, {0x6, 0x1}, {0x6, 0x1}, {0x1, 0x4}, {0x5}, {0x0, 0x4}, {0x4, 0x5}, {0x7, 0x2}, {0x6, 0x4}, {0x3, 0x5}, {0x4, 0xa}, {0x7, 0x1}, {}, {0x6, 0x4}, {0x4, 0x8}, {0x0, 0x4}, {0x4, 0x3}, {0x0, 0x3}, {0x7, 0x8}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0x8}, {0x7, 0xa}, {0x1, 0x4}]}, @NL80211_TXRATE_HT={0xe, 0x2, [{}, {0x2, 0x8}, {0x5, 0x9}, {0x1, 0x2}, {0x7, 0x7}, {0x0, 0x2}, {0x6, 0x3}, {0x7, 0x9}, {0x0, 0x1}, {0x6, 0x1}]}]}, @NL80211_BAND_6GHZ={0x4}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xb, 0x1, [0x16, 0xb, 0x16, 0x24, 0xb, 0xb, 0x6]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x2c}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x2}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}]}]}, 0xc78}, 0x1, 0x0, 0x0, 0x400c000}, 0x8000)
sendmsg$AUDIT_TTY_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x3f8, 0x4, 0x70bd2a, 0x25dfdbff, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x20000010)
syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), r1)
execveat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', &(0x7f0000000540)=[&(0x7f0000000380)='/dev/sg#\x00', &(0x7f00000003c0)=')\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='(\x00', &(0x7f00000004c0)=')/\x00', &(0x7f0000000500)='\x00'], &(0x7f0000000800)=[&(0x7f0000000580)='$-!-\x00', &(0x7f00000005c0)='/dev/sg#\x00', &(0x7f0000000600)='$)\x00', &(0x7f0000000640)='\x00', &(0x7f0000000680)='\'($}!{-,*<\x00', &(0x7f00000006c0)='%/./\x00', &(0x7f0000000700)='/dev/ptmx\x00', &(0x7f0000000740)='/\x00', &(0x7f0000000780)=')\x00', &(0x7f00000007c0)='\x05]\x00'], 0x400)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r4 = pidfd_getfd(0xffffffffffffffff, r3, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r4, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x40, r2, 0x8, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_BASIC_RATES={0x10, 0x24, [{0x3, 0x1}, {0x60, 0x1}, {0x48}, {0x30, 0x1}, {0xb, 0x1}, {0x12}, {0x48}, {0xb, 0x1}, {0x24}, {0x12, 0x1}, {0xb}, {0x24}]}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x3f}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x1)
mkdirat(r4, &(0x7f0000000880)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r5=>r4, {0x4}}, './file0\x00'})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b80), r4)
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x64, r6, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xae, 0x50}}}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "cb405f2142a187c566d3d24f50"}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY={0x1c, 0x50, 0x0, 0x1, [@NL80211_KEY_SEQ={0x7, 0x4, "79f308"}, @NL80211_KEY_SEQ={0xd, 0x4, "5029ec6d91e4078598"}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r8 = dup2(r7, r3)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0) (fail_nth: 1)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:57:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x203e00, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000080)=0x1)
ioctl$SG_GET_NUM_WAITING(r1, 0x227d, &(0x7f0000000040))
r2 = dup2(r1, r0)
ioctl$DVD_READ_STRUCT(r2, 0x5390, &(0x7f0000000300)=@bca={0x3, 0xbc, "8d48ca05a256b005df175d4dcf0437c8120b36f2b2418acca9d788995de694ac6c76944d7c36fa69e5e86ce97266fd9a36cd4884e58d7964917313304728d928f0584f817c92eeccd71f1ac0d8ce5ff951e875a6783f296dd928a821d4fef3228515aabf8d7fe4147eb1e1d955da05476e578c45e8050e34b55597323e2af6ab821a0f57ae0fa6d527c1343f08e536946b69cae6fbdeb15907be81f6deb45096da856c346084de05e90453eb8c6564afb7ccbbc5e9db3aaaa1f682f3"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
ioctl$TIOCCBRK(r7, 0x5428)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x400040)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r8, &(0x7f0000000140)={0x10})
r9 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
ioctl$SG_SET_RESERVED_SIZE(0xffffffffffffffff, 0x2275, &(0x7f00000000c0)=0x4)
ioctl$TCXONC(r9, 0x540a, 0x3)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000001c0)={0x53, 0x0, 0xc, 0x0, @buffer={0x0, 0xb6, &(0x7f0000000b40)=""/182}, &(0x7f0000000240)="c305b85febce6a207c813560", 0x0, 0x0, 0x6, 0x3, 0x0})

01:57:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 50)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2754.079010] FAULT_INJECTION: forcing a failure.
[ 2754.079010] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2754.080780] CPU: 0 UID: 0 PID: 27614 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2754.080815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2754.080827] Call Trace:
[ 2754.080835]  <TASK>
[ 2754.080844]  dump_stack_lvl+0xfa/0x120
[ 2754.080875]  should_fail_ex+0x4d7/0x5e0
[ 2754.080907]  should_fail_alloc_page+0xe0/0x110
[ 2754.080939]  prepare_alloc_pages+0x1eb/0x550
[ 2754.080973]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2754.081006]  ? relay_open+0x625/0xa70
[ 2754.081026]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2754.081060]  ? do_syscall_64+0xbf/0x390
[ 2754.081084]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2754.081109]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2754.081152]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2754.081195]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2754.081226]  ? do_raw_spin_lock+0x123/0x260
[ 2754.081268]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2754.081305]  ? policy_nodemask+0xeb/0x4e0
[ 2754.081343]  alloc_pages_mpol+0xed/0x340
[ 2754.081377]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2754.081410]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2754.081433]  ? trace_kmalloc+0x1f/0xb0
[ 2754.081457]  ? __kmalloc_noprof+0x274/0x680
[ 2754.081494]  alloc_pages_noprof+0x9d/0x180
[ 2754.081531]  relay_open_buf.part.0+0x26f/0xc70
[ 2754.081569]  relay_open+0x625/0xa70
[ 2754.081592]  ? debugfs_create_file_full+0x41/0x60
[ 2754.081632]  do_blk_trace_setup+0x4ba/0xc30
[ 2754.081672]  blk_trace_setup+0xdc/0x1b0
[ 2754.081706]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2754.081737]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2754.081765]  ? proc_fail_nth_write+0x97/0x220
[ 2754.081806]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2754.081848]  sg_ioctl+0x69d/0x2720
[ 2754.081883]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2754.081913]  ? __pfx_sg_ioctl+0x10/0x10
[ 2754.081939]  ? __fget_files+0x34/0x3b0
[ 2754.081963]  ? find_held_lock+0x2b/0x80
[ 2754.081985]  ? __fget_files+0x203/0x3b0
[ 2754.082008]  ? lock_release+0xc8/0x290
[ 2754.082049]  ? selinux_file_ioctl+0xb9/0x280
[ 2754.082075]  ? __pfx_sg_ioctl+0x10/0x10
[ 2754.082107]  __x64_sys_ioctl+0x18f/0x210
[ 2754.082145]  do_syscall_64+0xbf/0x390
[ 2754.082173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2754.082194] RIP: 0033:0x7fa15dc46b19
[ 2754.082211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2754.082233] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2754.082254] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2754.082268] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2754.082281] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2754.082294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2754.082306] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2754.082343]  </TASK>
01:57:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2754.153504] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.154656] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2754.162480] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.163644] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid command operation code
[ 2754.167318] FAULT_INJECTION: forcing a failure.
[ 2754.167318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2754.169384] CPU: 0 UID: 0 PID: 27619 Comm: syz-executor.1 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2754.169412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2754.169424] Call Trace:
[ 2754.169432]  <TASK>
[ 2754.169441]  dump_stack_lvl+0xfa/0x120
[ 2754.169471]  should_fail_ex+0x4d7/0x5e0
[ 2754.169510]  _copy_to_user+0x32/0xd0
[ 2754.169548]  simple_read_from_buffer+0xe0/0x180
[ 2754.169595]  proc_fail_nth_read+0x18a/0x240
[ 2754.169632]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2754.169668]  ? security_file_permission+0x22/0x90
[ 2754.169705]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2754.169738]  vfs_read+0x1eb/0xc70
[ 2754.169792]  ? __pfx_vfs_read+0x10/0x10
[ 2754.169826]  ? lock_release+0xc8/0x290
[ 2754.169871]  ? __fget_files+0x20d/0x3b0
[ 2754.169930]  ksys_read+0x121/0x240
[ 2754.169957]  ? __pfx_ksys_read+0x10/0x10
[ 2754.170015]  do_syscall_64+0xbf/0x390
[ 2754.170048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2754.170069] RIP: 0033:0x7fb2664a969c
[ 2754.170087] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2754.170107] RSP: 002b:00007fb263a6c170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2754.170127] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fb2664a969c
[ 2754.170141] RDX: 000000000000000f RSI: 00007fb263a6c1e0 RDI: 0000000000000006
[ 2754.170154] RBP: 00007fb263a6c1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2754.170167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2754.170179] R13: 00007ffe8a4b84df R14: 00007fb263a6c300 R15: 0000000000022000
[ 2754.170247]  </TASK>
[ 2754.189959] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.192979] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

01:57:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 51)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:45 executing program 7:
prctl$PR_SVE_GET_VL(0x33, 0x1e74b)
prctl$PR_SVE_GET_VL(0x33, 0x1b318)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x21a2c0, 0x0)
prctl$PR_SVE_GET_VL(0x33, 0x2fc9)
prctl$PR_SVE_GET_VL(0x33, 0xce5e)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000100)={0x65, 0x6, 0x4})
prctl$PR_SVE_GET_VL(0x33, 0xfc76)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000000c0)={0x0, 0xfffffffe, 0x0, 0x7, 0xfff})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000040))
dup2(r1, r0)
pipe2(&(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x800)
ioctl$KDSKBLED(r2, 0x4b65, 0x744)

01:57:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:57:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:57:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xc, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2af971626254ba357fa7a240", 0x0, 0x8, 0x0, 0x0, 0x0})
ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0)

[ 2754.430468] FAULT_INJECTION: forcing a failure.
[ 2754.430468] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2754.432169] CPU: 0 UID: 0 PID: 27642 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2754.432194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2754.432205] Call Trace:
[ 2754.432211]  <TASK>
[ 2754.432218]  dump_stack_lvl+0xfa/0x120
[ 2754.432245]  should_fail_ex+0x4d7/0x5e0
[ 2754.432272]  should_fail_alloc_page+0xe0/0x110
[ 2754.432298]  prepare_alloc_pages+0x1eb/0x550
[ 2754.432327]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2754.432354]  ? relay_open+0x625/0xa70
[ 2754.432372]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2754.432400]  ? do_syscall_64+0xbf/0x390
[ 2754.432421]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2754.432442]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2754.432478]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2754.432514]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2754.432541]  ? do_raw_spin_lock+0x123/0x260
[ 2754.432576]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2754.432607]  ? policy_nodemask+0xeb/0x4e0
[ 2754.432640]  alloc_pages_mpol+0xed/0x340
[ 2754.432668]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2754.432696]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2754.432717]  ? trace_kmalloc+0x1f/0xb0
[ 2754.432737]  ? __kmalloc_noprof+0x274/0x680
[ 2754.432768]  alloc_pages_noprof+0x9d/0x180
[ 2754.432804]  relay_open_buf.part.0+0x26f/0xc70
[ 2754.432837]  relay_open+0x625/0xa70
[ 2754.432857]  ? debugfs_create_file_full+0x41/0x60
[ 2754.432890]  do_blk_trace_setup+0x4ba/0xc30
[ 2754.432924]  blk_trace_setup+0xdc/0x1b0
[ 2754.432952]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2754.432978]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2754.433001]  ? proc_fail_nth_write+0x97/0x220
[ 2754.433037]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2754.433072]  sg_ioctl+0x69d/0x2720
[ 2754.433101]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2754.433127]  ? __pfx_sg_ioctl+0x10/0x10
[ 2754.433149]  ? __fget_files+0x34/0x3b0
[ 2754.433170]  ? find_held_lock+0x2b/0x80
[ 2754.433189]  ? __fget_files+0x203/0x3b0
[ 2754.433208]  ? lock_release+0xc8/0x290
[ 2754.433242]  ? selinux_file_ioctl+0xb9/0x280
[ 2754.433264]  ? __pfx_sg_ioctl+0x10/0x10
[ 2754.433291]  __x64_sys_ioctl+0x18f/0x210
[ 2754.433323]  do_syscall_64+0xbf/0x390
[ 2754.433346]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2754.433364] RIP: 0033:0x7fa15dc46b19
[ 2754.433378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2754.433397] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2754.433415] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2754.433427] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2754.433438] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2754.433449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2754.433459] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2754.433490]  </TASK>
01:57:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

[ 2754.534466] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.535781] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x2a, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a7625465c0fba0323560957c46333f1b89dac1a77bd8be722e7ce24606a5bd1ff514fb2893ec", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2754.577436] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.578709] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2754.585509] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:57:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2754.586653] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2754.606672] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2754.607577] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:46 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:57:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0xa, 0x3, @scatter={0xa, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)=""/147, 0x93}, {&(0x7f0000000180)=""/104, 0x68}, {&(0x7f0000000300)=""/255, 0xff}, {&(0x7f0000000200)=""/90, 0x5a}, {&(0x7f0000000400)=""/81, 0x51}, {&(0x7f0000000480)=""/50, 0x32}, {&(0x7f00000004c0)}, {&(0x7f0000000500)=""/20, 0x14}, {&(0x7f0000000540)=""/246, 0xf6}, {&(0x7f0000000640)=""/9, 0x9}]}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x1, 0x0, 0x0})

01:57:56 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 52)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

01:57:56 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:57:56 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:56 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:56 executing program 7:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000000c0)={0x4, 0x7ff, 0x1, 0x1000, 0x20})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x2, 0x408101)
r3 = dup2(r2, r1)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0xc0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r3)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r7, r6)
r8 = openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000680), 0x2, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r11 = dup2(r10, r9)
ioctl$SG_GET_NUM_WAITING(r11, 0x1276, 0x0)
r12 = syz_open_dev$rtc(&(0x7f0000000880), 0x5, 0x602101)
io_submit(0x0, 0x9, &(0x7f0000000940)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x7, r4, &(0x7f0000000100)="fdc7c76573c4a18e8db80d4f5863cefc5bb9fac43b9ffbb3945db280803ab5e2b57ae7b7db7028057b1275eb9e2e245dd68b31674c67bae1ac64bc12bd3110e6c6627f382560c7c5b3a682035bf33ce6ffee6004a364e08e515d7b7862b453abd23ee77b36f6c937e20a416ac7c91cdb83481375948c4d3ed6b9d8bad806ffb778516908eba6ab", 0x87, 0x9}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x8, 0x40, 0xffffffffffffffff, &(0x7f0000000200)="499e3e718b51eeb3649fc32bd51dc6f34bb002e151c371d519906627f4a32a08d83a0f797582a824248073a5d45296b1c709e5a88ad76c52035d543586ff7395ae6adb812b6b50f1ec2a810298a95ebad06101b0d16dcaa42c", 0x59, 0x5, 0x0, 0x1}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x5, 0xa0, r4, &(0x7f0000000380)="aff435bdea2af237a35f82f4fe6a14e01d990fc53cbc3a9cd012e901beeb13d630a8c5eee2bdd2cd75f8cd764742e7601e76c44c9b77dca23a2059001555d2e07f07a0121bc4993761e42290084d0a64a01d1ffc30864838643466c17ccd762e7ca52b854bc327c218b5a7c30c864a5f0978b1d78e495b8f8e83c7c121b6", 0x7e, 0x1, 0x0, 0x1, r4}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000440)="6015d9efb0ded5d20749c6b8e581485f1445690f8faedc178f83773b8a9b5f64b93cc2036b246bc6c4472cf8ba7813eb976a35a075494e6ccbb5e90e522ee3ec0de65e71bc04b380660565081504e338801cfb7776d4a64c8c3190c49d6a6878b4b699281d1385720d10655d5acda8e9edffbf8931c048e13dfde29123fcae3fe08e5fa517ad92f51d24b5b08aabfa5a", 0x90, 0xa4, 0x0, 0x1}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x2, r5, &(0x7f0000000540)="389c6dff95f141b0180ec27b407cae82e3048911c196fe3cd432a40099f30b4d3a5de3a5f8964568a13d06bfd93c125ae286d61babeb1844c6c8ff4f247fa57e45618a9ead72e7c4b26d3820908f9be1d847e0dc93783a58586b63e42a71f3be3f6b82cbc91d4e8ac14b6d6bfd5a70bbdaaebf2092c3933b1e58f1b26a", 0x7d, 0x0, 0x0, 0x2}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0xf7, r7, &(0x7f0000000600)="2ffa8ce1daa602b4a87b337e025c51", 0xf, 0xfffffffffffffb2c, 0x0, 0x3}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x8, 0x800, r8, &(0x7f00000006c0)="51e34255103d7483ebedb321b09df1702d01907811f777eb2ee5002370a725775033756fe2cb6a5897fa1fb83cdba3cc7fd9", 0x32, 0x6, 0x0, 0x0, r4}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0xab, r4, &(0x7f0000000740)="00fb84ea0fe9b462df38e4314be3024c0387562bbbe2d94c163353e950d8a0f01d040eac4c84c3abcba3771f0fc84bddc895b72e2c86af222f29028d3407d9249f31162f42936eb9faf25adbce31adc1db3b2c9dee6a47ee9a2388b18a1c0319c840a700d4ce2ea78317ffc726910d3ac6e1eb24ec2c8d6cc38dce29d0096d31b5490932339652ba347a2ee7cfb4431ef5833a5741d74a6307ed0332846ff636c2cb077a01e96186f61e665bb4bcbc46c4e38df87a0c7b438d15dfdc795e003c3c1fab00a05e47235a2256a9259cd8a37b223492", 0xd4, 0xfb, 0x0, 0x1, r11}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x2, 0x101, r12, &(0x7f00000008c0)="577b6d6911", 0x5, 0xca3e, 0x0, 0x2}])

01:57:56 executing program 2:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x44, r0, 0x400, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x6c95, 0x7}}}}, [@NL80211_ATTR_CSA_IES={0x1c, 0xb9, 0x0, 0x1, [@NL80211_ATTR_CSA_C_OFF_PRESP={0xa, 0xbb, [0x7f, 0xb1, 0xa735]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0xc, 0xbb, [0xb96, 0x5, 0x6, 0x2]}]}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x44}]}, 0x44}, 0x1, 0x0, 0x0, 0x200408c4}, 0x4000001)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x2c)
ioctl$SG_SET_TIMEOUT(r4, 0x2201, &(0x7f0000000080)=0x1f)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:57:56 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2765.440521] FAULT_INJECTION: forcing a failure.
[ 2765.440521] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2765.441867] CPU: 0 UID: 0 PID: 27688 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2765.441889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2765.441899] Call Trace:
[ 2765.441905]  <TASK>
[ 2765.441912]  dump_stack_lvl+0xfa/0x120
[ 2765.441936]  should_fail_ex+0x4d7/0x5e0
[ 2765.441961]  should_fail_alloc_page+0xe0/0x110
[ 2765.441985]  prepare_alloc_pages+0x1eb/0x550
[ 2765.442011]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2765.442036]  ? relay_open+0x625/0xa70
[ 2765.442051]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2765.442077]  ? do_syscall_64+0xbf/0x390
[ 2765.442096]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2765.442114]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2765.442147]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2765.442179]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2765.442203]  ? do_raw_spin_lock+0x123/0x260
[ 2765.442234]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2765.442262]  ? policy_nodemask+0xeb/0x4e0
[ 2765.442291]  alloc_pages_mpol+0xed/0x340
[ 2765.442317]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2765.442341]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2765.442360]  ? trace_kmalloc+0x1f/0xb0
[ 2765.442377]  ? __kmalloc_noprof+0x274/0x680
[ 2765.442405]  alloc_pages_noprof+0x9d/0x180
[ 2765.442435]  relay_open_buf.part.0+0x26f/0xc70
[ 2765.442466]  relay_open+0x625/0xa70
[ 2765.442484]  ? debugfs_create_file_full+0x41/0x60
[ 2765.442513]  do_blk_trace_setup+0x4ba/0xc30
[ 2765.442543]  blk_trace_setup+0xdc/0x1b0
[ 2765.442568]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2765.442591]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2765.442612]  ? proc_fail_nth_write+0x97/0x220
[ 2765.442643]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2765.442674]  sg_ioctl+0x69d/0x2720
[ 2765.442701]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2765.442722]  ? __pfx_sg_ioctl+0x10/0x10
[ 2765.442742]  ? __fget_files+0x34/0x3b0
[ 2765.442760]  ? find_held_lock+0x2b/0x80
[ 2765.442777]  ? __fget_files+0x203/0x3b0
[ 2765.442800]  ? lock_release+0xc8/0x290
[ 2765.442831]  ? selinux_file_ioctl+0xb9/0x280
[ 2765.442850]  ? __pfx_sg_ioctl+0x10/0x10
[ 2765.442874]  __x64_sys_ioctl+0x18f/0x210
[ 2765.442902]  do_syscall_64+0xbf/0x390
[ 2765.442923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2765.442939] RIP: 0033:0x7fa15dc46b19
[ 2765.442951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2765.442968] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2765.442984] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2765.442995] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2765.443005] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2765.443014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2765.443023] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2765.443051]  </TASK>
[ 2765.443357] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2765.487067] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2765.503073] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2765.504018] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:57:57 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 53)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:57:57 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:57:57 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2765.692052] FAULT_INJECTION: forcing a failure.
[ 2765.692052] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2765.693906] CPU: 1 UID: 0 PID: 27780 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2765.693936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2765.693949] Call Trace:
[ 2765.693957]  <TASK>
[ 2765.693967]  dump_stack_lvl+0xfa/0x120
[ 2765.693999]  should_fail_ex+0x4d7/0x5e0
[ 2765.694032]  should_fail_alloc_page+0xe0/0x110
[ 2765.694067]  prepare_alloc_pages+0x1eb/0x550
[ 2765.694104]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2765.694138]  ? relay_open+0x625/0xa70
[ 2765.694160]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2765.694193]  ? do_syscall_64+0xbf/0x390
[ 2765.694219]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2765.694243]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2765.694287]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2765.694331]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2765.694362]  ? do_raw_spin_lock+0x123/0x260
[ 2765.694404]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2765.694442]  ? policy_nodemask+0xeb/0x4e0
[ 2765.694481]  alloc_pages_mpol+0xed/0x340
[ 2765.694517]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2765.694552]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2765.694575]  ? trace_kmalloc+0x1f/0xb0
[ 2765.694599]  ? __kmalloc_noprof+0x274/0x680
[ 2765.694638]  alloc_pages_noprof+0x9d/0x180
[ 2765.694677]  relay_open_buf.part.0+0x26f/0xc70
[ 2765.694717]  relay_open+0x625/0xa70
[ 2765.694743]  ? debugfs_create_file_full+0x41/0x60
[ 2765.694791]  do_blk_trace_setup+0x4ba/0xc30
[ 2765.694833]  blk_trace_setup+0xdc/0x1b0
[ 2765.694868]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2765.694903]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2765.694931]  ? proc_fail_nth_write+0x97/0x220
[ 2765.694974]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2765.695018]  sg_ioctl+0x69d/0x2720
[ 2765.695055]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2765.695086]  ? __pfx_sg_ioctl+0x10/0x10
[ 2765.695117]  ? __fget_files+0x34/0x3b0
[ 2765.695144]  ? find_held_lock+0x2b/0x80
[ 2765.695167]  ? __fget_files+0x203/0x3b0
[ 2765.695191]  ? lock_release+0xc8/0x290
[ 2765.695233]  ? selinux_file_ioctl+0xb9/0x280
[ 2765.695260]  ? __pfx_sg_ioctl+0x10/0x10
[ 2765.695303]  __x64_sys_ioctl+0x18f/0x210
[ 2765.695344]  do_syscall_64+0xbf/0x390
[ 2765.695374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2765.695395] RIP: 0033:0x7fa15dc46b19
[ 2765.695413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2765.695435] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2765.695458] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2765.695474] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2765.695487] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2765.695500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2765.695513] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2765.695551]  </TASK>
01:58:06 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 54)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x55, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000040)="2aee7162a76254ba35601dd130a102667d6800a5029a00802d3f9599c09c1c5207e20dffff35e0e04220902a5abb16c64baf10103b87f8a20b541f2f97ed82a361117fe75765d0381116a5337c5e1be5bdc459904c", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:06 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r1)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:58:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

01:58:06 executing program 2:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r0, 0x400, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x6b}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40004}, 0x20000800)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:06 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:06 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:06 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1267, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2775.288767] FAULT_INJECTION: forcing a failure.
[ 2775.288767] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2775.289805] CPU: 1 UID: 0 PID: 27806 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2775.289821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2775.289828] Call Trace:
[ 2775.289833]  <TASK>
[ 2775.289837]  dump_stack_lvl+0xfa/0x120
[ 2775.289857]  should_fail_ex+0x4d7/0x5e0
[ 2775.289876]  should_fail_alloc_page+0xe0/0x110
[ 2775.289894]  prepare_alloc_pages+0x1eb/0x550
[ 2775.289913]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2775.289931]  ? relay_open+0x625/0xa70
[ 2775.289943]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2775.289961]  ? do_syscall_64+0xbf/0x390
[ 2775.289976]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2775.289990]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2775.290014]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2775.290037]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2775.290054]  ? do_raw_spin_lock+0x123/0x260
[ 2775.290077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2775.290097]  ? policy_nodemask+0xeb/0x4e0
[ 2775.290118]  alloc_pages_mpol+0xed/0x340
[ 2775.290137]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2775.290155]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2775.290168]  ? trace_kmalloc+0x1f/0xb0
[ 2775.290181]  ? __kmalloc_noprof+0x274/0x680
[ 2775.290201]  alloc_pages_noprof+0x9d/0x180
[ 2775.290221]  relay_open_buf.part.0+0x26f/0xc70
[ 2775.290242]  relay_open+0x625/0xa70
[ 2775.290255]  ? debugfs_create_file_full+0x41/0x60
[ 2775.290277]  do_blk_trace_setup+0x4ba/0xc30
[ 2775.290299]  blk_trace_setup+0xdc/0x1b0
[ 2775.290317]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2775.290334]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2775.290349]  ? proc_fail_nth_write+0x97/0x220
[ 2775.290373]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2775.290395]  sg_ioctl+0x69d/0x2720
[ 2775.290416]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2775.290432]  ? __pfx_sg_ioctl+0x10/0x10
[ 2775.290447]  ? __fget_files+0x34/0x3b0
[ 2775.290460]  ? find_held_lock+0x2b/0x80
[ 2775.290472]  ? __fget_files+0x203/0x3b0
[ 2775.290485]  ? lock_release+0xc8/0x290
[ 2775.290508]  ? selinux_file_ioctl+0xb9/0x280
[ 2775.290522]  ? __pfx_sg_ioctl+0x10/0x10
[ 2775.290540]  __x64_sys_ioctl+0x18f/0x210
[ 2775.290561]  do_syscall_64+0xbf/0x390
[ 2775.290577]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2775.290588] RIP: 0033:0x7fa15dc46b19
[ 2775.290598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2775.290610] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2775.290622] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2775.290630] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2775.290637] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2775.290644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2775.290651] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2775.290671]  </TASK>
01:58:06 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 55)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2775.399459] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2775.400823] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2775.403087] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:58:06 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2775.404378] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:06 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x8, 0x163000)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffffffffffd, 0xca, 0x1, @buffer={0x0, 0xe5, &(0x7f00000000c0)=""/229}, &(0x7f0000000300)="d8433b78e02d4b7257e7bac53d54c710f75f5267734f3f00a7f087c6fd1f734b307bfeb674c983b07ac0415f757b3a38607ebffa472a9d3b7e3a8bc23f8093411a46b4c905a7c8d701f8851029cc13ac3f44e291b7d09f5e49d9bdfafce4f3dc6ec96770e1c8da34b2d83c8743ccf207a57cd917691dd6a538f2e5d94f4783c0347fc3e4a72a389826f1661df10875ba90b37441a74aaf58fbedeabbe02dee5c1db4d9f16a7c426711630ed70477a902589a705ad998e47f20895c6d25e81e5a35923f0a7db5f4dc821d", &(0x7f00000001c0)=""/170, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000400)})
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000008c0)={0x2, 0x0, 0x6, 0x1f, 0x24, &(0x7f00000004c0)="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"})
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f00000009c0))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_SET_RESERVED_SIZE(r4, 0x2275, &(0x7f0000000980)=0x1)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r2)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000900))
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10020, 0x0, 0x0})

[ 2775.451423] FAULT_INJECTION: forcing a failure.
[ 2775.451423] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2775.452553] CPU: 1 UID: 0 PID: 27848 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2775.452569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2775.452576] Call Trace:
[ 2775.452581]  <TASK>
[ 2775.452585]  dump_stack_lvl+0xfa/0x120
[ 2775.452605]  should_fail_ex+0x4d7/0x5e0
[ 2775.452623]  should_fail_alloc_page+0xe0/0x110
[ 2775.452642]  prepare_alloc_pages+0x1eb/0x550
[ 2775.452661]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2775.452679]  ? relay_open+0x625/0xa70
[ 2775.452691]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2775.452710]  ? do_syscall_64+0xbf/0x390
[ 2775.452725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2775.452739]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2775.452763]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2775.452791]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2775.452808]  ? do_raw_spin_lock+0x123/0x260
[ 2775.452835]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2775.452856]  ? policy_nodemask+0xeb/0x4e0
[ 2775.452877]  alloc_pages_mpol+0xed/0x340
[ 2775.452896]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2775.452914]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2775.452928]  ? trace_kmalloc+0x1f/0xb0
[ 2775.452941]  ? __kmalloc_noprof+0x274/0x680
[ 2775.452961]  alloc_pages_noprof+0x9d/0x180
[ 2775.452981]  relay_open_buf.part.0+0x26f/0xc70
[ 2775.453002]  relay_open+0x625/0xa70
[ 2775.453015]  ? debugfs_create_file_full+0x41/0x60
[ 2775.453037]  do_blk_trace_setup+0x4ba/0xc30
[ 2775.453059]  blk_trace_setup+0xdc/0x1b0
[ 2775.453077]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2775.453094]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2775.453110]  ? proc_fail_nth_write+0x97/0x220
[ 2775.453133]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2775.453156]  sg_ioctl+0x69d/0x2720
[ 2775.453176]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2775.453193]  ? __pfx_sg_ioctl+0x10/0x10
[ 2775.453207]  ? __fget_files+0x34/0x3b0
[ 2775.453221]  ? find_held_lock+0x2b/0x80
[ 2775.453234]  ? __fget_files+0x203/0x3b0
[ 2775.453246]  ? lock_release+0xc8/0x290
[ 2775.453269]  ? selinux_file_ioctl+0xb9/0x280
[ 2775.453284]  ? __pfx_sg_ioctl+0x10/0x10
[ 2775.453301]  __x64_sys_ioctl+0x18f/0x210
[ 2775.453323]  do_syscall_64+0xbf/0x390
[ 2775.453338]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2775.453349] RIP: 0033:0x7fa15dc46b19
[ 2775.453359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2775.453371] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2775.453383] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2775.453391] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2775.453398] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2775.453405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2775.453412] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2775.453432]  </TASK>
01:58:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

01:58:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$KDFONTOP_COPY(r0, 0x4b72, &(0x7f0000000080)={0x3, 0x1, 0x8, 0x18, 0x74, &(0x7f0000000300)})
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={<r5=>0xffffffffffffffff, 0x7, 0x4, 0x4})
ioctl$TIOCSERGETLSR(r5, 0x5459, &(0x7f0000000100))
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)=0x1)

[ 2775.640039] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2775.640767] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2775.647663] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2775.649035] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x8, 0x163000)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0xfffffffffffffffd, 0xca, 0x1, @buffer={0x0, 0xe5, &(0x7f00000000c0)=""/229}, &(0x7f0000000300)="d8433b78e02d4b7257e7bac53d54c710f75f5267734f3f00a7f087c6fd1f734b307bfeb674c983b07ac0415f757b3a38607ebffa472a9d3b7e3a8bc23f8093411a46b4c905a7c8d701f8851029cc13ac3f44e291b7d09f5e49d9bdfafce4f3dc6ec96770e1c8da34b2d83c8743ccf207a57cd917691dd6a538f2e5d94f4783c0347fc3e4a72a389826f1661df10875ba90b37441a74aaf58fbedeabbe02dee5c1db4d9f16a7c426711630ed70477a902589a705ad998e47f20895c6d25e81e5a35923f0a7db5f4dc821d", &(0x7f00000001c0)=""/170, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000400)})
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000008c0)={0x2, 0x0, 0x6, 0x1f, 0x24, &(0x7f00000004c0)="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"})
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f00000009c0))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_SET_RESERVED_SIZE(r4, 0x2275, &(0x7f0000000980)=0x1)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r2)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000900))
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10020, 0x0, 0x0})

01:58:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

01:58:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1274, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:58:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 56)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
pipe(&(0x7f0000000500)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SG_GET_REQUEST_TABLE(r2, 0x2286, &(0x7f0000000540))
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r4, 0xc0189372, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r5=>r0, {0x6}}, './file0\x00'})
ioctl$TCSETAW(r5, 0x5407, &(0x7f00000004c0)={0x7, 0x2, 0x5, 0x7, 0x2, "96e7c763ec16110b"})
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000000080))
r6 = dup2(r1, r0)
r7 = creat(&(0x7f00000000c0)='./file0\x00', 0x80)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffe, 0xe3, 0x20, @buffer={0x0, 0x6c, &(0x7f0000000100)=""/108}, &(0x7f0000000180)="d5e9bc1e463e6b6de5201c5e0b7b8c06cbceba406c115e930e6f805163edd083f7d0d1e360475fed7cd370ac60e63ad33f32218be53e0e0c7c422d5fc42292831c4215831d93e147ddb0c5843c67378a3014b61b0f13adf080bfaf3cbd7d28f9a5009bc00f77d50ee2508e8acf2f725836964fa9f1a6c1690720617df3e465b9d50eac289c9a57516930d2f2d1416422d4919efde9879e3adbe65cff7353705ff6cc1fe33e22625504482dd4c291a644babf4094eabe12641e3aed9dcc20690bbd0bb9571a6d318f98841aa10cc7daab14207b140c9c7f7bb23eef8f58231b8d1f90e3", &(0x7f0000000300)=""/183, 0x35a2, 0x11, 0x1, &(0x7f00000003c0)})
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2786.111654] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2786.112961] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2786.129214] FAULT_INJECTION: forcing a failure.
[ 2786.129214] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2786.131090] CPU: 0 UID: 0 PID: 27956 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2786.131119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2786.131132] Call Trace:
[ 2786.131139]  <TASK>
[ 2786.131147]  dump_stack_lvl+0xfa/0x120
[ 2786.131178]  should_fail_ex+0x4d7/0x5e0
[ 2786.131209]  should_fail_alloc_page+0xe0/0x110
[ 2786.131241]  prepare_alloc_pages+0x1eb/0x550
[ 2786.131276]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2786.131308]  ? relay_open+0x625/0xa70
[ 2786.131328]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2786.131361]  ? do_syscall_64+0xbf/0x390
[ 2786.131386]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.131414]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2786.131450]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2786.131488]  ? mark_held_locks+0x49/0x80
[ 2786.131547]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.131585]  ? policy_nodemask+0xeb/0x4e0
[ 2786.131623]  alloc_pages_mpol+0xed/0x340
[ 2786.131657]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2786.131690]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2786.131714]  ? trace_kmalloc+0x1f/0xb0
[ 2786.131737]  ? __kmalloc_noprof+0x274/0x680
[ 2786.131775]  alloc_pages_noprof+0x9d/0x180
[ 2786.131818]  relay_open_buf.part.0+0x26f/0xc70
[ 2786.131857]  relay_open+0x625/0xa70
[ 2786.131881]  ? debugfs_create_file_full+0x41/0x60
[ 2786.131920]  do_blk_trace_setup+0x4ba/0xc30
[ 2786.131961]  blk_trace_setup+0xdc/0x1b0
[ 2786.131995]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2786.132027]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2786.132056]  ? proc_fail_nth_write+0x97/0x220
[ 2786.132098]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.132140]  sg_ioctl+0x69d/0x2720
[ 2786.132176]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2786.132205]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.132232]  ? __fget_files+0x34/0x3b0
[ 2786.132256]  ? find_held_lock+0x2b/0x80
[ 2786.132279]  ? __fget_files+0x203/0x3b0
[ 2786.132303]  ? lock_release+0xc8/0x290
[ 2786.132344]  ? selinux_file_ioctl+0xb9/0x280
[ 2786.132370]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.132403]  __x64_sys_ioctl+0x18f/0x210
[ 2786.132444]  do_syscall_64+0xbf/0x390
[ 2786.132474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.132495] RIP: 0033:0x7fa15dc46b19
[ 2786.132513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2786.132535] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2786.132556] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2786.132570] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2786.132584] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2786.132597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2786.132609] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2786.132647]  </TASK>
[ 2786.200919] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2786.202215] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 57)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000})

01:58:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000400)={0x0, 0xfffffffffffffffe, 0x56, 0x8, @scatter={0x1, 0x0, &(0x7f0000000200)=[{&(0x7f0000000100)=""/222, 0xde}]}, &(0x7f0000000300)="efcb31f202d24d942b595f06af799b58852a179dbd27f3ee95217276567261a623f63bb99bda08cd00d433484ec4fd47e21aaf2f097468c0f79a4b8a0cfd1bf00aae4273b64642a60982b50c1123ae782e4a20c920b1", &(0x7f0000000380)=""/85, 0x9, 0x20, 0x1, &(0x7f0000000240)})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$TIOCGPTPEER(r2, 0x5441, 0x1)
r4 = dup2(r1, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
pread64(r7, &(0x7f0000000040)=""/149, 0x95, 0x100)

01:58:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0}) (fail_nth: 1)

[ 2786.457271] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2786.458550] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2786.468958] FAULT_INJECTION: forcing a failure.
[ 2786.468958] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2786.470954] CPU: 1 UID: 0 PID: 28070 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2786.470986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2786.471000] Call Trace:
[ 2786.471008]  <TASK>
[ 2786.471017]  dump_stack_lvl+0xfa/0x120
[ 2786.471050]  should_fail_ex+0x4d7/0x5e0
[ 2786.471084]  should_fail_alloc_page+0xe0/0x110
[ 2786.471118]  prepare_alloc_pages+0x1eb/0x550
[ 2786.471155]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2786.471189]  ? relay_open+0x625/0xa70
[ 2786.471211]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2786.471247]  ? do_syscall_64+0xbf/0x390
[ 2786.471274]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.471300]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2786.471346]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2786.471393]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2786.471427]  ? do_raw_spin_lock+0x123/0x260
[ 2786.471471]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.471511]  ? policy_nodemask+0xeb/0x4e0
[ 2786.471566]  alloc_pages_mpol+0xed/0x340
[ 2786.471602]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2786.471638]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2786.471663]  ? trace_kmalloc+0x1f/0xb0
[ 2786.471689]  ? __kmalloc_noprof+0x274/0x680
[ 2786.471729]  alloc_pages_noprof+0x9d/0x180
[ 2786.471768]  relay_open_buf.part.0+0x26f/0xc70
[ 2786.471817]  relay_open+0x625/0xa70
[ 2786.471842]  ? debugfs_create_file_full+0x41/0x60
[ 2786.471884]  do_blk_trace_setup+0x4ba/0xc30
[ 2786.471928]  blk_trace_setup+0xdc/0x1b0
[ 2786.471965]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2786.471999]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2786.472030]  ? proc_fail_nth_write+0x97/0x220
[ 2786.472075]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.472120]  sg_ioctl+0x69d/0x2720
[ 2786.472158]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2786.472190]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.472219]  ? __fget_files+0x34/0x3b0
[ 2786.472245]  ? find_held_lock+0x2b/0x80
[ 2786.472269]  ? __fget_files+0x203/0x3b0
[ 2786.472294]  ? lock_release+0xc8/0x290
[ 2786.472339]  ? selinux_file_ioctl+0xb9/0x280
[ 2786.472367]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.472402]  __x64_sys_ioctl+0x18f/0x210
[ 2786.472444]  do_syscall_64+0xbf/0x390
[ 2786.472474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.472498] RIP: 0033:0x7fa15dc46b19
[ 2786.472516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2786.472539] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2786.472562] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2786.472578] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2786.472592] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2786.472605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2786.472619] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2786.472659]  </TASK>
01:58:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

[ 2786.565070] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2786.566422] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:18 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1275, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2786.636180] FAULT_INJECTION: forcing a failure.
[ 2786.636180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2786.638097] CPU: 0 UID: 0 PID: 28081 Comm: syz-executor.7 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2786.638127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2786.638140] Call Trace:
[ 2786.638147]  <TASK>
[ 2786.638156]  dump_stack_lvl+0xfa/0x120
[ 2786.638187]  should_fail_ex+0x4d7/0x5e0
[ 2786.638218]  _copy_from_user+0x30/0xd0
[ 2786.638246]  get_sg_io_hdr+0x5c9/0x830
[ 2786.638272]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2786.638305]  ? do_raw_write_lock+0x11c/0x3a0
[ 2786.638329]  ? find_held_lock+0x2b/0x80
[ 2786.638352]  ? __pfx_get_sg_io_hdr+0x10/0x10
[ 2786.638381]  ? _raw_write_unlock_irqrestore+0x2c/0x50
[ 2786.638404]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 2786.638435]  ? _raw_write_unlock_irqrestore+0x2c/0x50
[ 2786.638457]  ? sg_add_request+0x25e/0x320
[ 2786.638491]  sg_new_write.isra.0+0x140/0x9d0
[ 2786.638528]  ? __pfx_sg_new_write.isra.0+0x10/0x10
[ 2786.638561]  ? lock_acquire+0x15e/0x2f0
[ 2786.638602]  ? perf_trace_lock+0xb5/0x5d0
[ 2786.638637]  ? scsi_block_when_processing_errors+0x263/0x430
[ 2786.638670]  ? __pfx_scsi_block_when_processing_errors+0x10/0x10
[ 2786.638701]  ? find_held_lock+0x2b/0x80
[ 2786.638725]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2786.638755]  ? lock_is_held_type+0x9e/0x120
[ 2786.638780]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.638829]  sg_ioctl+0x9ea/0x2720
[ 2786.638864]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2786.638894]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.638921]  ? __fget_files+0x34/0x3b0
[ 2786.638945]  ? find_held_lock+0x2b/0x80
[ 2786.638968]  ? __fget_files+0x203/0x3b0
[ 2786.638991]  ? lock_release+0xc8/0x290
[ 2786.639032]  ? selinux_file_ioctl+0xb9/0x280
[ 2786.639058]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.639091]  __x64_sys_ioctl+0x18f/0x210
[ 2786.639130]  do_syscall_64+0xbf/0x390
[ 2786.639158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.639181] RIP: 0033:0x7f56aa17eb19
[ 2786.639198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2786.639219] RSP: 002b:00007f56a76f4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2786.639241] RAX: ffffffffffffffda RBX: 00007f56aa291f60 RCX: 00007f56aa17eb19
[ 2786.639255] RDX: 0000000020001580 RSI: 0000000000002285 RDI: 0000000000000003
[ 2786.639269] RBP: 00007f56a76f41d0 R08: 0000000000000000 R09: 0000000000000000
[ 2786.639282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2786.639294] R13: 00007ffe80821a7f R14: 00007f56a76f4300 R15: 0000000000022000
[ 2786.639331]  </TASK>
01:58:18 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, 0x0, 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:18 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 58)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2786.803898] FAULT_INJECTION: forcing a failure.
[ 2786.803898] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2786.805903] CPU: 0 UID: 0 PID: 28121 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2786.805934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2786.805946] Call Trace:
[ 2786.805954]  <TASK>
[ 2786.805962]  dump_stack_lvl+0xfa/0x120
[ 2786.805993]  should_fail_ex+0x4d7/0x5e0
[ 2786.806025]  should_fail_alloc_page+0xe0/0x110
[ 2786.806058]  prepare_alloc_pages+0x1eb/0x550
[ 2786.806093]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2786.806125]  ? relay_open+0x625/0xa70
[ 2786.806146]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2786.806180]  ? do_syscall_64+0xbf/0x390
[ 2786.806204]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.806229]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2786.806265]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2786.806300]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2786.806359]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.806397]  ? policy_nodemask+0xeb/0x4e0
[ 2786.806436]  alloc_pages_mpol+0xed/0x340
[ 2786.806470]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2786.806504]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2786.806528]  ? trace_kmalloc+0x1f/0xb0
[ 2786.806552]  ? __kmalloc_noprof+0x274/0x680
[ 2786.806590]  alloc_pages_noprof+0x9d/0x180
[ 2786.806627]  relay_open_buf.part.0+0x26f/0xc70
[ 2786.806667]  relay_open+0x625/0xa70
[ 2786.806690]  ? debugfs_create_file_full+0x41/0x60
[ 2786.806734]  do_blk_trace_setup+0x4ba/0xc30
[ 2786.806775]  blk_trace_setup+0xdc/0x1b0
[ 2786.806816]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2786.806849]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2786.806877]  ? proc_fail_nth_write+0x97/0x220
[ 2786.806919]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2786.806962]  sg_ioctl+0x69d/0x2720
[ 2786.806997]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2786.807026]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.807053]  ? __fget_files+0x34/0x3b0
[ 2786.807077]  ? find_held_lock+0x2b/0x80
[ 2786.807100]  ? __fget_files+0x203/0x3b0
[ 2786.807124]  ? lock_release+0xc8/0x290
[ 2786.807166]  ? selinux_file_ioctl+0xb9/0x280
[ 2786.807191]  ? __pfx_sg_ioctl+0x10/0x10
[ 2786.807224]  __x64_sys_ioctl+0x18f/0x210
[ 2786.807263]  do_syscall_64+0xbf/0x390
[ 2786.807291]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2786.807312] RIP: 0033:0x7fa15dc46b19
[ 2786.807329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2786.807351] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2786.807373] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2786.807388] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2786.807401] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2786.807414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2786.807427] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2786.807464]  </TASK>
01:58:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0}) (fail_nth: 2)

01:58:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:29 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2201, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:58:29 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:29 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:29 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 59)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

01:58:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000d40)={0x0, 0xfffffffffffffffb, 0x60, 0x3f, @scatter={0xa, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/36, 0x24}, {&(0x7f0000000600)=""/202, 0xca}, {&(0x7f0000002600)=""/4096, 0x1000}, {&(0x7f0000003600)=""/4096, 0x1000}, {&(0x7f0000000700)=""/170, 0xaa}, {&(0x7f00000007c0)=""/133, 0x85}, {&(0x7f0000000880)=""/127, 0x7f}, {&(0x7f0000000900)=""/168, 0xa8}, {&(0x7f00000009c0)=""/217, 0xd9}]}, &(0x7f0000000b80)="c7191f9cb09ddc8b1cc8324f8268b7ffc8f29cc07f0c97539936f1bb9d13de5a85b6dac53779b234089d15b1fcf162ad1547408e672de3ad0c485bcb646b0d6e5cee00446fe859dacdff39be34b70a88134b1da4f70f78cb4c7a03dec6ef8b87", &(0x7f0000000c00)=""/240, 0x2, 0x23, 0x0, &(0x7f0000000d00)})
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r3)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f0000000540)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000001c0)={<r7=>0x0}, &(0x7f0000000200)=0xc)
r8 = signalfd4(0xffffffffffffffff, &(0x7f0000000240)={[0x100000001]}, 0x8, 0x80800)
perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x6, 0x1, 0x5, 0x3, 0x0, 0x6, 0x20446, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000, 0x1, @perf_bp={&(0x7f0000000100), 0x3}, 0x4, 0x8, 0x1, 0x7, 0x6, 0xbf, 0x1ff, 0x0, 0x80000000, 0x0, 0x20}, r7, 0x3f, r8, 0x2)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x4, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a70100ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x234, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x80}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x3f}, {0x6, 0x16, 0x7f}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8000}, {0x6, 0x16, 0x8917}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x573a}, {0x6, 0x16, 0x100}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8}, {0x6, 0x16, 0x400}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0xff}, {0x6, 0x16, 0x5}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x101}, {0x6, 0x16, 0xfff7}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0xc9e}, {0x6, 0x16, 0x80}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x2}, {0x6, 0x16, 0x400}, {0x5}}]}, 0x234}}, 0x20000080)

[ 2798.075340] FAULT_INJECTION: forcing a failure.
[ 2798.075340] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2798.076383] CPU: 0 UID: 0 PID: 28211 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2798.076400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2798.076408] Call Trace:
[ 2798.076413]  <TASK>
[ 2798.076418]  dump_stack_lvl+0xfa/0x120
[ 2798.076437]  should_fail_ex+0x4d7/0x5e0
[ 2798.076456]  should_fail_alloc_page+0xe0/0x110
[ 2798.076475]  prepare_alloc_pages+0x1eb/0x550
[ 2798.076494]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2798.076512]  ? relay_open+0x625/0xa70
[ 2798.076525]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2798.076544]  ? do_syscall_64+0xbf/0x390
[ 2798.076558]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.076573]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2798.076597]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2798.076621]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2798.076639]  ? do_raw_spin_lock+0x123/0x260
[ 2798.076662]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2798.076683]  ? policy_nodemask+0xeb/0x4e0
[ 2798.076705]  alloc_pages_mpol+0xed/0x340
[ 2798.076724]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2798.076742]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2798.076756]  ? trace_kmalloc+0x1f/0xb0
[ 2798.076770]  ? __kmalloc_noprof+0x274/0x680
[ 2798.076794]  alloc_pages_noprof+0x9d/0x180
[ 2798.076814]  relay_open_buf.part.0+0x26f/0xc70
[ 2798.076836]  relay_open+0x625/0xa70
[ 2798.076849]  ? debugfs_create_file_full+0x41/0x60
[ 2798.076872]  do_blk_trace_setup+0x4ba/0xc30
[ 2798.076894]  blk_trace_setup+0xdc/0x1b0
[ 2798.076913]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2798.076930]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2798.076945]  ? proc_fail_nth_write+0x97/0x220
[ 2798.076969]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2798.076991]  sg_ioctl+0x69d/0x2720
[ 2798.077011]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2798.077028]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.077043]  ? __fget_files+0x34/0x3b0
[ 2798.077056]  ? find_held_lock+0x2b/0x80
[ 2798.077069]  ? __fget_files+0x203/0x3b0
[ 2798.077082]  ? lock_release+0xc8/0x290
[ 2798.077104]  ? selinux_file_ioctl+0xb9/0x280
[ 2798.077118]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.077136]  __x64_sys_ioctl+0x18f/0x210
[ 2798.077158]  do_syscall_64+0xbf/0x390
[ 2798.077173]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.077185] RIP: 0033:0x7fa15dc46b19
[ 2798.077194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2798.077206] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2798.077218] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2798.077226] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2798.077234] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2798.077241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2798.077248] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2798.077268]  </TASK>
[ 2798.098345] FAULT_INJECTION: forcing a failure.
[ 2798.098345] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2798.101138] CPU: 1 UID: 0 PID: 28214 Comm: syz-executor.7 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2798.101170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2798.101184] Call Trace:
[ 2798.101191]  <TASK>
[ 2798.101200]  dump_stack_lvl+0xfa/0x120
[ 2798.101231]  should_fail_ex+0x4d7/0x5e0
[ 2798.101263]  _copy_from_user+0x30/0xd0
[ 2798.101293]  sg_new_write.isra.0+0x3db/0x9d0
[ 2798.101331]  ? __pfx_sg_new_write.isra.0+0x10/0x10
[ 2798.101363]  ? lock_acquire+0x15e/0x2f0
[ 2798.101407]  ? perf_trace_lock+0xb5/0x5d0
[ 2798.101442]  ? scsi_block_when_processing_errors+0x263/0x430
[ 2798.101476]  ? __pfx_scsi_block_when_processing_errors+0x10/0x10
[ 2798.101507]  ? find_held_lock+0x2b/0x80
[ 2798.101531]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2798.101562]  ? lock_is_held_type+0x9e/0x120
[ 2798.101587]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2798.101630]  sg_ioctl+0x9ea/0x2720
[ 2798.101667]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2798.101711]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.101749]  ? __fget_files+0x34/0x3b0
[ 2798.101774]  ? find_held_lock+0x2b/0x80
[ 2798.101805]  ? __fget_files+0x203/0x3b0
[ 2798.101829]  ? lock_release+0xc8/0x290
[ 2798.101870]  ? selinux_file_ioctl+0xb9/0x280
[ 2798.101895]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.101928]  __x64_sys_ioctl+0x18f/0x210
[ 2798.101967]  do_syscall_64+0xbf/0x390
[ 2798.101995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.102018] RIP: 0033:0x7f56aa17eb19
[ 2798.102036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
01:58:29 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 60)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2798.102057] RSP: 002b:00007f56a76f4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2798.102078] RAX: ffffffffffffffda RBX: 00007f56aa291f60 RCX: 00007f56aa17eb19
[ 2798.102093] RDX: 0000000020001580 RSI: 0000000000002285 RDI: 0000000000000003
[ 2798.102106] RBP: 00007f56a76f41d0 R08: 0000000000000000 R09: 0000000000000000
[ 2798.102120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2798.102132] R13: 00007ffe80821a7f R14: 00007f56a76f4300 R15: 0000000000022000
[ 2798.102170]  </TASK>
[ 2798.138504] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.139270] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2798.159197] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.160376] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2798.190552] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.191248] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2798.199037] FAULT_INJECTION: forcing a failure.
[ 2798.199037] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2798.200069] CPU: 0 UID: 0 PID: 28227 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2798.200086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2798.200094] Call Trace:
[ 2798.200099]  <TASK>
[ 2798.200105]  dump_stack_lvl+0xfa/0x120
[ 2798.200125]  should_fail_ex+0x4d7/0x5e0
[ 2798.200145]  should_fail_alloc_page+0xe0/0x110
[ 2798.200165]  prepare_alloc_pages+0x1eb/0x550
[ 2798.200184]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2798.200202]  ? relay_open+0x625/0xa70
[ 2798.200215]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2798.200234]  ? do_syscall_64+0xbf/0x390
[ 2798.200249]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.200263]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2798.200288]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2798.200312]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2798.200329]  ? do_raw_spin_lock+0x123/0x260
[ 2798.200353]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2798.200375]  ? policy_nodemask+0xeb/0x4e0
[ 2798.200397]  alloc_pages_mpol+0xed/0x340
[ 2798.200415]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2798.200434]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2798.200447]  ? trace_kmalloc+0x1f/0xb0
[ 2798.200461]  ? __kmalloc_noprof+0x274/0x680
[ 2798.200481]  alloc_pages_noprof+0x9d/0x180
[ 2798.200502]  relay_open_buf.part.0+0x26f/0xc70
[ 2798.200523]  relay_open+0x625/0xa70
[ 2798.200536]  ? debugfs_create_file_full+0x41/0x60
[ 2798.200558]  do_blk_trace_setup+0x4ba/0xc30
[ 2798.200580]  blk_trace_setup+0xdc/0x1b0
[ 2798.200598]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2798.200616]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2798.200631]  ? proc_fail_nth_write+0x97/0x220
[ 2798.200655]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2798.200678]  sg_ioctl+0x69d/0x2720
[ 2798.200698]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2798.200716]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.200731]  ? __fget_files+0x34/0x3b0
[ 2798.200744]  ? find_held_lock+0x2b/0x80
[ 2798.200757]  ? __fget_files+0x203/0x3b0
[ 2798.200770]  ? lock_release+0xc8/0x290
[ 2798.200797]  ? selinux_file_ioctl+0xb9/0x280
[ 2798.200811]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.200833]  __x64_sys_ioctl+0x18f/0x210
[ 2798.200855]  do_syscall_64+0xbf/0x390
[ 2798.200870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.200882] RIP: 0033:0x7fa15dc46b19
[ 2798.200892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2798.200904] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2798.200916] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2798.200924] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2798.200931] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2798.200938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2798.200945] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2798.200965]  </TASK>
01:58:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

01:58:29 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0}) (fail_nth: 3)

01:58:29 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x501102, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2798.337321] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.338026] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2798.341072] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.341730] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2798.342418] FAULT_INJECTION: forcing a failure.
[ 2798.342418] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2798.343514] CPU: 0 UID: 0 PID: 28280 Comm: syz-executor.7 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2798.343531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2798.343538] Call Trace:
[ 2798.343543]  <TASK>
[ 2798.343547]  dump_stack_lvl+0xfa/0x120
[ 2798.343568]  should_fail_ex+0x4d7/0x5e0
[ 2798.343586]  _copy_to_user+0x32/0xd0
[ 2798.343603]  put_sg_io_hdr+0x50a/0x660
[ 2798.343618]  ? __pfx_put_sg_io_hdr+0x10/0x10
[ 2798.343632]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2798.343652]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2798.343688]  ? find_held_lock+0x2b/0x80
[ 2798.343708]  sg_new_read+0x2f8/0x5f0
[ 2798.343730]  ? _raw_write_unlock_irq+0x23/0x40
[ 2798.343751]  sg_ioctl+0x2075/0x2720
[ 2798.343769]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2798.343790]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.343805]  ? __fget_files+0x34/0x3b0
[ 2798.343825]  ? __fget_files+0x203/0x3b0
[ 2798.343838]  ? lock_release+0xc8/0x290
[ 2798.343861]  ? selinux_file_ioctl+0xb9/0x280
[ 2798.343875]  ? __pfx_sg_ioctl+0x10/0x10
[ 2798.343893]  __x64_sys_ioctl+0x18f/0x210
[ 2798.343915]  do_syscall_64+0xbf/0x390
[ 2798.343931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2798.343944] RIP: 0033:0x7f56aa17eb19
[ 2798.343954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2798.343966] RSP: 002b:00007f56a76f4188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2798.343978] RAX: ffffffffffffffda RBX: 00007f56aa291f60 RCX: 00007f56aa17eb19
[ 2798.343987] RDX: 0000000020001580 RSI: 0000000000002285 RDI: 0000000000000003
[ 2798.343994] RBP: 00007f56a76f41d0 R08: 0000000000000000 R09: 0000000000000000
[ 2798.344002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2798.344010] R13: 00007ffe80821a7f R14: 00007f56a76f4300 R15: 0000000000022000
[ 2798.344030]  </TASK>
01:58:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, r0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

[ 2798.435868] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.436548] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2798.442754] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2798.443431] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:39 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:39 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2202, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:58:39 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r3, 0x0, 0x42, &(0x7f0000000040)={'ah\x00'}, &(0x7f0000000080)=0x1e)
ioctl$TIOCPKT(r2, 0x5420, &(0x7f00000000c0)=0x13c3fb65)

01:58:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

01:58:39 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0}) (fail_nth: 4)

01:58:39 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:39 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 61)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2808.052588] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.053381] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2808.056678] FAULT_INJECTION: forcing a failure.
[ 2808.056678] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2808.057662] CPU: 1 UID: 0 PID: 28351 Comm: syz-executor.7 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2808.057679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2808.057688] Call Trace:
[ 2808.057697]  <TASK>
[ 2808.057702]  dump_stack_lvl+0xfa/0x120
[ 2808.057722]  should_fail_ex+0x4d7/0x5e0
[ 2808.057740]  _copy_to_user+0x32/0xd0
[ 2808.057757]  simple_read_from_buffer+0xe0/0x180
[ 2808.057780]  proc_fail_nth_read+0x18a/0x240
[ 2808.057798]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2808.057815]  ? security_file_permission+0x22/0x90
[ 2808.057832]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2808.057848]  vfs_read+0x1eb/0xc70
[ 2808.057867]  ? __pfx_vfs_read+0x10/0x10
[ 2808.057881]  ? lock_release+0xc8/0x290
[ 2808.057902]  ? __fget_files+0x20d/0x3b0
[ 2808.057924]  ksys_read+0x121/0x240
[ 2808.057938]  ? __pfx_ksys_read+0x10/0x10
[ 2808.057959]  do_syscall_64+0xbf/0x390
[ 2808.057976]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2808.057989] RIP: 0033:0x7f56aa13169c
[ 2808.057998] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2808.058009] RSP: 002b:00007f56a76f4170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2808.058021] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f56aa13169c
[ 2808.058029] RDX: 000000000000000f RSI: 00007f56a76f41e0 RDI: 0000000000000005
[ 2808.058036] RBP: 00007f56a76f41d0 R08: 0000000000000000 R09: 0000000000000000
[ 2808.058043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2808.058050] R13: 00007ffe80821a7f R14: 00007f56a76f4300 R15: 0000000000022000
[ 2808.058070]  </TASK>
[ 2808.071386] FAULT_INJECTION: forcing a failure.
[ 2808.071386] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2808.072535] CPU: 1 UID: 0 PID: 28352 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2808.072553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2808.072559] Call Trace:
[ 2808.072563]  <TASK>
[ 2808.072567]  dump_stack_lvl+0xfa/0x120
[ 2808.072581]  should_fail_ex+0x4d7/0x5e0
[ 2808.072597]  should_fail_alloc_page+0xe0/0x110
[ 2808.072614]  prepare_alloc_pages+0x1eb/0x550
[ 2808.072633]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2808.072651]  ? relay_open+0x625/0xa70
[ 2808.072663]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2808.072682]  ? do_syscall_64+0xbf/0x390
[ 2808.072694]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2808.072707]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2808.072730]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2808.072755]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2808.072772]  ? do_raw_spin_lock+0x123/0x260
[ 2808.072799]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2808.072820]  ? policy_nodemask+0xeb/0x4e0
[ 2808.072844]  alloc_pages_mpol+0xed/0x340
[ 2808.072862]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2808.072882]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2808.072895]  ? trace_kmalloc+0x1f/0xb0
[ 2808.072908]  ? __kmalloc_noprof+0x274/0x680
[ 2808.072928]  alloc_pages_noprof+0x9d/0x180
[ 2808.072948]  relay_open_buf.part.0+0x26f/0xc70
[ 2808.072969]  relay_open+0x625/0xa70
[ 2808.072982]  ? debugfs_create_file_full+0x41/0x60
[ 2808.073003]  do_blk_trace_setup+0x4ba/0xc30
[ 2808.073026]  blk_trace_setup+0xdc/0x1b0
[ 2808.073045]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2808.073062]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2808.073078]  ? proc_fail_nth_write+0x97/0x220
[ 2808.073099]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2808.073122]  sg_ioctl+0x69d/0x2720
[ 2808.073142]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2808.073160]  ? __pfx_sg_ioctl+0x10/0x10
[ 2808.073174]  ? __fget_files+0x34/0x3b0
[ 2808.073187]  ? find_held_lock+0x2b/0x80
[ 2808.073199]  ? __fget_files+0x203/0x3b0
[ 2808.073212]  ? lock_release+0xc8/0x290
[ 2808.073234]  ? selinux_file_ioctl+0xb9/0x280
[ 2808.073248]  ? __pfx_sg_ioctl+0x10/0x10
[ 2808.073267]  __x64_sys_ioctl+0x18f/0x210
[ 2808.073289]  do_syscall_64+0xbf/0x390
[ 2808.073304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2808.073316] RIP: 0033:0x7fa15dc46b19
[ 2808.073325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2808.073336] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2808.073347] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2808.073355] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2808.073362] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2808.073369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2808.073376] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2808.073396]  </TASK>
[ 2808.106901] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.107646] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2808.110513] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.111272] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

01:58:39 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2808.144210] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.145523] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2808.177718] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.178483] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:39 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 62)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:39 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:39 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = dup2(r0, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r1, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2808.281284] FAULT_INJECTION: forcing a failure.
[ 2808.281284] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2808.282513] CPU: 1 UID: 0 PID: 28468 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2808.282530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2808.282537] Call Trace:
[ 2808.282542]  <TASK>
[ 2808.282546]  dump_stack_lvl+0xfa/0x120
[ 2808.282566]  should_fail_ex+0x4d7/0x5e0
[ 2808.282584]  should_fail_alloc_page+0xe0/0x110
[ 2808.282602]  prepare_alloc_pages+0x1eb/0x550
[ 2808.282621]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2808.282638]  ? relay_open+0x625/0xa70
[ 2808.282651]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2808.282669]  ? do_syscall_64+0xbf/0x390
[ 2808.282683]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2808.282697]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2808.282721]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2808.282745]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2808.282762]  ? do_raw_spin_lock+0x123/0x260
[ 2808.282789]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2808.282810]  ? policy_nodemask+0xeb/0x4e0
[ 2808.282833]  alloc_pages_mpol+0xed/0x340
[ 2808.282852]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2808.282870]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2808.282883]  ? trace_kmalloc+0x1f/0xb0
[ 2808.282896]  ? __kmalloc_noprof+0x274/0x680
[ 2808.282916]  alloc_pages_noprof+0x9d/0x180
[ 2808.282936]  relay_open_buf.part.0+0x26f/0xc70
[ 2808.282957]  relay_open+0x625/0xa70
[ 2808.282969]  ? debugfs_create_file_full+0x41/0x60
[ 2808.282991]  do_blk_trace_setup+0x4ba/0xc30
[ 2808.283013]  blk_trace_setup+0xdc/0x1b0
[ 2808.283031]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2808.283048]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2808.283063]  ? proc_fail_nth_write+0x97/0x220
[ 2808.283087]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2808.283109]  sg_ioctl+0x69d/0x2720
[ 2808.283129]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2808.283146]  ? __pfx_sg_ioctl+0x10/0x10
[ 2808.283161]  ? __fget_files+0x34/0x3b0
[ 2808.283174]  ? find_held_lock+0x2b/0x80
[ 2808.283187]  ? __fget_files+0x203/0x3b0
[ 2808.283199]  ? lock_release+0xc8/0x290
[ 2808.283222]  ? selinux_file_ioctl+0xb9/0x280
[ 2808.283236]  ? __pfx_sg_ioctl+0x10/0x10
[ 2808.283253]  __x64_sys_ioctl+0x18f/0x210
[ 2808.283275]  do_syscall_64+0xbf/0x390
[ 2808.283290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2808.283301] RIP: 0033:0x7fa15dc46b19
[ 2808.283310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2808.283323] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2808.283336] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2808.283344] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2808.283351] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2808.283358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2808.283364] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2808.283385]  </TASK>
01:58:39 executing program 2:
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000200)={'filter\x00', 0x0, 0x3, 0x47, [0x9, 0x5, 0x70, 0xff, 0x778d, 0x5], 0x9, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000180)=""/71}, &(0x7f0000000700)=0x78)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000080)={0x62, 0x19, &(0x7f0000000300)="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"})
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2808.332856] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.333564] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2808.417370] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.418110] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2808.424300] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2808.424973] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:51 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 63)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:51 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
fcntl$getownex(r0, 0x10, &(0x7f0000000040))

01:58:51 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x1267, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:58:51 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2203, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:58:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

01:58:51 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2820.145003] FAULT_INJECTION: forcing a failure.
[ 2820.145003] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2820.146882] CPU: 1 UID: 0 PID: 28492 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2820.146911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2820.146924] Call Trace:
[ 2820.146932]  <TASK>
[ 2820.146940]  dump_stack_lvl+0xfa/0x120
[ 2820.146971]  should_fail_ex+0x4d7/0x5e0
[ 2820.147003]  should_fail_alloc_page+0xe0/0x110
[ 2820.147036]  prepare_alloc_pages+0x1eb/0x550
[ 2820.147070]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2820.147103]  ? relay_open+0x625/0xa70
[ 2820.147124]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2820.147157]  ? do_syscall_64+0xbf/0x390
[ 2820.147182]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2820.147206]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2820.147250]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2820.147294]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2820.147325]  ? do_raw_spin_lock+0x123/0x260
[ 2820.147367]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2820.147405]  ? policy_nodemask+0xeb/0x4e0
[ 2820.147445]  alloc_pages_mpol+0xed/0x340
[ 2820.147479]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2820.147513]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2820.147537]  ? trace_kmalloc+0x1f/0xb0
[ 2820.147561]  ? __kmalloc_noprof+0x274/0x680
[ 2820.147599]  alloc_pages_noprof+0x9d/0x180
[ 2820.147636]  relay_open_buf.part.0+0x26f/0xc70
[ 2820.147675]  relay_open+0x625/0xa70
[ 2820.147698]  ? debugfs_create_file_full+0x41/0x60
[ 2820.147738]  do_blk_trace_setup+0x4ba/0xc30
[ 2820.147786]  blk_trace_setup+0xdc/0x1b0
[ 2820.147820]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2820.147852]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2820.147881]  ? proc_fail_nth_write+0x97/0x220
[ 2820.147936]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2820.147978]  sg_ioctl+0x69d/0x2720
[ 2820.148014]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2820.148045]  ? __pfx_sg_ioctl+0x10/0x10
[ 2820.148072]  ? __fget_files+0x34/0x3b0
[ 2820.148096]  ? find_held_lock+0x2b/0x80
[ 2820.148119]  ? __fget_files+0x203/0x3b0
[ 2820.148143]  ? lock_release+0xc8/0x290
[ 2820.148185]  ? selinux_file_ioctl+0xb9/0x280
[ 2820.148211]  ? __pfx_sg_ioctl+0x10/0x10
[ 2820.148244]  __x64_sys_ioctl+0x18f/0x210
[ 2820.148283]  do_syscall_64+0xbf/0x390
[ 2820.148311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2820.148333] RIP: 0033:0x7fa15dc46b19
[ 2820.148350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2820.148373] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2820.148394] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2820.148409] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2820.148422] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2820.148436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2820.148449] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2820.148486]  </TASK>
[ 2820.194844] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2820.196077] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2820.217916] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2820.219138] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:51 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 64)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:58:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x1274, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:51 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x8, 0x4c40)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})

01:58:51 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

01:58:51 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:58:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2820.432659] FAULT_INJECTION: forcing a failure.
[ 2820.432659] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2820.434666] CPU: 0 UID: 0 PID: 28575 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2820.434697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2820.434709] Call Trace:
[ 2820.434717]  <TASK>
[ 2820.434725]  dump_stack_lvl+0xfa/0x120
[ 2820.434754]  should_fail_ex+0x4d7/0x5e0
[ 2820.434793]  should_fail_alloc_page+0xe0/0x110
[ 2820.434830]  prepare_alloc_pages+0x1eb/0x550
[ 2820.434864]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2820.434897]  ? relay_open+0x625/0xa70
[ 2820.434918]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2820.434951]  ? do_syscall_64+0xbf/0x390
[ 2820.434976]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2820.435000]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2820.435044]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2820.435088]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2820.435120]  ? do_raw_spin_lock+0x123/0x260
[ 2820.435161]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2820.435198]  ? policy_nodemask+0xeb/0x4e0
[ 2820.435237]  alloc_pages_mpol+0xed/0x340
[ 2820.435272]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2820.435305]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2820.435329]  ? trace_kmalloc+0x1f/0xb0
[ 2820.435353]  ? __kmalloc_noprof+0x274/0x680
[ 2820.435390]  alloc_pages_noprof+0x9d/0x180
[ 2820.435428]  relay_open_buf.part.0+0x26f/0xc70
[ 2820.435467]  relay_open+0x625/0xa70
[ 2820.435490]  ? debugfs_create_file_full+0x41/0x60
[ 2820.435530]  do_blk_trace_setup+0x4ba/0xc30
[ 2820.435571]  blk_trace_setup+0xdc/0x1b0
[ 2820.435605]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2820.435637]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2820.435666]  ? proc_fail_nth_write+0x97/0x220
[ 2820.435707]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2820.435749]  sg_ioctl+0x69d/0x2720
[ 2820.435785]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2820.435815]  ? __pfx_sg_ioctl+0x10/0x10
[ 2820.435841]  ? __fget_files+0x34/0x3b0
[ 2820.435866]  ? find_held_lock+0x2b/0x80
[ 2820.435889]  ? __fget_files+0x203/0x3b0
[ 2820.435927]  ? lock_release+0xc8/0x290
[ 2820.435969]  ? selinux_file_ioctl+0xb9/0x280
[ 2820.435994]  ? __pfx_sg_ioctl+0x10/0x10
[ 2820.436027]  __x64_sys_ioctl+0x18f/0x210
[ 2820.436065]  do_syscall_64+0xbf/0x390
[ 2820.436093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2820.436114] RIP: 0033:0x7fa15dc46b19
[ 2820.436132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2820.436155] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2820.436178] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2820.436194] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2820.436207] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2820.436220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2820.436232] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2820.436270]  </TASK>
[ 2820.516931] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2820.518153] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:58:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x424242)
r2 = dup2(r1, r0)
ioctl$TCSETAW(r2, 0x5407, &(0x7f0000000000)={0xfff9, 0x7f, 0x7fff, 0x3f, 0x18, "abb0b2f6c34d648e"})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/icmp\x00')
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x7, 0x0, 0x9, 0x81, 0x0, 0xfffffffffffffff7, 0x10000, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x8000, 0x1, @perf_bp={&(0x7f0000000080), 0x2}, 0x40, 0xff, 0x7fffffff, 0x4, 0x501, 0x7, 0x9, 0x0, 0x8, 0x0, 0x9}, 0x0, 0xd, r3, 0x0)
ioctl$TIOCGPKT(r2, 0x80045438, &(0x7f0000000180))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x10000, 0x0, 0x0})

01:58:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6ffffff})

01:58:52 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2820.812479] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2820.813870] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:05 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2205, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:59:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x1275, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

01:59:05 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$vcsu(&(0x7f0000000140), 0x2, 0x200080)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_GET_ACCESS_COUNT(r4, 0x2289, &(0x7f0000000040))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f0000000080)={0x99, 0x401, 0x20, "3feec385e935a82eb84eefcec30be9e74534385348bff40088af87bd69306901a41af22319317b85800b4ed138e889c0d9213d33d46ded7a0c16518c478e694588791b1db9bc49b6dea9fa9e989bb64631893a8ffd1f7b6793abf3d180a506cac211b7eff8280af1cca279692987b0a6d34c1c40c226799d32fb9e0067b3551725217fb24756ef963c8a4d7185062fce39a1ad6e48ccad6a3b"})

01:59:05 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:05 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 65)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:05 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2834.177705] FAULT_INJECTION: forcing a failure.
[ 2834.177705] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2834.177948] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2834.179542] CPU: 0 UID: 0 PID: 28647 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2834.179572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2834.179585] Call Trace:
[ 2834.179592]  <TASK>
[ 2834.179601]  dump_stack_lvl+0xfa/0x120
[ 2834.179632]  should_fail_ex+0x4d7/0x5e0
[ 2834.179664]  should_fail_alloc_page+0xe0/0x110
[ 2834.179697]  prepare_alloc_pages+0x1eb/0x550
[ 2834.179732]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2834.179764]  ? relay_open+0x625/0xa70
[ 2834.179792]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2834.179826]  ? do_syscall_64+0xbf/0x390
[ 2834.179851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2834.179876]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2834.179920]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2834.179964]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2834.179996]  ? do_raw_spin_lock+0x123/0x260
[ 2834.180037]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2834.180089]  ? policy_nodemask+0xeb/0x4e0
[ 2834.180128]  alloc_pages_mpol+0xed/0x340
[ 2834.180163]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2834.180197]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2834.180221]  ? trace_kmalloc+0x1f/0xb0
[ 2834.180246]  ? __kmalloc_noprof+0x274/0x680
[ 2834.180283]  alloc_pages_noprof+0x9d/0x180
[ 2834.180321]  relay_open_buf.part.0+0x26f/0xc70
[ 2834.180360]  relay_open+0x625/0xa70
[ 2834.180384]  ? debugfs_create_file_full+0x41/0x60
[ 2834.180424]  do_blk_trace_setup+0x4ba/0xc30
[ 2834.180465]  blk_trace_setup+0xdc/0x1b0
[ 2834.180499]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2834.180531]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2834.180560]  ? proc_fail_nth_write+0x97/0x220
[ 2834.180602]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2834.180645]  sg_ioctl+0x69d/0x2720
[ 2834.180681]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2834.180711]  ? __pfx_sg_ioctl+0x10/0x10
[ 2834.180738]  ? __fget_files+0x34/0x3b0
[ 2834.180763]  ? find_held_lock+0x2b/0x80
[ 2834.180786]  ? __fget_files+0x203/0x3b0
[ 2834.180810]  ? lock_release+0xc8/0x290
[ 2834.180851]  ? selinux_file_ioctl+0xb9/0x280
[ 2834.180878]  ? __pfx_sg_ioctl+0x10/0x10
[ 2834.180911]  __x64_sys_ioctl+0x18f/0x210
[ 2834.180950]  do_syscall_64+0xbf/0x390
[ 2834.180978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2834.181000] RIP: 0033:0x7fa15dc46b19
[ 2834.181017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2834.181039] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2834.181060] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2834.181075] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2834.181088] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2834.181101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2834.181114] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2834.181152]  </TASK>
[ 2834.223043] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2834.224933] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2834.226178] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2834.294869] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:59:05 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 66)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:05 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2270, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2834.422218] FAULT_INJECTION: forcing a failure.
[ 2834.422218] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2834.424721] CPU: 1 UID: 0 PID: 28757 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2834.424756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2834.424770] Call Trace:
[ 2834.424785]  <TASK>
[ 2834.424795]  dump_stack_lvl+0xfa/0x120
[ 2834.424829]  should_fail_ex+0x4d7/0x5e0
[ 2834.424866]  should_fail_alloc_page+0xe0/0x110
[ 2834.424903]  prepare_alloc_pages+0x1eb/0x550
[ 2834.424942]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2834.424979]  ? relay_open+0x625/0xa70
[ 2834.425003]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2834.425041]  ? do_syscall_64+0xbf/0x390
[ 2834.425069]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2834.425098]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2834.425147]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2834.425198]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2834.425234]  ? do_raw_spin_lock+0x123/0x260
[ 2834.425282]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2834.425325]  ? policy_nodemask+0xeb/0x4e0
[ 2834.425369]  alloc_pages_mpol+0xed/0x340
[ 2834.425409]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2834.425447]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2834.425475]  ? trace_kmalloc+0x1f/0xb0
[ 2834.425503]  ? __kmalloc_noprof+0x274/0x680
[ 2834.425546]  alloc_pages_noprof+0x9d/0x180
[ 2834.425589]  relay_open_buf.part.0+0x26f/0xc70
[ 2834.425634]  relay_open+0x625/0xa70
[ 2834.425661]  ? debugfs_create_file_full+0x41/0x60
[ 2834.425706]  do_blk_trace_setup+0x4ba/0xc30
[ 2834.425753]  blk_trace_setup+0xdc/0x1b0
[ 2834.425792]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2834.425829]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2834.425862]  ? proc_fail_nth_write+0x97/0x220
[ 2834.425909]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2834.425958]  sg_ioctl+0x69d/0x2720
[ 2834.425999]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2834.426033]  ? __pfx_sg_ioctl+0x10/0x10
[ 2834.426064]  ? __fget_files+0x34/0x3b0
[ 2834.426092]  ? find_held_lock+0x2b/0x80
[ 2834.426117]  ? __fget_files+0x203/0x3b0
[ 2834.426145]  ? lock_release+0xc8/0x290
[ 2834.426192]  ? selinux_file_ioctl+0xb9/0x280
[ 2834.426222]  ? __pfx_sg_ioctl+0x10/0x10
[ 2834.426260]  __x64_sys_ioctl+0x18f/0x210
[ 2834.426305]  do_syscall_64+0xbf/0x390
[ 2834.426337]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2834.426362] RIP: 0033:0x7fa15dc46b19
[ 2834.426382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2834.426407] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2834.426431] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2834.426448] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2834.426463] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2834.426478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2834.426492] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2834.426535]  </TASK>
01:59:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 67)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

01:59:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x1276, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:59:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
ioctl$EVIOCSMASK(r4, 0x40104593, &(0x7f0000000140)={0x5, 0xe4, &(0x7f0000000040)="16ac4f21cc4aed0d817350a93273fd5015347a9f0a4495108021abd563fa3203d3c92051bc56b39decf607ecbf3c5c3cbfa3cab8d628d8bc66e51949596e786bb2df85a160dfbdf3cc4560155597d354cdf1d38a7aca896a30a7c231b8f8109ae6094ca32750f4a11e2ca0254be7c532e9fa1c7acebb308d6f03e788bb3f8bd4d3d94b3e97a705a780624edc2a6b64c998f0ba4d7e57e7689d0d5d51fc0eabb1ae325e864219861404e785a71022aad5bb96029273a8a6752555347b492725f62abdea651fbd9cb4c7e99ed961fbf766a195326803e2b233d90311ca2cce2a102e441f8f"})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r7 = dup2(r6, r5)
ioctl$SG_GET_NUM_WAITING(r7, 0x1276, 0x0)
r8 = fsmount(r7, 0x1, 0x2)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x1, 0x0, 0x0, 0x0})

01:59:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2271, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2846.384175] FAULT_INJECTION: forcing a failure.
[ 2846.384175] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2846.386333] CPU: 1 UID: 0 PID: 28867 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2846.386365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2846.386379] Call Trace:
[ 2846.386387]  <TASK>
[ 2846.386395]  dump_stack_lvl+0xfa/0x120
[ 2846.386428]  should_fail_ex+0x4d7/0x5e0
[ 2846.386462]  should_fail_alloc_page+0xe0/0x110
[ 2846.386496]  prepare_alloc_pages+0x1eb/0x550
[ 2846.386534]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2846.386568]  ? relay_open+0x625/0xa70
[ 2846.386591]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2846.386627]  ? do_syscall_64+0xbf/0x390
[ 2846.386653]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2846.386679]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2846.386726]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2846.386774]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2846.386815]  ? do_raw_spin_lock+0x123/0x260
[ 2846.386860]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2846.386900]  ? policy_nodemask+0xeb/0x4e0
[ 2846.386942]  alloc_pages_mpol+0xed/0x340
[ 2846.386979]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2846.387017]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2846.387044]  ? trace_kmalloc+0x1f/0xb0
[ 2846.387070]  ? __kmalloc_noprof+0x274/0x680
[ 2846.387110]  alloc_pages_noprof+0x9d/0x180
[ 2846.387150]  relay_open_buf.part.0+0x26f/0xc70
[ 2846.387193]  relay_open+0x625/0xa70
[ 2846.387218]  ? debugfs_create_file_full+0x41/0x60
[ 2846.387261]  do_blk_trace_setup+0x4ba/0xc30
[ 2846.387305]  blk_trace_setup+0xdc/0x1b0
[ 2846.387341]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2846.387376]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2846.387407]  ? proc_fail_nth_write+0x97/0x220
[ 2846.387452]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2846.387497]  sg_ioctl+0x69d/0x2720
[ 2846.387535]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2846.387567]  ? __pfx_sg_ioctl+0x10/0x10
[ 2846.387595]  ? __fget_files+0x34/0x3b0
[ 2846.387622]  ? find_held_lock+0x2b/0x80
[ 2846.387646]  ? __fget_files+0x203/0x3b0
[ 2846.387672]  ? lock_release+0xc8/0x290
[ 2846.387716]  ? selinux_file_ioctl+0xb9/0x280
[ 2846.387744]  ? __pfx_sg_ioctl+0x10/0x10
[ 2846.387780]  __x64_sys_ioctl+0x18f/0x210
[ 2846.387822]  do_syscall_64+0xbf/0x390
[ 2846.387852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2846.387875] RIP: 0033:0x7fa15dc46b19
[ 2846.387893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2846.387917] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2846.387940] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2846.387956] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2846.387970] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2846.387984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2846.387998] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2846.388038]  </TASK>
[ 2846.468289] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2846.469720] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

01:59:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2201, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 68)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:18 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:18 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:59:18 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2272, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2846.756104] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
01:59:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.1GB.failcnt\x00', 0x2, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
r3 = dup2(r2, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = signalfd(r1, &(0x7f0000000080)={[0x2]}, 0x8)
ioctl$TCSETSF2(r4, 0x402c542d, &(0x7f00000000c0)={0x9, 0x1, 0x6, 0xfe000000, 0x9, "e9ca606eb003729963f9eec5f8e46a26b706c2", 0x3f, 0x80})

[ 2846.757457] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2846.782016] FAULT_INJECTION: forcing a failure.
[ 2846.782016] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2846.784003] CPU: 0 UID: 0 PID: 28993 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2846.784035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2846.784049] Call Trace:
[ 2846.784057]  <TASK>
[ 2846.784065]  dump_stack_lvl+0xfa/0x120
[ 2846.784099]  should_fail_ex+0x4d7/0x5e0
[ 2846.784133]  should_fail_alloc_page+0xe0/0x110
[ 2846.784167]  prepare_alloc_pages+0x1eb/0x550
[ 2846.784204]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2846.784250]  ? relay_open+0x625/0xa70
[ 2846.784273]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2846.784309]  ? do_syscall_64+0xbf/0x390
[ 2846.784336]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2846.784363]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2846.784409]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2846.784457]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2846.784491]  ? do_raw_spin_lock+0x123/0x260
[ 2846.784536]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2846.784576]  ? policy_nodemask+0xeb/0x4e0
[ 2846.784619]  alloc_pages_mpol+0xed/0x340
[ 2846.784656]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2846.784692]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2846.784718]  ? trace_kmalloc+0x1f/0xb0
[ 2846.784743]  ? __kmalloc_noprof+0x274/0x680
[ 2846.784790]  alloc_pages_noprof+0x9d/0x180
[ 2846.784830]  relay_open_buf.part.0+0x26f/0xc70
[ 2846.784873]  relay_open+0x625/0xa70
[ 2846.784898]  ? debugfs_create_file_full+0x41/0x60
[ 2846.784941]  do_blk_trace_setup+0x4ba/0xc30
[ 2846.784985]  blk_trace_setup+0xdc/0x1b0
[ 2846.785021]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2846.785056]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2846.785087]  ? proc_fail_nth_write+0x97/0x220
[ 2846.785132]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2846.785178]  sg_ioctl+0x69d/0x2720
[ 2846.785216]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2846.785249]  ? __pfx_sg_ioctl+0x10/0x10
[ 2846.785278]  ? __fget_files+0x34/0x3b0
[ 2846.785304]  ? find_held_lock+0x2b/0x80
[ 2846.785328]  ? __fget_files+0x203/0x3b0
[ 2846.785353]  ? lock_release+0xc8/0x290
[ 2846.785398]  ? selinux_file_ioctl+0xb9/0x280
[ 2846.785426]  ? __pfx_sg_ioctl+0x10/0x10
[ 2846.785461]  __x64_sys_ioctl+0x18f/0x210
[ 2846.785503]  do_syscall_64+0xbf/0x390
[ 2846.785534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2846.785558] RIP: 0033:0x7fa15dc46b19
[ 2846.785577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2846.785599] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2846.785622] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2846.785638] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2846.785652] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2846.785666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2846.785679] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2846.785720]  </TASK>
[ 2846.829900] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2846.831168] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2202, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

01:59:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 69)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2847.051105] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2847.052107] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2847.117488] FAULT_INJECTION: forcing a failure.
[ 2847.117488] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2847.118826] CPU: 1 UID: 0 PID: 29118 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2847.118847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2847.118856] Call Trace:
[ 2847.118861]  <TASK>
[ 2847.118867]  dump_stack_lvl+0xfa/0x120
[ 2847.118889]  should_fail_ex+0x4d7/0x5e0
[ 2847.118911]  should_fail_alloc_page+0xe0/0x110
[ 2847.118933]  prepare_alloc_pages+0x1eb/0x550
[ 2847.118957]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2847.118978]  ? relay_open+0x625/0xa70
[ 2847.118993]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2847.119016]  ? do_syscall_64+0xbf/0x390
[ 2847.119033]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2847.119050]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2847.119079]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2847.119109]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2847.119130]  ? do_raw_spin_lock+0x123/0x260
[ 2847.119157]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2847.119183]  ? policy_nodemask+0xeb/0x4e0
[ 2847.119210]  alloc_pages_mpol+0xed/0x340
[ 2847.119232]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2847.119255]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2847.119270]  ? trace_kmalloc+0x1f/0xb0
[ 2847.119287]  ? __kmalloc_noprof+0x274/0x680
[ 2847.119312]  alloc_pages_noprof+0x9d/0x180
[ 2847.119336]  relay_open_buf.part.0+0x26f/0xc70
[ 2847.119363]  relay_open+0x625/0xa70
[ 2847.119378]  ? debugfs_create_file_full+0x41/0x60
[ 2847.119405]  do_blk_trace_setup+0x4ba/0xc30
[ 2847.119432]  blk_trace_setup+0xdc/0x1b0
[ 2847.119455]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2847.119477]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2847.119496]  ? proc_fail_nth_write+0x97/0x220
[ 2847.119524]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2847.119552]  sg_ioctl+0x69d/0x2720
[ 2847.119576]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2847.119596]  ? __pfx_sg_ioctl+0x10/0x10
[ 2847.119614]  ? __fget_files+0x34/0x3b0
[ 2847.119631]  ? find_held_lock+0x2b/0x80
[ 2847.119646]  ? __fget_files+0x203/0x3b0
[ 2847.119662]  ? lock_release+0xc8/0x290
[ 2847.119689]  ? selinux_file_ioctl+0xb9/0x280
[ 2847.119707]  ? __pfx_sg_ioctl+0x10/0x10
[ 2847.119729]  __x64_sys_ioctl+0x18f/0x210
[ 2847.119755]  do_syscall_64+0xbf/0x390
[ 2847.119774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2847.119793] RIP: 0033:0x7fa15dc46b19
[ 2847.119805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2847.119820] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2847.119835] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2847.119845] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2847.119854] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2847.119863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2847.119871] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2847.119896]  </TASK>
01:59:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:29 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:29 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 70)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:29 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2275, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:59:29 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="2aee7162a76254ba3560", 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$vcsu(&(0x7f0000000140), 0x2, 0x200080)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_GET_ACCESS_COUNT(r4, 0x2289, &(0x7f0000000040))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$SCSI_IOCTL_SEND_COMMAND(r6, 0x1, &(0x7f0000000080)={0x99, 0x401, 0x20, "3feec385e935a82eb84eefcec30be9e74534385348bff40088af87bd69306901a41af22319317b85800b4ed138e889c0d9213d33d46ded7a0c16518c478e694588791b1db9bc49b6dea9fa9e989bb64631893a8ffd1f7b6793abf3d180a506cac211b7eff8280af1cca279692987b0a6d34c1c40c226799d32fb9e0067b3551725217fb24756ef963c8a4d7185062fce39a1ad6e48ccad6a3b"})

01:59:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2203, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

01:59:29 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2858.182005] FAULT_INJECTION: forcing a failure.
[ 2858.182005] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2858.183989] CPU: 0 UID: 0 PID: 29132 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2858.184018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2858.184031] Call Trace:
[ 2858.184039]  <TASK>
[ 2858.184047]  dump_stack_lvl+0xfa/0x120
[ 2858.184078]  should_fail_ex+0x4d7/0x5e0
[ 2858.184110]  should_fail_alloc_page+0xe0/0x110
[ 2858.184141]  prepare_alloc_pages+0x1eb/0x550
[ 2858.184176]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2858.184207]  ? relay_open+0x625/0xa70
[ 2858.184228]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2858.184262]  ? do_syscall_64+0xbf/0x390
[ 2858.184287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2858.184311]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2858.184368]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2858.184412]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2858.184443]  ? do_raw_spin_lock+0x123/0x260
[ 2858.184484]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2858.184522]  ? policy_nodemask+0xeb/0x4e0
[ 2858.184560]  alloc_pages_mpol+0xed/0x340
[ 2858.184595]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2858.184628]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2858.184651]  ? trace_kmalloc+0x1f/0xb0
[ 2858.184675]  ? __kmalloc_noprof+0x274/0x680
[ 2858.184712]  alloc_pages_noprof+0x9d/0x180
[ 2858.184749]  relay_open_buf.part.0+0x26f/0xc70
[ 2858.184795]  relay_open+0x625/0xa70
[ 2858.184819]  ? debugfs_create_file_full+0x41/0x60
[ 2858.184858]  do_blk_trace_setup+0x4ba/0xc30
[ 2858.184899]  blk_trace_setup+0xdc/0x1b0
[ 2858.184933]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2858.184965]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2858.184994]  ? proc_fail_nth_write+0x97/0x220
[ 2858.185036]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2858.185078]  sg_ioctl+0x69d/0x2720
[ 2858.185114]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2858.185144]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.185171]  ? __fget_files+0x34/0x3b0
[ 2858.185196]  ? find_held_lock+0x2b/0x80
[ 2858.185218]  ? __fget_files+0x203/0x3b0
[ 2858.185242]  ? lock_release+0xc8/0x290
[ 2858.185283]  ? selinux_file_ioctl+0xb9/0x280
[ 2858.185312]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.185347]  __x64_sys_ioctl+0x18f/0x210
[ 2858.185386]  do_syscall_64+0xbf/0x390
[ 2858.185414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2858.185436] RIP: 0033:0x7fa15dc46b19
[ 2858.185453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2858.185475] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2858.185496] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2858.185511] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2858.185525] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2858.185538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2858.185550] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2858.185588]  </TASK>
[ 2858.190071] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2858.229506] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2858.240915] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2858.242171] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:29 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 71)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:29 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2205, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2858.316091] program syz-executor.2 is using a deprecated SCSI ioctl, please convert it to SG_IO
01:59:29 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2858.372581] FAULT_INJECTION: forcing a failure.
[ 2858.372581] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2858.374454] CPU: 1 UID: 0 PID: 29199 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2858.374492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2858.374504] Call Trace:
[ 2858.374512]  <TASK>
[ 2858.374521]  dump_stack_lvl+0xfa/0x120
[ 2858.374553]  should_fail_ex+0x4d7/0x5e0
[ 2858.374586]  should_fail_alloc_page+0xe0/0x110
[ 2858.374618]  prepare_alloc_pages+0x1eb/0x550
[ 2858.374653]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2858.374686]  ? relay_open+0x625/0xa70
[ 2858.374707]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2858.374742]  ? do_syscall_64+0xbf/0x390
[ 2858.374766]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2858.374799]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2858.374843]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2858.374887]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2858.374919]  ? do_raw_spin_lock+0x123/0x260
[ 2858.374961]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2858.374999]  ? policy_nodemask+0xeb/0x4e0
[ 2858.375038]  alloc_pages_mpol+0xed/0x340
[ 2858.375073]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2858.375106]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2858.375131]  ? trace_kmalloc+0x1f/0xb0
[ 2858.375154]  ? __kmalloc_noprof+0x274/0x680
[ 2858.375192]  alloc_pages_noprof+0x9d/0x180
[ 2858.375229]  relay_open_buf.part.0+0x26f/0xc70
[ 2858.375269]  relay_open+0x625/0xa70
[ 2858.375293]  ? debugfs_create_file_full+0x41/0x60
[ 2858.375332]  do_blk_trace_setup+0x4ba/0xc30
[ 2858.375373]  blk_trace_setup+0xdc/0x1b0
[ 2858.375408]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2858.375440]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2858.375469]  ? proc_fail_nth_write+0x97/0x220
[ 2858.375511]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2858.375553]  sg_ioctl+0x69d/0x2720
[ 2858.375589]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2858.375621]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.375648]  ? __fget_files+0x34/0x3b0
[ 2858.375672]  ? find_held_lock+0x2b/0x80
[ 2858.375695]  ? __fget_files+0x203/0x3b0
[ 2858.375718]  ? lock_release+0xc8/0x290
[ 2858.375760]  ? selinux_file_ioctl+0xb9/0x280
[ 2858.375786]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.375819]  __x64_sys_ioctl+0x18f/0x210
[ 2858.375859]  do_syscall_64+0xbf/0x390
[ 2858.375887]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2858.375909] RIP: 0033:0x7fa15dc46b19
[ 2858.375927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2858.375949] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2858.375971] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2858.375985] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2858.375999] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2858.376012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2858.376024] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2858.376062]  </TASK>
01:59:29 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:29 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:59:29 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6})

01:59:29 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 1)

[ 2858.515837] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2858.516483] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2270, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2858.551616] FAULT_INJECTION: forcing a failure.
[ 2858.551616] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2858.552684] CPU: 0 UID: 0 PID: 29251 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2858.552701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2858.552709] Call Trace:
[ 2858.552713]  <TASK>
[ 2858.552718]  dump_stack_lvl+0xfa/0x120
[ 2858.552738]  should_fail_ex+0x4d7/0x5e0
[ 2858.552757]  _copy_from_user+0x30/0xd0
[ 2858.552773]  blk_trace_setup+0x9a/0x1b0
[ 2858.552799]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2858.552817]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2858.552835]  ? proc_fail_nth_write+0x97/0x220
[ 2858.552852]  ? find_held_lock+0x2b/0x80
[ 2858.552866]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2858.552883]  ? lock_is_held_type+0x9e/0x120
[ 2858.552897]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2858.552921]  sg_ioctl+0x69d/0x2720
[ 2858.552941]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2858.552958]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.552973]  ? __fget_files+0x34/0x3b0
[ 2858.552987]  ? find_held_lock+0x2b/0x80
[ 2858.552999]  ? __fget_files+0x203/0x3b0
[ 2858.553012]  ? lock_release+0xc8/0x290
[ 2858.553035]  ? selinux_file_ioctl+0xb9/0x280
[ 2858.553049]  ? __pfx_sg_ioctl+0x10/0x10
[ 2858.553066]  __x64_sys_ioctl+0x18f/0x210
[ 2858.553088]  do_syscall_64+0xbf/0x390
[ 2858.553105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2858.553118] RIP: 0033:0x7fbf591f3b19
[ 2858.553127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2858.553139] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2858.553151] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2858.553159] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2858.553167] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2858.553175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2858.553183] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2858.553203]  </TASK>
01:59:40 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:59:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 72)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 2)

01:59:40 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

01:59:40 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:40 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

01:59:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2271, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2869.482392] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2869.483282] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2869.489686] FAULT_INJECTION: forcing a failure.
[ 2869.489686] name failslab, interval 1, probability 0, space 0, times 0
[ 2869.490958] CPU: 0 UID: 0 PID: 29266 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2869.490978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2869.490987] Call Trace:
[ 2869.490992]  <TASK>
[ 2869.490998]  dump_stack_lvl+0xfa/0x120
[ 2869.491020]  should_fail_ex+0x4d7/0x5e0
[ 2869.491042]  should_failslab+0xc2/0x120
[ 2869.491062]  __kmalloc_cache_noprof+0x81/0x6b0
[ 2869.491083]  ? __pfx___mutex_lock+0x10/0x10
[ 2869.491099]  ? find_held_lock+0x2b/0x80
[ 2869.491116]  ? do_blk_trace_setup+0x22d/0xc30
[ 2869.491144]  ? do_blk_trace_setup+0x22d/0xc30
[ 2869.491164]  do_blk_trace_setup+0x22d/0xc30
[ 2869.491190]  blk_trace_setup+0xdc/0x1b0
[ 2869.491212]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2869.491232]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2869.491251]  ? proc_fail_nth_write+0x97/0x220
[ 2869.491278]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2869.491307]  sg_ioctl+0x69d/0x2720
[ 2869.491330]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2869.491350]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.491367]  ? __fget_files+0x34/0x3b0
[ 2869.491383]  ? find_held_lock+0x2b/0x80
[ 2869.491397]  ? __fget_files+0x203/0x3b0
[ 2869.491412]  ? lock_release+0xc8/0x290
[ 2869.491438]  ? selinux_file_ioctl+0xb9/0x280
[ 2869.491455]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.491475]  __x64_sys_ioctl+0x18f/0x210
[ 2869.491501]  do_syscall_64+0xbf/0x390
[ 2869.491520]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2869.491535] RIP: 0033:0x7fbf591f3b19
[ 2869.491547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2869.491563] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2869.491576] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2869.491586] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2869.491594] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2869.491603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2869.491611] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2869.491636]  </TASK>
[ 2869.536152] FAULT_INJECTION: forcing a failure.
[ 2869.536152] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2869.538075] CPU: 1 UID: 0 PID: 29275 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2869.538105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2869.538119] Call Trace:
[ 2869.538126]  <TASK>
[ 2869.538134]  dump_stack_lvl+0xfa/0x120
[ 2869.538165]  should_fail_ex+0x4d7/0x5e0
[ 2869.538196]  should_fail_alloc_page+0xe0/0x110
[ 2869.538230]  prepare_alloc_pages+0x1eb/0x550
[ 2869.538266]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2869.538299]  ? relay_open+0x625/0xa70
[ 2869.538321]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2869.538356]  ? do_syscall_64+0xbf/0x390
[ 2869.538380]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2869.538405]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2869.538450]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2869.538495]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2869.538528]  ? do_raw_spin_lock+0x123/0x260
[ 2869.538571]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2869.538610]  ? policy_nodemask+0xeb/0x4e0
[ 2869.538651]  alloc_pages_mpol+0xed/0x340
[ 2869.538686]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2869.538721]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2869.538746]  ? trace_kmalloc+0x1f/0xb0
[ 2869.538771]  ? __kmalloc_noprof+0x274/0x680
[ 2869.538818]  alloc_pages_noprof+0x9d/0x180
[ 2869.538856]  relay_open_buf.part.0+0x26f/0xc70
[ 2869.538898]  relay_open+0x625/0xa70
[ 2869.538923]  ? debugfs_create_file_full+0x41/0x60
[ 2869.538968]  do_blk_trace_setup+0x4ba/0xc30
[ 2869.539011]  blk_trace_setup+0xdc/0x1b0
[ 2869.539047]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2869.539080]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2869.539110]  ? proc_fail_nth_write+0x97/0x220
[ 2869.539153]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2869.539197]  sg_ioctl+0x69d/0x2720
[ 2869.539234]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2869.539264]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.539293]  ? __fget_files+0x34/0x3b0
[ 2869.539318]  ? find_held_lock+0x2b/0x80
[ 2869.539342]  ? __fget_files+0x203/0x3b0
[ 2869.539366]  ? lock_release+0xc8/0x290
[ 2869.539410]  ? selinux_file_ioctl+0xb9/0x280
[ 2869.539438]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.539472]  __x64_sys_ioctl+0x18f/0x210
[ 2869.539513]  do_syscall_64+0xbf/0x390
[ 2869.539542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2869.539565] RIP: 0033:0x7fa15dc46b19
[ 2869.539583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2869.539606] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2869.539629] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2869.539644] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2869.539658] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2869.539672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2869.539685] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2869.539725]  </TASK>
01:59:41 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 3)

01:59:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

[ 2869.639052] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2869.640629] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:41 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2272, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2869.668736] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2869.670073] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:41 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 73)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:41 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:41 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:41 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
dup2(0xffffffffffffffff, r2)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)

[ 2869.838209] FAULT_INJECTION: forcing a failure.
[ 2869.838209] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2869.839275] CPU: 0 UID: 0 PID: 29395 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2869.839294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2869.839302] Call Trace:
[ 2869.839306]  <TASK>
[ 2869.839312]  dump_stack_lvl+0xfa/0x120
[ 2869.839334]  should_fail_ex+0x4d7/0x5e0
[ 2869.839354]  should_fail_alloc_page+0xe0/0x110
[ 2869.839373]  prepare_alloc_pages+0x1eb/0x550
[ 2869.839393]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2869.839411]  ? relay_open+0x625/0xa70
[ 2869.839424]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2869.839444]  ? do_syscall_64+0xbf/0x390
[ 2869.839458]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2869.839472]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2869.839497]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2869.839521]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2869.839539]  ? do_raw_spin_lock+0x123/0x260
[ 2869.839561]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2869.839583]  ? policy_nodemask+0xeb/0x4e0
[ 2869.839604]  alloc_pages_mpol+0xed/0x340
[ 2869.839623]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2869.839641]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2869.839654]  ? trace_kmalloc+0x1f/0xb0
[ 2869.839668]  ? __kmalloc_noprof+0x274/0x680
[ 2869.839689]  alloc_pages_noprof+0x9d/0x180
[ 2869.839709]  relay_open_buf.part.0+0x26f/0xc70
[ 2869.839731]  relay_open+0x625/0xa70
[ 2869.839743]  ? debugfs_create_file_full+0x41/0x60
[ 2869.839766]  do_blk_trace_setup+0x4ba/0xc30
[ 2869.839792]  blk_trace_setup+0xdc/0x1b0
[ 2869.839810]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2869.839828]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2869.839843]  ? proc_fail_nth_write+0x97/0x220
[ 2869.839867]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2869.839890]  sg_ioctl+0x69d/0x2720
[ 2869.839911]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2869.839928]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.839943]  ? __fget_files+0x34/0x3b0
[ 2869.839958]  ? find_held_lock+0x2b/0x80
[ 2869.839971]  ? __fget_files+0x203/0x3b0
[ 2869.839983]  ? lock_release+0xc8/0x290
[ 2869.840006]  ? selinux_file_ioctl+0xb9/0x280
[ 2869.840022]  ? __pfx_sg_ioctl+0x10/0x10
[ 2869.840040]  __x64_sys_ioctl+0x18f/0x210
[ 2869.840064]  do_syscall_64+0xbf/0x390
[ 2869.840080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2869.840092] RIP: 0033:0x7fa15dc46b19
[ 2869.840102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2869.840115] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2869.840128] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2869.840136] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2869.840144] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2869.840152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2869.840160] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2869.840181]  </TASK>
01:59:51 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 4)

01:59:51 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:51 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 74)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:51 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2279, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

01:59:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2275, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

01:59:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

01:59:51 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2276, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2879.742492] FAULT_INJECTION: forcing a failure.
[ 2879.742492] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2879.743134] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2879.744534] CPU: 1 UID: 0 PID: 29415 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2879.744575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2879.744605] Call Trace:
[ 2879.744618]  <TASK>
[ 2879.744629]  dump_stack_lvl+0xfa/0x120
[ 2879.744663]  should_fail_ex+0x4d7/0x5e0
[ 2879.744706]  should_fail_alloc_page+0xe0/0x110
[ 2879.744741]  prepare_alloc_pages+0x1eb/0x550
[ 2879.744792]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2879.744828]  ? relay_open+0x625/0xa70
[ 2879.744856]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2879.744895]  ? do_syscall_64+0xbf/0x390
[ 2879.744922]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2879.744956]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2879.745004]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2879.745065]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2879.745100]  ? do_raw_spin_lock+0x123/0x260
[ 2879.745152]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2879.745199]  ? policy_nodemask+0xeb/0x4e0
[ 2879.745243]  alloc_pages_mpol+0xed/0x340
[ 2879.745288]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2879.745324]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2879.745354]  ? trace_kmalloc+0x1f/0xb0
[ 2879.745385]  ? __kmalloc_noprof+0x274/0x680
[ 2879.745426]  alloc_pages_noprof+0x9d/0x180
[ 2879.745474]  relay_open_buf.part.0+0x26f/0xc70
[ 2879.745522]  relay_open+0x625/0xa70
[ 2879.745550]  ? debugfs_create_file_full+0x41/0x60
[ 2879.745596]  do_blk_trace_setup+0x4ba/0xc30
[ 2879.745647]  blk_trace_setup+0xdc/0x1b0
[ 2879.745690]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2879.745726]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2879.745758]  ? proc_fail_nth_write+0x97/0x220
[ 2879.745809]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2879.745861]  sg_ioctl+0x69d/0x2720
[ 2879.745901]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2879.745940]  ? __pfx_sg_ioctl+0x10/0x10
[ 2879.745969]  ? __fget_files+0x34/0x3b0
[ 2879.745996]  ? find_held_lock+0x2b/0x80
[ 2879.746028]  ? __fget_files+0x203/0x3b0
[ 2879.746054]  ? lock_release+0xc8/0x290
[ 2879.746107]  ? selinux_file_ioctl+0xb9/0x280
[ 2879.746136]  ? __pfx_sg_ioctl+0x10/0x10
[ 2879.746174]  __x64_sys_ioctl+0x18f/0x210
[ 2879.746221]  do_syscall_64+0xbf/0x390
[ 2879.746253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2879.746282] RIP: 0033:0x7fa15dc46b19
[ 2879.746301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2879.746325] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2879.746355] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2879.746372] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2879.746387] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2879.746401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2879.746418] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2879.746463]  </TASK>
[ 2879.770390] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
01:59:51 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

01:59:51 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 75)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

01:59:51 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

01:59:51 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2879.992283] FAULT_INJECTION: forcing a failure.
[ 2879.992283] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2879.993438] CPU: 0 UID: 0 PID: 29521 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2879.993458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2879.993466] Call Trace:
[ 2879.993471]  <TASK>
[ 2879.993476]  dump_stack_lvl+0xfa/0x120
[ 2879.993496]  should_fail_ex+0x4d7/0x5e0
[ 2879.993515]  should_fail_alloc_page+0xe0/0x110
[ 2879.993534]  prepare_alloc_pages+0x1eb/0x550
[ 2879.993554]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2879.993572]  ? relay_open+0x625/0xa70
[ 2879.993585]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2879.993604]  ? do_syscall_64+0xbf/0x390
[ 2879.993618]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2879.993633]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2879.993657]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2879.993682]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2879.993699]  ? do_raw_spin_lock+0x123/0x260
[ 2879.993722]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2879.993743]  ? policy_nodemask+0xeb/0x4e0
[ 2879.993765]  alloc_pages_mpol+0xed/0x340
[ 2879.993789]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2879.993807]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2879.993821]  ? trace_kmalloc+0x1f/0xb0
[ 2879.993834]  ? __kmalloc_noprof+0x274/0x680
[ 2879.993855]  alloc_pages_noprof+0x9d/0x180
[ 2879.993875]  relay_open_buf.part.0+0x26f/0xc70
[ 2879.993897]  relay_open+0x625/0xa70
[ 2879.993909]  ? debugfs_create_file_full+0x41/0x60
[ 2879.993932]  do_blk_trace_setup+0x4ba/0xc30
[ 2879.993954]  blk_trace_setup+0xdc/0x1b0
[ 2879.993973]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2879.993990]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2879.994006]  ? proc_fail_nth_write+0x97/0x220
[ 2879.994030]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2879.994053]  sg_ioctl+0x69d/0x2720
[ 2879.994074]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2879.994091]  ? __pfx_sg_ioctl+0x10/0x10
[ 2879.994105]  ? __fget_files+0x34/0x3b0
[ 2879.994119]  ? find_held_lock+0x2b/0x80
[ 2879.994132]  ? __fget_files+0x203/0x3b0
[ 2879.994145]  ? lock_release+0xc8/0x290
[ 2879.994168]  ? selinux_file_ioctl+0xb9/0x280
[ 2879.994182]  ? __pfx_sg_ioctl+0x10/0x10
[ 2879.994200]  __x64_sys_ioctl+0x18f/0x210
[ 2879.994222]  do_syscall_64+0xbf/0x390
[ 2879.994238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2879.994250] RIP: 0033:0x7fa15dc46b19
[ 2879.994260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2879.994273] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2879.994285] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2879.994294] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2879.994301] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2879.994308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2879.994316] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2879.994336]  </TASK>
02:00:01 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:01 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 76)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:01 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2279, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

02:00:01 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:01 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 5)

02:00:01 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227a, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:01 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2889.838354] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2889.839677] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

[ 2889.968105] FAULT_INJECTION: forcing a failure.
[ 2889.968105] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2889.969894] CPU: 0 UID: 0 PID: 29548 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2889.969924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2889.969938] Call Trace:
[ 2889.969947]  <TASK>
[ 2889.969956]  dump_stack_lvl+0xfa/0x120
[ 2889.969988]  should_fail_ex+0x4d7/0x5e0
[ 2889.970022]  should_fail_alloc_page+0xe0/0x110
[ 2889.970055]  prepare_alloc_pages+0x1eb/0x550
[ 2889.970091]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2889.970124]  ? relay_open+0x625/0xa70
[ 2889.970146]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2889.970179]  ? do_syscall_64+0xbf/0x390
[ 2889.970205]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2889.970230]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2889.970274]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2889.970319]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2889.970351]  ? do_raw_spin_lock+0x123/0x260
[ 2889.970392]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2889.970431]  ? policy_nodemask+0xeb/0x4e0
[ 2889.970470]  alloc_pages_mpol+0xed/0x340
[ 2889.970505]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2889.970539]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2889.970563]  ? trace_kmalloc+0x1f/0xb0
[ 2889.970586]  ? __kmalloc_noprof+0x274/0x680
[ 2889.970624]  alloc_pages_noprof+0x9d/0x180
[ 2889.970662]  relay_open_buf.part.0+0x26f/0xc70
[ 2889.970701]  relay_open+0x625/0xa70
[ 2889.970725]  ? debugfs_create_file_full+0x41/0x60
[ 2889.970765]  do_blk_trace_setup+0x4ba/0xc30
[ 2889.970814]  blk_trace_setup+0xdc/0x1b0
[ 2889.970849]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2889.970882]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2889.970911]  ? proc_fail_nth_write+0x97/0x220
[ 2889.970954]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2889.970996]  sg_ioctl+0x69d/0x2720
[ 2889.971033]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2889.971064]  ? __pfx_sg_ioctl+0x10/0x10
[ 2889.971091]  ? __fget_files+0x34/0x3b0
[ 2889.971116]  ? find_held_lock+0x2b/0x80
[ 2889.971139]  ? __fget_files+0x203/0x3b0
[ 2889.971163]  ? lock_release+0xc8/0x290
[ 2889.971205]  ? selinux_file_ioctl+0xb9/0x280
[ 2889.971232]  ? __pfx_sg_ioctl+0x10/0x10
[ 2889.971265]  __x64_sys_ioctl+0x18f/0x210
[ 2889.971305]  do_syscall_64+0xbf/0x390
[ 2889.971334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2889.971356] RIP: 0033:0x7fa15dc46b19
[ 2889.971375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2889.971398] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2889.971420] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2889.971435] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2889.971449] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2889.971463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2889.971476] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2889.971514]  </TASK>
[ 2889.987865] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2890.014428] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:01 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227a, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:01 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 6)

02:00:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

02:00:01 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:01 executing program 0:
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

02:00:01 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2890.201413] FAULT_INJECTION: forcing a failure.
[ 2890.201413] name failslab, interval 1, probability 0, space 0, times 0
[ 2890.203433] CPU: 1 UID: 0 PID: 29611 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2890.203465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2890.203479] Call Trace:
[ 2890.203487]  <TASK>
[ 2890.203495]  dump_stack_lvl+0xfa/0x120
[ 2890.203528]  should_fail_ex+0x4d7/0x5e0
[ 2890.203560]  ? __d_alloc+0x31/0xa10
[ 2890.203586]  should_failslab+0xc2/0x120
[ 2890.203616]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2890.203651]  ? perf_trace_lock+0xb5/0x5d0
[ 2890.203686]  ? __mutex_add_waiter+0x202/0x210
[ 2890.203728]  ? __d_alloc+0x31/0xa10
[ 2890.203753]  __d_alloc+0x31/0xa10
[ 2890.203788]  ? lock_acquire+0x15e/0x2f0
[ 2890.203824]  d_alloc_parallel+0x112/0x13c0
[ 2890.203860]  ? lock_release+0xc8/0x290
[ 2890.203893]  ? 0xffffffffa0000000
[ 2890.203912]  ? __is_insn_slot_addr+0x140/0x290
[ 2890.203945]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2890.203986]  ? lockdep_init_map_type+0x4b/0x240
[ 2890.204020]  ? lockdep_init_map_type+0x4b/0x240
[ 2890.204065]  __lookup_slow+0x192/0x480
[ 2890.204120]  ? __pfx___lookup_slow+0x10/0x10
[ 2890.204154]  ? __d_lookup+0x73/0x490
[ 2890.204214]  ? d_lookup+0xcd/0x140
[ 2890.204257]  lookup_noperm+0xe3/0x110
[ 2890.204293]  simple_start_creating+0xd3/0x1b0
[ 2890.204322]  debugfs_start_creating+0xc2/0x180
[ 2890.204358]  debugfs_create_dir+0x27/0x5b0
[ 2890.204396]  do_blk_trace_setup+0x822/0xc30
[ 2890.204439]  blk_trace_setup+0xdc/0x1b0
[ 2890.204473]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2890.204506]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2890.204536]  ? proc_fail_nth_write+0x97/0x220
[ 2890.204577]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2890.204621]  sg_ioctl+0x69d/0x2720
[ 2890.204659]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2890.204693]  ? __pfx_sg_ioctl+0x10/0x10
[ 2890.204737]  ? __fget_files+0x34/0x3b0
[ 2890.204761]  ? find_held_lock+0x2b/0x80
[ 2890.204785]  ? __fget_files+0x203/0x3b0
[ 2890.204809]  ? lock_release+0xc8/0x290
[ 2890.204851]  ? selinux_file_ioctl+0xb9/0x280
[ 2890.204878]  ? __pfx_sg_ioctl+0x10/0x10
[ 2890.204911]  __x64_sys_ioctl+0x18f/0x210
[ 2890.204950]  do_syscall_64+0xbf/0x390
[ 2890.204981]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2890.205005] RIP: 0033:0x7fbf591f3b19
[ 2890.205021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2890.205043] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2890.205068] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2890.205091] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2890.205112] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2890.205133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2890.205147] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2890.205185]  </TASK>
[ 2890.245741] blktrace: debugfs_dir not present for sg0 so skipping
[ 2890.247280] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2890.248450] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:01 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 77)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2890.353428] FAULT_INJECTION: forcing a failure.
[ 2890.353428] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2890.355580] CPU: 1 UID: 0 PID: 29671 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2890.355612] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2890.355625] Call Trace:
[ 2890.355633]  <TASK>
[ 2890.355642]  dump_stack_lvl+0xfa/0x120
[ 2890.355674]  should_fail_ex+0x4d7/0x5e0
[ 2890.355707]  should_fail_alloc_page+0xe0/0x110
02:00:01 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227b, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2890.355740]  prepare_alloc_pages+0x1eb/0x550
[ 2890.355783]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2890.355816]  ? relay_open+0x625/0xa70
[ 2890.355838]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2890.355872]  ? do_syscall_64+0xbf/0x390
[ 2890.355898]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2890.355923]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2890.355969]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2890.356013]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2890.356045]  ? do_raw_spin_lock+0x123/0x260
[ 2890.356103]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2890.356163]  ? policy_nodemask+0xeb/0x4e0
[ 2890.356212]  alloc_pages_mpol+0xed/0x340
[ 2890.356247]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2890.356281]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2890.356306]  ? trace_kmalloc+0x1f/0xb0
[ 2890.356330]  ? __kmalloc_noprof+0x274/0x680
[ 2890.356368]  alloc_pages_noprof+0x9d/0x180
[ 2890.356405]  relay_open_buf.part.0+0x26f/0xc70
[ 2890.356445]  relay_open+0x625/0xa70
[ 2890.356469]  ? debugfs_create_file_full+0x41/0x60
[ 2890.356509]  do_blk_trace_setup+0x4ba/0xc30
[ 2890.356550]  blk_trace_setup+0xdc/0x1b0
[ 2890.356584]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2890.356617]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2890.356646]  ? proc_fail_nth_write+0x97/0x220
[ 2890.356688]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2890.356748]  sg_ioctl+0x69d/0x2720
[ 2890.356784]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2890.356815]  ? __pfx_sg_ioctl+0x10/0x10
[ 2890.356842]  ? __fget_files+0x34/0x3b0
[ 2890.356868]  ? find_held_lock+0x2b/0x80
[ 2890.356891]  ? __fget_files+0x203/0x3b0
[ 2890.356915]  ? lock_release+0xc8/0x290
[ 2890.356960]  ? selinux_file_ioctl+0xb9/0x280
[ 2890.356988]  ? __pfx_sg_ioctl+0x10/0x10
[ 2890.357022]  __x64_sys_ioctl+0x18f/0x210
[ 2890.357064]  do_syscall_64+0xbf/0x390
[ 2890.357107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2890.357139] RIP: 0033:0x7fa15dc46b19
[ 2890.357157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2890.357180] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2890.357202] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2890.357217] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2890.357231] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2890.357245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2890.357258] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2890.357296]  </TASK>
02:00:12 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227c, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:12 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:12 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227b, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

02:00:12 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:12 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 7)

02:00:12 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:12 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 78)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2901.072327] FAULT_INJECTION: forcing a failure.
[ 2901.072327] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2901.074100] CPU: 1 UID: 0 PID: 29685 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2901.074117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2901.074125] Call Trace:
[ 2901.074130]  <TASK>
[ 2901.074135]  dump_stack_lvl+0xfa/0x120
[ 2901.074154]  should_fail_ex+0x4d7/0x5e0
[ 2901.074173]  should_fail_alloc_page+0xe0/0x110
[ 2901.074191]  prepare_alloc_pages+0x1eb/0x550
[ 2901.074211]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2901.074229]  ? relay_open+0x625/0xa70
[ 2901.074241]  ? do_blk_trace_setup+0x4ba/0xc30
[ 2901.074261]  ? do_syscall_64+0xbf/0x390
[ 2901.074275]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2901.074289]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2901.074314]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2901.074338]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 2901.074355]  ? do_raw_spin_lock+0x123/0x260
[ 2901.074379]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2901.074400]  ? policy_nodemask+0xeb/0x4e0
[ 2901.074423]  alloc_pages_mpol+0xed/0x340
[ 2901.074441]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2901.074459]  ? __kvmalloc_node_noprof+0x2c6/0x770
[ 2901.074473]  ? trace_kmalloc+0x1f/0xb0
[ 2901.074487]  ? __kmalloc_noprof+0x274/0x680
[ 2901.074507]  alloc_pages_noprof+0x9d/0x180
[ 2901.074528]  relay_open_buf.part.0+0x26f/0xc70
[ 2901.074549]  relay_open+0x625/0xa70
[ 2901.074562]  ? debugfs_create_file_full+0x41/0x60
[ 2901.074585]  do_blk_trace_setup+0x4ba/0xc30
[ 2901.074607]  blk_trace_setup+0xdc/0x1b0
[ 2901.074626]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2901.074643]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2901.074659]  ? proc_fail_nth_write+0x97/0x220
[ 2901.074682]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2901.074705]  sg_ioctl+0x69d/0x2720
[ 2901.074725]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2901.074742]  ? __pfx_sg_ioctl+0x10/0x10
[ 2901.074757]  ? __fget_files+0x34/0x3b0
[ 2901.074775]  ? find_held_lock+0x2b/0x80
[ 2901.074788]  ? __fget_files+0x203/0x3b0
[ 2901.074801]  ? lock_release+0xc8/0x290
[ 2901.074824]  ? selinux_file_ioctl+0xb9/0x280
[ 2901.074838]  ? __pfx_sg_ioctl+0x10/0x10
[ 2901.074856]  __x64_sys_ioctl+0x18f/0x210
[ 2901.074878]  do_syscall_64+0xbf/0x390
[ 2901.074894]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2901.074906] RIP: 0033:0x7fa15dc46b19
[ 2901.074916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2901.074928] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2901.074940] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 2901.074948] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2901.074956] RBP: 00007fa15b1bc1d0 R08: 0000000000000000 R09: 0000000000000000
[ 2901.074963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2901.074970] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 2901.074990]  </TASK>
02:00:12 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2901.123921] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2901.125237] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:12 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8}) (fail_nth: 79)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:12 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

[ 2901.204901] blktrace: Concurrent blktraces are not allowed on sg0
02:00:12 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

02:00:12 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 8)

02:00:12 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227d, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:12 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:12 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:12 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

[ 2901.360829] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2901.361511] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2901.455882] FAULT_INJECTION: forcing a failure.
[ 2901.455882] name failslab, interval 1, probability 0, space 0, times 0
[ 2901.457640] CPU: 0 UID: 0 PID: 29807 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2901.457671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2901.457684] Call Trace:
[ 2901.457693]  <TASK>
[ 2901.457703]  dump_stack_lvl+0xfa/0x120
[ 2901.457735]  should_fail_ex+0x4d7/0x5e0
[ 2901.457766]  ? alloc_inode+0x67/0x250
[ 2901.457803]  should_failslab+0xc2/0x120
[ 2901.457834]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2901.457880]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2901.457916]  ? alloc_inode+0x67/0x250
[ 2901.457945]  alloc_inode+0x67/0x250
[ 2901.457977]  new_inode+0x1e/0x160
[ 2901.458013]  debugfs_create_dir+0x9a/0x5b0
[ 2901.458051]  do_blk_trace_setup+0x822/0xc30
[ 2901.458094]  blk_trace_setup+0xdc/0x1b0
[ 2901.458128]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2901.458161]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2901.458192]  ? proc_fail_nth_write+0x97/0x220
[ 2901.458234]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2901.458278]  sg_ioctl+0x69d/0x2720
[ 2901.458315]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2901.458345]  ? __pfx_sg_ioctl+0x10/0x10
[ 2901.458373]  ? __fget_files+0x34/0x3b0
[ 2901.458397]  ? find_held_lock+0x2b/0x80
[ 2901.458420]  ? __fget_files+0x203/0x3b0
[ 2901.458444]  ? lock_release+0xc8/0x290
[ 2901.458487]  ? selinux_file_ioctl+0xb9/0x280
[ 2901.458514]  ? __pfx_sg_ioctl+0x10/0x10
[ 2901.458548]  __x64_sys_ioctl+0x18f/0x210
[ 2901.458588]  do_syscall_64+0xbf/0x390
[ 2901.458618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2901.458641] RIP: 0033:0x7fbf591f3b19
[ 2901.458659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2901.458680] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2901.458702] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2901.458717] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2901.458731] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2901.458744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2901.458757] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2901.458796]  </TASK>
[ 2901.488905] debugfs: out of free dentries, can not create directory 'sg0'
[ 2901.513496] blktrace: debugfs_dir not present for sg0 so skipping
02:00:13 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227c, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

02:00:13 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

02:00:13 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227e, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:13 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:13 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 9)

[ 2901.637632] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2901.638914] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2901.675438] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2901.676702] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:13 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:13 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x227f, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

[ 2901.840692] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2901.841412] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:23 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

02:00:23 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 10)

02:00:23 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227d, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:23 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:23 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:23 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2282, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:23 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2911.881038] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2911.881716] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:23 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2283, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

[ 2911.969296] FAULT_INJECTION: forcing a failure.
[ 2911.969296] name failslab, interval 1, probability 0, space 0, times 0
[ 2911.971355] CPU: 1 UID: 0 PID: 29962 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2911.971388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2911.971402] Call Trace:
[ 2911.971411]  <TASK>
[ 2911.971421]  dump_stack_lvl+0xfa/0x120
[ 2911.971454]  should_fail_ex+0x4d7/0x5e0
[ 2911.971487]  ? security_inode_alloc+0x3e/0x130
[ 2911.971514]  should_failslab+0xc2/0x120
[ 2911.971546]  kmem_cache_alloc_noprof+0x80/0x690
[ 2911.971583]  ? __pfx_map_id_range_down+0x10/0x10
[ 2911.971631]  ? security_inode_alloc+0x3e/0x130
[ 2911.971657]  security_inode_alloc+0x3e/0x130
[ 2911.971686]  inode_init_always_gfp+0xc94/0xff0
[ 2911.971715]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[ 2911.971755]  alloc_inode+0x8d/0x250
[ 2911.971797]  new_inode+0x1e/0x160
[ 2911.971836]  debugfs_create_dir+0x9a/0x5b0
[ 2911.971877]  do_blk_trace_setup+0x822/0xc30
[ 2911.971923]  blk_trace_setup+0xdc/0x1b0
[ 2911.971960]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2911.971995]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2911.972028]  ? proc_fail_nth_write+0x97/0x220
[ 2911.972073]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2911.972120]  sg_ioctl+0x69d/0x2720
[ 2911.972159]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2911.972191]  ? __pfx_sg_ioctl+0x10/0x10
[ 2911.972221]  ? __fget_files+0x34/0x3b0
[ 2911.972247]  ? find_held_lock+0x2b/0x80
[ 2911.972272]  ? __fget_files+0x203/0x3b0
[ 2911.972298]  ? lock_release+0xc8/0x290
[ 2911.972345]  ? selinux_file_ioctl+0xb9/0x280
[ 2911.972374]  ? __pfx_sg_ioctl+0x10/0x10
[ 2911.972409]  __x64_sys_ioctl+0x18f/0x210
[ 2911.972452]  do_syscall_64+0xbf/0x390
[ 2911.972485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2911.972510] RIP: 0033:0x7fbf591f3b19
02:00:23 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2911.972528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2911.972551] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2911.972575] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2911.972592] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2911.972606] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2911.972621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2911.972635] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2911.972676]  </TASK>
[ 2911.986902] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2911.987265] debugfs: out of free dentries, can not create directory 'sg0'
[ 2911.987469] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2912.024357] blktrace: debugfs_dir not present for sg0 so skipping
02:00:34 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:34 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:34 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227e, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:34 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

02:00:34 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 11)

02:00:34 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:34 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2284, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2922.806180] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2922.807468] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:34 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1274, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:34 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000})

[ 2923.085987] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2923.087588] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:45 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 12)

02:00:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

02:00:45 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2286, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227f, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2933.650896] FAULT_INJECTION: forcing a failure.
[ 2933.650896] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2933.652259] CPU: 1 UID: 0 PID: 30212 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2933.652281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2933.652291] Call Trace:
[ 2933.652297]  <TASK>
[ 2933.652304]  dump_stack_lvl+0xfa/0x120
[ 2933.652329]  should_fail_ex+0x4d7/0x5e0
[ 2933.652354]  should_fail_alloc_page+0xe0/0x110
[ 2933.652379]  prepare_alloc_pages+0x1eb/0x550
[ 2933.652399]  ? find_held_lock+0x2b/0x80
[ 2933.652422]  __alloc_frozen_pages_noprof+0x17f/0x1f20
[ 2933.652449]  ? 0xffffffffa0000000
[ 2933.652463]  ? __is_insn_slot_addr+0x140/0x290
[ 2933.652486]  ? kernel_text_address+0x5b/0xc0
[ 2933.652511]  ? __kernel_text_address+0xd/0x40
[ 2933.652533]  ? unwind_get_return_address+0x59/0xa0
[ 2933.652549]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2933.652576]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2933.652605]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2933.652634]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2933.652657]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2933.652685]  ? __lock_acquire+0xc65/0x1b70
[ 2933.652706]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2933.652735]  ? policy_nodemask+0xeb/0x4e0
[ 2933.652765]  alloc_pages_mpol+0xed/0x340
[ 2933.652796]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2933.652822]  ? do_raw_spin_lock+0x123/0x260
[ 2933.652849]  ? find_held_lock+0x2b/0x80
[ 2933.652871]  alloc_pages_noprof+0x9d/0x180
[ 2933.652899]  get_free_pages_noprof+0x10/0xb0
[ 2933.652917]  inode_doinit_with_dentry+0x8f3/0x1210
[ 2933.652944]  ? __pfx_inode_doinit_with_dentry+0x10/0x10
[ 2933.652961]  ? find_held_lock+0x2b/0x80
[ 2933.652979]  ? new_inode+0x10c/0x160
[ 2933.653009]  selinux_d_instantiate+0x27/0x30
[ 2933.653027]  security_d_instantiate+0x58/0xb0
[ 2933.653060]  d_instantiate+0x5e/0xa0
[ 2933.653091]  debugfs_create_dir+0x173/0x5b0
[ 2933.653130]  do_blk_trace_setup+0x822/0xc30
[ 2933.653170]  blk_trace_setup+0xdc/0x1b0
[ 2933.653196]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2933.653265]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2933.653295]  ? proc_fail_nth_write+0x97/0x220
[ 2933.653327]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2933.653359]  sg_ioctl+0x69d/0x2720
[ 2933.653386]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2933.653408]  ? __pfx_sg_ioctl+0x10/0x10
[ 2933.653428]  ? __fget_files+0x34/0x3b0
[ 2933.653446]  ? find_held_lock+0x2b/0x80
[ 2933.653463]  ? __fget_files+0x203/0x3b0
[ 2933.653481]  ? lock_release+0xc8/0x290
[ 2933.653512]  ? selinux_file_ioctl+0xb9/0x280
[ 2933.653532]  ? __pfx_sg_ioctl+0x10/0x10
[ 2933.653556]  __x64_sys_ioctl+0x18f/0x210
[ 2933.653586]  do_syscall_64+0xbf/0x390
[ 2933.653609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2933.653626] RIP: 0033:0x7fbf591f3b19
[ 2933.653639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2933.653656] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2933.653672] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2933.653684] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2933.653694] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2933.653705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2933.653715] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2933.653744]  </TASK>
[ 2933.681684] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2933.691247] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2287, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

02:00:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1276, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:45 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:00:45 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 13)

02:00:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2288, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:45 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 2934.055093] FAULT_INJECTION: forcing a failure.
[ 2934.055093] name failslab, interval 1, probability 0, space 0, times 0
[ 2934.057041] CPU: 0 UID: 0 PID: 30336 Comm: syz-executor.2 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2934.057071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2934.057085] Call Trace:
[ 2934.057093]  <TASK>
[ 2934.057101]  dump_stack_lvl+0xfa/0x120
[ 2934.057133]  should_fail_ex+0x4d7/0x5e0
[ 2934.057164]  ? __d_alloc+0x31/0xa10
[ 2934.057191]  should_failslab+0xc2/0x120
[ 2934.057233]  kmem_cache_alloc_lru_noprof+0x84/0x690
[ 2934.057284]  ? __d_alloc+0x31/0xa10
[ 2934.057311]  __d_alloc+0x31/0xa10
[ 2934.057345]  d_alloc_parallel+0x112/0x13c0
[ 2934.057386]  ? perf_trace_lock+0xb5/0x5d0
[ 2934.057419]  ? warn_alloc+0x2c2/0x360
[ 2934.057451]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2934.057486]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 2934.057519]  ? perf_trace_lock_acquire+0xc9/0x700
[ 2934.057556]  ? lockdep_init_map_type+0x4b/0x240
[ 2934.057591]  ? lockdep_init_map_type+0x4b/0x240
[ 2934.057633]  __lookup_slow+0x192/0x480
[ 2934.057669]  ? __pfx___lookup_slow+0x10/0x10
[ 2934.057700]  ? __d_lookup+0x73/0x490
[ 2934.057761]  ? d_lookup+0xcd/0x140
[ 2934.057811]  lookup_noperm+0xe3/0x110
[ 2934.057846]  simple_start_creating+0xd3/0x1b0
[ 2934.057875]  debugfs_start_creating+0xc2/0x180
[ 2934.057912]  __debugfs_create_file+0x62/0x660
[ 2934.057953]  debugfs_create_file_full+0x41/0x60
[ 2934.057993]  do_blk_trace_setup+0x429/0xc30
[ 2934.058036]  blk_trace_setup+0xdc/0x1b0
[ 2934.058071]  ? __pfx_blk_trace_setup+0x10/0x10
[ 2934.058104]  ? __pfx_perf_trace_lock+0x10/0x10
[ 2934.058133]  ? proc_fail_nth_write+0x97/0x220
[ 2934.058175]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2934.058219]  sg_ioctl+0x69d/0x2720
[ 2934.058255]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 2934.058285]  ? __pfx_sg_ioctl+0x10/0x10
[ 2934.058313]  ? __fget_files+0x34/0x3b0
[ 2934.058337]  ? find_held_lock+0x2b/0x80
[ 2934.058361]  ? __fget_files+0x203/0x3b0
[ 2934.058385]  ? lock_release+0xc8/0x290
[ 2934.058427]  ? selinux_file_ioctl+0xb9/0x280
[ 2934.058454]  ? __pfx_sg_ioctl+0x10/0x10
[ 2934.058488]  __x64_sys_ioctl+0x18f/0x210
[ 2934.058527]  do_syscall_64+0xbf/0x390
[ 2934.058557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2934.058581] RIP: 0033:0x7fbf591f3b19
[ 2934.058599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2934.058621] RSP: 002b:00007fbf56769188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2934.058643] RAX: ffffffffffffffda RBX: 00007fbf59306f60 RCX: 00007fbf591f3b19
[ 2934.058658] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 2934.058672] RBP: 00007fbf567691d0 R08: 0000000000000000 R09: 0000000000000000
[ 2934.058685] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2934.058699] R13: 00007ffce3099c7f R14: 00007fbf56769300 R15: 0000000000022000
[ 2934.058737]  </TASK>
[ 2934.127894] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2934.129174] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2201, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:45 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2282, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:45 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2289, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

02:00:45 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:45 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2202, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:45 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 14)

[ 2934.435814] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2934.437145] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:00:57 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(0x0, 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:00:57 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833}) (fail_nth: 15)

02:00:57 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2203, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:57 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:00:57 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x4b47, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:00:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

02:00:57 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2283, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:00:57 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 2946.277712] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2946.279004] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 2946.300334] blktrace: Concurrent blktraces are not allowed on sg0
02:01:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x4b49, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:07 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2284, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:07 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:07 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0) (fail_nth: 1)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:07 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

02:01:07 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2205, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

02:01:07 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:07 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5382, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2956.475989] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2956.477314] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:08 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2956.531887] FAULT_INJECTION: forcing a failure.
[ 2956.531887] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2956.535996] CPU: 0 UID: 0 PID: 30604 Comm: syz-executor.4 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 2956.536030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2956.536045] Call Trace:
[ 2956.536053]  <TASK>
[ 2956.536063]  dump_stack_lvl+0xfa/0x120
[ 2956.536097]  should_fail_ex+0x4d7/0x5e0
[ 2956.536131]  _copy_to_user+0x32/0xd0
[ 2956.536164]  simple_read_from_buffer+0xe0/0x180
[ 2956.536209]  proc_fail_nth_read+0x18a/0x240
[ 2956.536243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2956.536276]  ? security_file_permission+0x22/0x90
[ 2956.536311]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 2956.536343]  vfs_read+0x1eb/0xc70
[ 2956.536380]  ? __pfx_vfs_read+0x10/0x10
[ 2956.536410]  ? lock_release+0xc8/0x290
[ 2956.536451]  ? __fget_files+0x20d/0x3b0
[ 2956.536494]  ksys_read+0x121/0x240
[ 2956.536521]  ? __pfx_ksys_read+0x10/0x10
[ 2956.536564]  do_syscall_64+0xbf/0x390
[ 2956.536596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2956.536621] RIP: 0033:0x7ff6a827669c
[ 2956.536639] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 2956.536662] RSP: 002b:00007ff6a5839170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 2956.536686] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff6a827669c
[ 2956.536702] RDX: 000000000000000f RSI: 00007ff6a58391e0 RDI: 0000000000000005
[ 2956.536717] RBP: 00007ff6a58391d0 R08: 0000000000000000 R09: 0000000000000000
[ 2956.536731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2956.536746] R13: 00007fff99c8b09f R14: 00007ff6a5839300 R15: 0000000000022000
02:01:08 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5385, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2956.536794]  </TASK>
02:01:08 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2270, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:08 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x0, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:08 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

02:01:08 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:08 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5386, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:08 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2285, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 2956.760361] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2956.761681] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2271, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:18 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:18 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

02:01:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:18 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2286, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:18 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

02:01:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x541b, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2272, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:18 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1267, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 2966.688663] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2966.689378] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5421, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

02:01:18 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:18 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1274, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1267, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:18 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2287, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:18 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2966.901360] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2966.902077] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6ffffff})

02:01:18 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1274, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:18 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 2967.022318] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2967.023196] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:30 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1276, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:30 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5450, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:30 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1275, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:30 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

02:01:30 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:30 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2276, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:30 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2288, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:30 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

[ 2978.838670] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2978.839910] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:40 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2289, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2279, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:40 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)

02:01:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

02:01:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2201, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:40 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

02:01:40 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2201, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5451, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2202, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 2988.657080] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2988.658581] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5452, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

02:01:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2203, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:40 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

02:01:40 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2202, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x5460, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2988.851206] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2988.851948] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2205, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:40 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4b47, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:40 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

02:01:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

02:01:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x40049409, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2989.001604] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2989.002365] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:40 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2270, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

02:01:40 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x40086602, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 2989.141336] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 2989.142095] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:51 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2271, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:51 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x0)

02:01:51 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4b49, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:01:51 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

02:01:51 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227c, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:51 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x40087602, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6})

02:01:51 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2203, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3000.536148] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 3000.537416] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
[ 3000.553609] sd 0:0:0:0: [sg_rq_end_io] Sense Key : Illegal Request [current] 
[ 3000.554885] sd 0:0:0:0: [sg_rq_end_io] Add. Sense: Invalid field in cdb
02:01:52 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2272, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:01:52 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227d, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:01:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

02:01:52 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2205, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:01:52 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x401c5820, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:01:52 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0) (fail_nth: 1)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3000.880083] FAULT_INJECTION: forcing a failure.
[ 3000.880083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 3000.881746] CPU: 1 UID: 0 PID: 31625 Comm: syz-executor.6 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3000.881780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3000.881793] Call Trace:
[ 3000.881801]  <TASK>
[ 3000.881810]  dump_stack_lvl+0xfa/0x120
[ 3000.881840]  should_fail_ex+0x4d7/0x5e0
[ 3000.881872]  _copy_to_user+0x32/0xd0
[ 3000.881901]  simple_read_from_buffer+0xe0/0x180
[ 3000.881942]  proc_fail_nth_read+0x18a/0x240
[ 3000.881987]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3000.882029]  ? security_file_permission+0x22/0x90
[ 3000.882070]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3000.882098]  vfs_read+0x1eb/0xc70
[ 3000.882131]  ? __pfx_vfs_read+0x10/0x10
[ 3000.882157]  ? lock_release+0xc8/0x290
[ 3000.882193]  ? __fget_files+0x20d/0x3b0
[ 3000.882231]  ksys_read+0x121/0x240
[ 3000.882255]  ? __pfx_ksys_read+0x10/0x10
[ 3000.882279]  ? fdget+0x197/0x220
[ 3000.882310]  do_syscall_64+0xbf/0x390
[ 3000.882339]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3000.882362] RIP: 0033:0x7fb0f595b69c
[ 3000.882378] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3000.882399] RSP: 002b:00007fb0f2efd170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3000.882419] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fb0f595b69c
[ 3000.882433] RDX: 000000000000000f RSI: 00007fb0f2efd1e0 RDI: 0000000000000006
[ 3000.882446] RBP: 00007fb0f2efd1d0 R08: 0000000000000000 R09: 0000000000000000
[ 3000.882460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3000.882473] R13: 00007ffd31cd751f R14: 00007fb0f2efd300 R15: 0000000000022000
[ 3000.882508]  </TASK>
02:02:04 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2275, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:04 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:04 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x4020940d, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:04 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5382, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

02:02:04 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2270, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:04 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227e, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:04 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)

02:02:04 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2276, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5385, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x80086601, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2271, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0) (fail_nth: 1)

02:02:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2279, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 3025.993455] FAULT_INJECTION: forcing a failure.
[ 3025.993455] name fail_usercopy, interval 1, probability 0, space 0, times 0
02:02:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 3025.995395] CPU: 0 UID: 0 PID: 31762 Comm: syz-executor.0 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3025.995429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3025.995443] Call Trace:
[ 3025.995452]  <TASK>
[ 3025.995462]  dump_stack_lvl+0xfa/0x120
[ 3025.995495]  should_fail_ex+0x4d7/0x5e0
[ 3025.995530]  _copy_to_user+0x32/0xd0
[ 3025.995563]  simple_read_from_buffer+0xe0/0x180
[ 3025.995609]  proc_fail_nth_read+0x18a/0x240
[ 3025.995645]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3025.995679]  ? security_file_permission+0x22/0x90
[ 3025.995714]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 3025.995747]  vfs_read+0x1eb/0xc70
[ 3025.995796]  ? __pfx_vfs_read+0x10/0x10
[ 3025.995827]  ? lock_release+0xc8/0x290
[ 3025.995869]  ? __fget_files+0x20d/0x3b0
[ 3025.995913]  ksys_read+0x121/0x240
[ 3025.995941]  ? __pfx_ksys_read+0x10/0x10
[ 3025.995985]  do_syscall_64+0xbf/0x390
[ 3025.996018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3025.996044] RIP: 0033:0x7fa3bb0bf69c
[ 3025.996063] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 3025.996087] RSP: 002b:00007fa3b8682170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 3025.996111] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fa3bb0bf69c
[ 3025.996128] RDX: 000000000000000f RSI: 00007fa3b86821e0 RDI: 0000000000000008
[ 3025.996143] RBP: 00007fa3b86821d0 R08: 0000000000000000 R09: 0000000000000000
[ 3025.996158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 3025.996173] R13: 00007fff1ccdaa2f R14: 00007fa3b8682300 R15: 0000000000022000
[ 3025.996215]  </TASK>
02:02:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1267, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})

02:02:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2282, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2272, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)

02:02:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x80087601, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

02:02:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2283, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227c, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2275, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5386, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1274, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x80111500, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227d, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:27 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1275, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:27 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2, 0x0)

02:02:27 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2284, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:27 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})

02:02:27 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x801c581f, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:27 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227e, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:27 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x541b, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:27 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:36 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1267, 0x0)

02:02:36 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2201, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:36 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2285, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:36 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9})

02:02:36 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5421, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x80811501, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:36 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2279, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:36 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2286, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:36 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2202, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:36 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2287, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:36 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0xc0045878, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd})

02:02:36 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2282, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:37 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227a, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:37 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2288, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:37 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2203, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:37 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600})

02:02:37 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1274, 0x0)

02:02:37 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2289, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:37 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5450, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:37 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})

02:02:46 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2283, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4b47, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0xc0045878, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:46 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5451, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:46 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1275, 0x0)

02:02:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227b, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd00})

02:02:46 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2205, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:46 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2284, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:46 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0xc0189436, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4b49, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:46 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227c, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2201, 0x0)

02:02:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000})

02:02:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5452, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2285, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5382, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:58 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0xc020660b, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227d, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2270, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5385, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2286, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227e, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2271, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5386, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfd})

02:02:58 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0xc0481273, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5460, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:02:58 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2202, 0x0)

02:02:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x541b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2287, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:02:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000})

02:02:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x227f, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:02:58 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:02:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5421, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:02:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40049409, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:07 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2272, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:07 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40086602, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:07 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2282, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:07 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5450, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:07 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2203, 0x0)

02:03:07 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2288, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000})

02:03:07 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x2, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000})

02:03:15 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2275, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:15 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5451, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:15 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x6, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:15 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40087602, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:15 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x2289, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:15 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2205, 0x0)

02:03:15 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2283, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000})

02:03:15 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x9, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000})

02:03:16 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2284, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:16 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4b47, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:16 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5452, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:16 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd000000})

02:03:25 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5460, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4b49, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:25 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2285, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:25 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x600, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:25 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:25 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2270, 0x0)

02:03:25 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x401c5820, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff})

02:03:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5382, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:25 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40049409, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:25 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x900, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:25 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5385, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:26 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40086602, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:26 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2286, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:26 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2279, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:26 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000})

02:03:26 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xd00, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2287, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf5ffffff})

02:03:38 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5386, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:38 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x2000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40087602, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:38 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2271, 0x0)

02:03:38 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4020940d, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:38 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227a, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf6ffffff})

02:03:38 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x541b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:38 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfdfd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x401c5820, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:38 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2288, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:38 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2272, 0x0)

02:03:38 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227b, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfdffff})

02:03:38 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4020940d, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:38 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5421, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x1000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:48 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80086601, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:48 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5450, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfeffffff})

02:03:48 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x2289, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:48 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80086601, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:48 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227c, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:48 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2275, 0x0)

02:03:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd})

02:03:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x2000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:48 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5451, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:48 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80087601, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:48 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x4b47, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:48 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227d, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:48 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80087601, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:48 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2276, 0x0)

02:03:48 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x6000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff0f})

02:03:58 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227e, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:58 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2279, 0x0)

02:03:58 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x4b49, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:03:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5452, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:58 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x9000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:03:58 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80111500, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:03:58 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80111500, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:03:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x5460, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:03:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff5})

02:03:58 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40049409, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:10 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x801c581f, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:10 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x227f, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:10 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227a, 0x0)

02:04:10 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xd000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:10 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5382, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:10 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40086602, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6})

02:04:10 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x801c581f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:11 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x40087602, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})

02:04:11 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80811501, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:11 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:11 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227b, 0x0)

02:04:11 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2282, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff})

02:04:11 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5385, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:11 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80811501, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:11 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0045878, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:11 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x401c5820, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x101040, 0x0)
ioctl$SG_GET_NUM_WAITING(r3, 0x227d, &(0x7f0000000080))
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:11 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x20000000, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:11 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0045878, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:11 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x4020940d, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5386, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:21 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0xc0045878, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xf5ffffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0189436, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:21 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80086601, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x8000, 0x0)
r2 = dup2(r1, r0)
r3 = syz_open_dev$vcsn(&(0x7f0000000000), 0x6, 0x125000)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000080)={0x4, 0x9, 0x5a, 0x1, 0x0, "6a1e5451918522c6df96980e4cf6efaa15144b", 0x3, 0x4c3e})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:21 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2283, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:21 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227c, 0x0)

02:04:22 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc020660b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:32 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122a, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:32 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0xc0045878, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:32 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80087601, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:32 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xf6ffffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:32 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2284, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:32 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x541b, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:32 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227d, 0x0)

02:04:32 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122e, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:32 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80111500, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:32 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2285, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:32 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:32 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x801c581f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x1f, 0x3ff, 0x5, 0x4, 0x12, "0cd3b0e1304fb85cdf07201015938b93b94a80", 0x8, 0x9})
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:32 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5421, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:32 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfdfdffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:32 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227e, 0x0)

02:04:44 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x80811501, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfeffffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:44 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5450, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:44 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x227f, 0x0)

02:04:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2286, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048128c, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0xc0189436, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x109402, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x103500)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc04833f8, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffdfd, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:44 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5451, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:44 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0045878, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000040))
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2287, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:44 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2282, 0x0)

02:04:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0xc020660b, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048f833, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:54 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5452, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:54 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0045878, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:54 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2283, 0x0)

02:04:54 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0xc0481273, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x625980, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x400680, 0x0)
ioctl$PIO_SCRNMAP(r3, 0x4b41, &(0x7f0000000140)="9c333446cf44d174a762b81e5b2bf9a2e6b0057fc0aed8b23ac264cd7154f50ff3d9a5b10244f324c406c5bfac87995243648e88198ab663992ed7c1e430b89b1c32f15b89d5e79a41c2d8c66b7fa8f36d088dc6cdcd5aa2c7250789fa1c25cf779f66af53b560eec88a6739")
r4 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
ioctl$KDSKBMETA(r4, 0x4b63, &(0x7f00000000c0)=0x4)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$KDSETLED(r7, 0x4b32, 0x2f9fae98)
r9 = dup2(r8, r7)
ioctl$SG_GET_NUM_WAITING(r9, 0x1276, 0x0)
ioctl$KDGKBENT(r9, 0x4b46, &(0x7f00000001c0)={0x54, 0x4, 0x3f})
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:54 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2288, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:04:54 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:54 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xffffff0f, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:54 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x2, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:04:54 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffff5, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:04:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r1, r0)

02:04:54 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x5460, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3183.031151] blktrace: Concurrent blktraces are not allowed on sg0
02:04:54 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0189436, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:04:54 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x633}, 0x402a0}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x67, 0x80, 0x0, 0x8000, 0x110, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6000000, 0x0, @perf_config_ext={0x200, 0x7}, 0x41000, 0x0, 0x3, 0x9, 0x2, 0x9, 0x4, 0x0, 0x4, 0x0, 0x7}, 0xffffffffffffffff, 0x3, r0, 0x8)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
io_uring_setup(0x56f7, &(0x7f0000000180)={0x0, 0x6dfa, 0x0, 0x0, 0x5f})
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:04:54 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x3, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3183.129535] blktrace: Concurrent blktraces are not allowed on sg0
[ 3183.133527] blktrace: Concurrent blktraces are not allowed on sg0
02:05:04 executing program 5:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = timerfd_create(0x0, 0x800)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r2, r1)
pipe2(&(0x7f0000000040)={<r3=>0xffffffffffffffff}, 0x4800)
r4 = dup2(r3, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:04 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x40049409, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:04 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/ipv6', 0x0, 0x20)
close(r4)
r5 = getpgrp(0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r6, 0x40182103, &(0x7f0000000000)={0x0, 0x0, 0xffffffffffffffff, 0xcb3})
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, r4, &(0x7f0000000140)={r4, r6, 0xfffffffd})
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x3, 0x40, 0x3, 0x9, 0x0, 0x5, 0x8d390, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x6e, 0x3}, 0x48000, 0x0, 0x3a4, 0x1, 0x4, 0x80000000, 0x3, 0x0, 0x3}, r5, 0x5, r0, 0x1)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:05:04 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc020660b, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:04 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x7, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:04 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2284, 0x0)

02:05:04 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffff6, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:04 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x2289, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xfffffffe, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:05 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4b47, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3193.622664] blktrace: Concurrent blktraces are not allowed on sg0
02:05:05 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122a, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:05 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x40086602, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:05 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x8, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x4e24, 0xfffffff8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xd1ef}, 0x1c)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r7, r6)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000010065e0c5ac00002658809d0dd3e94b3ccc8e908688313617fc168c30ea3f391057d7a51920c653c30d67e2606b4fb35139046d8ca0611929c1161f27f7ff0f22b4b199362d53626326", @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00./file0\x00'])
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000080)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:05 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2285, 0x0)

[ 3193.853722] blktrace: Concurrent blktraces are not allowed on sg0
[ 3193.871894] blktrace: Concurrent blktraces are not allowed on sg0
02:05:05 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4b49, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:05 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0xffffffff, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:05 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122e, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:05 executing program 1:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000003c0)=ANY=[@ANYBLOB="03000000000040000128f0cdcfd418946f751690978cd24a04000000000000090000000700000002000000000000007f000000000000003f00000800000000060000000000000000000000000000000000000000000000021500000000000000000000000000000600000000000000ef5f256c00000000000400000000000000000000000000000000000000000000050000000000000000000000000000002d400d98983074becf77219e74be8b15eb1fd7389ace0605c718e582e60474f122f555aff2eb65683ac1bebb4c6976049df5b06e1b2e236fc294ffd1b17deeef610e8c27038b094c049f130f8f"])
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r4, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r5 = fsopen(&(0x7f00000001c0)='f2fs\x00', 0x0)
ioctl$int_in(r5, 0x0, &(0x7f0000000200))
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r1, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000280)={0x100000001, 0x40, '\x00', 0x1, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})

02:05:05 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xa, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3194.169738] blktrace: Concurrent blktraces are not allowed on sg0
02:05:17 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x40087602, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:17 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xb, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:17 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x8, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)

02:05:17 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5382, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:17 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2286, 0x0)

02:05:17 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048122f, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:17 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
r5 = syz_open_dev$vcsa(&(0x7f0000000180), 0x1, 0x84000)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r6=>r0}, './file0\x00'})
io_submit(0x0, 0x2, &(0x7f0000000400)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0xfff0, r2, &(0x7f0000000100)="cf7c4bdcaf18653973c1d45928582366e804ec27949367e8525b30ed083cd497ebac957b1a91791736", 0x29, 0x3, 0x0, 0x2}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xae0, r5, &(0x7f00000001c0)="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", 0xfd, 0x67d, 0x0, 0x3, r6}])
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 3206.515621] blktrace: Concurrent blktraces are not allowed on sg0
[ 3206.523315] blktrace: Concurrent blktraces are not allowed on sg0
02:05:18 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x16, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = openat(r2, &(0x7f0000000040)='./file0\x00', 0x400000, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x3)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r3)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x10010, 0x0, 0x0})

02:05:18 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 3206.757152] blktrace: Concurrent blktraces are not allowed on sg0
02:05:28 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5385, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x401c5820, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:28 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048128c, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2287, 0x0)

02:05:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup(r1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffb, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SNAPSHOT_ATOMIC_RESTORE(r2, 0x3304)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={r1, 0x4800000000000000, 0x5, 0x5})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r4, 0x227d, &(0x7f0000000040))

02:05:28 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x2, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:28 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r8, r7)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r6, 0xc0189371, &(0x7f0000000100)={{0x1, 0x1, 0x18, r8}, './file0\x00'})
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:05:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x56, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3216.987359] blktrace: Concurrent blktraces are not allowed on sg0
02:05:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x16e, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x4020940d, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:28 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc04833f8, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x80086601, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x940, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x1f, 0x161142)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:28 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x6, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2288, 0x0)

02:05:28 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5386, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1e5, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:28 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc048f833, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

[ 3217.316820] blktrace: Concurrent blktraces are not allowed on sg0
[ 3217.323945] blktrace: Concurrent blktraces are not allowed on sg0
02:05:28 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:05:28 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x9, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1ee, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:28 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x80087601, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3217.418358] blktrace: Concurrent blktraces are not allowed on sg0
[ 3217.424737] blktrace: Concurrent blktraces are not allowed on sg0
02:05:39 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x300, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:39 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r3, r2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3, {0xee00, 0xee01}}, './file0\x00'})
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:05:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:39 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x541b, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:39 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x9, 0xf833})

02:05:39 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x80111500, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:39 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0xd, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:39 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x2289, 0x0)

[ 3227.947141] blktrace: Concurrent blktraces are not allowed on sg0
[ 3227.955122] blktrace: Concurrent blktraces are not allowed on sg0
[ 3227.955730] blktrace: Concurrent blktraces are not allowed on sg0
02:05:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
sendmsg$DEVLINK_CMD_SB_GET(r2, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x144, 0x0, 0x100, 0x70bd28, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffffe6d}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x10001}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xbddc}}]}, 0x144}, 0x1, 0x0, 0x0, 0x8841}, 0x4000)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r2, {0xb2a}}, './file0\x00'})
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)=0x80)

02:05:39 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5421, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:39 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x316, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:39 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x2, 0x9, 0xf833})

[ 3228.155982] blktrace: Concurrent blktraces are not allowed on sg0
[ 3228.161683] blktrace: Concurrent blktraces are not allowed on sg0
[ 3228.164360] blktrace: Concurrent blktraces are not allowed on sg0
02:05:50 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x3, 0x9, 0xf833})

02:05:50 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x700, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:50 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:50 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0xc2f)
r3 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r6, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r3, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)
mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000100)=""/254)

02:05:50 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x801c581f, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="01008900"/14, @ANYRES32=<r3=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r4 = dup(r3)
ioctl$int_in(r4, 0x5452, &(0x7f00000000c0)=0x52)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x1000, &(0x7f0000000300)=""/4096}, &(0x7f0000000040)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:50 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5450, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:50 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x4b47, 0x0)

[ 3238.919147] blktrace: Concurrent blktraces are not allowed on sg0
[ 3238.949347] blktrace: Concurrent blktraces are not allowed on sg0
[ 3238.958300] blktrace: Concurrent blktraces are not allowed on sg0
02:05:50 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x7, 0x9, 0xf833})

02:05:50 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xa00, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:05:50 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x2, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:05:50 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x80811501, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:05:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x70dd21, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 3239.129735] blktrace: Concurrent blktraces are not allowed on sg0
02:05:50 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5451, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3239.191885] blktrace: Concurrent blktraces are not allowed on sg0
02:05:50 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x8, 0x9, 0xf833})

[ 3239.205005] blktrace: Concurrent blktraces are not allowed on sg0
[ 3239.283822] blktrace: Concurrent blktraces are not allowed on sg0
02:06:00 executing program 5:
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000000c0)={'syztnl2\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x29, 0x40, 0x1, 0x9, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, 0x40, 0x20, 0x2, 0xffffff7f}})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0xfffffffffffffffc, 0x6, 0x6, @buffer={0x0, 0x99, &(0x7f0000000100)=""/153}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x10012, 0xfffffffe, 0x0})

02:06:00 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r4=>r3, {0x2}}, './file0\x00'})
ioctl$SCSI_IOCTL_DOORUNLOCK(r4, 0x5381)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xee, 0x20, 0x4, 0x34, 0x0, 0x1, 0x31000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8bb3, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}, 0x484, 0x3f9f9823, 0x1, 0x2, 0x0, 0x1e5, 0x200, 0x0, 0x3, 0x0, 0x7fffffff}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0xa)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f0000880000/0x3000)=nil, 0x3000, 0x8000, 0x0, 0x0, 0x3)

02:06:00 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0xc0045878, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:00 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x4b49, 0x0)

02:06:00 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xb00, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:00 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xa, 0x9, 0xf833})

02:06:00 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5452, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:00 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x6, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:00 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0xc0045878, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3249.305374] blktrace: Concurrent blktraces are not allowed on sg0
[ 3249.311360] blktrace: Concurrent blktraces are not allowed on sg0
[ 3249.343457] blktrace: Concurrent blktraces are not allowed on sg0
02:06:00 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1600, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:00 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x5460, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:00 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0xc0189436, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:00 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xb, 0x9, 0xf833})

[ 3249.464349] blktrace: Concurrent blktraces are not allowed on sg0
02:06:00 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40049409, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:01 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x9, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:01 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1603, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3249.579865] blktrace: Concurrent blktraces are not allowed on sg0
[ 3249.585412] blktrace: Concurrent blktraces are not allowed on sg0
[ 3249.587050] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0xc020660b, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xd, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:21 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x16, 0x9, 0xf833})

02:06:21 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x5382, 0x0)

02:06:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0xd871, 0x284280)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000001400)=0x8)
r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
ioctl$BLKTRACETEARDOWN(r6, 0x1276, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000001380)={0x53, 0xffffffffffffffff, 0x1c, 0x9, @scatter={0x4, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/164, 0xa4}, {&(0x7f0000000180)=""/17, 0x11}]}, &(0x7f0000000200)="66ef5d353985baaf32d70d675599fc598da5708a20d89084a6334342", &(0x7f0000001300)=""/75, 0x6, 0x10, 0x2, &(0x7f0000000240)})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x20000000003, 0x305c00)
dup2(r8, r7)
ioctl$SG_GET_TIMEOUT(r8, 0x2202, 0x0)
ioctl$SG_GET_SCSI_ID(r1, 0x2276, &(0x7f0000000040))
ioctl$SG_SET_RESERVED_SIZE(r4, 0x2275, &(0x7f0000001440)=0x4)
syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x301000)

02:06:21 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40086602, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x2000, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:21 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, 0x0, 0x0, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
ioctl$SG_IO(r4, 0x2285, &(0x7f00000003c0)={0x0, 0xfffffffffffffffc, 0x3, 0x2, @buffer={0x0, 0x60, &(0x7f0000000100)=""/96}, &(0x7f0000000180)="3c941f", &(0x7f00000001c0)=""/87, 0x3ff, 0x31, 0x1, &(0x7f0000000240)})
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
ioctl$TIOCNXCL(r2, 0x540d)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_config_ext={0x1, 0x1}, 0x0, 0x80000001, 0x0, 0x8, 0x401, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x9)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)
r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000280), 0x200, 0x0)
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x9, 0x2, 0x8, 0x9, 0x0, 0x6, 0x22000, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x21, 0x1, @perf_config_ext={0x6}, 0x10, 0x9, 0x557, 0x7, 0x0, 0x5b51, 0x20, 0x0, 0x6, 0x0, 0x8}, 0xffffffffffffffff, 0xe, r5, 0x0)

[ 3269.785187] blktrace: Concurrent blktraces are not allowed on sg0
[ 3269.790717] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x3f00, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3269.863495] blktrace: Concurrent blktraces are not allowed on sg0
[ 3269.870920] blktrace: Concurrent blktraces are not allowed on sg0
[ 3269.872339] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x5600, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x600, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:21 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x40087602, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:21 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x5385, 0x0)

02:06:21 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x56, 0x9, 0xf833})

[ 3269.974950] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0xc0481273, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3269.982876] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x21a101, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000080)={0x5f9, 0x200, 0x4, 0x49ed0b23, 0x3, "e24479bc377d9ba5cf12e779a4134dde4e5e3f", 0x5, 0x1})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:21 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = dup2(r5, r4)
ioctl$SG_GET_NUM_WAITING(r6, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file0\x00'})
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:06:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x6e01, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

[ 3270.093649] blktrace: Concurrent blktraces are not allowed on sg0
02:06:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:21 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x16e, 0x9, 0xf833})

02:06:21 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x900, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:21 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xe501, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
ioctl$TCSETSF2(r4, 0x402c542d, &(0x7f0000000080)={0x9, 0xef, 0x0, 0x9, 0x1, "4f5b6326670e7afd29e6615e59fef1e47c79e9", 0x101, 0x1})
r5 = dup2(r3, r0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:21 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x1d, 0x2, 0x40, 0x35, 0x0, 0x8, 0xc0a344f10a0819de, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0x5}, 0x40008, 0x0, 0x8, 0x0, 0x101, 0x100, 0x3, 0x0, 0x3, 0x0, 0x1a}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x6, 0x12, 0x6, 0x1, 0x0, 0x1000, 0x4041, 0xb, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x3, @perf_bp={&(0x7f0000000040), 0x8}, 0x448, 0x8, 0x88f, 0x2, 0x9, 0x1, 0x0, 0x0, 0x7fff, 0x0, 0x1ff}, 0xffffffffffffffff, 0x1, r0, 0xa)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

[ 3270.347025] blktrace: Concurrent blktraces are not allowed on sg0
[ 3270.411013] blktrace: Concurrent blktraces are not allowed on sg0
[ 3270.419407] blktrace: Concurrent blktraces are not allowed on sg0
02:06:32 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xd00, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000040)={0x100, 0xa862, 0x0, 0x100, 0xd, "3938ae3932710881"})
r2 = dup2(r1, r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r5, r4)
ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000100)={0x1, 0x6, 0x2, 0x9, 0x1, [{0xffffffff, 0x7fff, 0x6, '\x00', 0x883}]})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r6)
dup2(r6, r3)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000080)={0x7fff, 0x3f, 0x0, 0x20, 0x7f, "28a52448055796656cd218e3b2dbe959d0ffaa", 0x6, 0x2})
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$SG_GET_PACK_ID(0xffffffffffffffff, 0x227c, &(0x7f00000000c0))

02:06:32 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000080)={0x1400, 0xea8, 0x1, 0x4f, 0x2, "7278c731619bdca29868e2c355ebcfd6fe21d6", 0x100, 0x4})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r3, 0x80047210, &(0x7f0000000040))
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff}, './file0\x00'})
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000000140)={0xf9, 0x8001, 0x4e, "99e90a08e186efbde14805bc1d7f0c72bbbf47d699aa6740b0a2148aba9be63e801edcc8ebfbd0de46b362e6e101dbb0b2796e3a5988937fdc2aa18cf3c4218930916ebe1ac5d4bdbddf66e82203a420b2a9e88bfd8265788a9a7b795d67736fef09fb5acb85cce7f88db9c0d8a3100f0e05142d8a72814450b45354a32ca24d09cc938c120013120451686288d66527861d3150e5e15590fba516a25a094d131e335d433121b864bb54b3589f5ff1741b373cf7c4875713abd5aa938c35b6be2ad513a77c17b110a109c5a0e0e762cfb0879405a6d9a75fcf68334a16c70f765aa1dae119b89fc50cc9eb79cfc564046d3b6f07d53161052d"})
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:32 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7a, 0x0, 0xf5, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETSF2(r3, 0x402c542d, &(0x7f0000000100)={0x2, 0x1, 0x4, 0x101, 0x1, "a41639cea014d043c940ad63f0bacb70bf118c", 0x9, 0xfffffffc})
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
dup(r0)
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

02:06:32 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1e5, 0x9, 0xf833})

02:06:32 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xee01, 0x9, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:32 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x5386, 0x0)

02:06:32 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x401c5820, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:33 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x4020940d, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:33 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1ee, 0x9, 0xf833})

02:06:33 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80086601, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:33 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r5 = dup2(r4, r3)
ioctl$SG_GET_NUM_WAITING(r5, 0x1276, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0)
ioctl$TIOCPKT(r6, 0x5420, &(0x7f0000000300))
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)={0x11c, 0x1, 0x1, 0x101, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0xfffffffa, 0xffffffff]}, @CTA_TUPLE_ORIG={0x34, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_SEQ_ADJ_ORIG={0x4c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffffd}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_AFTER={0x8}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1f}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xffffff80}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xf6ea}]}, @CTA_NAT_SRC={0x50, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x3d}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @local}}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast2}]}, @CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x101}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:33 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x2000, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 3281.649884] blktrace: Concurrent blktraces are not allowed on sg0
02:06:33 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x300, 0x9, 0xf833})

02:06:33 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x14, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:33 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80087601, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:33 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
syz_open_pts(r0, 0x8000)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000140))
ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f0000000080)={0x7ff, {0x4, 0x0, 0x7}})
r4 = dup2(r1, r0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$TIOCGETD(r0, 0x5424, &(0x7f00000000c0))

02:06:33 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x541b, 0x0)

02:06:33 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xfdfd, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

[ 3281.918268] blktrace: Concurrent blktraces are not allowed on sg0
02:06:44 executing program 6:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x80111500, 0x0)
fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000000), &(0x7f0000000100), 0x2, 0x1)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)

02:06:44 executing program 0:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xea, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x129100, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
pidfd_getfd(0xffffffffffffffff, r0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = dup2(r3, r2)
ioctl$SG_GET_NUM_WAITING(r4, 0x5421, 0x0)

02:06:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0xffffffffffffffff, 0x480080)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6}]})
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000280)="1bee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:44 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x316, 0x9, 0xf833})

02:06:44 executing program 7:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x53, 0x0, 0x6, 0x0, @scatter={0xffff, 0x0, 0x0}, &(0x7f0000000280)="55ee7162a762", 0x0, 0x0, 0x0, 0x0, 0x0})

02:06:44 executing program 4:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x1276, 0x0)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x6, 0x4, 0x7, 0x6, 0x0, 0x7, 0x888, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4cab, 0x2, @perf_bp={&(0x7f0000000100), 0x8}, 0x110, 0x100000000, 0x101, 0x9, 0x100000001, 0x8, 0x4, 0x0, 0x3a, 0x0, 0xfffffffffffffffa}, 0x0, 0x4, 0xffffffffffffffff, 0x9)
ioctl$SG_GET_NUM_WAITING(r2, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f0000000000), 0x0, 0x0, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f00000000c0)='net\x00')
shmat(0x0, &(0x7f0000705000/0x2000)=nil, 0x0)
mbind(&(0x7f0000705000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x7ff, 0x0, 0x6)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r4, r3)
fcntl$notify(r3, 0x402, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r6, r5)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r6, 0x40049366, &(0x7f0000000040))

02:06:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x8c, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:44 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x80000}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = dup2(r2, r1)
ioctl$SG_GET_NUM_WAITING(r3, 0x1276, 0x0)
fsetxattr$trusted_overlay_opaque(r3, 0x0, 0x0, 0x0, 0x0)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
syz_open_procfs(0x0, &(0x7f0000000140)='net/packet\x00')
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x6, 0x0, 0x0, 0x3, 0x0, 0x7, 0xd000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8020000, 0x0, @perf_bp={0x0}, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0xb71}, 0xffffffffffffffff, 0x2, r0, 0x0)
shmat(0x0, &(0x7f0000400000/0xc00000)=nil, 0x5000)
ioctl$TCSETS(r4, 0x5402, &(0x7f0000000100)={0x6, 0x0, 0x4, 0xffff, 0x0, "33c77bd0a60efcb3ad6ebaaef1e5bab842260e"})
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x20400, 0x0)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
dup2(r7, r6)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f00000003c0)={<r8=>0x0, 0xffffffffffffff81, 0x6})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r5, 0x50009417, &(0x7f00000007c0)={{r7}, 0x0, 0xe, @unused=[0x0, 0xfff, 0x0, 0xacc], @devid=r8})
mbind(&(0x7f000056b000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3)

[ 3292.969683] blktrace: Concurrent blktraces are not allowed on sg0
[ 3292.978568] blktrace: Concurrent blktraces are not allowed on sg0
[ 3292.980517] blktrace: Concurrent blktraces are not allowed on sg0
02:06:44 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x33f8, 0xf833, 0xecd6, 0x8})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

02:06:44 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x446, 0x9, 0xf833})

[ 3293.184621] audit: type=1326 audit(1760926004.685:59): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=36534 comm="syz-executor.5" exe="/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea64de6b19 code=0x0
[ 3297.992617] syz-fuzzer invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 3297.993649] CPU: 0 UID: 0 PID: 254 Comm: syz-fuzzer Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3297.993666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3297.993673] Call Trace:
[ 3297.993678]  <TASK>
[ 3297.993683]  dump_stack_lvl+0xfa/0x120
[ 3297.993703]  dump_header+0x107/0x950
[ 3297.993724]  oom_kill_process+0x278/0xa00
[ 3297.993737]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3297.993757]  out_of_memory+0x138f/0x1690
[ 3297.993777]  ? __pfx_out_of_memory+0x10/0x10
[ 3297.993800]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3297.993830]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3297.993847]  ? trace_irq_enable.constprop.0+0xc2/0x100
[ 3297.993866]  ? finish_task_switch.isra.0+0x294/0x840
[ 3297.993891]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3297.993913]  ? policy_nodemask+0xeb/0x4e0
[ 3297.993934]  alloc_pages_mpol+0xed/0x340
[ 3297.993953]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3297.993970]  ? find_held_lock+0x2b/0x80
[ 3297.993984]  ? filemap_get_entry+0x1b1/0x3b0
[ 3297.994000]  ? lock_release+0xc8/0x290
[ 3297.994020]  folio_alloc_noprof+0x21/0x80
[ 3297.994032]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3297.994056]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3297.994079]  ? down_read+0x1b1/0x470
[ 3297.994098]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3297.994119]  filemap_fault+0x188f/0x2cb0
[ 3297.994142]  ? __pfx_filemap_fault+0x10/0x10
[ 3297.994171]  __do_fault+0x10d/0x480
[ 3297.994187]  __handle_mm_fault+0x1142/0x30c0
[ 3297.994204]  ? lock_vma_under_rcu+0x117/0x530
[ 3297.994218]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3297.994254]  handle_mm_fault+0x2d8/0x750
[ 3297.994274]  do_user_addr_fault+0x844/0x1760
[ 3297.994300]  exc_page_fault+0xb0/0x180
[ 3297.994314]  asm_exc_page_fault+0x26/0x30
[ 3297.994326] RIP: 0033:0x4555ad
[ 3297.994344] Code: Unable to access opcode bytes at 0x455583.
[ 3297.994350] RSP: 002b:000000c00003fee0 EFLAGS: 00010206
[ 3297.994360] RAX: 000000c000000480 RBX: 000002ffaa17c0ef RCX: 0000000000000000
[ 3297.994368] RDX: 0000000000000002 RSI: 000000c00001e000 RDI: 000000c00001e000
[ 3297.994375] RBP: 000000c00003ff28 R08: 000002ffaa17c0ef R09: 00007f896f9ed000
[ 3297.994383] R10: 00007f896f9ed010 R11: 00000000005cae8a R12: 0000000000438880
[ 3297.994390] R13: 0000000000000000 R14: 0000000000e5de2c R15: 0000000000000000
[ 3297.994410]  </TASK>
[ 3298.011982] Mem-Info:
[ 3298.012190] active_anon:11132 inactive_anon:42189 isolated_anon:0
[ 3298.012190]  active_file:266 inactive_file:1665 isolated_file:0
[ 3298.012190]  unevictable:0 dirty:0 writeback:0
[ 3298.012190]  slab_reclaimable:6546 slab_unreclaimable:60253
[ 3298.012190]  mapped:69700 shmem:106 pagetables:5480
[ 3298.012190]  sec_pagetables:0 bounce:0
[ 3298.012190]  kernel_misc_reclaimable:0
[ 3298.012190]  free:3687 free_pcp:151 free_cma:0
[ 3298.015380] Node 0 active_anon:44528kB inactive_anon:168756kB active_file:1064kB inactive_file:6660kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:278800kB dirty:0kB writeback:0kB shmem:424kB kernel_stack:8224kB pagetables:21920kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3298.017618] Node 0 DMA free:6416kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[ 3298.019830] lowmem_reserve[]: 0 1599 1599 1599
[ 3298.020223] Node 0 DMA32 free:8080kB boost:12480kB min:17552kB low:19176kB high:20800kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44528kB inactive_anon:168756kB active_file:1064kB inactive_file:6660kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:856kB local_pcp:0kB free_cma:0kB
[ 3298.022841] lowmem_reserve[]: 0 0 0 0
[ 3298.023175] Node 0 DMA: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6412kB
[ 3298.024268] Node 0 DMA32: 0*4kB 1*8kB (M) 17*16kB (M) 54*32kB (ME) 21*64kB (M) 15*128kB (ME) 9*256kB (ME) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 8088kB
[ 3298.025466] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3298.026151] 2077 total pagecache pages
[ 3298.026468] 0 pages in swap cache
[ 3298.026747] Free swap  = 0kB
[ 3298.027011] Total swap = 0kB
[ 3298.027261] 524158 pages RAM
[ 3298.027509] 0 pages HighMem/MovableOnly
[ 3298.027848] 110746 pages reserved
[ 3298.028131] Unreclaimable slab info:
[ 3298.028548] Name                      Used          Total
[ 3298.029025] pid_3                     23KB         23KB
[ 3298.029464] pid_2                    147KB        228KB
[ 3298.029906] IEEE-802.15.4-MAC         63KB         63KB
[ 3298.030333] IEEE-802.15.4-RAW         63KB         63KB
[ 3298.030776] p9_req_t                   7KB          7KB
[ 3298.031204] ip6-frags                 15KB         15KB
[ 3298.031624] fib6_node                 28KB         28KB
[ 3298.032062] ip6_dst_cache             37KB         45KB
[ 3298.032492] PINGv6                    61KB         61KB
[ 3298.032930] RAWv6                    464KB        464KB
[ 3298.033361] UDPLITEv6                 63KB         63KB
[ 3298.033801] UDPv6                     63KB         63KB
[ 3298.034227] tw_sock_TCPv6              7KB          7KB
[ 3298.034651] TCPv6                    327KB        327KB
[ 3298.035095] scsi_sense_cache           4KB          4KB
[ 3298.035521] virtio_scsi_cmd           16KB         16KB
[ 3298.035976] bio-120                   11KB         11KB
[ 3298.036400] bio-248                    7KB          7KB
[ 3298.036840] mqueue_inode_cache        121KB        121KB
[ 3298.037266] nfs_commit_data           15KB         15KB
[ 3298.038730] nfs_write_data            47KB         47KB
[ 3298.039885] jbd2_inode                 7KB          7KB
[ 3298.040318] ext4_system_zone           7KB          7KB
[ 3298.040743] ext4_io_end_vec            7KB          7KB
[ 3298.041330] kioctx                    31KB         31KB
[ 3298.041784] aio_kiocb                  7KB          7KB
[ 3298.042210] dnotify_mark               3KB          3KB
[ 3298.042634] dnotify_struct             3KB          3KB
[ 3298.043092] fasync_cache               7KB          7KB
[ 3298.043519] pid_namespace             32KB         32KB
[ 3298.043956] rpc_buffers               31KB         31KB
[ 3298.044381] rpc_tasks                  3KB          3KB
[ 3298.044816] UNIX-STREAM              206KB        350KB
[ 3298.045240] UNIX                     199KB        286KB
[ 3298.045668] UDP-Lite                  61KB         61KB
[ 3298.046105] tcp_bind2_bucket           8KB          8KB
[ 3298.046534] tcp_bind_bucket            8KB          8KB
[ 3298.046983] inet_peer                  8KB          8KB
[ 3298.047413] xfrm_state                15KB         15KB
[ 3298.047856] ip_fib_trie                8KB          8KB
[ 3298.048279] ip_fib_alias              15KB         15KB
[ 3298.048701] rtable                    12KB         12KB
[ 3298.049146] PING                      60KB         60KB
[ 3298.049581] RAW                       61KB         61KB
[ 3298.050021] UDP                      228KB        309KB
[ 3298.050444] request_sock_TCP           7KB          7KB
[ 3298.050880] TCP                      321KB        437KB
[ 3298.051304] hugetlbfs_inode_cache         62KB         62KB
[ 3298.051746] netfs_subrequest          33KB         33KB
[ 3298.052190] netfs_request             95KB         95KB
[ 3298.052614] bio-264                   15KB         15KB
[ 3298.053049] ep_head                    8KB          8KB
[ 3298.053481] eventpoll_pwq             19KB         19KB
[ 3298.053918] eventpoll_epi             47KB         55KB
[ 3298.054345] inotify_inode_mark         50KB         50KB
[ 3298.054794] sgpool-128               178KB        178KB
[ 3298.055217] sgpool-64                 63KB         63KB
[ 3298.055642] sgpool-32                 47KB         47KB
[ 3298.056079] sgpool-16                 67KB        105KB
[ 3298.056513] sgpool-8                  34KB         56KB
[ 3298.056952] request_queue             63KB         63KB
[ 3298.057382] blkdev_ioc                 8KB          8KB
[ 3298.057818] bio-184                   60KB         60KB
[ 3298.058242] biovec-max               565KB        565KB
[ 3298.058672] biovec-128                63KB         63KB
[ 3298.059110] biovec-64                 31KB         31KB
[ 3298.059532] biovec-16                  7KB          7KB
[ 3298.059970] user_namespace            61KB         61KB
[ 3298.060398] uid_cache                  7KB          7KB
[ 3298.060837] dmaengine-unmap-2          4KB          4KB
[ 3298.061260] audit_buffer               7KB          7KB
[ 3298.061693] skbuff_small_head       2557KB       2593KB
[ 3298.062145] skbuff_fclone_cache         97KB         97KB
[ 3298.062582] skbuff_head_cache       1003KB       1016KB
[ 3298.063026] file_lease_cache           7KB          7KB
[ 3298.063450] file_lock_cache           43KB         43KB
[ 3298.063886] file_lock_ctx              7KB          7KB
[ 3298.064309] fsnotify_mark_connector         19KB         19KB
[ 3298.064789] posix_timers_cache         16KB         16KB
[ 3298.065219] taskstats                114KB        123KB
[ 3298.065653] mem_cgroup_per_node         37KB         37KB
[ 3298.066108] mem_cgroup               154KB        154KB
[ 3298.066541] proc_dir_entry          1135KB       1158KB
[ 3298.066981] pde_opener                 7KB          7KB
[ 3298.067414] seq_file                  27KB         48KB
[ 3298.067858] sigqueue                  51KB         51KB
[ 3298.068287] shmem_inode_cache       1444KB       1554KB
[ 3298.068714] kernfs_iattrs_cache        300KB        300KB
[ 3298.069169] kernfs_node_cache       6978KB       7000KB
[ 3298.069607] mnt_cache                212KB        212KB
[ 3298.070064] filp                     854KB       1527KB
[ 3298.070507] names_cache             5984KB       6872KB
[ 3298.070948] net_namespace            330KB        330KB
[ 3298.071377] hashtab_node             274KB        274KB
[ 3298.071821] ebitmap_node            1149KB       1149KB
[ 3298.072246] avtab_node              4976KB       4976KB
[ 3298.072676] avc_node                  35KB         35KB
[ 3298.073130] lsm_inode_cache         1857KB       1948KB
[ 3298.073567] lsm_file_cache            67KB        144KB
[ 3298.074006] key_jar                   47KB         47KB
[ 3298.074430] uts_namespace             15KB         15KB
[ 3298.074871] nsproxy                   11KB         11KB
[ 3298.075333] vm_area_struct          2502KB       2861KB
[ 3298.075772] fs_cache                  58KB         64KB
[ 3298.076195] files_cache              187KB        239KB
[ 3298.076620] signal_cache             581KB        647KB
[ 3298.077061] sighand_cache            608KB        721KB
[ 3298.077512] task_struct             3141KB       4125KB
[ 3298.077955] cred                     119KB        144KB
[ 3298.078391] anon_vma_chain           483KB        547KB
[ 3298.078839] anon_vma                 643KB        721KB
[ 3298.079262] pid                       81KB        110KB
[ 3298.079689] Acpi-Operand              62KB        114KB
[ 3298.080124] Acpi-ParseExt             43KB         43KB
[ 3298.080549] Acpi-Parse                59KB         74KB
[ 3298.080990] Acpi-State                19KB         35KB
[ 3298.081431] Acpi-Namespace            24KB         24KB
[ 3298.081873] shared_policy_node          4KB          4KB
[ 3298.082302] numa_policy                7KB          7KB
[ 3298.082727] perf_event               203KB        218KB
[ 3298.083164] trace_event_file         212KB        212KB
[ 3298.083591] ftrace_event_field        494KB        494KB
[ 3298.084037] pool_workqueue           173KB        173KB
[ 3298.084470] task_group                16KB         16KB
[ 3298.084927] maple_node               646KB       1096KB
[ 3298.085352] mm_struct                527KB        598KB
[ 3298.085802] vmap_area                238KB        245KB
[ 3298.086233] page->ptl                465KB        543KB
[ 3298.086656] kmemleak_scan_area        117KB        127KB
[ 3298.088039] kmemleak_object       104222KB     109867KB
[ 3298.088467] kmalloc-cg-8k            192KB        192KB
[ 3298.088908] kmalloc-cg-4k           4856KB       5312KB
[ 3298.089336] kmalloc-cg-2k           5488KB       5824KB
[ 3298.089787] kmalloc-cg-1k            992KB       1056KB
[ 3298.090220] kmalloc-cg-512           610KB        656KB
[ 3298.090648] kmalloc-cg-256           168KB        168KB
[ 3298.091092] kmalloc-cg-128           202KB        208KB
[ 3298.091524] kmalloc-cg-64             79KB         92KB
[ 3298.091964] kmalloc-cg-32            158KB        164KB
[ 3298.092393] kmalloc-cg-16              8KB          8KB
[ 3298.092832] kmalloc-cg-8              16KB         16KB
[ 3298.093262] kmalloc-cg-192           120KB        120KB
[ 3298.093694] kmalloc-cg-96            343KB        352KB
[ 3298.094159] kmalloc-8k              4368KB       4768KB
[ 3298.094593] kmalloc-4k              4584KB       5280KB
[ 3298.095038] kmalloc-2k              6016KB       6112KB
[ 3298.095468] kmalloc-1k             10850KB      11008KB
[ 3298.095914] kmalloc-512             2775KB       2896KB
[ 3298.096345] kmalloc-256              931KB        968KB
[ 3298.096793] kmalloc-128              550KB        584KB
[ 3298.097228] kmalloc-64               825KB        928KB
[ 3298.097678] kmalloc-32               548KB       1016KB
[ 3298.098121] kmalloc-16               337KB        348KB
[ 3298.098547] kmalloc-8                236KB        240KB
[ 3298.098992] kmalloc-192             1266KB       1292KB
[ 3298.099432] kmalloc-96               919KB       1148KB
[ 3298.099874] kmem_cache_node           55KB         55KB
[ 3298.100301] kmem_cache                86KB         86KB
[ 3298.100729] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/ssh.service,task=syz-fuzzer,pid=254,uid=0
[ 3298.102439] Out of memory (oom_kill_allocating_task): Killed process 253 (syz-fuzzer) total-vm:1169872kB, anon-rss:166784kB, file-rss:52kB, shmem-rss:0kB, UID:0 pgtables:772kB oom_score_adj:0
[ 3299.890157] syz-executor.0 invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 3299.891185] CPU: 0 UID: 0 PID: 275 Comm: syz-executor.0 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3299.891201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3299.891209] Call Trace:
[ 3299.891213]  <TASK>
[ 3299.891218]  dump_stack_lvl+0xfa/0x120
[ 3299.891238]  dump_header+0x107/0x950
[ 3299.891256]  oom_kill_process+0x278/0xa00
[ 3299.891270]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3299.891285]  out_of_memory+0x138f/0x1690
[ 3299.891303]  ? __pfx_out_of_memory+0x10/0x10
[ 3299.891322]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3299.891348]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3299.891368]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3299.891388]  ? policy_nodemask+0xeb/0x4e0
[ 3299.891411]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3299.891430]  ? policy_nodemask+0xeb/0x4e0
[ 3299.891449]  alloc_pages_mpol+0xed/0x340
[ 3299.891467]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3299.891483]  ? find_held_lock+0x2b/0x80
[ 3299.891497]  ? filemap_get_entry+0x1b1/0x3b0
[ 3299.891513]  ? lock_release+0xc8/0x290
[ 3299.891531]  folio_alloc_noprof+0x21/0x80
[ 3299.891543]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3299.891566]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3299.891588]  ? down_read+0x1b1/0x470
[ 3299.891605]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3299.891624]  filemap_fault+0x188f/0x2cb0
[ 3299.891644]  ? __pfx_filemap_fault+0x10/0x10
[ 3299.891668]  __do_fault+0x10d/0x480
[ 3299.891683]  __handle_mm_fault+0x1142/0x30c0
[ 3299.891699]  ? lock_vma_under_rcu+0x117/0x530
[ 3299.891712]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3299.891741]  handle_mm_fault+0x2d8/0x750
[ 3299.891763]  do_user_addr_fault+0x844/0x1760
[ 3299.891787]  exc_page_fault+0xb0/0x180
[ 3299.891800]  asm_exc_page_fault+0x26/0x30
[ 3299.891812] RIP: 0033:0x7fa3bb0bf69c
[ 3299.891829] Code: Unable to access opcode bytes at 0x7fa3bb0bf672.
[ 3299.891834] RSP: 002b:00007fff1ccdac50 EFLAGS: 00010246
[ 3299.891844] RAX: 0000000000000000 RBX: 00007fff1ccdad00 RCX: 00007fa3bb0bf69c
[ 3299.891852] RDX: 0000000000000040 RSI: 00007fa3bb21c020 RDI: 00000000000000f9
[ 3299.891859] RBP: 0000000000000003 R08: 0000000000000000 R09: 00007fff1ccdab10
[ 3299.891866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000032
[ 3299.891873] R13: 0000000000000000 R14: 000000000000000c R15: 00007fff1ccdad40
[ 3299.891890]  </TASK>
[ 3299.909355] Mem-Info:
[ 3299.909573] active_anon:74 inactive_anon:8168 isolated_anon:0
[ 3299.909573]  active_file:164 inactive_file:784 isolated_file:6
[ 3299.909573]  unevictable:0 dirty:4 writeback:0
[ 3299.909573]  slab_reclaimable:5372 slab_unreclaimable:56114
[ 3299.909573]  mapped:43549 shmem:100 pagetables:1754
[ 3299.909573]  sec_pagetables:0 bounce:0
[ 3299.909573]  kernel_misc_reclaimable:0
[ 3299.909573]  free:4002 free_pcp:0 free_cma:0
[ 3299.913038] Node 0 active_anon:296kB inactive_anon:32672kB active_file:656kB inactive_file:3136kB unevictable:0kB isolated(anon):0kB isolated(file):24kB mapped:174196kB dirty:16kB writeback:0kB shmem:400kB kernel_stack:4256kB pagetables:7016kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3299.915059] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3299.917259] lowmem_reserve[]: 0 1599 1599 1599
[ 3299.917653] Node 0 DMA32 free:9128kB boost:12480kB min:17552kB low:19176kB high:20800kB reserved_highatomic:2048KB free_highatomic:28KB active_anon:296kB inactive_anon:32672kB active_file:656kB inactive_file:3136kB unevictable:0kB writepending:16kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:464kB local_pcp:464kB free_cma:0kB
[ 3299.920108] lowmem_reserve[]: 0 0 0 0
[ 3299.920434] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3299.921492] Node 0 DMA32: 332*4kB (UMEH) 68*8kB (MEH) 16*16kB (MH) 24*32kB (ME) 28*64kB (ME) 19*128kB (ME) 4*256kB (ME) 2*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 9168kB
[ 3299.922769] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3299.923433] 1051 total pagecache pages
[ 3299.923746] 0 pages in swap cache
[ 3299.924038] Free swap  = 0kB
[ 3299.924287] Total swap = 0kB
[ 3299.924533] 524158 pages RAM
[ 3299.924793] 0 pages HighMem/MovableOnly
[ 3299.925109] 110746 pages reserved
[ 3299.925395] Unreclaimable slab info:
[ 3299.925691] Name                      Used          Total
[ 3299.926142] pid_3                     23KB         23KB
[ 3299.926567] pid_2                    127KB        212KB
[ 3299.927004] IEEE-802.15.4-MAC         63KB         63KB
[ 3299.927429] IEEE-802.15.4-RAW         63KB         63KB
[ 3299.927861] p9_req_t                   7KB          7KB
[ 3299.928287] ip6-frags                 15KB         15KB
[ 3299.928712] fib6_node                 28KB         28KB
[ 3299.929148] ip6_dst_cache             37KB         45KB
[ 3299.929579] PINGv6                    61KB         61KB
[ 3299.930018] RAWv6                    464KB        464KB
[ 3299.930441] UDPLITEv6                 63KB         63KB
[ 3299.930880] UDPv6                     63KB         63KB
[ 3299.931306] tw_sock_TCPv6              7KB          7KB
[ 3299.931732] TCPv6                    327KB        327KB
[ 3299.932174] scsi_sense_cache           4KB          4KB
[ 3299.932597] virtio_scsi_cmd           16KB         16KB
[ 3299.933036] bio-120                   11KB         11KB
[ 3299.933468] bio-248                    7KB          7KB
[ 3299.933904] mqueue_inode_cache        121KB        121KB
[ 3299.934340] nfs_commit_data           15KB         15KB
[ 3299.934774] nfs_write_data            47KB         47KB
[ 3299.935208] jbd2_inode                 7KB          7KB
[ 3299.935638] ext4_system_zone           7KB          7KB
[ 3299.936078] ext4_io_end_vec            7KB          7KB
[ 3299.936505] kioctx                    31KB         31KB
[ 3299.936942] aio_kiocb                  7KB          7KB
[ 3299.937366] dnotify_mark               3KB          3KB
[ 3299.937815] dnotify_struct             3KB          3KB
[ 3299.938241] fasync_cache               7KB          7KB
[ 3299.938667] pid_namespace             32KB         32KB
[ 3299.939106] rpc_buffers               31KB         31KB
[ 3299.939529] rpc_tasks                  3KB          3KB
[ 3299.939970] UNIX-STREAM              206KB        350KB
[ 3299.940395] UNIX                     199KB        286KB
[ 3299.940836] UDP-Lite                  61KB         61KB
[ 3299.941259] tcp_bind2_bucket           8KB          8KB
[ 3299.941691] tcp_bind_bucket            8KB          8KB
[ 3299.942126] inet_peer                  8KB          8KB
[ 3299.942552] xfrm_state                15KB         15KB
[ 3299.942991] ip_fib_trie                8KB          8KB
[ 3299.943417] ip_fib_alias              15KB         15KB
[ 3299.943858] rtable                    12KB         12KB
[ 3299.944283] PING                      60KB         60KB
[ 3299.944710] RAW                       61KB         61KB
[ 3299.945148] UDP                      228KB        309KB
[ 3299.945587] tw_sock_TCP                7KB          7KB
[ 3299.946027] request_sock_TCP           7KB          7KB
[ 3299.946457] TCP                      312KB        437KB
[ 3299.946894] hugetlbfs_inode_cache         62KB         62KB
[ 3299.947343] netfs_subrequest          33KB         33KB
[ 3299.947785] netfs_request             95KB         95KB
[ 3299.948212] bio-264                   15KB         15KB
[ 3299.948634] ep_head                    8KB          8KB
[ 3299.949071] eventpoll_pwq             19KB         19KB
[ 3299.949502] eventpoll_epi             47KB         55KB
[ 3299.949942] inotify_inode_mark         50KB         50KB
[ 3299.950370] sgpool-128               297KB        297KB
[ 3299.950811] sgpool-64                127KB        127KB
[ 3299.951233] sgpool-32                 63KB         63KB
[ 3299.951656] sgpool-16                 67KB        105KB
[ 3299.952091] sgpool-8                  56KB         56KB
[ 3299.952518] request_queue             63KB         63KB
[ 3299.952951] blkdev_ioc                 8KB          8KB
[ 3299.953382] bio-184                  140KB        140KB
[ 3299.953818] biovec-max               748KB        807KB
[ 3299.954245] biovec-128               127KB        127KB
[ 3299.954667] biovec-64                 78KB         78KB
[ 3299.955103] biovec-16                 22KB         22KB
[ 3299.955525] user_namespace            61KB         61KB
[ 3299.955959] uid_cache                  7KB          7KB
[ 3299.956382] dmaengine-unmap-2          4KB          4KB
[ 3299.956818] audit_buffer               7KB          7KB
[ 3299.957255] skbuff_small_head       1222KB       1713KB
[ 3299.957688] skbuff_fclone_cache         97KB         97KB
[ 3299.958151] skbuff_head_cache        521KB        723KB
[ 3299.958574] file_lease_cache           7KB          7KB
[ 3299.959008] file_lock_cache           43KB         43KB
[ 3299.959432] file_lock_ctx              7KB          7KB
[ 3299.959869] fsnotify_mark_connector         19KB         19KB
[ 3299.960330] posix_timers_cache         16KB         16KB
[ 3299.960774] taskstats                114KB        123KB
[ 3299.961205] mem_cgroup_per_node         37KB         37KB
[ 3299.961647] mem_cgroup               154KB        154KB
[ 3299.962092] proc_dir_entry          1135KB       1158KB
[ 3299.962513] pde_opener                 7KB          7KB
[ 3299.962951] seq_file                  27KB         48KB
[ 3299.963373] sigqueue                  51KB         51KB
[ 3299.963814] shmem_inode_cache       1428KB       1554KB
[ 3299.964235] kernfs_iattrs_cache        308KB        308KB
[ 3299.964675] kernfs_node_cache       6965KB       6996KB
[ 3299.965111] mnt_cache                212KB        212KB
[ 3299.965571] filp                     476KB       1527KB
[ 3299.966010] names_cache              463KB        654KB
[ 3299.966434] net_namespace            330KB        330KB
[ 3299.966872] hashtab_node             274KB        274KB
[ 3299.967296] ebitmap_node            1149KB       1149KB
[ 3299.967720] avtab_node              4976KB       4976KB
[ 3299.968161] avc_node                  35KB         35KB
[ 3299.968621] lsm_inode_cache         1114KB       1640KB
[ 3299.969068] lsm_file_cache            46KB        144KB
[ 3299.969497] key_jar                   47KB         47KB
[ 3299.969936] uts_namespace             15KB         15KB
[ 3299.970362] nsproxy                   11KB         11KB
[ 3299.970846] vm_area_struct          2428KB       2771KB
[ 3299.971272] fs_cache                  58KB         64KB
[ 3299.971693] files_cache              186KB        239KB
[ 3299.972131] signal_cache             561KB        647KB
[ 3299.972558] sighand_cache            582KB        721KB
[ 3299.973013] task_struct             2255KB       3602KB
[ 3299.973452] cred                     117KB        144KB
[ 3299.973897] anon_vma_chain           470KB        535KB
[ 3299.974336] anon_vma                 637KB        717KB
[ 3299.974770] pid                       81KB        110KB
[ 3299.975196] Acpi-Operand              62KB        114KB
[ 3299.975618] Acpi-ParseExt             43KB         43KB
[ 3299.976057] Acpi-Parse                59KB         74KB
[ 3299.976482] Acpi-State                19KB         35KB
[ 3299.976919] Acpi-Namespace            24KB         24KB
[ 3299.977342] shared_policy_node          4KB          4KB
[ 3299.977795] numa_policy                7KB          7KB
[ 3299.978217] perf_event               203KB        218KB
[ 3299.978641] trace_event_file         212KB        212KB
[ 3299.979078] ftrace_event_field        494KB        494KB
[ 3299.979507] pool_workqueue           173KB        173KB
[ 3299.979947] task_group                16KB         16KB
[ 3299.980385] maple_node               593KB       1096KB
[ 3299.980827] mm_struct                490KB        598KB
[ 3299.981253] vmap_area                 54KB        110KB
[ 3299.981697] page->ptl                454KB        535KB
[ 3299.982140] kmemleak_scan_area         29KB         79KB
[ 3299.984242] kmemleak_object        95802KB     108965KB
[ 3299.984673] kmalloc-cg-8k            192KB        192KB
[ 3299.985508] kmalloc-cg-4k           4736KB       5184KB
[ 3299.986018] kmalloc-cg-2k           5236KB       5760KB
[ 3299.986446] kmalloc-cg-1k            992KB       1056KB
[ 3299.986900] kmalloc-cg-512           589KB        656KB
[ 3299.987425] kmalloc-cg-256           168KB        168KB
[ 3299.987867] kmalloc-cg-128           193KB        208KB
[ 3299.988293] kmalloc-cg-64             79KB         92KB
[ 3299.988717] kmalloc-cg-32            156KB        164KB
[ 3299.989158] kmalloc-cg-16              8KB          8KB
[ 3299.989588] kmalloc-cg-8              16KB         16KB
[ 3299.990028] kmalloc-cg-192           120KB        120KB
[ 3299.990460] kmalloc-cg-96            334KB        352KB
[ 3299.990921] kmalloc-8k              3904KB       4224KB
[ 3299.991353] kmalloc-4k              4904KB       5280KB
[ 3299.991966] kmalloc-2k              6320KB       6320KB
[ 3299.992435] kmalloc-1k              5196KB       9344KB
[ 3299.992881] kmalloc-512             2770KB       2896KB
[ 3299.993315] kmalloc-256              931KB        968KB
[ 3299.993880] kmalloc-128              545KB        584KB
[ 3299.994321] kmalloc-64               795KB        908KB
[ 3299.994751] kmalloc-32               900KB       1016KB
[ 3299.995210] kmalloc-16               336KB        348KB
[ 3299.995486] oom_reaper: reaped process 36553 (syz-executor.3), now anon-rss:32kB, file-rss:34888kB, shmem-rss:0kB
[ 3299.995637] kmalloc-8                235KB        240KB
[ 3299.997154] kmalloc-192             1284KB       1292KB
[ 3299.997612] kmalloc-96               635KB       1084KB
[ 3299.998054] kmem_cache_node           55KB         55KB
[ 3299.998484] kmem_cache                86KB         86KB
[ 3299.998921] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz0,task=syz-executor.0,pid=275,uid=0
[ 3300.000226] Out of memory (oom_kill_allocating_task): Killed process 275 (syz-executor.0) total-vm:93288kB, anon-rss:284kB, file-rss:34980kB, shmem-rss:0kB, UID:0 pgtables:120kB oom_score_adj:0
[ 3300.031033] sshd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 3300.031893] CPU: 1 UID: 0 PID: 247 Comm: sshd Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3300.031909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3300.031916] Call Trace:
[ 3300.031921]  <TASK>
[ 3300.031926]  dump_stack_lvl+0xfa/0x120
[ 3300.031945]  dump_header+0x107/0x950
[ 3300.031964]  oom_kill_process+0x278/0xa00
[ 3300.031977]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3300.031993]  out_of_memory+0x138f/0x1690
[ 3300.032011]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.032031]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3300.032057]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.032077]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.032098]  ? policy_nodemask+0xeb/0x4e0
[ 3300.032120]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.032139]  ? policy_nodemask+0xeb/0x4e0
[ 3300.032159]  alloc_pages_mpol+0xed/0x340
[ 3300.032177]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.032194]  ? find_held_lock+0x2b/0x80
[ 3300.032208]  ? filemap_get_entry+0x1b1/0x3b0
[ 3300.032223]  ? lock_release+0xc8/0x290
[ 3300.032242]  folio_alloc_noprof+0x21/0x80
[ 3300.032254]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3300.032277]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3300.032299]  ? down_read+0x1b1/0x470
[ 3300.032317]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3300.032336]  filemap_fault+0x188f/0x2cb0
[ 3300.032357]  ? __pfx_filemap_fault+0x10/0x10
[ 3300.032381]  __do_fault+0x10d/0x480
[ 3300.032396]  __handle_mm_fault+0x1142/0x30c0
[ 3300.032412]  ? lock_vma_under_rcu+0x117/0x530
[ 3300.032425]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.032454]  handle_mm_fault+0x2d8/0x750
[ 3300.032473]  do_user_addr_fault+0x844/0x1760
[ 3300.032496]  exc_page_fault+0xb0/0x180
[ 3300.032509]  asm_exc_page_fault+0x26/0x30
[ 3300.032521] RIP: 0033:0x7fd9ac781866
[ 3300.032539] Code: Unable to access opcode bytes at 0x7fd9ac78183c.
[ 3300.032544] RSP: 002b:00007ffff41956e8 EFLAGS: 00010246
[ 3300.032554] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00007fd9ac781866
[ 3300.032562] RDX: 0000564bf725a490 RSI: 0000564bf7259a10 RDI: 000000000000000f
[ 3300.032570] RBP: 0000564bf725ef00 R08: 0000000000000000 R09: 0000000000001e00
[ 3300.032577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000564bc6efc768
[ 3300.032584] R13: 0000000000000000 R14: 0000000000000004 R15: 0000564bc6eb1a80
[ 3300.032600]  </TASK>
[ 3300.032605] Mem-Info:
[ 3300.050226] active_anon:74 inactive_anon:8063 isolated_anon:0
[ 3300.050226]  active_file:179 inactive_file:474 isolated_file:2
[ 3300.050226]  unevictable:0 dirty:4 writeback:0
[ 3300.050226]  slab_reclaimable:5372 slab_unreclaimable:56139
[ 3300.050226]  mapped:43528 shmem:100 pagetables:1733
[ 3300.050226]  sec_pagetables:0 bounce:0
[ 3300.050226]  kernel_misc_reclaimable:0
[ 3300.050226]  free:3633 free_pcp:0 free_cma:0
[ 3300.053185] Node 0 active_anon:296kB inactive_anon:32252kB active_file:716kB inactive_file:1896kB unevictable:0kB isolated(anon):0kB isolated(file):8kB mapped:174112kB dirty:16kB writeback:0kB shmem:400kB kernel_stack:4224kB pagetables:6932kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3300.055251] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.057465] lowmem_reserve[]: 0 1599 1599 1599
[ 3300.057868] Node 0 DMA32 free:8280kB boost:12480kB min:17552kB low:19176kB high:20800kB reserved_highatomic:0KB free_highatomic:0KB active_anon:296kB inactive_anon:32252kB active_file:716kB inactive_file:1844kB unevictable:0kB writepending:16kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.060267] lowmem_reserve[]: 0 0 0 0
[ 3300.060593] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3300.061664] Node 0 DMA32: 69*4kB (UM) 50*8kB (UME) 34*16kB (UME) 23*32kB (UME) 14*64kB (UME) 16*128kB (UME) 7*256kB (ME) 3*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 8228kB
[ 3300.062963] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3300.063630] 757 total pagecache pages
[ 3300.063946] 0 pages in swap cache
[ 3300.064234] Free swap  = 0kB
[ 3300.064477] Total swap = 0kB
[ 3300.064721] 524158 pages RAM
[ 3300.064982] 0 pages HighMem/MovableOnly
[ 3300.065296] 110746 pages reserved
[ 3300.065580] Unreclaimable slab info:
[ 3300.065894] Name                      Used          Total
[ 3300.066325] pid_3                     23KB         23KB
[ 3300.066746] pid_2                    127KB        212KB
[ 3300.067187] IEEE-802.15.4-MAC         63KB         63KB
[ 3300.067624] IEEE-802.15.4-RAW         63KB         63KB
[ 3300.068076] p9_req_t                   7KB          7KB
[ 3300.068512] ip6-frags                 15KB         15KB
[ 3300.068971] fib6_node                 28KB         28KB
[ 3300.069422] ip6_dst_cache             37KB         45KB
[ 3300.069860] PINGv6                    61KB         61KB
[ 3300.070282] RAWv6                    464KB        464KB
[ 3300.070701] UDPLITEv6                 63KB         63KB
[ 3300.071138] UDPv6                     63KB         63KB
[ 3300.071562] tw_sock_TCPv6              7KB          7KB
[ 3300.072003] TCPv6                    327KB        327KB
[ 3300.072429] scsi_sense_cache           4KB          4KB
[ 3300.072865] virtio_scsi_cmd           16KB         16KB
[ 3300.073286] bio-120                   11KB         11KB
[ 3300.073718] bio-248                    7KB          7KB
[ 3300.074155] mqueue_inode_cache        121KB        121KB
[ 3300.074579] nfs_commit_data           15KB         15KB
[ 3300.075013] nfs_write_data            47KB         47KB
[ 3300.075435] jbd2_inode                 7KB          7KB
[ 3300.075872] ext4_system_zone           7KB          7KB
[ 3300.076292] ext4_io_end_vec            7KB          7KB
[ 3300.076708] kioctx                    31KB         31KB
[ 3300.077145] aio_kiocb                  7KB          7KB
[ 3300.077572] dnotify_mark               3KB          3KB
[ 3300.078008] dnotify_struct             3KB          3KB
[ 3300.078434] fasync_cache               7KB          7KB
[ 3300.078872] pid_namespace             32KB         32KB
[ 3300.079294] rpc_buffers               31KB         31KB
[ 3300.079713] rpc_tasks                  3KB          3KB
[ 3300.080148] UNIX-STREAM              206KB        350KB
[ 3300.080568] UNIX                     199KB        286KB
[ 3300.081002] UDP-Lite                  61KB         61KB
[ 3300.081433] tcp_bind2_bucket           8KB          8KB
[ 3300.081874] tcp_bind_bucket            8KB          8KB
[ 3300.082295] inet_peer                  8KB          8KB
[ 3300.082712] xfrm_state                15KB         15KB
[ 3300.083152] ip_fib_trie                8KB          8KB
[ 3300.083571] ip_fib_alias              15KB         15KB
[ 3300.084005] rtable                    12KB         12KB
[ 3300.084427] PING                      60KB         60KB
[ 3300.084859] RAW                       61KB         61KB
[ 3300.085279] UDP                      228KB        309KB
[ 3300.086183] tw_sock_TCP                7KB          7KB
[ 3300.086611] request_sock_TCP           7KB          7KB
[ 3300.087371] TCP                      312KB        437KB
[ 3300.087820] hugetlbfs_inode_cache         62KB         62KB
[ 3300.088268] netfs_subrequest          33KB         33KB
[ 3300.088688] netfs_request             95KB         95KB
[ 3300.089126] bio-264                   15KB         15KB
[ 3300.089559] ep_head                    8KB          8KB
[ 3300.089995] eventpoll_pwq             19KB         19KB
[ 3300.090414] eventpoll_epi             47KB         55KB
[ 3300.090850] inotify_inode_mark         50KB         50KB
[ 3300.091275] sgpool-128               327KB        327KB
[ 3300.091696] sgpool-64                127KB        127KB
[ 3300.092133] sgpool-32                 63KB         63KB
[ 3300.092556] sgpool-16                 67KB        105KB
[ 3300.092993] sgpool-8                  56KB         56KB
[ 3300.093426] request_queue             63KB         63KB
[ 3300.093861] blkdev_ioc                 8KB          8KB
[ 3300.094281] bio-184                  144KB        144KB
[ 3300.094700] biovec-max               807KB        807KB
[ 3300.095140] biovec-128               127KB        127KB
[ 3300.095564] biovec-64                 78KB         78KB
[ 3300.095997] biovec-16                 22KB         22KB
[ 3300.096417] user_namespace            61KB         61KB
[ 3300.096871] uid_cache                  7KB          7KB
[ 3300.097309] dmaengine-unmap-2          4KB          4KB
[ 3300.097741] audit_buffer               7KB          7KB
[ 3300.098191] skbuff_small_head       1279KB       1713KB
[ 3300.098615] skbuff_fclone_cache         97KB         97KB
[ 3300.099080] skbuff_head_cache        536KB        723KB
[ 3300.099508] file_lease_cache           7KB          7KB
[ 3300.099947] file_lock_cache           43KB         43KB
[ 3300.100370] file_lock_ctx              7KB          7KB
[ 3300.100810] fsnotify_mark_connector         19KB         19KB
[ 3300.101276] posix_timers_cache         16KB         16KB
[ 3300.101715] taskstats                114KB        123KB
[ 3300.102155] mem_cgroup_per_node         37KB         37KB
[ 3300.102592] mem_cgroup               154KB        154KB
[ 3300.103030] proc_dir_entry          1135KB       1158KB
[ 3300.103456] pde_opener                 7KB          7KB
[ 3300.103911] seq_file                  27KB         48KB
[ 3300.104355] sigqueue                  51KB         51KB
[ 3300.104798] shmem_inode_cache       1428KB       1554KB
[ 3300.105224] kernfs_iattrs_cache        308KB        308KB
[ 3300.105668] kernfs_node_cache       6965KB       6996KB
[ 3300.106109] mnt_cache                212KB        212KB
[ 3300.106561] filp                     476KB       1527KB
[ 3300.106999] names_cache              463KB        654KB
[ 3300.107420] net_namespace            330KB        330KB
[ 3300.107857] hashtab_node             274KB        274KB
[ 3300.108280] ebitmap_node            1149KB       1149KB
[ 3300.108700] avtab_node              4976KB       4976KB
[ 3300.109139] avc_node                  35KB         35KB
[ 3300.109606] lsm_inode_cache         1114KB       1640KB
[ 3300.110051] lsm_file_cache            46KB        144KB
[ 3300.110472] key_jar                   47KB         47KB
[ 3300.110909] uts_namespace             15KB         15KB
[ 3300.111333] nsproxy                   11KB         11KB
[ 3300.111820] vm_area_struct          2428KB       2771KB
[ 3300.112242] fs_cache                  58KB         64KB
[ 3300.112665] files_cache              186KB        239KB
[ 3300.113108] signal_cache             561KB        647KB
[ 3300.113543] sighand_cache            582KB        721KB
[ 3300.113996] task_struct             2255KB       3602KB
[ 3300.114444] cred                     117KB        144KB
[ 3300.114902] anon_vma_chain           470KB        535KB
[ 3300.115343] anon_vma                 637KB        717KB
[ 3300.115804] pid                       81KB        110KB
[ 3300.116311] Acpi-Operand              62KB        114KB
[ 3300.116838] Acpi-ParseExt             43KB         43KB
[ 3300.117262] Acpi-Parse                59KB         74KB
[ 3300.117694] Acpi-State                19KB         35KB
[ 3300.118133] Acpi-Namespace            24KB         24KB
[ 3300.118557] shared_policy_node          4KB          4KB
[ 3300.119005] numa_policy                7KB          7KB
[ 3300.119429] perf_event               203KB        218KB
[ 3300.119883] trace_event_file         212KB        212KB
[ 3300.120307] ftrace_event_field        494KB        494KB
[ 3300.120737] pool_workqueue           173KB        173KB
[ 3300.121177] task_group                16KB         16KB
[ 3300.121645] maple_node               593KB       1096KB
[ 3300.122105] mm_struct                490KB        598KB
[ 3300.122545] vmap_area                 54KB        110KB
[ 3300.122998] page->ptl                454KB        535KB
[ 3300.123424] kmemleak_scan_area         29KB         79KB
[ 3300.125110] kmemleak_object        95856KB     108965KB
[ 3300.125553] kmalloc-cg-8k            192KB        192KB
[ 3300.126088] kmalloc-cg-4k           4736KB       5184KB
[ 3300.126520] kmalloc-cg-2k           5236KB       5760KB
[ 3300.127181] kmalloc-cg-1k            992KB       1056KB
[ 3300.127609] kmalloc-cg-512           589KB        656KB
[ 3300.128214] kmalloc-cg-256           168KB        168KB
[ 3300.128640] kmalloc-cg-128           193KB        208KB
[ 3300.129262] kmalloc-cg-64             79KB         92KB
[ 3300.129696] kmalloc-cg-32            156KB        164KB
[ 3300.130301] kmalloc-cg-16              8KB          8KB
[ 3300.130724] kmalloc-cg-8              16KB         16KB
[ 3300.131325] kmalloc-cg-192           120KB        120KB
[ 3300.131967] kmalloc-cg-96            334KB        352KB
[ 3300.132405] kmalloc-8k              3904KB       4224KB
[ 3300.133016] kmalloc-4k              4904KB       5280KB
[ 3300.133450] kmalloc-2k              6356KB       6356KB
[ 3300.134080] kmalloc-1k              5196KB       9344KB
[ 3300.134519] kmalloc-512             2770KB       2896KB
[ 3300.135094] kmalloc-256              931KB        968KB
[ 3300.135524] kmalloc-128              545KB        584KB
[ 3300.136144] kmalloc-64               795KB        908KB
[ 3300.136596] kmalloc-32               912KB       1016KB
[ 3300.137096] kmalloc-16               336KB        348KB
[ 3300.137540] kmalloc-8                235KB        240KB
[ 3300.137983] kmalloc-192             1284KB       1292KB
[ 3300.138423] kmalloc-96               635KB       1084KB
[ 3300.138862] kmem_cache_node           55KB         55KB
[ 3300.139289] kmem_cache                86KB         86KB
[ 3300.139714] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/ssh.service,task=sshd,pid=247,uid=0
[ 3300.141056] Out of memory (oom_kill_allocating_task): Killed process 247 (sshd) total-vm:13884kB, anon-rss:1152kB, file-rss:164kB, shmem-rss:0kB, UID:0 pgtables:60kB oom_score_adj:0
[ 3300.344927] systemd-udevd invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=-1000
[ 3300.345988] CPU: 0 UID: 0 PID: 114 Comm: systemd-udevd Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3300.346005] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3300.346013] Call Trace:
[ 3300.346017]  <TASK>
[ 3300.346022]  dump_stack_lvl+0xfa/0x120
[ 3300.346042]  dump_header+0x107/0x950
[ 3300.346060]  oom_kill_process+0x278/0xa00
[ 3300.346076]  out_of_memory+0x34b/0x1690
[ 3300.346093]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.346113]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3300.346139]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.346158]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.346178]  ? policy_nodemask+0xeb/0x4e0
[ 3300.346200]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.346219]  ? policy_nodemask+0xeb/0x4e0
[ 3300.346239]  alloc_pages_mpol+0xed/0x340
[ 3300.346257]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.346273]  ? find_held_lock+0x2b/0x80
[ 3300.346287]  ? filemap_get_entry+0x1b1/0x3b0
[ 3300.346303]  ? lock_release+0xc8/0x290
[ 3300.346322]  folio_alloc_noprof+0x21/0x80
[ 3300.346334]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3300.346357]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3300.346379]  ? down_read+0x1b1/0x470
[ 3300.346396]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3300.346416]  filemap_fault+0x188f/0x2cb0
[ 3300.346436]  ? __pfx_filemap_fault+0x10/0x10
[ 3300.346460]  __do_fault+0x10d/0x480
[ 3300.346475]  __handle_mm_fault+0x1142/0x30c0
[ 3300.346490]  ? lock_vma_under_rcu+0x117/0x530
[ 3300.346503]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.346532]  handle_mm_fault+0x2d8/0x750
[ 3300.346551]  do_user_addr_fault+0x844/0x1760
[ 3300.346574]  exc_page_fault+0xb0/0x180
[ 3300.346587]  asm_exc_page_fault+0x26/0x30
[ 3300.346599] RIP: 0033:0x55de5aaedcf0
[ 3300.346618] Code: Unable to access opcode bytes at 0x55de5aaedcc6.
[ 3300.346624] RSP: 002b:00007fffcff6a358 EFLAGS: 00010202
[ 3300.346634] RAX: 00000000ffffffff RBX: 0000000000008f3d RCX: 00007fb1eabbc0f3
[ 3300.346642] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000028
[ 3300.346649] RBP: 000055de653e8270 R08: 00007fffcff6a210 R09: 00007fb1ea6238c0
[ 3300.346657] R10: 0000000000000008 R11: 0000000000000246 R12: 00007fffcff6a3c0
[ 3300.346664] R13: 00007fffcff6a3b8 R14: 000055de65c62ca0 R15: 000055de65c6d660
[ 3300.346681]  </TASK>
[ 3300.346685] Mem-Info:
[ 3300.364865] active_anon:57 inactive_anon:7583 isolated_anon:0
[ 3300.364865]  active_file:83 inactive_file:231 isolated_file:0
[ 3300.364865]  unevictable:0 dirty:0 writeback:0
[ 3300.364865]  slab_reclaimable:4810 slab_unreclaimable:55443
[ 3300.364865]  mapped:37852 shmem:96 pagetables:1652
[ 3300.364865]  sec_pagetables:0 bounce:0
[ 3300.364865]  kernel_misc_reclaimable:0
[ 3300.364865]  free:3548 free_pcp:447 free_cma:0
[ 3300.368040] Node 0 active_anon:228kB inactive_anon:30332kB active_file:500kB inactive_file:1008kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:151408kB dirty:0kB writeback:0kB shmem:384kB kernel_stack:4192kB pagetables:6608kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3300.370263] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.372682] lowmem_reserve[]: 0 1599 1599 1599
[ 3300.373097] Node 0 DMA32 free:7772kB boost:0kB min:5072kB low:6696kB high:8320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:228kB inactive_anon:30332kB active_file:500kB inactive_file:1260kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:1248kB local_pcp:0kB free_cma:0kB
[ 3300.375676] lowmem_reserve[]: 0 0 0 0
[ 3300.376024] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3300.377112] Node 0 DMA32: 279*4kB (UME) 86*8kB (UME) 42*16kB (UME) 45*32kB (UE) 11*64kB (UE) 7*128kB (ME) 4*256kB (ME) 3*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 8076kB
[ 3300.378426] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3300.379125] 513 total pagecache pages
Connection to localhost closed by remote host.
[ 3300.380964] 0 pages in swap cache
[ 3300.381268] Free swap  = 0kB
[ 3300.381592] Total swap = 0kB
[ 3300.382206] 524158 pages RAM
[ 3300.382456] 0 pages HighMem/MovableOnly
[ 3300.382790] 110746 pages reserved
[ 3300.383076] Unreclaimable slab info:
[ 3300.383525] Name                      Used          Total
[ 3300.383978] pid_3                     23KB         23KB
[ 3300.384419] pid_2                    127KB        212KB
[ 3300.384957] IEEE-802.15.4-MAC         63KB         63KB
[ 3300.385391] IEEE-802.15.4-RAW         63KB         63KB
[ 3300.385827] p9_req_t                   7KB          7KB
[ 3300.386289] ip6-frags                 15KB         15KB
[ 3300.386811] fib6_node                 28KB         28KB
[ 3300.387234] ip6_dst_cache             37KB         45KB
[ 3300.387654] PINGv6                    61KB         61KB
[ 3300.388087] RAWv6                    464KB        464KB
[ 3300.388505] UDPLITEv6                 63KB         63KB
[ 3300.388938] UDPv6                     63KB         63KB
[ 3300.389933] tw_sock_TCPv6              7KB          7KB
[ 3300.391462] TCPv6                    327KB        327KB
[ 3300.392640] scsi_sense_cache           4KB          4KB
[ 3300.394733] virtio_scsi_cmd           16KB         16KB
[ 3300.396192] bio-120                   11KB         11KB
[ 3300.396868] bio-248                    7KB          7KB
[ 3300.397305] mqueue_inode_cache        121KB        121KB
[ 3300.397770] nfs_commit_data           15KB         15KB
[ 3300.398205] nfs_write_data            47KB         47KB
[ 3300.398647] jbd2_inode                 7KB          7KB
[ 3300.399096] ext4_system_zone           7KB          7KB
[ 3300.399530] ext4_io_end_vec            7KB          7KB
[ 3300.399982] kioctx                    31KB         31KB
[ 3300.400419] aio_kiocb                  7KB          7KB
[ 3300.400992] dnotify_mark               3KB          3KB
[ 3300.401438] dnotify_struct             3KB          3KB
[ 3300.401973] fasync_cache               7KB          7KB
[ 3300.402463] pid_namespace             32KB         32KB
[ 3300.402985] rpc_buffers               31KB         31KB
[ 3300.403441] rpc_tasks                  3KB          3KB
[ 3300.404022] UNIX-STREAM              206KB        350KB
[ 3300.404460] UNIX                     199KB        286KB
[ 3300.405023] UDP-Lite                  61KB         61KB
[ 3300.405559] tcp_bind2_bucket           8KB          8KB
[ 3300.406082] tcp_bind_bucket            8KB          8KB
[ 3300.406539] inet_peer                  8KB          8KB
[ 3300.407065] xfrm_state                15KB         15KB
[ 3300.407492] ip_fib_trie                8KB          8KB
[ 3300.407929] ip_fib_alias              15KB         15KB
[ 3300.408444] rtable                    12KB         12KB
[ 3300.408885] PING                      60KB         60KB
[ 3300.409417] RAW                       61KB         61KB
[ 3300.409955] UDP                      228KB        309KB
[ 3300.410378] tw_sock_TCP                7KB          7KB
[ 3300.410850] request_sock_TCP           7KB          7KB
[ 3300.411349] TCP                      312KB        437KB
[ 3300.411788] hugetlbfs_inode_cache         62KB         62KB
[ 3300.412240] netfs_subrequest          33KB         33KB
[ 3300.412663] netfs_request             95KB         95KB
[ 3300.413153] bio-264                   15KB         15KB
[ 3300.413660] ep_head                    8KB          8KB
[ 3300.414102] eventpoll_pwq             19KB         19KB
[ 3300.414527] eventpoll_epi             47KB         55KB
[ 3300.414967] inotify_inode_mark         50KB         50KB
[ 3300.415399] sgpool-128               233KB        327KB
[ 3300.415838] sgpool-64                127KB        127KB
[ 3300.416263] sgpool-32                 63KB         63KB
[ 3300.416688] sgpool-16                 67KB        105KB
[ 3300.417127] sgpool-8                  56KB         56KB
[ 3300.417561] request_queue             63KB         63KB
[ 3300.417998] blkdev_ioc                 8KB          8KB
[ 3300.418420] bio-184                  123KB        144KB
[ 3300.418868] biovec-max               650KB        748KB
[ 3300.419420] biovec-128               127KB        127KB
[ 3300.419964] biovec-64                 78KB         78KB
[ 3300.420391] biovec-16                 22KB         22KB
[ 3300.420934] user_namespace            61KB         61KB
[ 3300.421364] uid_cache                  7KB          7KB
[ 3300.421814] dmaengine-unmap-2          4KB          4KB
[ 3300.422239] audit_buffer               7KB          7KB
[ 3300.422668] skbuff_small_head        840KB       1235KB
[ 3300.423108] skbuff_fclone_cache         97KB         97KB
[ 3300.423617] skbuff_head_cache        415KB        521KB
[ 3300.424144] file_lease_cache           7KB          7KB
[ 3300.424601] file_lock_cache           43KB         43KB
[ 3300.425127] file_lock_ctx              7KB          7KB
[ 3300.425678] fsnotify_mark_connector         19KB         19KB
[ 3300.426313] posix_timers_cache         16KB         16KB
[ 3300.426771] taskstats                114KB        123KB
[ 3300.427304] mem_cgroup_per_node         37KB         37KB
[ 3300.427748] mem_cgroup               154KB        154KB
[ 3300.428203] proc_dir_entry          1135KB       1158KB
[ 3300.428635] pde_opener                 7KB          7KB
[ 3300.429088] seq_file                  27KB         48KB
[ 3300.429536] sigqueue                  51KB         51KB
[ 3300.430016] shmem_inode_cache       1428KB       1554KB
[ 3300.430513] kernfs_iattrs_cache        298KB        304KB
[ 3300.431077] kernfs_node_cache       6954KB       6988KB
[ 3300.431506] mnt_cache                212KB        212KB
[ 3300.431983] filp                     469KB       1527KB
[ 3300.432418] names_cache              459KB        624KB
[ 3300.432864] net_namespace            330KB        330KB
[ 3300.433402] hashtab_node             274KB        274KB
[ 3300.433851] ebitmap_node            1149KB       1149KB
[ 3300.434311] avtab_node              4976KB       4976KB
[ 3300.434858] avc_node                  35KB         35KB
[ 3300.435467] lsm_inode_cache         1066KB       1577KB
[ 3300.435925] lsm_file_cache            46KB        144KB
[ 3300.436360] key_jar                   47KB         47KB
[ 3300.436806] uts_namespace             15KB         15KB
[ 3300.437238] nsproxy                   11KB         11KB
[ 3300.437841] vm_area_struct          2235KB       2767KB
[ 3300.438285] fs_cache                  47KB         64KB
[ 3300.438717] files_cache              180KB        239KB
[ 3300.439160] signal_cache             561KB        647KB
[ 3300.439593] sighand_cache            582KB        721KB
[ 3300.440057] task_struct             2213KB       3575KB
[ 3300.440494] cred                     117KB        144KB
[ 3300.440950] anon_vma_chain           437KB        535KB
[ 3300.441401] anon_vma                 603KB        717KB
[ 3300.441855] pid                       80KB        110KB
[ 3300.442289] Acpi-Operand              62KB        114KB
[ 3300.442719] Acpi-ParseExt             43KB         43KB
[ 3300.443165] Acpi-Parse                59KB         74KB
[ 3300.443687] Acpi-State                19KB         35KB
[ 3300.444134] Acpi-Namespace            24KB         24KB
[ 3300.444563] shared_policy_node          4KB          4KB
[ 3300.445020] numa_policy                7KB          7KB
[ 3300.445457] perf_event               198KB        218KB
[ 3300.445904] trace_event_file         212KB        212KB
[ 3300.446335] ftrace_event_field        494KB        494KB
[ 3300.446848] pool_workqueue           173KB        173KB
[ 3300.447352] task_group                16KB         16KB
[ 3300.447810] maple_node               565KB       1096KB
[ 3300.448242] mm_struct                425KB        598KB
[ 3300.448679] vmap_area                 54KB        110KB
[ 3300.449132] page->ptl                400KB        527KB
[ 3300.449576] kmemleak_scan_area         29KB         79KB
[ 3300.451031] kmemleak_object        91973KB     108364KB
[ 3300.451464] kmalloc-cg-8k            192KB        192KB
[ 3300.451910] kmalloc-cg-4k           4656KB       5184KB
[ 3300.452350] kmalloc-cg-2k           5068KB       5760KB
[ 3300.452797] kmalloc-cg-1k            972KB       1056KB
[ 3300.453232] kmalloc-cg-512           589KB        656KB
[ 3300.453670] kmalloc-cg-256           168KB        168KB
[ 3300.454111] kmalloc-cg-128           193KB        208KB
[ 3300.454546] kmalloc-cg-64             79KB         92KB
[ 3300.454989] kmalloc-cg-32            154KB        164KB
[ 3300.455422] kmalloc-cg-16              8KB          8KB
[ 3300.455866] kmalloc-cg-8              16KB         16KB
[ 3300.456297] kmalloc-cg-192           120KB        120KB
[ 3300.456731] kmalloc-cg-96            329KB        352KB
[ 3300.457180] kmalloc-8k              3904KB       4224KB
[ 3300.457617] kmalloc-4k              5000KB       5280KB
[ 3300.458057] kmalloc-2k              6300KB       6356KB
[ 3300.458513] kmalloc-1k              3786KB       8192KB
[ 3300.458955] kmalloc-512             2772KB       2896KB
[ 3300.459381] kmalloc-256              931KB        968KB
[ 3300.459822] kmalloc-128              540KB        584KB
[ 3300.460251] kmalloc-64               782KB        908KB
[ 3300.460680] kmalloc-32               883KB       1016KB
[ 3300.461116] kmalloc-16               336KB        348KB
[ 3300.461550] kmalloc-8                234KB        240KB
[ 3300.461989] kmalloc-192             1279KB       1292KB
[ 3300.462429] kmalloc-96               586KB       1052KB
[ 3300.462864] kmem_cache_node           55KB         55KB
[ 3300.463284] kmem_cache                86KB         86KB
[ 3300.463705] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz4,task=syz-executor.4,pid=36539,uid=0
[ 3300.465426] Out of memory: Killed process 36551 (syz-executor.4) total-vm:93816kB, anon-rss:432kB, file-rss:34832kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[ 3300.506131] in:imklog invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 3300.507037] CPU: 0 UID: 0 PID: 177 Comm: in:imklog Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3300.507053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3300.507060] Call Trace:
[ 3300.507065]  <TASK>
[ 3300.507070]  dump_stack_lvl+0xfa/0x120
[ 3300.507090]  dump_header+0x107/0x950
[ 3300.507108]  oom_kill_process+0x278/0xa00
[ 3300.507121]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3300.507136]  out_of_memory+0x138f/0x1690
[ 3300.507154]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.507174]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3300.507200]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.507219]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.507240]  ? policy_nodemask+0xeb/0x4e0
[ 3300.507262]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.507281]  ? policy_nodemask+0xeb/0x4e0
[ 3300.507301]  alloc_pages_mpol+0xed/0x340
[ 3300.507319]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.507335]  ? find_held_lock+0x2b/0x80
[ 3300.507350]  ? filemap_get_entry+0x1b1/0x3b0
[ 3300.507365]  ? lock_release+0xc8/0x290
[ 3300.507384]  folio_alloc_noprof+0x21/0x80
[ 3300.507396]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3300.507419]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3300.507441]  ? down_read+0x1b1/0x470
[ 3300.507458]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3300.507477]  filemap_fault+0x188f/0x2cb0
[ 3300.507498]  ? __pfx_filemap_fault+0x10/0x10
[ 3300.507522]  __do_fault+0x10d/0x480
[ 3300.507536]  __handle_mm_fault+0x1142/0x30c0
[ 3300.507552]  ? lock_vma_under_rcu+0x117/0x530
[ 3300.507565]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.507594]  handle_mm_fault+0x2d8/0x750
[ 3300.507613]  do_user_addr_fault+0x844/0x1760
[ 3300.507639]  exc_page_fault+0xb0/0x180
[ 3300.507651]  asm_exc_page_fault+0x26/0x30
[ 3300.507664] RIP: 0033:0x7fb9fc177ab0
[ 3300.507683] Code: Unable to access opcode bytes at 0x7fb9fc177a86.
[ 3300.507688] RSP: 002b:00007fb9fb9903d8 EFLAGS: 00010246
[ 3300.507698] RAX: 00007fb9fb990d00 RBX: 00007fb9fb99040c RCX: 0000000000000000
[ 3300.507706] RDX: 000000000000005b RSI: 00007fb9fb99040c RDI: 00007fb9fb990400
[ 3300.507714] RBP: 00007fb9fb990d00 R08: 0000000000000000 R09: 0000557693a13e88
[ 3300.507721] R10: 00007fb9f000ded0 R11: 0000000000000000 R12: 00007fb9fb990400
[ 3300.507728] R13: 0000557693a174c0 R14: 00007fb9fb990d00 R15: 00007fb9fb990d82
[ 3300.507745]  </TASK>
[ 3300.524779] Mem-Info:
[ 3300.524982] active_anon:57 inactive_anon:7499 isolated_anon:0
[ 3300.524982]  active_file:182 inactive_file:85 isolated_file:0
[ 3300.524982]  unevictable:0 dirty:0 writeback:0
[ 3300.524982]  slab_reclaimable:4789 slab_unreclaimable:55327
[ 3300.524982]  mapped:37999 shmem:96 pagetables:1421
[ 3300.524982]  sec_pagetables:0 bounce:0
[ 3300.524982]  kernel_misc_reclaimable:0
[ 3300.524982]  free:3982 free_pcp:19 free_cma:0
[ 3300.527910] Node 0 active_anon:228kB inactive_anon:29996kB active_file:728kB inactive_file:340kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:151996kB dirty:0kB writeback:0kB shmem:384kB kernel_stack:4128kB pagetables:5684kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3300.529961] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.532186] lowmem_reserve[]: 0 1599 1599 1599
[ 3300.532585] Node 0 DMA32 free:9508kB boost:12480kB min:17552kB low:19176kB high:20800kB reserved_highatomic:0KB free_highatomic:0KB active_anon:228kB inactive_anon:29996kB active_file:728kB inactive_file:248kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:296kB local_pcp:0kB free_cma:0kB
[ 3300.535001] lowmem_reserve[]: 0 0 0 0
[ 3300.535333] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3300.536399] Node 0 DMA32: 495*4kB (UME) 151*8kB (UME) 61*16kB (UME) 48*32kB (UME) 16*64kB (UME) 6*128kB (E) 4*256kB (ME) 2*512kB (ME) 0*1024kB 0*2048kB 0*4096kB = 9540kB
[ 3300.537709] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3300.538400] 324 total pagecache pages
[ 3300.538708] 0 pages in swap cache
[ 3300.539005] Free swap  = 0kB
[ 3300.539282] Total swap = 0kB
[ 3300.539637] 524158 pages RAM
[ 3300.539939] 0 pages HighMem/MovableOnly
[ 3300.540340] 110746 pages reserved
[ 3300.540653] Unreclaimable slab info:
[ 3300.541052] Name                      Used          Total
[ 3300.541552] pid_3                     23KB         23KB
[ 3300.542084] pid_2                    127KB        212KB
[ 3300.542557] IEEE-802.15.4-MAC         63KB         63KB
[ 3300.543087] IEEE-802.15.4-RAW         63KB         63KB
[ 3300.543630] p9_req_t                   7KB          7KB
[ 3300.544116] ip6-frags                 15KB         15KB
[ 3300.544631] fib6_node                 28KB         28KB
[ 3300.545072] ip6_dst_cache             37KB         45KB
[ 3300.545501] PINGv6                    61KB         61KB
[ 3300.545951] RAWv6                    464KB        464KB
[ 3300.546521] UDPLITEv6                 63KB         63KB
[ 3300.547006] UDPv6                     63KB         63KB
[ 3300.547473] tw_sock_TCPv6              7KB          7KB
[ 3300.547940] TCPv6                    327KB        327KB
[ 3300.548446] scsi_sense_cache           4KB          4KB
[ 3300.548926] virtio_scsi_cmd           16KB         16KB
[ 3300.549446] bio-120                   11KB         11KB
[ 3300.550020] bio-248                    7KB          7KB
[ 3300.550560] mqueue_inode_cache        121KB        121KB
[ 3300.551122] nfs_commit_data           15KB         15KB
[ 3300.551656] nfs_write_data            47KB         47KB
[ 3300.552100] jbd2_inode                 7KB          7KB
[ 3300.552570] ext4_system_zone           7KB          7KB
[ 3300.553080] ext4_io_end_vec            7KB          7KB
[ 3300.553617] kioctx                    31KB         31KB
[ 3300.554054] aio_kiocb                  7KB          7KB
[ 3300.554477] dnotify_mark               3KB          3KB
[ 3300.554909] dnotify_struct             3KB          3KB
[ 3300.555335] fasync_cache               7KB          7KB
[ 3300.555773] pid_namespace             32KB         32KB
[ 3300.556304] rpc_buffers               31KB         31KB
[ 3300.556726] rpc_tasks                  3KB          3KB
[ 3300.557162] UNIX-STREAM              206KB        350KB
[ 3300.557597] UNIX                     199KB        286KB
[ 3300.558076] UDP-Lite                  61KB         61KB
[ 3300.558605] tcp_bind2_bucket           8KB          8KB
[ 3300.559052] tcp_bind_bucket            8KB          8KB
[ 3300.559682] inet_peer                  8KB          8KB
[ 3300.560255] xfrm_state                15KB         15KB
[ 3300.560690] ip_fib_trie                8KB          8KB
[ 3300.561297] ip_fib_alias              15KB         15KB
[ 3300.561884] rtable                    12KB         12KB
[ 3300.562326] PING                      60KB         60KB
[ 3300.562775] RAW                       61KB         61KB
[ 3300.563209] UDP                      228KB        309KB
[ 3300.563640] tw_sock_TCP                7KB          7KB
[ 3300.564088] request_sock_TCP           7KB          7KB
[ 3300.564659] TCP                      312KB        437KB
[ 3300.565158] hugetlbfs_inode_cache         62KB         62KB
[ 3300.565713] netfs_subrequest          33KB         33KB
[ 3300.566287] netfs_request             95KB         95KB
[ 3300.566864] bio-264                   15KB         15KB
[ 3300.567408] ep_head                    8KB          8KB
[ 3300.567854] eventpoll_pwq             19KB         19KB
[ 3300.568294] eventpoll_epi             47KB         55KB
[ 3300.568728] inotify_inode_mark         50KB         50KB
[ 3300.569183] sgpool-128               233KB        327KB
[ 3300.569631] sgpool-64                127KB        127KB
[ 3300.570084] sgpool-32                 63KB         63KB
[ 3300.570519] sgpool-16                 67KB        105KB
[ 3300.570966] sgpool-8                  56KB         56KB
[ 3300.571400] request_queue             63KB         63KB
[ 3300.571845] blkdev_ioc                 8KB          8KB
[ 3300.572278] bio-184                  115KB        120KB
[ 3300.572708] biovec-max               616KB        748KB
[ 3300.573158] biovec-128               127KB        127KB
[ 3300.573597] biovec-64                 78KB         78KB
[ 3300.574043] biovec-16                 22KB         22KB
[ 3300.574480] user_namespace            61KB         61KB
[ 3300.574924] uid_cache                  7KB          7KB
[ 3300.575358] dmaengine-unmap-2          4KB          4KB
[ 3300.575802] audit_buffer               7KB          7KB
[ 3300.576243] skbuff_small_head        831KB       1219KB
[ 3300.576681] skbuff_fclone_cache         97KB         97KB
[ 3300.577175] skbuff_head_cache        387KB        506KB
[ 3300.577643] file_lease_cache           7KB          7KB
[ 3300.578127] file_lock_cache           43KB         43KB
[ 3300.578706] file_lock_ctx              7KB          7KB
[ 3300.579159] fsnotify_mark_connector         19KB         19KB
[ 3300.579673] posix_timers_cache         16KB         16KB
[ 3300.580209] taskstats                113KB        123KB
[ 3300.580650] mem_cgroup_per_node         37KB         37KB
[ 3300.581120] mem_cgroup               154KB        154KB
[ 3300.581564] proc_dir_entry          1135KB       1158KB
[ 3300.582009] pde_opener                 7KB          7KB
[ 3300.582443] seq_file                  27KB         48KB
[ 3300.582880] sigqueue                  51KB         51KB
[ 3300.583310] shmem_inode_cache       1428KB       1554KB
[ 3300.583736] kernfs_iattrs_cache        298KB        304KB
[ 3300.584195] kernfs_node_cache       6942KB       6988KB
[ 3300.584615] mnt_cache                212KB        212KB
[ 3300.585082] filp                     465KB       1519KB
[ 3300.585515] names_cache              459KB        624KB
[ 3300.585952] net_namespace            330KB        330KB
[ 3300.586375] hashtab_node             274KB        274KB
[ 3300.586814] ebitmap_node            1149KB       1149KB
[ 3300.587313] avtab_node              4976KB       4976KB
[ 3300.587871] avc_node                  35KB         35KB
[ 3300.588323] lsm_inode_cache         1061KB       1577KB
[ 3300.588772] lsm_file_cache            45KB        144KB
[ 3300.589194] key_jar                   47KB         47KB
[ 3300.589628] uts_namespace             15KB         15KB
[ 3300.590068] nsproxy                   11KB         11KB
[ 3300.590542] vm_area_struct          2234KB       2767KB
[ 3300.590978] fs_cache                  47KB         64KB
[ 3300.591406] files_cache              180KB        239KB
[ 3300.591853] signal_cache             558KB        647KB
[ 3300.592281] sighand_cache            580KB        721KB
[ 3300.592718] task_struct             2200KB       3575KB
[ 3300.593161] cred                     116KB        144KB
[ 3300.593606] anon_vma_chain           431KB        535KB
[ 3300.594055] anon_vma                 598KB        717KB
[ 3300.594481] pid                       80KB        110KB
[ 3300.594922] Acpi-Operand              62KB        114KB
[ 3300.595344] Acpi-ParseExt             43KB         43KB
[ 3300.595780] Acpi-Parse                59KB         74KB
[ 3300.596207] Acpi-State                19KB         35KB
[ 3300.596632] Acpi-Namespace            24KB         24KB
[ 3300.597071] shared_policy_node          4KB          4KB
[ 3300.597511] numa_policy                7KB          7KB
[ 3300.598499] perf_event               198KB        218KB
[ 3300.599261] trace_event_file         212KB        212KB
[ 3300.599689] ftrace_event_field        494KB        494KB
[ 3300.600143] pool_workqueue           173KB        173KB
[ 3300.600566] task_group                16KB         16KB
[ 3300.601018] maple_node               565KB       1096KB
[ 3300.601450] mm_struct                425KB        598KB
[ 3300.601884] vmap_area                 54KB        110KB
[ 3300.602318] page->ptl                400KB        527KB
[ 3300.602743] kmemleak_scan_area         29KB         79KB
[ 3300.604260] kmemleak_object        91857KB     108337KB
[ 3300.604684] kmalloc-cg-8k            192KB        192KB
[ 3300.605128] kmalloc-cg-4k           4608KB       5184KB
[ 3300.605572] kmalloc-cg-2k           5012KB       5760KB
[ 3300.606010] kmalloc-cg-1k            960KB       1056KB
[ 3300.606434] kmalloc-cg-512           578KB        656KB
[ 3300.606873] kmalloc-cg-256           168KB        168KB
[ 3300.607450] kmalloc-cg-128           190KB        208KB
[ 3300.608021] kmalloc-cg-64             79KB         92KB
[ 3300.608571] kmalloc-cg-32            154KB        164KB
[ 3300.609027] kmalloc-cg-16              8KB          8KB
[ 3300.609567] kmalloc-cg-8              16KB         16KB
[ 3300.610129] kmalloc-cg-192           120KB        120KB
[ 3300.610556] kmalloc-cg-96            329KB        352KB
[ 3300.611000] kmalloc-8k              3776KB       4160KB
[ 3300.611429] kmalloc-4k              4824KB       5280KB
[ 3300.611882] kmalloc-2k              6216KB       6356KB
[ 3300.612451] kmalloc-1k              3804KB       8160KB
[ 3300.612898] kmalloc-512             2747KB       2896KB
[ 3300.613323] kmalloc-256              930KB        968KB
[ 3300.613958] kmalloc-128              539KB        584KB
[ 3300.614513] kmalloc-64               779KB        908KB
[ 3300.614958] kmalloc-32               871KB       1016KB
[ 3300.615383] kmalloc-16               336KB        348KB
[ 3300.615824] kmalloc-8                234KB        240KB
[ 3300.616249] kmalloc-192             1268KB       1292KB
[ 3300.616687] kmalloc-96               584KB       1052KB
[ 3300.617125] kmem_cache_node           55KB         55KB
[ 3300.617559] kmem_cache                86KB         86KB
[ 3300.618002] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/rsyslog.service,task=in:imklog,pid=177,uid=0
[ 3300.619269] Out of memory (oom_kill_allocating_task): Killed process 171 (rsyslogd) total-vm:220884kB, anon-rss:1152kB, file-rss:116kB, shmem-rss:0kB, UID:0 pgtables:76kB oom_score_adj:0
[ 3300.693081] systemd-journal invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=-250
[ 3300.694061] CPU: 0 UID: 0 PID: 98 Comm: systemd-journal Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3300.694077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3300.694085] Call Trace:
[ 3300.694089]  <TASK>
[ 3300.694095]  dump_stack_lvl+0xfa/0x120
[ 3300.694114]  dump_header+0x107/0x950
[ 3300.694134]  oom_kill_process+0x278/0xa00
[ 3300.694147]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3300.694162]  out_of_memory+0x138f/0x1690
[ 3300.694180]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.694199]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3300.694226]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.694245]  ? __blk_flush_plug+0x28b/0x460
[ 3300.694272]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.694293]  ? policy_nodemask+0xeb/0x4e0
[ 3300.694313]  alloc_pages_mpol+0xed/0x340
[ 3300.694331]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.694348]  ? find_held_lock+0x2b/0x80
[ 3300.694362]  ? filemap_get_entry+0x1b1/0x3b0
[ 3300.694378]  ? lock_release+0xc8/0x290
[ 3300.694396]  folio_alloc_noprof+0x21/0x80
[ 3300.694409]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3300.694431]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3300.694453]  ? down_read+0x1b1/0x470
[ 3300.694471]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3300.694490]  filemap_fault+0x188f/0x2cb0
[ 3300.694511]  ? __pfx_filemap_fault+0x10/0x10
[ 3300.694535]  __do_fault+0x10d/0x480
[ 3300.694550]  __handle_mm_fault+0x1142/0x30c0
[ 3300.694566]  ? lock_vma_under_rcu+0x117/0x530
[ 3300.694579]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.694609]  handle_mm_fault+0x2d8/0x750
[ 3300.694627]  do_user_addr_fault+0x844/0x1760
[ 3300.694651]  exc_page_fault+0xb0/0x180
[ 3300.694663]  asm_exc_page_fault+0x26/0x30
[ 3300.694675] RIP: 0033:0x7f57f94074e3
[ 3300.694693] Code: Unable to access opcode bytes at 0x7f57f94074b9.
[ 3300.694699] RSP: 002b:00007fff79c603e0 EFLAGS: 00010212
[ 3300.694709] RAX: 0000000000000070 RBX: 000056426264fea0 RCX: 00007fff79c60428
[ 3300.694717] RDX: 00007f57f9473d4c RSI: 0000000000000001 RDI: 000056426264fea0
[ 3300.694724] RBP: 00007fff79c60428 R08: 000000000000c588 R09: 0000000000001088
[ 3300.694732] R10: 0000000000000002 R11: 00000000005cbeca R12: 00007f57f6d2cb68
[ 3300.694739] R13: 00007f57f7027558 R14: 0000000000000007 R15: 00000000003b0558
[ 3300.694759]  </TASK>
[ 3300.711826] Mem-Info:
[ 3300.712034] active_anon:57 inactive_anon:6995 isolated_anon:0
[ 3300.712034]  active_file:853 inactive_file:22 isolated_file:16
[ 3300.712034]  unevictable:0 dirty:0 writeback:0
[ 3300.712034]  slab_reclaimable:4789 slab_unreclaimable:55149
[ 3300.712034]  mapped:34996 shmem:96 pagetables:1127
[ 3300.712034]  sec_pagetables:0 bounce:0
[ 3300.712034]  kernel_misc_reclaimable:0
[ 3300.712034]  free:3294 free_pcp:0 free_cma:0
[ 3300.715270] Node 0 active_anon:228kB inactive_anon:27980kB active_file:3412kB inactive_file:88kB unevictable:0kB isolated(anon):0kB isolated(file):64kB mapped:139984kB dirty:0kB writeback:0kB shmem:384kB kernel_stack:3808kB pagetables:4508kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3300.717274] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.719489] lowmem_reserve[]: 0 1599 1599 1599
[ 3300.719886] Node 0 DMA32 free:6756kB boost:0kB min:5072kB low:6696kB high:8320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:228kB inactive_anon:27980kB active_file:3412kB inactive_file:88kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.722227] lowmem_reserve[]: 0 0 0 0
[ 3300.722551] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3300.723610] Node 0 DMA32: 159*4kB (UME) 131*8kB (UME) 55*16kB (UME) 48*32kB (UME) 11*64kB (ME) 6*128kB (E) 3*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 6852kB
[ 3300.724869] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3300.725542] 975 total pagecache pages
[ 3300.725861] 0 pages in swap cache
[ 3300.726137] Free swap  = 0kB
[ 3300.726380] Total swap = 0kB
[ 3300.726625] 524158 pages RAM
[ 3300.726880] 0 pages HighMem/MovableOnly
[ 3300.727193] 110746 pages reserved
[ 3300.727466] Unreclaimable slab info:
[ 3300.727773] Name                      Used          Total
[ 3300.728204] pid_3                     23KB         23KB
[ 3300.728627] pid_2                    126KB        212KB
[ 3300.729062] IEEE-802.15.4-MAC         63KB         63KB
[ 3300.729491] IEEE-802.15.4-RAW         63KB         63KB
[ 3300.729926] p9_req_t                   7KB          7KB
[ 3300.730344] ip6-frags                 15KB         15KB
[ 3300.730776] fib6_node                 28KB         28KB
[ 3300.731193] ip6_dst_cache             37KB         45KB
[ 3300.731613] PINGv6                    61KB         61KB
[ 3300.732046] RAWv6                    464KB        464KB
[ 3300.732469] UDPLITEv6                 63KB         63KB
[ 3300.732904] UDPv6                     63KB         63KB
[ 3300.733325] tw_sock_TCPv6              7KB          7KB
[ 3300.733771] TCPv6                    327KB        327KB
[ 3300.734192] scsi_sense_cache           4KB          4KB
[ 3300.734608] virtio_scsi_cmd           16KB         16KB
[ 3300.735043] bio-120                   11KB         11KB
[ 3300.735466] bio-248                    7KB          7KB
[ 3300.735904] mqueue_inode_cache        121KB        121KB
[ 3300.736330] nfs_commit_data           15KB         15KB
[ 3300.736751] nfs_write_data            47KB         47KB
[ 3300.737185] jbd2_inode                 7KB          7KB
[ 3300.737612] ext4_system_zone           7KB          7KB
[ 3300.738049] ext4_io_end_vec            7KB          7KB
[ 3300.738471] kioctx                    31KB         31KB
[ 3300.738902] aio_kiocb                  7KB          7KB
[ 3300.739320] dnotify_mark               3KB          3KB
[ 3300.739737] dnotify_struct             3KB          3KB
[ 3300.740293] fasync_cache               7KB          7KB
[ 3300.740723] pid_namespace             32KB         32KB
[ 3300.741315] rpc_buffers               31KB         31KB
[ 3300.741952] rpc_tasks                  3KB          3KB
[ 3300.742375] UNIX-STREAM              206KB        350KB
[ 3300.742933] UNIX                     199KB        286KB
[ 3300.743354] UDP-Lite                  61KB         61KB
[ 3300.743863] tcp_bind2_bucket           8KB          8KB
[ 3300.744378] tcp_bind_bucket            8KB          8KB
[ 3300.744951] inet_peer                  8KB          8KB
[ 3300.745375] xfrm_state                15KB         15KB
[ 3300.745921] ip_fib_trie                8KB          8KB
[ 3300.746409] ip_fib_alias              15KB         15KB
[ 3300.746848] rtable                    12KB         12KB
[ 3300.747269] PING                      60KB         60KB
[ 3300.747692] RAW                       61KB         61KB
[ 3300.748126] UDP                      228KB        309KB
[ 3300.748545] tw_sock_TCP                7KB          7KB
[ 3300.748981] request_sock_TCP           7KB          7KB
[ 3300.749408] TCP                      312KB        437KB
[ 3300.749849] hugetlbfs_inode_cache         62KB         62KB
[ 3300.750292] netfs_subrequest          33KB         33KB
[ 3300.750716] netfs_request             95KB         95KB
[ 3300.751149] bio-264                   15KB         15KB
[ 3300.751570] ep_head                    8KB          8KB
[ 3300.752002] eventpoll_pwq             19KB         19KB
[ 3300.752423] eventpoll_epi             47KB         55KB
[ 3300.752862] inotify_inode_mark         50KB         50KB
[ 3300.753292] sgpool-128               225KB        327KB
[ 3300.753716] sgpool-64                127KB        127KB
[ 3300.754149] sgpool-32                 63KB         63KB
[ 3300.754569] sgpool-16                 67KB        105KB
[ 3300.755001] sgpool-8                  56KB         56KB
[ 3300.755423] request_queue             63KB         63KB
[ 3300.755864] blkdev_ioc                 8KB          8KB
[ 3300.756285] bio-184                  115KB        120KB
[ 3300.756704] biovec-max               616KB        748KB
[ 3300.757139] biovec-128               127KB        127KB
[ 3300.757570] biovec-64                 78KB         78KB
[ 3300.758000] biovec-16                 22KB         22KB
[ 3300.758419] user_namespace            61KB         61KB
[ 3300.758858] uid_cache                  7KB          7KB
[ 3300.759282] dmaengine-unmap-2          4KB          4KB
[ 3300.759696] audit_buffer               7KB          7KB
[ 3300.760137] skbuff_small_head        811KB       1173KB
[ 3300.760561] skbuff_fclone_cache         97KB         97KB
[ 3300.761017] skbuff_head_cache        373KB        476KB
[ 3300.761444] file_lease_cache           7KB          7KB
[ 3300.761887] file_lock_cache           43KB         43KB
[ 3300.762314] file_lock_ctx              7KB          7KB
[ 3300.762730] fsnotify_mark_connector         19KB         19KB
[ 3300.763203] posix_timers_cache         16KB         16KB
[ 3300.763630] taskstats                112KB        123KB
[ 3300.764059] mem_cgroup_per_node         37KB         37KB
[ 3300.764494] mem_cgroup               154KB        154KB
[ 3300.764931] proc_dir_entry          1109KB       1132KB
[ 3300.765353] pde_opener                 7KB          7KB
[ 3300.765799] seq_file                  27KB         48KB
[ 3300.766217] sigqueue                  51KB         51KB
[ 3300.766644] shmem_inode_cache       1428KB       1554KB
[ 3300.767078] kernfs_iattrs_cache        298KB        304KB
[ 3300.767515] kernfs_node_cache       6887KB       6940KB
[ 3300.767948] mnt_cache                212KB        212KB
[ 3300.768396] filp                     454KB       1504KB
[ 3300.768829] names_cache              378KB        476KB
[ 3300.769250] net_namespace            330KB        330KB
[ 3300.769682] hashtab_node             274KB        274KB
[ 3300.770112] ebitmap_node            1149KB       1149KB
[ 3300.770538] avtab_node              4976KB       4976KB
[ 3300.770973] avc_node                  35KB         35KB
[ 3300.771426] lsm_inode_cache         1051KB       1577KB
[ 3300.771862] lsm_file_cache            45KB        144KB
[ 3300.772287] key_jar                   47KB         47KB
[ 3300.772893] uts_namespace             15KB         15KB
[ 3300.773319] nsproxy                   11KB         11KB
[ 3300.773829] vm_area_struct          2079KB       2722KB
[ 3300.774384] fs_cache                  46KB         64KB
[ 3300.774823] files_cache              174KB        239KB
[ 3300.775244] signal_cache             543KB        647KB
[ 3300.775664] sighand_cache            555KB        721KB
[ 3300.776174] task_struct             2083KB       3465KB
[ 3300.776699] cred                     112KB        144KB
[ 3300.777186] anon_vma_chain           349KB        523KB
[ 3300.777699] anon_vma                 504KB        713KB
[ 3300.778137] pid                       80KB        110KB
[ 3300.778560] Acpi-Operand              62KB        114KB
[ 3300.779119] Acpi-ParseExt             43KB         43KB
[ 3300.779541] Acpi-Parse                59KB         74KB
[ 3300.779975] Acpi-State                19KB         35KB
[ 3300.780394] Acpi-Namespace            24KB         24KB
[ 3300.780832] shared_policy_node          4KB          4KB
[ 3300.781261] numa_policy                7KB          7KB
[ 3300.781690] perf_event               192KB        218KB
[ 3300.782263] trace_event_file         212KB        212KB
[ 3300.782824] ftrace_event_field        494KB        494KB
[ 3300.783366] pool_workqueue           173KB        173KB
[ 3300.783926] task_group                16KB         16KB
[ 3300.784367] maple_node               539KB       1096KB
[ 3300.784804] mm_struct                409KB        598KB
[ 3300.785353] vmap_area                 54KB        110KB
[ 3300.785864] page->ptl                328KB        511KB
[ 3300.786372] kmemleak_scan_area         29KB         79KB
[ 3300.788021] kmemleak_object        90574KB     108138KB
[ 3300.788572] kmalloc-cg-8k            192KB        192KB
[ 3300.789294] kmalloc-cg-4k           4384KB       5088KB
[ 3300.789990] kmalloc-cg-2k           4956KB       5728KB
[ 3300.790417] kmalloc-cg-1k            960KB       1056KB
[ 3300.790857] kmalloc-cg-512           577KB        656KB
[ 3300.791282] kmalloc-cg-256           168KB        168KB
[ 3300.791698] kmalloc-cg-128           188KB        208KB
[ 3300.792131] kmalloc-cg-64             78KB         92KB
[ 3300.792696] kmalloc-cg-32            154KB        164KB
[ 3300.793255] kmalloc-cg-16              8KB          8KB
[ 3300.793691] kmalloc-cg-8              16KB         16KB
[ 3300.794257] kmalloc-cg-192           120KB        120KB
[ 3300.794737] kmalloc-cg-96            329KB        352KB
[ 3300.795272] kmalloc-8k              3760KB       4128KB
[ 3300.795716] kmalloc-4k              4640KB       5280KB
[ 3300.796309] kmalloc-2k              6160KB       6356KB
[ 3300.796915] kmalloc-1k              3736KB       8128KB
[ 3300.797340] kmalloc-512             2706KB       2896KB
[ 3300.797786] kmalloc-256              898KB        960KB
[ 3300.798216] kmalloc-128              528KB        584KB
[ 3300.798646] kmalloc-64               776KB        908KB
[ 3300.799113] kmalloc-32               870KB       1016KB
[ 3300.799644] kmalloc-16               335KB        348KB
[ 3300.800202] kmalloc-8                233KB        240KB
[ 3300.800751] kmalloc-192             1265KB       1292KB
[ 3300.801304] kmalloc-96               583KB       1052KB
[ 3300.801734] kmem_cache_node           55KB         55KB
[ 3300.802326] kmem_cache                86KB         86KB
[ 3300.803459] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-journald.service,task=systemd-journal,pid=98,uid=0
[ 3300.805280] Out of memory (oom_kill_allocating_task): Killed process 98 (systemd-journal) total-vm:48348kB, anon-rss:768kB, file-rss:88kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:-250
[ 3300.894499] Trying to write to read-only block-device loop0
[ 3300.911559] (d-rfkill) invoked oom-killer: gfp_mask=0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), order=0, oom_score_adj=0
[ 3300.912471] CPU: 0 UID: 0 PID: 36668 Comm: (d-rfkill) Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3300.912488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3300.912495] Call Trace:
[ 3300.912500]  <TASK>
[ 3300.912505]  dump_stack_lvl+0xfa/0x120
[ 3300.912525]  dump_header+0x107/0x950
[ 3300.912544]  oom_kill_process+0x278/0xa00
[ 3300.912557]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3300.912572]  out_of_memory+0x138f/0x1690
[ 3300.912591]  ? __pfx_out_of_memory+0x10/0x10
[ 3300.912610]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3300.912635]  ? __pfx___schedule+0x10/0x10
[ 3300.912655]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3300.912674]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.912695]  ? policy_nodemask+0xeb/0x4e0
[ 3300.912717]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3300.912736]  ? policy_nodemask+0xeb/0x4e0
[ 3300.912759]  alloc_pages_mpol+0xed/0x340
[ 3300.912777]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3300.912794]  ? find_held_lock+0x2b/0x80
[ 3300.912808]  ? filemap_get_entry+0x1b1/0x3b0
[ 3300.912824]  ? lock_release+0xc8/0x290
[ 3300.912842]  folio_alloc_noprof+0x21/0x80
[ 3300.912854]  filemap_alloc_folio_noprof.part.0+0x372/0x410
[ 3300.912877]  ? __pfx_filemap_alloc_folio_noprof.part.0+0x10/0x10
[ 3300.912899]  ? down_read+0x1b1/0x470
[ 3300.912915]  __filemap_get_folio_mpol+0x513/0x9a0
[ 3300.912934]  filemap_fault+0x188f/0x2cb0
[ 3300.912954]  ? __pfx_filemap_fault+0x10/0x10
[ 3300.912979]  __do_fault+0x10d/0x480
[ 3300.912993]  __handle_mm_fault+0x1142/0x30c0
[ 3300.913009]  ? lock_vma_under_rcu+0x117/0x530
[ 3300.913023]  ? __pfx___handle_mm_fault+0x10/0x10
[ 3300.913052]  handle_mm_fault+0x2d8/0x750
[ 3300.913071]  do_user_addr_fault+0x844/0x1760
[ 3300.913094]  exc_page_fault+0xb0/0x180
[ 3300.913107]  asm_exc_page_fault+0x26/0x30
[ 3300.913119] RIP: 0033:0x7f61792e0f70
[ 3300.913137] Code: Unable to access opcode bytes at 0x7f61792e0f46.
[ 3300.913143] RSP: 002b:00007ffddbaefe38 EFLAGS: 00010246
[ 3300.913153] RAX: 0000000000000000 RBX: 00007ffddbaefe70 RCX: ffffffffffffffff
[ 3300.913161] RDX: 00007f617946f370 RSI: 0000562a8a3c1160 RDI: 00007f617948fa31
[ 3300.913169] RBP: 0000562a8a3c1160 R08: 0000000000000001 R09: 0000562a89aea3f0
[ 3300.913176] R10: 0000000000000000 R11: 0000000000000000 R12: 00007f617946f370
[ 3300.913184] R13: 00007f617946f351 R14: 0000562a8a3c1160 R15: 00007ffddbaf0350
[ 3300.913200]  </TASK>
[ 3300.930406] Mem-Info:
[ 3300.930608] active_anon:57 inactive_anon:6197 isolated_anon:462
[ 3300.930608]  active_file:43 inactive_file:267 isolated_file:0
[ 3300.930608]  unevictable:0 dirty:0 writeback:0
[ 3300.930608]  slab_reclaimable:4789 slab_unreclaimable:54681
[ 3300.930608]  mapped:34870 shmem:96 pagetables:1064
[ 3300.930608]  sec_pagetables:0 bounce:0
[ 3300.930608]  kernel_misc_reclaimable:0
[ 3300.930608]  free:3729 free_pcp:75 free_cma:0
[ 3300.933542] Node 0 active_anon:228kB inactive_anon:24788kB active_file:60kB inactive_file:1016kB unevictable:0kB isolated(anon):1848kB isolated(file):0kB mapped:139480kB dirty:0kB writeback:0kB shmem:384kB kernel_stack:3488kB pagetables:4256kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3300.935692] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3300.938032] lowmem_reserve[]: 0 1599 1599 1599
[ 3300.938546] Node 0 DMA32 free:8152kB boost:0kB min:5072kB low:6696kB high:8320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:228kB inactive_anon:25628kB active_file:144kB inactive_file:1016kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:1344kB local_pcp:0kB free_cma:0kB
[ 3300.941036] lowmem_reserve[]: 0 0 0 0
[ 3300.941380] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3300.942505] Node 0 DMA32: 199*4kB (UME) 130*8kB (UME) 57*16kB (UME) 48*32kB (UME) 15*64kB (UME) 10*128kB (ME) 5*256kB (ME) 3*512kB (ME) 1*1024kB (U) 0*2048kB 0*4096kB = 10364kB
[ 3300.943839] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3300.944569] 618 total pagecache pages
[ 3300.945007] 0 pages in swap cache
[ 3300.945316] Free swap  = 0kB
[ 3300.945678] Total swap = 0kB
[ 3300.945943] 524158 pages RAM
[ 3300.946229] 0 pages HighMem/MovableOnly
[ 3300.946616] 110746 pages reserved
[ 3300.946930] Unreclaimable slab info:
[ 3300.947315] Name                      Used          Total
[ 3300.947806] pid_3                     23KB         23KB
[ 3300.948312] pid_2                    121KB        212KB
[ 3300.948879] IEEE-802.15.4-MAC         63KB         63KB
[ 3300.949300] IEEE-802.15.4-RAW         63KB         63KB
[ 3300.949772] p9_req_t                   7KB          7KB
[ 3300.950303] ip6-frags                 15KB         15KB
[ 3300.950725] fib6_node                 28KB         28KB
[ 3300.951261] ip6_dst_cache             36KB         45KB
[ 3300.951811] PINGv6                    61KB         61KB
[ 3300.952231] RAWv6                    464KB        464KB
[ 3300.952697] UDPLITEv6                 63KB         63KB
[ 3300.953216] UDPv6                     63KB         63KB
[ 3300.953794] tw_sock_TCPv6              7KB          7KB
[ 3300.954234] TCPv6                    327KB        327KB
[ 3300.954778] scsi_sense_cache           4KB          4KB
[ 3300.955204] virtio_scsi_cmd           16KB         16KB
[ 3300.955627] bio-120                   11KB         11KB
[ 3300.956068] bio-248                    7KB          7KB
[ 3300.956491] mqueue_inode_cache        121KB        121KB
[ 3300.956936] nfs_commit_data           15KB         15KB
[ 3300.957360] nfs_write_data            47KB         47KB
[ 3300.957805] jbd2_inode                 7KB          7KB
[ 3300.958226] ext4_system_zone           7KB          7KB
[ 3300.958643] ext4_io_end_vec            7KB          7KB
[ 3300.959076] kioctx                    31KB         31KB
[ 3300.959496] aio_kiocb                  7KB          7KB
[ 3300.959929] dnotify_mark               3KB          3KB
[ 3300.960348] dnotify_struct             3KB          3KB
[ 3300.960780] fasync_cache               7KB          7KB
[ 3300.961211] pid_namespace             32KB         32KB
[ 3300.961633] rpc_buffers               31KB         31KB
[ 3300.962063] rpc_tasks                  3KB          3KB
[ 3300.962483] UNIX-STREAM              206KB        350KB
[ 3300.962920] UNIX                     199KB        286KB
[ 3300.963339] UDP-Lite                  61KB         61KB
[ 3300.963779] tcp_bind2_bucket           8KB          8KB
[ 3300.964205] tcp_bind_bucket            8KB          8KB
[ 3300.964678] inet_peer                  8KB          8KB
[ 3300.965196] xfrm_state                15KB         15KB
[ 3300.965673] ip_fib_trie                8KB          8KB
[ 3300.966192] ip_fib_alias              15KB         15KB
[ 3300.966742] rtable                    12KB         12KB
[ 3300.967298] PING                      60KB         60KB
[ 3300.967876] RAW                       61KB         61KB
[ 3300.968428] UDP                      226KB        309KB
[ 3300.968994] tw_sock_TCP                7KB          7KB
[ 3300.969537] request_sock_TCP           7KB          7KB
[ 3300.970031] TCP                      312KB        437KB
[ 3300.970512] hugetlbfs_inode_cache         62KB         62KB
[ 3300.971126] netfs_subrequest          33KB         33KB
[ 3300.971586] netfs_request             95KB         95KB
[ 3300.972102] bio-264                   15KB         15KB
[ 3300.972644] ep_head                    8KB          8KB
[ 3300.973189] eventpoll_pwq             19KB         19KB
[ 3300.973746] eventpoll_epi             47KB         55KB
[ 3300.974325] inotify_inode_mark         50KB         50KB
[ 3300.974951] sgpool-128               216KB        327KB
[ 3300.975374] sgpool-64                127KB        127KB
[ 3300.975990] sgpool-32                 63KB         63KB
[ 3300.976459] sgpool-16                 67KB        105KB
[ 3300.977017] sgpool-8                  56KB         56KB
[ 3300.977601] request_queue             63KB         63KB
[ 3300.978169] blkdev_ioc                 8KB          8KB
[ 3300.978721] bio-184                  107KB        116KB
[ 3300.979158] biovec-max               612KB        748KB
[ 3300.979703] biovec-128               127KB        127KB
[ 3300.980192] biovec-64                 94KB         94KB
[ 3300.980694] biovec-16                 26KB         26KB
[ 3300.981267] user_namespace            61KB         61KB
[ 3300.981844] uid_cache                  7KB          7KB
[ 3300.982387] dmaengine-unmap-2          4KB          4KB
[ 3300.982956] audit_buffer               7KB          7KB
[ 3300.983497] skbuff_small_head        857KB       1096KB
[ 3300.984048] skbuff_fclone_cache         97KB         97KB
[ 3300.984487] skbuff_head_cache        369KB        465KB
[ 3300.984921] file_lease_cache           7KB          7KB
[ 3300.985344] file_lock_cache           43KB         43KB
[ 3300.985783] file_lock_ctx              7KB          7KB
[ 3300.986241] fsnotify_mark_connector         19KB         19KB
[ 3300.986796] posix_timers_cache         16KB         16KB
[ 3300.987346] taskstats                112KB        123KB
[ 3300.987788] mem_cgroup_per_node         37KB         37KB
[ 3300.988220] mem_cgroup               154KB        154KB
[ 3300.988642] proc_dir_entry          1083KB       1117KB
[ 3300.989076] pde_opener                 7KB          7KB
[ 3300.989627] seq_file                  27KB         45KB
[ 3300.990068] sigqueue                  51KB         51KB
[ 3300.990489] shmem_inode_cache       1427KB       1554KB
[ 3300.990931] kernfs_iattrs_cache        298KB        304KB
[ 3300.991378] kernfs_node_cache       6733KB       6817KB
[ 3300.991811] mnt_cache                212KB        212KB
[ 3300.992258] filp                     446KB       1496KB
[ 3300.992676] names_cache              323KB        446KB
[ 3300.993116] net_namespace            330KB        330KB
[ 3300.993546] hashtab_node             274KB        274KB
[ 3300.993978] ebitmap_node            1149KB       1149KB
[ 3300.994399] avtab_node              4976KB       4976KB
[ 3300.994834] avc_node                  35KB         35KB
[ 3300.995292] lsm_inode_cache         1045KB       1577KB
[ 3300.995715] lsm_file_cache            44KB        144KB
[ 3300.996146] key_jar                   47KB         47KB
[ 3300.996562] uts_namespace             15KB         15KB
[ 3300.996993] nsproxy                   11KB         11KB
[ 3300.997501] vm_area_struct          1614KB       2550KB
[ 3300.997937] fs_cache                  40KB         64KB
[ 3300.998359] files_cache              154KB        239KB
[ 3300.998803] signal_cache             518KB        647KB
[ 3300.999225] sighand_cache            515KB        721KB
[ 3300.999661] task_struct             1959KB       3410KB
[ 3301.000097] cred                     109KB        144KB
[ 3301.000531] anon_vma_chain           207KB        468KB
[ 3301.001000] anon_vma                 315KB        637KB
[ 3301.001437] pid                       80KB        110KB
[ 3301.001879] Acpi-Operand              62KB        114KB
[ 3301.002298] Acpi-ParseExt             43KB         43KB
[ 3301.002716] Acpi-Parse                59KB         74KB
[ 3301.003150] Acpi-State                19KB         35KB
[ 3301.003574] Acpi-Namespace            24KB         24KB
[ 3301.004010] shared_policy_node          4KB          4KB
[ 3301.004442] numa_policy                7KB          7KB
[ 3301.004872] perf_event               190KB        218KB
[ 3301.005296] trace_event_file         212KB        212KB
[ 3301.005722] ftrace_event_field        494KB        494KB
[ 3301.006166] pool_workqueue           173KB        173KB
[ 3301.006587] task_group                16KB         16KB
[ 3301.007035] maple_node               475KB       1080KB
[ 3301.008032] mm_struct                349KB        598KB
[ 3301.008460] vmap_area                 54KB        110KB
[ 3301.009229] page->ptl                204KB        464KB
[ 3301.009669] kmemleak_scan_area         29KB         79KB
[ 3301.011333] kmemleak_object        88288KB     107755KB
[ 3301.011770] kmalloc-cg-8k            192KB        192KB
[ 3301.012206] kmalloc-cg-4k           4152KB       4928KB
[ 3301.012640] kmalloc-cg-2k           4696KB       5728KB
[ 3301.013077] kmalloc-cg-1k            960KB       1056KB
[ 3301.013514] kmalloc-cg-512           577KB        656KB
[ 3301.013949] kmalloc-cg-256           168KB        168KB
[ 3301.014373] kmalloc-cg-128           182KB        208KB
[ 3301.014807] kmalloc-cg-64             78KB         92KB
[ 3301.015233] kmalloc-cg-32            154KB        164KB
[ 3301.015650] kmalloc-cg-16              8KB          8KB
[ 3301.016084] kmalloc-cg-8              16KB         16KB
[ 3301.016502] kmalloc-cg-192           120KB        120KB
[ 3301.016947] kmalloc-cg-96            326KB        352KB
[ 3301.017378] kmalloc-8k              3760KB       4128KB
[ 3301.017832] kmalloc-4k              4560KB       5280KB
[ 3301.018259] kmalloc-2k              6076KB       6356KB
[ 3301.018718] kmalloc-1k              3658KB       8096KB
[ 3301.019167] kmalloc-512             2643KB       2896KB
[ 3301.019639] kmalloc-256              897KB        960KB
[ 3301.020076] kmalloc-128              523KB        584KB
[ 3301.020503] kmalloc-64               773KB        908KB
[ 3301.020946] kmalloc-32               756KB       1016KB
[ 3301.021370] kmalloc-16               335KB        348KB
[ 3301.021815] kmalloc-8                231KB        240KB
[ 3301.022251] kmalloc-192             1247KB       1292KB
[ 3301.022692] kmalloc-96               584KB       1052KB
[ 3301.023123] kmem_cache_node           55KB         55KB
[ 3301.023542] kmem_cache                86KB         86KB
[ 3301.023970] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/system.slice/systemd-rfkill.service,task=(d-rfkill),pid=36668,uid=0
[ 3301.025288] Out of memory (oom_kill_allocating_task): Killed process 36668 ((d-rfkill)) total-vm:114464kB, anon-rss:11044kB, file-rss:48kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:0
[ 3301.144866] syz-executor.3 invoked oom-killer: gfp_mask=0xdc0(GFP_KERNEL|__GFP_ZERO), order=0, oom_score_adj=1000
[ 3301.145888] CPU: 1 UID: 0 PID: 36553 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3301.145906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3301.145914] Call Trace:
[ 3301.145919]  <TASK>
[ 3301.145924]  dump_stack_lvl+0xfa/0x120
[ 3301.145944]  dump_header+0x107/0x950
[ 3301.145963]  oom_kill_process+0x278/0xa00
[ 3301.145976]  ? oom_cpuset_eligible.isra.0+0x19b/0x2d0
[ 3301.145991]  out_of_memory+0x138f/0x1690
[ 3301.146009]  ? __pfx_out_of_memory+0x10/0x10
[ 3301.146028]  __alloc_frozen_pages_noprof+0x1980/0x1f20
[ 3301.146053]  ? mark_held_locks+0x49/0x80
[ 3301.146071]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3301.146099]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3301.146119]  ? policy_nodemask+0xeb/0x4e0
[ 3301.146140]  alloc_pages_mpol+0xed/0x340
[ 3301.146158]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3301.146177]  ? __sanitizer_cov_trace_const_cmp4+0x8/0x20
[ 3301.146198]  alloc_pages_noprof+0x9d/0x180
[ 3301.146217]  relay_open_buf.part.0+0x26f/0xc70
[ 3301.146237]  relay_open+0x625/0xa70
[ 3301.146249]  ? debugfs_create_file_full+0x41/0x60
[ 3301.146271]  do_blk_trace_setup+0x4ba/0xc30
[ 3301.146292]  blk_trace_setup+0xdc/0x1b0
[ 3301.146310]  ? __pfx_blk_trace_setup+0x10/0x10
[ 3301.146334]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3301.146355]  sg_ioctl+0x69d/0x2720
[ 3301.146374]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 3301.146390]  ? __pfx_sg_ioctl+0x10/0x10
[ 3301.146405]  ? __fget_files+0x34/0x3b0
[ 3301.146419]  ? find_held_lock+0x2b/0x80
[ 3301.146432]  ? __fget_files+0x203/0x3b0
[ 3301.146444]  ? lock_release+0xc8/0x290
[ 3301.146464]  ? selinux_file_ioctl+0xb9/0x280
[ 3301.146478]  ? __pfx_sg_ioctl+0x10/0x10
[ 3301.146495]  __x64_sys_ioctl+0x18f/0x210
[ 3301.146516]  do_syscall_64+0xbf/0x390
[ 3301.146532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3301.146545] RIP: 0033:0x7fa15dc46b19
[ 3301.146563] Code: Unable to access opcode bytes at 0x7fa15dc46aef.
[ 3301.146569] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3301.146581] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 3301.146590] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 3301.146597] RBP: 00007fa15dca0f6d R08: 0000000000000000 R09: 0000000000000000
[ 3301.146605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3301.146612] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 3301.146629]  </TASK>
[ 3301.146633] Mem-Info:
[ 3301.164890] active_anon:48 inactive_anon:6640 isolated_anon:0
[ 3301.164890]  active_file:14 inactive_file:70 isolated_file:0
[ 3301.164890]  unevictable:0 dirty:0 writeback:0
[ 3301.164890]  slab_reclaimable:4766 slab_unreclaimable:54017
[ 3301.164890]  mapped:34828 shmem:91 pagetables:1014
[ 3301.164890]  sec_pagetables:0 bounce:0
[ 3301.164890]  kernel_misc_reclaimable:0
[ 3301.164890]  free:2631 free_pcp:376 free_cma:0
[ 3301.167820] Node 0 active_anon:192kB inactive_anon:26560kB active_file:56kB inactive_file:280kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:139312kB dirty:0kB writeback:0kB shmem:364kB kernel_stack:3392kB pagetables:4056kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3301.169949] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3301.172143] lowmem_reserve[]: 0 1599 1599 1599
[ 3301.172528] Node 0 DMA32 free:5616kB boost:0kB min:5072kB low:6696kB high:8320kB reserved_highatomic:0KB free_highatomic:0KB active_anon:192kB inactive_anon:26560kB active_file:56kB inactive_file:60kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:244kB local_pcp:0kB free_cma:0kB
[ 3301.174973] lowmem_reserve[]: 0 0 0 0
[ 3301.175304] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3301.176371] Node 0 DMA32: 0*4kB 1*8kB (E) 2*16kB (UE) 45*32kB (UE) 9*64kB (E) 6*128kB (E) 3*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 4104kB
[ 3301.177531] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3301.178211] 252 total pagecache pages
[ 3301.178513] 0 pages in swap cache
[ 3301.178804] Free swap  = 0kB
[ 3301.179051] Total swap = 0kB
[ 3301.179292] 524158 pages RAM
[ 3301.179533] 0 pages HighMem/MovableOnly
[ 3301.179858] 110746 pages reserved
[ 3301.180134] Unreclaimable slab info:
[ 3301.180514] Name                      Used          Total
[ 3301.180987] pid_3                     23KB         23KB
[ 3301.181424] pid_2                    120KB        212KB
[ 3301.181857] IEEE-802.15.4-MAC         63KB         63KB
[ 3301.182275] IEEE-802.15.4-RAW         63KB         63KB
[ 3301.182697] p9_req_t                   7KB          7KB
[ 3301.183134] ip6-frags                 15KB         15KB
[ 3301.183560] fib6_node                 28KB         28KB
[ 3301.183992] ip6_dst_cache             36KB         45KB
[ 3301.184411] PINGv6                    61KB         61KB
[ 3301.184843] RAWv6                    435KB        464KB
[ 3301.185264] UDPLITEv6                 63KB         63KB
[ 3301.185689] UDPv6                     63KB         63KB
[ 3301.186124] tw_sock_TCPv6              7KB          7KB
[ 3301.186546] TCPv6                    327KB        327KB
[ 3301.186981] scsi_sense_cache           4KB          4KB
[ 3301.187399] virtio_scsi_cmd           16KB         16KB
[ 3301.187833] bio-120                   11KB         11KB
[ 3301.188255] bio-248                    7KB          7KB
[ 3301.188674] mqueue_inode_cache        121KB        121KB
[ 3301.189115] nfs_commit_data           15KB         15KB
[ 3301.189545] nfs_write_data            47KB         47KB
[ 3301.189984] jbd2_inode                 7KB          7KB
[ 3301.190402] ext4_system_zone           7KB          7KB
[ 3301.190836] ext4_io_end_vec            7KB          7KB
[ 3301.191258] kioctx                    31KB         31KB
[ 3301.191673] aio_kiocb                  7KB          7KB
[ 3301.192109] dnotify_mark               3KB          3KB
[ 3301.192529] dnotify_struct             3KB          3KB
[ 3301.192960] fasync_cache               7KB          7KB
[ 3301.193380] pid_namespace             32KB         32KB
[ 3301.193824] rpc_buffers               31KB         31KB
[ 3301.194245] rpc_tasks                  3KB          3KB
[ 3301.194662] UNIX-STREAM              206KB        350KB
[ 3301.195099] UNIX                     199KB        286KB
[ 3301.195523] UDP-Lite                  61KB         61KB
[ 3301.195955] tcp_bind2_bucket           8KB          8KB
[ 3301.196374] tcp_bind_bucket            8KB          8KB
[ 3301.196806] inet_peer                  8KB          8KB
[ 3301.197228] xfrm_state                15KB         15KB
[ 3301.197709] ip_fib_trie                8KB          8KB
[ 3301.198214] ip_fib_alias              15KB         15KB
[ 3301.198634] rtable                    12KB         12KB
[ 3301.199068] PING                      60KB         60KB
[ 3301.199489] RAW                       61KB         61KB
[ 3301.199923] UDP                      226KB        309KB
[ 3301.200344] tw_sock_TCP                7KB          7KB
[ 3301.200781] request_sock_TCP           7KB          7KB
[ 3301.201304] TCP                      312KB        437KB
[ 3301.201731] hugetlbfs_inode_cache         62KB         62KB
[ 3301.202191] netfs_subrequest          33KB         33KB
[ 3301.202612] netfs_request             95KB         95KB
[ 3301.203052] bio-264                   15KB         15KB
[ 3301.203474] ep_head                    8KB          8KB
[ 3301.203904] eventpoll_pwq             19KB         19KB
[ 3301.204323] eventpoll_epi             47KB         55KB
[ 3301.204739] inotify_inode_mark         50KB         50KB
[ 3301.205185] sgpool-128               216KB        327KB
[ 3301.205618] sgpool-64                127KB        127KB
[ 3301.206055] sgpool-32                 63KB         63KB
[ 3301.206474] sgpool-16                 67KB        105KB
[ 3301.206905] sgpool-8                  56KB         56KB
[ 3301.207326] request_queue             63KB         63KB
[ 3301.207747] blkdev_ioc                 8KB          8KB
[ 3301.208191] bio-184                  116KB        116KB
[ 3301.208609] biovec-max               573KB        718KB
[ 3301.209048] biovec-128               127KB        127KB
[ 3301.209483] biovec-64                 94KB         94KB
[ 3301.209921] biovec-16                 26KB         26KB
[ 3301.210341] user_namespace            61KB         61KB
[ 3301.210771] uid_cache                  7KB          7KB
[ 3301.211195] dmaengine-unmap-2          4KB          4KB
[ 3301.211619] audit_buffer               7KB          7KB
[ 3301.212501] skbuff_small_head        894KB       1096KB
[ 3301.213250] skbuff_fclone_cache         97KB         97KB
[ 3301.213818] skbuff_head_cache        401KB        465KB
[ 3301.214246] file_lease_cache           7KB          7KB
[ 3301.214670] file_lock_cache           43KB         43KB
[ 3301.215108] file_lock_ctx              7KB          7KB
[ 3301.215526] fsnotify_mark_connector         19KB         19KB
[ 3301.215998] posix_timers_cache         16KB         16KB
[ 3301.216428] taskstats                112KB        123KB
[ 3301.216869] mem_cgroup_per_node         37KB         37KB
[ 3301.217300] mem_cgroup               154KB        154KB
[ 3301.217737] proc_dir_entry          1062KB       1117KB
[ 3301.218170] pde_opener                 7KB          7KB
[ 3301.218591] seq_file                  27KB         45KB
[ 3301.219029] sigqueue                  51KB         51KB
[ 3301.219453] shmem_inode_cache       1427KB       1554KB
[ 3301.219891] kernfs_iattrs_cache        298KB        304KB
[ 3301.220336] kernfs_node_cache       6669KB       6753KB
[ 3301.220771] mnt_cache                182KB        204KB
[ 3301.221232] filp                     437KB       1480KB
[ 3301.221779] names_cache              323KB        446KB
[ 3301.222200] net_namespace            330KB        330KB
[ 3301.222619] hashtab_node             274KB        274KB
[ 3301.223052] ebitmap_node            1149KB       1149KB
[ 3301.223472] avtab_node              4976KB       4976KB
[ 3301.223905] avc_node                  35KB         35KB
[ 3301.224355] lsm_inode_cache         1042KB       1577KB
[ 3301.224793] lsm_file_cache            43KB        144KB
[ 3301.225210] key_jar                   47KB         47KB
[ 3301.225640] uts_namespace             15KB         15KB
[ 3301.226073] nsproxy                   11KB         11KB
[ 3301.226567] vm_area_struct          1474KB       2467KB
[ 3301.227002] fs_cache                  39KB         64KB
[ 3301.227421] files_cache              149KB        223KB
[ 3301.227862] signal_cache             498KB        647KB
[ 3301.228284] sighand_cache            501KB        721KB
[ 3301.228717] task_struct             1863KB       3327KB
[ 3301.229152] cred                     107KB        144KB
[ 3301.229594] anon_vma_chain           190KB        441KB
[ 3301.230045] anon_vma                 302KB        597KB
[ 3301.230586] pid                       80KB        110KB
[ 3301.231028] Acpi-Operand              62KB        114KB
[ 3301.231552] Acpi-ParseExt             43KB         43KB
[ 3301.231991] Acpi-Parse                59KB         74KB
[ 3301.232412] Acpi-State                19KB         35KB
[ 3301.232844] Acpi-Namespace            24KB         24KB
[ 3301.233266] shared_policy_node          4KB          4KB
[ 3301.233698] numa_policy                7KB          7KB
[ 3301.234135] perf_event               187KB        218KB
[ 3301.234555] trace_event_file         212KB        212KB
[ 3301.234989] ftrace_event_field        494KB        494KB
[ 3301.235414] pool_workqueue           173KB        173KB
[ 3301.235853] task_group                16KB         16KB
[ 3301.236286] maple_node               460KB       1064KB
[ 3301.236706] mm_struct                330KB        598KB
[ 3301.237141] vmap_area                 54KB        110KB
[ 3301.237580] page->ptl                178KB        425KB
[ 3301.238017] kmemleak_scan_area         29KB         79KB
[ 3301.239598] kmemleak_object        87665KB     107484KB
[ 3301.240033] kmalloc-cg-8k            192KB        192KB
[ 3301.240464] kmalloc-cg-4k           3824KB       4800KB
[ 3301.240907] kmalloc-cg-2k           4448KB       5600KB
[ 3301.241358] kmalloc-cg-1k            892KB       1056KB
[ 3301.241873] kmalloc-cg-512           550KB        656KB
[ 3301.242297] kmalloc-cg-256           157KB        168KB
[ 3301.242716] kmalloc-cg-128           178KB        208KB
[ 3301.243152] kmalloc-cg-64             76KB         92KB
[ 3301.243573] kmalloc-cg-32            154KB        164KB
[ 3301.244010] kmalloc-cg-16              8KB          8KB
[ 3301.244428] kmalloc-cg-8              16KB         16KB
[ 3301.244861] kmalloc-cg-192           112KB        120KB
[ 3301.245283] kmalloc-cg-96            325KB        352KB
[ 3301.245722] kmalloc-8k              3568KB       3936KB
[ 3301.246352] kmalloc-4k              4640KB       5248KB
[ 3301.247011] kmalloc-2k              6024KB       6356KB
[ 3301.247464] kmalloc-1k              3598KB       8032KB
[ 3301.248054] kmalloc-512             2564KB       2896KB
[ 3301.248481] kmalloc-256              885KB        960KB
[ 3301.249053] kmalloc-128              514KB        584KB
[ 3301.249489] kmalloc-64               771KB        908KB
[ 3301.249994] kmalloc-32               721KB       1016KB
[ 3301.250528] kmalloc-16               334KB        348KB
[ 3301.251061] kmalloc-8                230KB        240KB
[ 3301.251490] kmalloc-192             1215KB       1292KB
[ 3301.251963] kmalloc-96               581KB       1052KB
[ 3301.252467] kmem_cache_node           55KB         55KB
[ 3301.252904] kmem_cache                86KB         86KB
[ 3301.253325] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0,global_oom,task_memcg=/syz3,task=syz-executor.3,pid=36553,uid=0
[ 3301.254572] Out of memory (oom_kill_allocating_task): Killed process 36553 (syz-executor.3) total-vm:93684kB, anon-rss:32kB, file-rss:34888kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[ 3301.256140] syz-executor.3: page allocation failure: order:0, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[ 3301.257158] CPU: 1 UID: 0 PID: 36553 Comm: syz-executor.3 Not tainted 6.18.0-rc1-next-20251017 #1 PREEMPT(voluntary) 
[ 3301.257175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 3301.257181] Call Trace:
[ 3301.257186]  <TASK>
[ 3301.257190]  dump_stack_lvl+0xfa/0x120
[ 3301.257206]  warn_alloc+0x211/0x360
[ 3301.257224]  ? __pfx_warn_alloc+0x10/0x10
[ 3301.257240]  ? __mutex_unlock_slowpath+0x157/0x750
[ 3301.257260]  ? __pfx_out_of_memory+0x10/0x10
[ 3301.257280]  __alloc_frozen_pages_noprof+0x125e/0x1f20
[ 3301.257304]  ? mark_held_locks+0x49/0x80
[ 3301.257320]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 3301.257347]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3301.257367]  ? policy_nodemask+0xeb/0x4e0
[ 3301.257387]  alloc_pages_mpol+0xed/0x340
[ 3301.257413]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 3301.257432]  ? __sanitizer_cov_trace_const_cmp4+0x8/0x20
[ 3301.257453]  alloc_pages_noprof+0x9d/0x180
[ 3301.257472]  relay_open_buf.part.0+0x26f/0xc70
[ 3301.257491]  relay_open+0x625/0xa70
[ 3301.257503]  ? debugfs_create_file_full+0x41/0x60
[ 3301.257523]  do_blk_trace_setup+0x4ba/0xc30
[ 3301.257544]  blk_trace_setup+0xdc/0x1b0
[ 3301.257562]  ? __pfx_blk_trace_setup+0x10/0x10
[ 3301.257586]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 3301.257607]  sg_ioctl+0x69d/0x2720
[ 3301.257626]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 3301.257641]  ? __pfx_sg_ioctl+0x10/0x10
[ 3301.257656]  ? __fget_files+0x34/0x3b0
[ 3301.257669]  ? find_held_lock+0x2b/0x80
[ 3301.257681]  ? __fget_files+0x203/0x3b0
[ 3301.257693]  ? lock_release+0xc8/0x290
[ 3301.257714]  ? selinux_file_ioctl+0xb9/0x280
[ 3301.257727]  ? __pfx_sg_ioctl+0x10/0x10
[ 3301.257744]  __x64_sys_ioctl+0x18f/0x210
[ 3301.257767]  do_syscall_64+0xbf/0x390
[ 3301.257782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 3301.257793] RIP: 0033:0x7fa15dc46b19
[ 3301.257807] Code: Unable to access opcode bytes at 0x7fa15dc46aef.
[ 3301.257812] RSP: 002b:00007fa15b1bc188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 3301.257824] RAX: ffffffffffffffda RBX: 00007fa15dd59f60 RCX: 00007fa15dc46b19
[ 3301.257832] RDX: 0000000020000100 RSI: 00000000c0481273 RDI: 0000000000000003
[ 3301.257839] RBP: 00007fa15dca0f6d R08: 0000000000000000 R09: 0000000000000000
[ 3301.257847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3301.257854] R13: 00007ffc18f6dc1f R14: 00007fa15b1bc300 R15: 0000000000022000
[ 3301.257871]  </TASK>
[ 3301.275228] Mem-Info:
[ 3301.275430] active_anon:48 inactive_anon:6640 isolated_anon:0
[ 3301.275430]  active_file:17 inactive_file:39 isolated_file:1
[ 3301.275430]  unevictable:0 dirty:0 writeback:0
[ 3301.275430]  slab_reclaimable:4766 slab_unreclaimable:54017
[ 3301.275430]  mapped:34828 shmem:91 pagetables:1014
[ 3301.275430]  sec_pagetables:0 bounce:0
[ 3301.275430]  kernel_misc_reclaimable:0
[ 3301.275430]  free:2974 free_pcp:59 free_cma:0
[ 3301.278499] Node 0 active_anon:192kB inactive_anon:26560kB active_file:236kB inactive_file:240kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:139312kB dirty:0kB writeback:0kB shmem:364kB kernel_stack:3392kB pagetables:4056kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 3301.280517] Node 0 DMA free:6420kB boost:0kB min:44kB low:56kB high:68kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 3301.282732] lowmem_reserve[]: 0 1599 1599 1599
[ 3301.283137] Node 0 DMA32 free:5308kB boost:8192kB min:13264kB low:14888kB high:16512kB reserved_highatomic:0KB free_highatomic:0KB active_anon:192kB inactive_anon:26560kB active_file:124kB inactive_file:404kB unevictable:0kB writepending:0kB zspages:0kB present:2080640kB managed:1638288kB mlocked:0kB bounce:0kB free_pcp:252kB local_pcp:0kB free_cma:0kB
[ 3301.285551] lowmem_reserve[]: 0 0 0 0
[ 3301.285888] Node 0 DMA: 1*4kB (U) 0*8kB 1*16kB (U) 0*32kB 0*64kB 0*128kB 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 1*4096kB (M) = 6420kB
[ 3301.286945] Node 0 DMA32: 18*4kB (U) 28*8kB (UE) 44*16kB (UE) 51*32kB (UE) 9*64kB (E) 6*128kB (E) 3*256kB (E) 1*512kB (E) 0*1024kB 0*2048kB 0*4096kB = 5256kB
[ 3301.288150] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 3301.288830] 231 total pagecache pages
[ 3301.289129] 0 pages in swap cache
[ 3301.289414] Free swap  = 0kB
[ 3301.289661] Total swap = 0kB
[ 3301.289921] 524158 pages RAM
[ 3301.290168] 0 pages HighMem/MovableOnly
[ 3301.290479] 110746 pages reserved
[ 3301.336195] systemd[1]: rsyslog.service: A process of this unit has been killed by the OOM killer.
[ 3301.338268] systemd[1]: ssh.service: A process of this unit has been killed by the OOM killer.
[ 3301.341978] systemd[1]: ssh.service: Killing process 222 (sshd) with signal SIGKILL.
[ 3301.346421] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=9/KILL
[ 3301.348627] systemd[1]: systemd-journald.service: Failed with result 'oom-kill'.
[ 3301.370611] systemd[1]: systemd-journald.service: Consumed 22.875s CPU time.
[ 3301.376498] systemd[1]: rsyslog.service: Main process exited, code=killed, status=9/KILL
[ 3301.382512] systemd[1]: rsyslog.service: Failed with result 'oom-kill'.
[ 3301.407369] systemd[1]: rsyslog.service: Consumed 1.969s CPU time.
[ 3301.411289] systemd[1]: ssh.service: Failed with result 'oom-kill'.
[ 3301.447993] systemd[1]: ssh.service: Consumed 43min 28.939s CPU time.
[ 3301.457860] systemd[1]: systemd-rfkill.service: Main process exited, code=killed, status=9/KILL
[ 3301.466178] systemd[1]: systemd-rfkill.service: Failed with result 'oom-kill'.
[ 3301.474804] blktrace: Concurrent blktraces are not allowed on sg0
[ 3301.594575] systemd[1]: Failed to start Load/Save RF Kill Switch Status.
[ 3301.621524] systemd[1]: system.slice: A process of this unit has been killed by the OOM killer.
[ 3301.685420] systemd[1]: systemd-journald.service: Scheduled restart job, restart counter is at 1.
[ 3301.689221] systemd[1]: rsyslog.service: Scheduled restart job, restart counter is at 1.
[ 3301.691112] systemd[1]: ssh.service: Scheduled restart job, restart counter is at 1.
[ 3301.695208] systemd[1]: Stopped System Logging Service.
[ 3301.697996] systemd[1]: rsyslog.service: Consumed 1.969s CPU time.
[ 3301.820222] systemd[1]: Starting System Logging Service...
[ 3301.821712] systemd[1]: Stopped OpenBSD Secure Shell server.
[ 3301.823573] systemd[1]: ssh.service: Consumed 43min 28.939s CPU time.
[ 3301.891216] systemd[1]: Starting OpenBSD Secure Shell server...
[ 3301.954048] systemd[1]: Stopping Flush Journal to Persistent Storage...
[ 3302.024615] systemd[1]: Starting Load/Save RF Kill Switch Status...
[ 3302.034512] systemd[1]: Stopped target Bluetooth.
[ 3302.186059] systemd[1]: Started Load/Save RF Kill Switch Status.
[ 3302.262564] systemd[1]: systemd-journal-flush.service: Succeeded.
[ 3302.273223] systemd[1]: Stopped Flush Journal to Persistent Storage.
[ 3302.277040] systemd[1]: Started System Logging Service.
[ 3302.280023] systemd[1]: Stopped Journal Service.
[ 3302.280674] systemd[1]: systemd-journald.service: Consumed 22.875s CPU time.
[ 3302.312363] systemd[1]: Starting Journal Service...
[ 3302.486736] systemd[1]: Started OpenBSD Secure Shell server.
[ 3302.513311] systemd-journald[36688]: File /var/log/journal/7e681e5076844de4a5cfa8606a84b008/system.journal corrupted or uncleanly shut down, renaming and replacing.
[ 3303.380545] systemd[1]: Started Journal Service.
[ 3303.550072] systemd-journald[36688]: Received client request to flush runtime journal.

VM DIAGNOSIS:
02:06:52  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff829038a5 RDI=ffffffff88908560 RBP=ffffffff88908520 RSP=ffff888013f9f138
R8 =0000000000000000 R9 =ffffed1001540046 R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=0000000000000010 R14=ffffffff88908520 R15=ffffffff82903890
RIP=ffffffff829038fd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb1ea6238c0 00000000 00000000
GS =0000 ffff8880e53f9000 00000000 00000000
LDT=0000 fffffe5100000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055de5aaedcc6 CR3=000000000bac9000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=25252525252525252525252525252525 XMM01=00000000000000ff0000000000ff0000
XMM02=00000000000000ff0000000000ff0000 XMM03=696e656420737365636341002f737973
XMM04=000055de65c27520000055de65c9b270 XMM05=0000000300000004000055de65c537f0
XMM06=000055de65c9cca00000000800000003 XMM07=00000000000000000000000000000000
XMM08=732f636f72702f006b63616d7300632e XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffff88807ffdc640 RBX=ffff8880094ae880 RCX=ffff88800b29f9a4 RDX=ffff88800b290000
RSI=ffffffff8193d010 RDI=ffff88801623a380 RBP=ffff88801623a2c0 RSP=ffff88800b29fa58
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000082 R13=ffff88800b29fc30 R14=ffff8880094ae880 R15=dffffc0000000000
RIP=ffffffff8193d034 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff8880e54f9000 00000000 00000000
LDT=0000 fffffe5800000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6179016920 CR3=000000000c0a3000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65
XMM02=ffffffffffffffffff0f0e0d0c0b0a09 XMM03=7061002d707061002d6d657473797300
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=ffffffffffffffffffffffffffffffff
XMM06=ffffffffffffffffffffffffffffffff XMM07=00000000000000000000000000000000
XMM08=0000000000000000367a79732f3a3a30 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000200000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000