Warning: Permanently added '[localhost]:22944' (ECDSA) to the list of known hosts. 2023/02/24 11:27:46 fuzzer started 2023/02/24 11:27:47 dialing manager at localhost:41417 syzkaller login: [ 43.232098] cgroup: Unknown subsys name 'net' [ 43.327369] cgroup: Unknown subsys name 'rlimit' 2023/02/24 11:28:02 syscalls: 2217 2023/02/24 11:28:02 code coverage: enabled 2023/02/24 11:28:02 comparison tracing: enabled 2023/02/24 11:28:02 extra coverage: enabled 2023/02/24 11:28:02 setuid sandbox: enabled 2023/02/24 11:28:02 namespace sandbox: enabled 2023/02/24 11:28:02 Android sandbox: enabled 2023/02/24 11:28:02 fault injection: enabled 2023/02/24 11:28:02 leak checking: enabled 2023/02/24 11:28:02 net packet injection: enabled 2023/02/24 11:28:02 net device setup: enabled 2023/02/24 11:28:02 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/02/24 11:28:02 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/02/24 11:28:02 USB emulation: enabled 2023/02/24 11:28:02 hci packet injection: enabled 2023/02/24 11:28:02 wifi device emulation: enabled 2023/02/24 11:28:02 802.15.4 emulation: enabled 2023/02/24 11:28:02 fetching corpus: 0, signal 0/2000 (executing program) 2023/02/24 11:28:02 fetching corpus: 46, signal 16692/20450 (executing program) 2023/02/24 11:28:02 fetching corpus: 89, signal 32613/37858 (executing program) 2023/02/24 11:28:02 fetching corpus: 133, signal 40026/46782 (executing program) 2023/02/24 11:28:02 fetching corpus: 183, signal 50462/58479 (executing program) 2023/02/24 11:28:02 fetching corpus: 232, signal 57593/66899 (executing program) 2023/02/24 11:28:02 fetching corpus: 282, signal 65365/75832 (executing program) 2023/02/24 11:28:02 fetching corpus: 332, signal 72634/84202 (executing program) 2023/02/24 11:28:02 fetching corpus: 382, signal 76652/89400 (executing program) 2023/02/24 11:28:03 fetching corpus: 432, signal 82987/96630 (executing program) 2023/02/24 11:28:03 fetching corpus: 482, signal 87650/102247 (executing program) 2023/02/24 11:28:03 fetching corpus: 531, signal 91296/106885 (executing program) 2023/02/24 11:28:03 fetching corpus: 581, signal 94976/111511 (executing program) 2023/02/24 11:28:03 fetching corpus: 631, signal 98851/116303 (executing program) 2023/02/24 11:28:03 fetching corpus: 681, signal 101556/119912 (executing program) 2023/02/24 11:28:03 fetching corpus: 731, signal 104260/123519 (executing program) 2023/02/24 11:28:03 fetching corpus: 781, signal 107340/127427 (executing program) 2023/02/24 11:28:03 fetching corpus: 831, signal 110262/131100 (executing program) 2023/02/24 11:28:04 fetching corpus: 881, signal 112665/134327 (executing program) 2023/02/24 11:28:04 fetching corpus: 931, signal 116004/138304 (executing program) 2023/02/24 11:28:04 fetching corpus: 980, signal 118248/141294 (executing program) 2023/02/24 11:28:04 fetching corpus: 1030, signal 121231/144926 (executing program) 2023/02/24 11:28:04 fetching corpus: 1080, signal 123250/147685 (executing program) 2023/02/24 11:28:04 fetching corpus: 1130, signal 125887/150895 (executing program) 2023/02/24 11:28:04 fetching corpus: 1180, signal 130806/155957 (executing program) 2023/02/24 11:28:04 fetching corpus: 1229, signal 132430/158253 (executing program) 2023/02/24 11:28:05 fetching corpus: 1279, signal 134832/161177 (executing program) 2023/02/24 11:28:05 fetching corpus: 1329, signal 136958/163821 (executing program) 2023/02/24 11:28:05 fetching corpus: 1379, signal 139541/166745 (executing program) 2023/02/24 11:28:05 fetching corpus: 1429, signal 141417/169131 (executing program) 2023/02/24 11:28:05 fetching corpus: 1479, signal 142934/171197 (executing program) 2023/02/24 11:28:05 fetching corpus: 1529, signal 144217/173115 (executing program) 2023/02/24 11:28:05 fetching corpus: 1579, signal 145427/174943 (executing program) 2023/02/24 11:28:05 fetching corpus: 1629, signal 146583/176660 (executing program) 2023/02/24 11:28:05 fetching corpus: 1679, signal 147934/178523 (executing program) 2023/02/24 11:28:06 fetching corpus: 1729, signal 149283/180374 (executing program) 2023/02/24 11:28:06 fetching corpus: 1779, signal 151306/182735 (executing program) 2023/02/24 11:28:06 fetching corpus: 1828, signal 152858/184676 (executing program) 2023/02/24 11:28:06 fetching corpus: 1877, signal 154629/186787 (executing program) 2023/02/24 11:28:06 fetching corpus: 1927, signal 155416/188212 (executing program) 2023/02/24 11:28:06 fetching corpus: 1977, signal 156716/189951 (executing program) 2023/02/24 11:28:06 fetching corpus: 2026, signal 158247/191843 (executing program) 2023/02/24 11:28:06 fetching corpus: 2076, signal 159979/193768 (executing program) 2023/02/24 11:28:07 fetching corpus: 2126, signal 160957/195251 (executing program) 2023/02/24 11:28:07 fetching corpus: 2175, signal 162030/196747 (executing program) 2023/02/24 11:28:07 fetching corpus: 2224, signal 163116/198265 (executing program) 2023/02/24 11:28:07 fetching corpus: 2273, signal 165085/200283 (executing program) 2023/02/24 11:28:07 fetching corpus: 2323, signal 166080/201662 (executing program) 2023/02/24 11:28:07 fetching corpus: 2372, signal 167551/203360 (executing program) 2023/02/24 11:28:07 fetching corpus: 2422, signal 168730/204820 (executing program) 2023/02/24 11:28:07 fetching corpus: 2471, signal 169722/206183 (executing program) 2023/02/24 11:28:07 fetching corpus: 2519, signal 171101/207751 (executing program) 2023/02/24 11:28:07 fetching corpus: 2569, signal 171982/208985 (executing program) 2023/02/24 11:28:07 fetching corpus: 2618, signal 173147/210391 (executing program) 2023/02/24 11:28:08 fetching corpus: 2667, signal 174162/211729 (executing program) 2023/02/24 11:28:08 fetching corpus: 2716, signal 174804/212821 (executing program) 2023/02/24 11:28:08 fetching corpus: 2766, signal 175965/214153 (executing program) 2023/02/24 11:28:08 fetching corpus: 2815, signal 177025/215413 (executing program) 2023/02/24 11:28:08 fetching corpus: 2865, signal 178072/216637 (executing program) 2023/02/24 11:28:08 fetching corpus: 2915, signal 179580/218094 (executing program) 2023/02/24 11:28:08 fetching corpus: 2965, signal 180563/219251 (executing program) 2023/02/24 11:28:08 fetching corpus: 3014, signal 181373/220316 (executing program) 2023/02/24 11:28:09 fetching corpus: 3064, signal 182258/221422 (executing program) 2023/02/24 11:28:09 fetching corpus: 3114, signal 183430/222634 (executing program) 2023/02/24 11:28:09 fetching corpus: 3164, signal 184545/223819 (executing program) 2023/02/24 11:28:09 fetching corpus: 3214, signal 185237/224757 (executing program) 2023/02/24 11:28:09 fetching corpus: 3262, signal 186222/225823 (executing program) 2023/02/24 11:28:09 fetching corpus: 3311, signal 186659/226655 (executing program) 2023/02/24 11:28:09 fetching corpus: 3361, signal 187685/227690 (executing program) 2023/02/24 11:28:09 fetching corpus: 3411, signal 188364/228608 (executing program) 2023/02/24 11:28:10 fetching corpus: 3461, signal 189079/229552 (executing program) 2023/02/24 11:28:10 fetching corpus: 3511, signal 190255/230645 (executing program) 2023/02/24 11:28:10 fetching corpus: 3561, signal 191393/231678 (executing program) 2023/02/24 11:28:10 fetching corpus: 3611, signal 192267/232609 (executing program) 2023/02/24 11:28:10 fetching corpus: 3661, signal 193005/233519 (executing program) 2023/02/24 11:28:10 fetching corpus: 3711, signal 193682/234368 (executing program) 2023/02/24 11:28:10 fetching corpus: 3761, signal 194461/235235 (executing program) 2023/02/24 11:28:10 fetching corpus: 3811, signal 195495/236209 (executing program) 2023/02/24 11:28:10 fetching corpus: 3861, signal 196207/237035 (executing program) 2023/02/24 11:28:11 fetching corpus: 3911, signal 197004/237840 (executing program) 2023/02/24 11:28:11 fetching corpus: 3961, signal 198184/238842 (executing program) 2023/02/24 11:28:11 fetching corpus: 4011, signal 198944/239669 (executing program) 2023/02/24 11:28:11 fetching corpus: 4061, signal 199468/240365 (executing program) 2023/02/24 11:28:11 fetching corpus: 4111, signal 200023/241054 (executing program) 2023/02/24 11:28:11 fetching corpus: 4161, signal 200675/241827 (executing program) 2023/02/24 11:28:11 fetching corpus: 4210, signal 201454/242601 (executing program) 2023/02/24 11:28:11 fetching corpus: 4260, signal 202157/243334 (executing program) 2023/02/24 11:28:11 fetching corpus: 4310, signal 202784/244016 (executing program) 2023/02/24 11:28:12 fetching corpus: 4359, signal 203614/244794 (executing program) 2023/02/24 11:28:12 fetching corpus: 4409, signal 204385/245489 (executing program) 2023/02/24 11:28:12 fetching corpus: 4459, signal 204969/246129 (executing program) 2023/02/24 11:28:12 fetching corpus: 4509, signal 205617/246774 (executing program) 2023/02/24 11:28:12 fetching corpus: 4559, signal 206197/247423 (executing program) 2023/02/24 11:28:12 fetching corpus: 4609, signal 206623/247992 (executing program) 2023/02/24 11:28:12 fetching corpus: 4659, signal 207309/248659 (executing program) 2023/02/24 11:28:12 fetching corpus: 4709, signal 208012/249273 (executing program) 2023/02/24 11:28:12 fetching corpus: 4759, signal 208657/249903 (executing program) 2023/02/24 11:28:13 fetching corpus: 4809, signal 209272/250496 (executing program) 2023/02/24 11:28:13 fetching corpus: 4859, signal 209929/251095 (executing program) 2023/02/24 11:28:13 fetching corpus: 4909, signal 210787/251716 (executing program) 2023/02/24 11:28:13 fetching corpus: 4959, signal 211669/252342 (executing program) 2023/02/24 11:28:13 fetching corpus: 5009, signal 212163/252865 (executing program) 2023/02/24 11:28:13 fetching corpus: 5059, signal 212614/253411 (executing program) 2023/02/24 11:28:13 fetching corpus: 5109, signal 213240/253979 (executing program) 2023/02/24 11:28:13 fetching corpus: 5159, signal 213832/254480 (executing program) 2023/02/24 11:28:14 fetching corpus: 5207, signal 214500/255020 (executing program) 2023/02/24 11:28:14 fetching corpus: 5257, signal 215108/255512 (executing program) 2023/02/24 11:28:14 fetching corpus: 5307, signal 216168/256075 (executing program) 2023/02/24 11:28:14 fetching corpus: 5357, signal 217079/256611 (executing program) 2023/02/24 11:28:14 fetching corpus: 5407, signal 217787/257091 (executing program) 2023/02/24 11:28:14 fetching corpus: 5457, signal 218586/257610 (executing program) 2023/02/24 11:28:14 fetching corpus: 5507, signal 219107/258031 (executing program) 2023/02/24 11:28:15 fetching corpus: 5557, signal 219716/258441 (executing program) 2023/02/24 11:28:15 fetching corpus: 5606, signal 220257/258867 (executing program) 2023/02/24 11:28:15 fetching corpus: 5656, signal 220926/259297 (executing program) 2023/02/24 11:28:15 fetching corpus: 5706, signal 221499/259696 (executing program) 2023/02/24 11:28:15 fetching corpus: 5756, signal 222062/260073 (executing program) 2023/02/24 11:28:15 fetching corpus: 5806, signal 222696/260487 (executing program) 2023/02/24 11:28:15 fetching corpus: 5856, signal 223442/260912 (executing program) 2023/02/24 11:28:16 fetching corpus: 5906, signal 223989/261245 (executing program) 2023/02/24 11:28:16 fetching corpus: 5956, signal 224290/261569 (executing program) 2023/02/24 11:28:16 fetching corpus: 6005, signal 224922/261934 (executing program) 2023/02/24 11:28:16 fetching corpus: 6055, signal 225579/262281 (executing program) 2023/02/24 11:28:16 fetching corpus: 6105, signal 226131/262635 (executing program) 2023/02/24 11:28:16 fetching corpus: 6154, signal 226632/262965 (executing program) 2023/02/24 11:28:16 fetching corpus: 6204, signal 227167/263303 (executing program) 2023/02/24 11:28:16 fetching corpus: 6254, signal 227607/263633 (executing program) 2023/02/24 11:28:17 fetching corpus: 6304, signal 228197/263960 (executing program) 2023/02/24 11:28:17 fetching corpus: 6354, signal 228719/264241 (executing program) 2023/02/24 11:28:19 fetching corpus: 6404, signal 229382/264550 (executing program) 2023/02/24 11:28:19 fetching corpus: 6451, signal 229824/264889 (executing program) 2023/02/24 11:28:19 fetching corpus: 6501, signal 230165/265157 (executing program) 2023/02/24 11:28:19 fetching corpus: 6551, signal 230671/265364 (executing program) 2023/02/24 11:28:19 fetching corpus: 6601, signal 231298/265364 (executing program) 2023/02/24 11:28:20 fetching corpus: 6651, signal 231870/265364 (executing program) 2023/02/24 11:28:20 fetching corpus: 6701, signal 232316/265370 (executing program) 2023/02/24 11:28:20 fetching corpus: 6751, signal 232985/265370 (executing program) 2023/02/24 11:28:20 fetching corpus: 6801, signal 233420/265370 (executing program) 2023/02/24 11:28:20 fetching corpus: 6851, signal 234105/265370 (executing program) 2023/02/24 11:28:20 fetching corpus: 6901, signal 234504/265373 (executing program) 2023/02/24 11:28:20 fetching corpus: 6951, signal 234859/265385 (executing program) 2023/02/24 11:28:20 fetching corpus: 7001, signal 235252/265385 (executing program) 2023/02/24 11:28:21 fetching corpus: 7050, signal 235621/265385 (executing program) 2023/02/24 11:28:21 fetching corpus: 7100, signal 236002/265385 (executing program) 2023/02/24 11:28:21 fetching corpus: 7149, signal 236456/265385 (executing program) 2023/02/24 11:28:21 fetching corpus: 7198, signal 236836/265385 (executing program) 2023/02/24 11:28:21 fetching corpus: 7248, signal 237151/265389 (executing program) 2023/02/24 11:28:21 fetching corpus: 7297, signal 237578/265389 (executing program) 2023/02/24 11:28:21 fetching corpus: 7344, signal 237808/265396 (executing program) 2023/02/24 11:28:21 fetching corpus: 7394, signal 238341/265396 (executing program) 2023/02/24 11:28:21 fetching corpus: 7444, signal 238587/265396 (executing program) 2023/02/24 11:28:22 fetching corpus: 7494, signal 239007/265397 (executing program) 2023/02/24 11:28:22 fetching corpus: 7544, signal 239437/265397 (executing program) 2023/02/24 11:28:22 fetching corpus: 7594, signal 239923/265397 (executing program) 2023/02/24 11:28:22 fetching corpus: 7644, signal 240464/265398 (executing program) 2023/02/24 11:28:22 fetching corpus: 7694, signal 241062/265398 (executing program) 2023/02/24 11:28:22 fetching corpus: 7744, signal 241443/265441 (executing program) 2023/02/24 11:28:22 fetching corpus: 7793, signal 241945/265441 (executing program) 2023/02/24 11:28:22 fetching corpus: 7843, signal 242633/265441 (executing program) 2023/02/24 11:28:22 fetching corpus: 7893, signal 243001/265441 (executing program) 2023/02/24 11:28:23 fetching corpus: 7942, signal 243630/265441 (executing program) 2023/02/24 11:28:23 fetching corpus: 7992, signal 244134/265441 (executing program) 2023/02/24 11:28:23 fetching corpus: 8042, signal 244595/265441 (executing program) 2023/02/24 11:28:23 fetching corpus: 8092, signal 245313/265441 (executing program) 2023/02/24 11:28:23 fetching corpus: 8142, signal 245748/265442 (executing program) 2023/02/24 11:28:23 fetching corpus: 8192, signal 246235/265442 (executing program) 2023/02/24 11:28:23 fetching corpus: 8241, signal 246525/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8291, signal 246903/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8341, signal 247229/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8391, signal 247505/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8441, signal 248062/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8490, signal 248487/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8540, signal 248761/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8590, signal 249007/265478 (executing program) 2023/02/24 11:28:24 fetching corpus: 8640, signal 249303/265478 (executing program) 2023/02/24 11:28:25 fetching corpus: 8689, signal 249545/265479 (executing program) 2023/02/24 11:28:25 fetching corpus: 8739, signal 249871/265479 (executing program) 2023/02/24 11:28:25 fetching corpus: 8789, signal 250248/265479 (executing program) 2023/02/24 11:28:25 fetching corpus: 8839, signal 250867/265512 (executing program) 2023/02/24 11:28:25 fetching corpus: 8889, signal 251275/265512 (executing program) 2023/02/24 11:28:25 fetching corpus: 8939, signal 251515/265512 (executing program) 2023/02/24 11:28:25 fetching corpus: 8989, signal 251893/265512 (executing program) 2023/02/24 11:28:25 fetching corpus: 9038, signal 252253/265512 (executing program) 2023/02/24 11:28:26 fetching corpus: 9087, signal 252633/265512 (executing program) 2023/02/24 11:28:26 fetching corpus: 9137, signal 253077/265512 (executing program) 2023/02/24 11:28:26 fetching corpus: 9187, signal 253407/265515 (executing program) 2023/02/24 11:28:26 fetching corpus: 9237, signal 253693/265515 (executing program) 2023/02/24 11:28:26 fetching corpus: 9287, signal 254339/265515 (executing program) 2023/02/24 11:28:26 fetching corpus: 9337, signal 254717/265515 (executing program) 2023/02/24 11:28:26 fetching corpus: 9387, signal 255156/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9436, signal 255675/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9486, signal 255977/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9536, signal 256185/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9586, signal 256479/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9635, signal 256757/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9685, signal 257103/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9735, signal 257420/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9784, signal 257681/265540 (executing program) 2023/02/24 11:28:27 fetching corpus: 9834, signal 257994/265540 (executing program) 2023/02/24 11:28:28 fetching corpus: 9884, signal 258297/265540 (executing program) 2023/02/24 11:28:28 fetching corpus: 9934, signal 258528/265540 (executing program) 2023/02/24 11:28:28 fetching corpus: 9984, signal 258841/265540 (executing program) 2023/02/24 11:28:28 fetching corpus: 10034, signal 259339/265540 (executing program) 2023/02/24 11:28:28 fetching corpus: 10084, signal 259670/265558 (executing program) 2023/02/24 11:28:28 fetching corpus: 10134, signal 259926/265594 (executing program) 2023/02/24 11:28:28 fetching corpus: 10183, signal 260257/265594 (executing program) 2023/02/24 11:28:28 fetching corpus: 10233, signal 260561/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10283, signal 260891/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10333, signal 261140/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10383, signal 261569/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10433, signal 261900/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10445, signal 261955/265594 (executing program) 2023/02/24 11:28:29 fetching corpus: 10445, signal 261955/265594 (executing program) 2023/02/24 11:28:31 starting 8 fuzzer processes 11:28:31 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x1c, 0x1, 0x4, 0x301, 0x0, 0x0, {0xb}, [@NFULA_CFG_CMD={0x5, 0x1, 0x4}]}, 0x1c}}, 0x0) 11:28:31 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000100), 0x8) open_tree(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x161c00, 0x0) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000001c0), 0x501080, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000200)={0x1, 0x2, 0x7fffffff}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) 11:28:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f00000014c0)='./file0\x00', 0x26e1, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) syz_open_procfs(0x0, &(0x7f0000000180)='fd\x00') 11:28:31 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x0, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32]) syz_io_uring_setup(0xa7b, &(0x7f0000000540)={0x0, 0xb480, 0x8, 0x2, 0x1ec}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000005c0)=0x0, &(0x7f0000000600)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000680)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0xa, &(0x7f0000000640), 0x1, 0x1}, 0xd1) syz_io_uring_submit(r0, 0x0, &(0x7f0000000180)=@IORING_OP_READ=@pass_buffer={0x16, 0x3, 0x4000, @fd_index=0x1, 0x8000, &(0x7f0000000140)=""/1, 0x1}, 0x7) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x4d, 0x0, '\x00', [{}, {0x800}]}) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) ftruncate(r2, 0x400000000) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) [ 87.961293] audit: type=1400 audit(1677238111.979:6): avc: denied { execmem } for pid=262 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:28:31 executing program 5: rseq(&(0x7f0000000040), 0x20, 0x0, 0x0) fsopen(&(0x7f0000000080)='btrfs\x00', 0x0) 11:28:31 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101400, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) pwritev(r0, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read$hiddev(0xffffffffffffffff, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='net/netlink\x00') pread64(r1, &(0x7f00000000c0)=""/98, 0x62, 0x0) dup2(r1, 0xffffffffffffffff) 11:28:32 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000100)=ANY=[@ANYBLOB="01000300000000", @ANYRES32, @ANYBLOB="00001d7d2580000000000000016530fb7f30316545c2d41bf785cc74c4b801dc99bb9158ea401f3684"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000004280)={0x0, 0x0, "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", "66e27c686346d463a5c12d237acff4192845608625de3e00c853ba6db99bdca8ce66b5d2986a3601702f62b704cdf1e3e8815d60724498fe310408bbef0fa4ee3ab93e2eee10adaf7fe25c3cd174494fbb8a8475418e3fd56d207055d4494ed2a34025e9ca172f7ae5388fa786c085f18ce46a27afa2957e87d3e2b1f1a9686e690a558e6d89141d831349af2a8102e281678f33db2f14ff8aea9281aa22c5bfc275faab2882f156fd38cc76835e391932300a5685e3c0ba9187f12117683de169cb3105f334435db81135dd318868c59a2fb19cd813914557f472377ad23a9b4dff26a50cde18a3a6d50b6abb2aec25324123cc37fac8238d63cd0c78d67c9eff7c8a1523b44f3cd514bffa001e05d3180fa830c0f090c6c7cebd2ffaa9546c5be56c3861313c7614c3298fca09c4a8e931e04b6ef44c5000923637dea858cabb882cd5df1252ba30a4b6e02f151375e481b0456ff7c7f97e846951ec0c7fd223df82548aeaf9d920e7539304fde028bb3ba90ef4e6f5d9be225e0ba4fae5988a87adfcfc7e1368edf8170955966e7cbf83657568dd2b1a3c42f0cc20b9190260cc6536051ecca8ffcc02a86267bf5718ad3c0ab285fd41bfa1e7154b3c24e377685a43be2406514cddc45d02ca954ace3729e27c2d3efc154465c248d6438ebecd96af55b9959797b08fc7571f8e053648b30baa53851d16a5418de7bc9831c08bcecd33cfead167fb360b77961331abfcc8ae6c20a4f7277ac081012eac8e2318d32d3bfb4c8bf6a844d467d52d02bf7807bd9704a3ca7ad184cea56f7f459c76652fe48930ca276bceb95b648f042b54ec2af8da5f38e8648e9ca2aacf7a5760e9148b445b6dbbaca8e420e026a7188466a832c8ebc22dda550c2fe1a6ae8f700d41792be7660821d962d995ddcd19e7e72040947c446df6b40618f985a935feb15485168caafc997ec2416908d48de441a6c444f33ac96f22d7f2b13963983e960622e2ffe27a4f496ed5d02eb0c8e28f09e554a38e252e8eb5066b38ff5524c5966c904bc20f5ff48f444ab9c4f54e0171de6ab92082293139ea1cde517b30f4dc8d9ba98256e31cc5ec20d6ca62cbe254b0f3897b58581c4e73b5777cfddd02bbe3b07d5d085d57f20a69f446bdd4b4ab41cd40a38069e0bea6a2717b02e51d139cb0a84a9f863b3ff89195b186bf439c2aacacbe2ef5784690d7028f80b66a10df4716354da85e8fbba87ee78aff91a9041b0a233b79dba28d754d818c84bdc8d96f3fff86566a1f15f4898fe070bc7b35c57ce8f93f58b80a3160985646bdc732934fade924d6e31c2c6e6a2ae643214c4c100b2f66ea6acec03b2cb40f39cb91be1e13211c0327d4d2daf59e414d8bed18bbbe05d85aee69ba68b83875df8b87f8bc90863c38e34c74e8f882bb992e7397ab8704002c14485d4d19915b840690ab13b9ed84d294a0aa74f7feb73ba7618bdd69243ef8670110044e32bd0ea079b745d6591cb61f18090045b426c07ee922ad93a16e209fc94ef8b21454830a65d764d8530f3137dd35a8a7c3b6f1c86721cebeefe01322fc91c3553d558d766b147d14ba6400f0dca309ae8c4865d730c33f3eaf0e2a60be6736a1ff5d2dcca550a700cc7f4d4378bb780dfa934254cd7d39b9d00a250f8f9539260645a0a0056690a454c7f9b31c9a358bed4271b5a192cc371178c0798eeba7c6cb14face65a8bacbb7d74b0b4bf56853b01bb86c937c814bee762933087a816966ac82c6b7d57ec3dfdf3a33834688829f20952020043d29863a4251ddd21e1ef6340f1e450042a82082c36e7e5032dafdd201494b84e5dd290f5bc545d90d0c3695bd5d89616e58b86dadce382fc1cc30c2c7f3f41c456a05e8d2bc8b500855697abd2c0e34e4bdf296fd65ea8213ee0115c661741ef7e60185491b54bc8623d8b8927f6411a324a20ca50043d35c26211faa3e6af590d56cd7b274a55420078b8e034888aee0489b070035c9b3aef475b4086e9ae5f4286aac3df3e5e9367af217a7de0575c7d9400c4a1ea12447c0e549e2ca4db225be99cc0e898b1f29b642575350fdb7c719e070077b210cd231c55cbeffea70cbf5449279d8809977f4d86de391dcd27b08a258963e27910a62da2228b88c33be770337974565e4dfdec85de7c8b46fb1264e5d1e5e7e4c3c490439555c6b550b710e0bed922fb97de7ea379d9308699707f92c3630981fcfac4d8321ab76441f7330135c1689a1e8f941104e4fecb1adcba63dcc1f3173488b1003a930c3b9bce9bd1eab45c3379ba449851c560c88d8e46bd419eac6c8b485db145ff40a417ac8639a74a71147218ee32fc023f5afcce9f223f6ca7da699d52e4b0cec6b354182b6bca7c983c265c348f8be6e45febd48389be41b288d91fa30e3e00fffd334b7b9542e47af657a841673c04ddecbc6df239abcea2d94cdb6fea72f84d43cf677270bd0c6e358add28ff32963509271987591d5f294f8a671881bc2b00f158c4c13c76825d361b810a77ac32d1f1dd7123ffcebb3df9b70cc213912885a80a7c29e0ed6ac492512075dff08bb042521c2495a163987970d2d02a2a4310f8ab5867d23603eab1a893558d04a0080f408ff536b47df5c12238819d7306e532ada3406e98fa9f14f913ec02022ee310662dd6c818d2996f51299764bcf67daf26501f4c79a5fc4d3d5ea1b9972e856789933361069acd6d2145251ab22b4403b1ad1d1c5df811b86fc0350eb771b214ff23419b321914b97b067d90e5a338c3de5bfcd81b638d8afb06ab2c3634420a3f8d6c45f54721b0b8b9ba4c0b12b436ee14cb6d50e623e4d9c594402f0b732b584917e28409a79924c23879762c34944badb44b385bbdcca73998830f9c826d7efcd585ee509491a219e5a8a4510df44db71df4d8576d30951b224748a0f4021998832a68af8b91c57d8631cfff32bd01b6555c33396d2fe8ce69be63480048b9257de136187d0b57c64578089d70b3e6c0b36eab0acc43bf0ebe5019fe4de0551299224480df52e989678157c8e443c7870e85913bce314ddfcd014ded8d172f95f2e2af7327e9380236e3c44e82c76ecca479227f34dbecc55629ffa0f65ee07c10f9de410f563120d07f91c3bd5dd39b053c5f9e4c8e63bf9edf56567bb64225093e76b7d018c348c7e11b86d859b6c5c71380665b93c9a6fca64e4a7da0f589355aca08c09d823caa551ee5cec74383a4d26f2c45cdf55941b4506a7c1068cf27628ceae486dc4a47d6940f99c5a8fa82187a6946fc39f37111ad723dca523ff0b9c38b30ba0bf505a53f85f4c3699c193036d6e5066efe6cb8c7f4f859c6890f72bb5c78f796f15015e97449691d7a61e473935e889c524df1bada8f4e351ac07229e904834081225f78af96585c7f03869d191330835f69581d181b365ffc1cbfe939a53f142e09f7546ee6286f877828e69a24c08c8d8f3b915c4dd34753f358e7283057047e52d930d4e3a40230daa9e47d66086a2d22d29e84d4237bba531e0ee90dadb80b245bc5c4059216616172e462f51d6775025f0f90ee51fcfa26ddbe4dd38cd8feb1bed1925e2f5e02958352ebb1305dc73b51d6c10acdea852ee6eb73e5b0c462fa3767992e5a6c65a742d60a75df9d77767e0ad609c9431530875f9c1a0fb5f43f8c3451a927cd8dad51aff7600a7fa04524b0a2b14d0c818ead49de6019d8a767e2d50c9934077ad437de691910213f846fb27bd1b855e3004035183500a271fae242c8dedd05530f98d9871999ae72c86b007ca1bfe0dfa96c2618aae8be099139574fc51cfcb5584fe956598e0d8ddc6d4f54b79f5ddd78be4153a58c96c20587c9021024940ac29e63b36bff65c2ce7cd78ec538b69b531f2ac3d04f91d1be8aab72c8abaa8a3e5449cd2a4b7d850c623952db3538094410f60c5c2d1f9e68c69d92684d1ea163494ce329c0423f18b15fd7e14e9b6f0c73d46231f2512e36dd15941eee58ffb17e75380259706332409dd35f707f75a42e0aa623492855688204e33fc09f1a28b0fdbb3fd3a6b29a8dd6a202aea102e8675a6084f23719f5641a7f69f4d0b163edc98f9c55731a5bc84d512cf2033eed5122b2fff56a6906186f4c318aa2e7fb7aa98c046ef42383a8647083211cf61cd3140a41259eb417f7f0f5301b4c0a1fe0331b2f19d71ac2692e4fa99ba5fc2803bc524df07f5da3c5d188bdc519bfb1ec419fec31ded4b3b0625840553f548cec8762a090000822371c7dd721b7ba21e0284df453af0b29cb92b6b928a7c73a291dff0c4e69777c50d11f7b4acca0322abb2adce8ba9ed9fa12db65bfa1120a5a618d4a3e3ea5185996337bf37f7618e0e13a6aac2f8400c551f9b79a98ac0dc06782d5ba5494bf0814a37565d1e0f88890ffb38abe2aa47822f3452cbab5e7e70ed13818c268616c1024d150a146963b531ba0e2b9727bdc25253d5489ff985f51bf4060c86d51c3517bbb9957ba81b36b98928d7ce0e710ee7915849fd36f5b16b38bba6333afc80a0da850aeba47bcca8414c0d5e3d8d89ab2424caccab759bea324f7b14f0d9765b773b1167a34067cc5727f3003bd5631b34103b819fff70476908ea3d9b6f679313555a84efd6673a101e51f48f322b3ce2dc80151264808d326a25d4034811b67d3a5ddf007137f777d09dc45e4cbb588bed918356e738e60a763bab026a30c330009ba63b06e0ddd8ca000fd11efe85b6c229ec28533b4b18a0c7dde0eac482a955214d890578d81ce433f6106f85affd8ad7f2601ee84fd2cc32926f1420a8b3063de2e0f24ca28917a57eb19b13401637ccfadca6a9d951df200e04f9160440386544b6e1d875408c0d40aadff96a0fc2b0efbd88c698ee1cae2d562ebf41e39a49ec8946d064697227cfdc1767a0cac59539721a22d5f765bdadb47f34804b7130e00b880e95b0898121d075af882b986fff3db66c96cbaece8461c2ca2734df3fbb394997308e594a237721b76fc52524bb5221170b4c6a0993740f427f3d979d21141696327ed0dcd2fa962c0c50389a20603b365cd77fc57701bc654734dc888da21a0036a9286487e6088fb5c884f6e374037d6447a0d2823342e5dcf7d13dcb0b2bd81a9153907a7a9a162f1433d194ef1be5689d027babbc1d817d63a955da150bd1961d5d761f311142d703ae175d87860b20466c01f6044aff4bff4e2e2d89ebba508413d8611b5a18b17de9c32620bd5905d1e6d559302c2930c16de1bf774697c1d199fe5975d95df394af45a76af933e3e6f699ade69d1ab4b6d5dafe9d284bdce322fce56a77d1885693112a6500a3039bbc0f573d068d6a42c113171b7370f5bfa27cdcf56fa95b7f7edd75b0eab5cfec348d841f"}) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) dup(r2) 11:28:32 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000180)="1fd20f9e4fbcf76808ebf43420fcf96c6af9e2e3cc046d2e59e9325561c0d9880fab0d0f13325b41c19e92712386e6ddad4a239b67c2febf1933295053dcf08cdfa0829fded02716d3214e62a874a450352d780b43f12586de4ecddcd641d25345fcf797c81626e0d5e66718c046f5cb358a67983bb0d841c43f0c46e1f7d19e2be6fc0b814d53a21f") r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, r1, 0x0) fcntl$setown(r1, 0x8, 0x0) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x4, 0x3, 0x7, 0x3, 0x0, 0x9, 0x40900, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xb9, 0x5, @perf_config_ext={0x80, 0xfbffffffffffff96}, 0x5c38, 0x2, 0x1, 0x4, 0x100, 0x9, 0x100, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x7, 0xffffffffffffffff, 0x19) ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$TCSETSF(0xffffffffffffffff, 0x541a, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "070000000000000060d2d48268ac586c096188"}) [ 89.278894] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.281612] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.283810] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.285202] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.287055] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 89.288335] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.293037] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 89.294258] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.296347] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 89.297653] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 89.299204] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 89.300262] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 89.343722] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 89.361221] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 89.368848] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 89.375119] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 89.378761] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 89.380369] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 89.413128] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.415645] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 89.415695] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 89.417772] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 89.420758] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 89.420871] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 89.423419] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 89.424684] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 89.424828] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 89.427073] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 89.427239] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 89.430999] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 89.433622] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 89.435080] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 89.436401] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 89.438897] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 89.440264] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 89.441422] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.442726] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 89.443920] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 89.445067] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 89.446396] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 89.447832] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 89.452638] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.351073] Bluetooth: hci1: command 0x0409 tx timeout [ 91.352259] Bluetooth: hci0: command 0x0409 tx timeout [ 91.414913] Bluetooth: hci5: command 0x0409 tx timeout [ 91.416022] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 91.420007] [ 91.420245] ====================================================== [ 91.420978] WARNING: possible circular locking dependency detected [ 91.421715] 6.2.0-next-20230224 #1 Not tainted [ 91.422297] ------------------------------------------------------ [ 91.426580] syz-executor.6/278 is trying to acquire lock: [ 91.427222] ffff8880189c0880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80 [ 91.428481] [ 91.428481] but task is already holding lock: [ 91.429204] ffff8880189c0920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 91.430399] [ 91.430399] which lock already depends on the new lock. [ 91.430399] [ 91.431359] [ 91.431359] the existing dependency chain (in reverse order) is: [ 91.432239] [ 91.432239] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}: [ 91.433106] __mutex_lock+0x133/0x14a0 [ 91.433671] hci_cmd_sync_work+0x1e6/0x320 [ 91.434279] process_one_work+0xa0f/0x1790 [ 91.434870] worker_thread+0x63b/0x1260 [ 91.435437] kthread+0x2e9/0x3a0 [ 91.435920] ret_from_fork+0x2c/0x50 [ 91.436474] [ 91.436474] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}: [ 91.437459] __lock_acquire+0x2d56/0x6380 [ 91.438069] lock_acquire.part.0+0xea/0x320 [ 91.438678] __flush_work+0x109/0xd80 [ 91.439227] __cancel_work_timer+0x39c/0x4e0 [ 91.439821] hci_cmd_sync_clear+0x52/0x250 [ 91.440420] hci_unregister_dev+0xf9/0x410 [ 91.441016] vhci_release+0x80/0x100 [ 91.441549] __fput+0x263/0xa40 [ 91.442032] task_work_run+0x174/0x280 [ 91.442586] do_exit+0xad8/0x2800 [ 91.443081] do_group_exit+0xd4/0x2a0 [ 91.443623] __x64_sys_exit_group+0x3e/0x50 [ 91.444221] do_syscall_64+0x3f/0x90 [ 91.444750] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 91.445433] [ 91.445433] other info that might help us debug this: [ 91.445433] [ 91.446386] Possible unsafe locking scenario: [ 91.446386] [ 91.447094] CPU0 CPU1 [ 91.447645] ---- ---- [ 91.448192] lock(&hdev->cmd_sync_work_lock); [ 91.448751] lock((work_completion)(&hdev->cmd_sync_work)); [ 91.449718] lock(&hdev->cmd_sync_work_lock); [ 91.450565] lock((work_completion)(&hdev->cmd_sync_work)); [ 91.451253] [ 91.451253] *** DEADLOCK *** [ 91.451253] [ 91.451963] 1 lock held by syz-executor.6/278: [ 91.452517] #0: ffff8880189c0920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 91.453727] [ 91.453727] stack backtrace: [ 91.454272] CPU: 1 PID: 278 Comm: syz-executor.6 Not tainted 6.2.0-next-20230224 #1 [ 91.455195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 91.456159] Call Trace: [ 91.456478] [ 91.456763] dump_stack_lvl+0x91/0xf0 [ 91.457235] check_noncircular+0x263/0x2e0 [ 91.457767] ? __pfx_check_noncircular+0x10/0x10 [ 91.458383] ? __pfx_mark_lock.part.0+0x10/0x10 [ 91.458980] __lock_acquire+0x2d56/0x6380 [ 91.459517] ? __pfx___lock_acquire+0x10/0x10 [ 91.460090] ? __pfx_register_lock_class+0x10/0x10 [ 91.460715] lock_acquire.part.0+0xea/0x320 [ 91.461256] ? __flush_work+0xdd/0xd80 [ 91.461769] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 91.462398] ? __flush_work+0xdd/0xd80 [ 91.462893] ? rcu_read_lock_sched_held+0x42/0x80 [ 91.463493] ? trace_lock_acquire+0x170/0x1e0 [ 91.464066] ? __flush_work+0xdd/0xd80 [ 91.464564] ? lock_acquire+0x32/0xc0 [ 91.465063] ? __flush_work+0xdd/0xd80 [ 91.465572] __flush_work+0x109/0xd80 [ 91.466095] ? __flush_work+0xdd/0xd80 [ 91.466601] ? __pfx_mark_lock.part.0+0x10/0x10 [ 91.467192] ? __pfx___flush_work+0x10/0x10 [ 91.467740] ? lock_acquire.part.0+0xea/0x320 [ 91.468312] ? hci_cmd_sync_clear+0x45/0x250 [ 91.468870] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 91.469483] ? hci_cmd_sync_clear+0x45/0x250 [ 91.470038] ? rcu_read_lock_sched_held+0x42/0x80 [ 91.470639] ? trace_lock_acquire+0x170/0x1e0 [ 91.471203] ? lock_is_held_type+0x9f/0x120 [ 91.471748] ? mark_held_locks+0x9e/0xe0 [ 91.472261] __cancel_work_timer+0x39c/0x4e0 [ 91.472799] ? __pfx___cancel_work_timer+0x10/0x10 [ 91.473399] ? __cancel_work_timer+0x2aa/0x4e0 [ 91.473956] ? __pfx___cancel_work_timer+0x10/0x10 [ 91.474560] ? lock_release+0x1e3/0x710 [ 91.475063] ? __pfx_lock_release+0x10/0x10 [ 91.475606] ? do_raw_write_lock+0x11e/0x3b0 [ 91.476160] ? __pfx_vhci_release+0x10/0x10 [ 91.476702] hci_cmd_sync_clear+0x52/0x250 [ 91.477232] ? __pfx_vhci_release+0x10/0x10 [ 91.477766] hci_unregister_dev+0xf9/0x410 [ 91.478313] vhci_release+0x80/0x100 [ 91.478787] __fput+0x263/0xa40 [ 91.479209] task_work_run+0x174/0x280 [ 91.479709] ? __pfx_task_work_run+0x10/0x10 [ 91.480261] ? do_raw_spin_unlock+0x53/0x220 [ 91.480808] do_exit+0xad8/0x2800 [ 91.481251] ? lock_release+0x1e3/0x710 [ 91.481767] ? __pfx_lock_release+0x10/0x10 [ 91.482321] ? do_raw_spin_lock+0x125/0x270 [ 91.482845] ? __pfx_do_exit+0x10/0x10 [ 91.483333] do_group_exit+0xd4/0x2a0 [ 91.483812] __x64_sys_exit_group+0x3e/0x50 [ 91.484348] do_syscall_64+0x3f/0x90 [ 91.484812] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 91.485436] RIP: 0033:0x7f64e5d6fb19 [ 91.485887] Code: Unable to access opcode bytes at 0x7f64e5d6faef. [ 91.486621] RSP: 002b:00007ffdcb562d08 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 91.487517] RAX: ffffffffffffffda RBX: 00007ffdcb5634e8 RCX: 00007f64e5d6fb19 [ 91.488354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 91.489190] RBP: 0000000000000000 R08: 0000000000000026 R09: 00007ffdcb5634e8 [ 91.490043] R10: 0000000000000020 R11: 0000000000000246 R12: 00007f64e5dc9233 [ 91.490889] R13: 0000000000000002 R14: 0000000000000000 R15: 00000000000000f8 [ 91.491767] [ 91.492326] Bluetooth: hci2: command 0x0409 tx timeout [ 91.492353] Bluetooth: hci6: command 0x0409 tx timeout [ 91.493251] Bluetooth: hci4: command 0x0409 tx timeout [ 91.542754] Bluetooth: hci3: command 0x0409 tx timeout [ 93.398563] Bluetooth: hci0: command 0x041b tx timeout [ 93.398574] Bluetooth: hci1: command 0x041b tx timeout [ 93.462611] Bluetooth: hci5: command 0x041b tx timeout [ 93.526587] Bluetooth: hci6: command 0x041b tx timeout [ 93.527308] Bluetooth: hci2: command 0x041b tx timeout [ 93.528052] Bluetooth: hci4: command 0x041b tx timeout [ 93.591538] Bluetooth: hci3: command 0x041b tx timeout [ 95.446544] Bluetooth: hci0: command 0x040f tx timeout [ 95.447938] Bluetooth: hci1: command 0x040f tx timeout [ 95.510576] Bluetooth: hci5: command 0x040f tx timeout [ 95.574559] Bluetooth: hci4: command 0x040f tx timeout [ 95.574575] Bluetooth: hci2: command 0x040f tx timeout [ 95.574601] Bluetooth: hci6: command 0x040f tx timeout [ 95.638523] Bluetooth: hci3: command 0x040f tx timeout [ 97.046611] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 97.494558] Bluetooth: hci1: command 0x0419 tx timeout [ 97.494616] Bluetooth: hci0: command 0x0419 tx timeout [ 97.558605] Bluetooth: hci5: command 0x0419 tx timeout [ 97.622601] Bluetooth: hci6: command 0x0419 tx timeout [ 97.622683] Bluetooth: hci4: command 0x0419 tx timeout [ 97.623271] Bluetooth: hci2: command 0x0419 tx timeout [ 97.686657] Bluetooth: hci3: command 0x0419 tx timeout VM DIAGNOSIS: 11:28:35 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=dffffc0000000000 RCX=0000000000000000 RDX=0000000000000001 RSI=ffffffff8159b175 RDI=ffffc90000685049 RBP=ffff88800ec1fd28 RSP=ffff88800ec1fc60 R8 =0000000000000004 R9 =000000007fff0000 R10=000000007fff0000 R11=0000000000000001 R12=00000000000000ac R13=1ffff11001d83fa7 R14=00000000000000ac R15=ffffc90000685048 RIP=ffffffff8159b18a RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb18d963900 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe70527f8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe70527f6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb18cd940d0 CR3=000000000e840000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134 XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572 XMM04=f17a1016a31794ac000000000012eda0 XMM05=d3fdd5f48436fbd700000000000aead0 XMM06=0a67f2fc9fe6c55c00000000000ae988 XMM07=00000000000000000000000000000000 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff88800dfdf190 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002d R11=0000000000000001 R12=000000000000002d R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850 RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe13e018e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe13e018c000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7aaa9ee6f4 CR3=000000000befe000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=7465756c42205d3833363235342e3938 XMM04=636f72703d7373616c63742030733a74 XMM05=3a755f6d65747379733d747865746e6f XMM06=5f6d65747379733a755f6d6574737973 XMM07=00000000000000000000000000000000 XMM08=6166203330632078302065646f63704f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000