syzkaller login: [ 43.785083] sshd (243) used greatest stack depth: 24768 bytes left Warning: Permanently added '[localhost]:37114' (ECDSA) to the list of known hosts. 2022/09/13 17:17:58 fuzzer started 2022/09/13 17:17:58 dialing manager at localhost:36597 [ 45.943365] cgroup: Unknown subsys name 'net' [ 46.075974] cgroup: Unknown subsys name 'rlimit' 2022/09/13 17:18:13 syscalls: 2215 2022/09/13 17:18:13 code coverage: enabled 2022/09/13 17:18:13 comparison tracing: enabled 2022/09/13 17:18:13 extra coverage: enabled 2022/09/13 17:18:13 setuid sandbox: enabled 2022/09/13 17:18:13 namespace sandbox: enabled 2022/09/13 17:18:13 Android sandbox: enabled 2022/09/13 17:18:13 fault injection: enabled 2022/09/13 17:18:13 leak checking: enabled 2022/09/13 17:18:13 net packet injection: enabled 2022/09/13 17:18:13 net device setup: enabled 2022/09/13 17:18:13 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/13 17:18:13 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/13 17:18:13 USB emulation: enabled 2022/09/13 17:18:13 hci packet injection: enabled 2022/09/13 17:18:13 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220913) 2022/09/13 17:18:13 802.15.4 emulation: enabled 2022/09/13 17:18:14 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/13 17:18:14 fetching corpus: 49, signal 27249/30819 (executing program) 2022/09/13 17:18:14 fetching corpus: 99, signal 40104/45191 (executing program) 2022/09/13 17:18:14 fetching corpus: 149, signal 48807/55339 (executing program) 2022/09/13 17:18:14 fetching corpus: 199, signal 56901/64733 (executing program) 2022/09/13 17:18:14 fetching corpus: 249, signal 63934/73047 (executing program) 2022/09/13 17:18:14 fetching corpus: 299, signal 72240/82455 (executing program) 2022/09/13 17:18:15 fetching corpus: 349, signal 80685/91854 (executing program) 2022/09/13 17:18:15 fetching corpus: 398, signal 88079/100127 (executing program) 2022/09/13 17:18:15 fetching corpus: 447, signal 93872/106831 (executing program) 2022/09/13 17:18:15 fetching corpus: 497, signal 97852/111801 (executing program) 2022/09/13 17:18:15 fetching corpus: 547, signal 101945/116785 (executing program) 2022/09/13 17:18:15 fetching corpus: 597, signal 105036/120832 (executing program) 2022/09/13 17:18:16 fetching corpus: 647, signal 108752/125348 (executing program) 2022/09/13 17:18:16 fetching corpus: 697, signal 111731/129131 (executing program) 2022/09/13 17:18:16 fetching corpus: 747, signal 115739/133825 (executing program) 2022/09/13 17:18:16 fetching corpus: 795, signal 119728/138421 (executing program) 2022/09/13 17:18:16 fetching corpus: 844, signal 121668/141207 (executing program) 2022/09/13 17:18:16 fetching corpus: 894, signal 125048/145164 (executing program) 2022/09/13 17:18:17 fetching corpus: 944, signal 127488/148336 (executing program) 2022/09/13 17:18:17 fetching corpus: 993, signal 128958/150622 (executing program) 2022/09/13 17:18:17 fetching corpus: 1043, signal 131170/153496 (executing program) 2022/09/13 17:18:17 fetching corpus: 1093, signal 133289/156290 (executing program) 2022/09/13 17:18:17 fetching corpus: 1143, signal 135528/159153 (executing program) 2022/09/13 17:18:17 fetching corpus: 1193, signal 138273/162409 (executing program) 2022/09/13 17:18:17 fetching corpus: 1237, signal 140582/165241 (executing program) 2022/09/13 17:18:17 fetching corpus: 1287, signal 143810/168745 (executing program) 2022/09/13 17:18:18 fetching corpus: 1337, signal 146709/171964 (executing program) 2022/09/13 17:18:18 fetching corpus: 1385, signal 148982/174633 (executing program) 2022/09/13 17:18:18 fetching corpus: 1435, signal 150315/176581 (executing program) 2022/09/13 17:18:18 fetching corpus: 1485, signal 153299/179817 (executing program) 2022/09/13 17:18:18 fetching corpus: 1535, signal 155159/182097 (executing program) 2022/09/13 17:18:18 fetching corpus: 1585, signal 156564/183987 (executing program) 2022/09/13 17:18:18 fetching corpus: 1635, signal 157640/185608 (executing program) 2022/09/13 17:18:19 fetching corpus: 1684, signal 159009/187441 (executing program) 2022/09/13 17:18:19 fetching corpus: 1733, signal 161082/189763 (executing program) 2022/09/13 17:18:19 fetching corpus: 1782, signal 161854/191126 (executing program) 2022/09/13 17:18:19 fetching corpus: 1827, signal 163081/192822 (executing program) 2022/09/13 17:18:19 fetching corpus: 1876, signal 164469/194600 (executing program) 2022/09/13 17:18:19 fetching corpus: 1926, signal 165735/196309 (executing program) 2022/09/13 17:18:19 fetching corpus: 1975, signal 167005/197995 (executing program) 2022/09/13 17:18:20 fetching corpus: 2025, signal 167958/199425 (executing program) 2022/09/13 17:18:20 fetching corpus: 2075, signal 169859/201499 (executing program) 2022/09/13 17:18:20 fetching corpus: 2125, signal 170855/202947 (executing program) 2022/09/13 17:18:20 fetching corpus: 2175, signal 172841/204977 (executing program) 2022/09/13 17:18:20 fetching corpus: 2225, signal 173750/206307 (executing program) 2022/09/13 17:18:20 fetching corpus: 2274, signal 175079/207924 (executing program) 2022/09/13 17:18:20 fetching corpus: 2324, signal 176326/209448 (executing program) 2022/09/13 17:18:21 fetching corpus: 2373, signal 177706/211034 (executing program) 2022/09/13 17:18:21 fetching corpus: 2418, signal 178917/212482 (executing program) 2022/09/13 17:18:21 fetching corpus: 2468, signal 179699/213653 (executing program) 2022/09/13 17:18:21 fetching corpus: 2518, signal 180538/214861 (executing program) 2022/09/13 17:18:21 fetching corpus: 2567, signal 181413/216037 (executing program) 2022/09/13 17:18:21 fetching corpus: 2617, signal 182340/217263 (executing program) 2022/09/13 17:18:21 fetching corpus: 2667, signal 183732/218737 (executing program) 2022/09/13 17:18:22 fetching corpus: 2717, signal 184938/220093 (executing program) 2022/09/13 17:18:22 fetching corpus: 2766, signal 186085/221407 (executing program) 2022/09/13 17:18:22 fetching corpus: 2816, signal 187669/222967 (executing program) 2022/09/13 17:18:22 fetching corpus: 2866, signal 189196/224491 (executing program) 2022/09/13 17:18:22 fetching corpus: 2916, signal 189909/225464 (executing program) 2022/09/13 17:18:22 fetching corpus: 2966, signal 191303/226935 (executing program) 2022/09/13 17:18:22 fetching corpus: 3016, signal 192899/228388 (executing program) 2022/09/13 17:18:23 fetching corpus: 3066, signal 193558/229310 (executing program) 2022/09/13 17:18:23 fetching corpus: 3116, signal 194607/230390 (executing program) 2022/09/13 17:18:23 fetching corpus: 3166, signal 195744/231521 (executing program) 2022/09/13 17:18:23 fetching corpus: 3216, signal 196210/232337 (executing program) 2022/09/13 17:18:23 fetching corpus: 3265, signal 197535/233553 (executing program) 2022/09/13 17:18:23 fetching corpus: 3315, signal 198263/234465 (executing program) 2022/09/13 17:18:23 fetching corpus: 3364, signal 199232/235426 (executing program) 2022/09/13 17:18:23 fetching corpus: 3414, signal 199955/236300 (executing program) 2022/09/13 17:18:24 fetching corpus: 3464, signal 200827/237237 (executing program) 2022/09/13 17:18:24 fetching corpus: 3514, signal 201750/238252 (executing program) 2022/09/13 17:18:24 fetching corpus: 3564, signal 202400/239061 (executing program) 2022/09/13 17:18:24 fetching corpus: 3614, signal 203945/240286 (executing program) 2022/09/13 17:18:24 fetching corpus: 3664, signal 204698/241082 (executing program) 2022/09/13 17:18:24 fetching corpus: 3714, signal 205497/241868 (executing program) 2022/09/13 17:18:24 fetching corpus: 3764, signal 206781/242905 (executing program) 2022/09/13 17:18:25 fetching corpus: 3814, signal 207408/243640 (executing program) 2022/09/13 17:18:25 fetching corpus: 3864, signal 208416/244569 (executing program) 2022/09/13 17:18:25 fetching corpus: 3914, signal 209169/245325 (executing program) 2022/09/13 17:18:25 fetching corpus: 3964, signal 209723/246005 (executing program) 2022/09/13 17:18:25 fetching corpus: 4014, signal 211053/246941 (executing program) 2022/09/13 17:18:25 fetching corpus: 4064, signal 211562/247596 (executing program) 2022/09/13 17:18:25 fetching corpus: 4114, signal 212520/248432 (executing program) 2022/09/13 17:18:25 fetching corpus: 4164, signal 213313/249132 (executing program) 2022/09/13 17:18:26 fetching corpus: 4214, signal 214268/249887 (executing program) 2022/09/13 17:18:26 fetching corpus: 4264, signal 215171/250680 (executing program) 2022/09/13 17:18:26 fetching corpus: 4314, signal 215612/251205 (executing program) 2022/09/13 17:18:26 fetching corpus: 4364, signal 216118/251754 (executing program) 2022/09/13 17:18:26 fetching corpus: 4414, signal 216689/252328 (executing program) 2022/09/13 17:18:26 fetching corpus: 4464, signal 217735/253091 (executing program) 2022/09/13 17:18:26 fetching corpus: 4514, signal 218331/253662 (executing program) 2022/09/13 17:18:26 fetching corpus: 4564, signal 219556/254440 (executing program) 2022/09/13 17:18:27 fetching corpus: 4614, signal 220175/255029 (executing program) 2022/09/13 17:18:27 fetching corpus: 4664, signal 221067/255683 (executing program) 2022/09/13 17:18:27 fetching corpus: 4714, signal 221810/256264 (executing program) 2022/09/13 17:18:27 fetching corpus: 4764, signal 222768/256868 (executing program) 2022/09/13 17:18:27 fetching corpus: 4814, signal 223586/257545 (executing program) 2022/09/13 17:18:27 fetching corpus: 4864, signal 224373/258110 (executing program) 2022/09/13 17:18:27 fetching corpus: 4914, signal 224895/258610 (executing program) 2022/09/13 17:18:28 fetching corpus: 4964, signal 225287/259060 (executing program) 2022/09/13 17:18:28 fetching corpus: 5014, signal 225968/259596 (executing program) 2022/09/13 17:18:28 fetching corpus: 5064, signal 226809/260107 (executing program) 2022/09/13 17:18:28 fetching corpus: 5114, signal 227260/260551 (executing program) 2022/09/13 17:18:28 fetching corpus: 5164, signal 228129/261093 (executing program) 2022/09/13 17:18:28 fetching corpus: 5214, signal 228649/261500 (executing program) 2022/09/13 17:18:28 fetching corpus: 5264, signal 229387/261934 (executing program) 2022/09/13 17:18:29 fetching corpus: 5314, signal 229726/262290 (executing program) 2022/09/13 17:18:29 fetching corpus: 5363, signal 230294/262719 (executing program) 2022/09/13 17:18:29 fetching corpus: 5413, signal 231351/263279 (executing program) 2022/09/13 17:18:29 fetching corpus: 5463, signal 231808/263641 (executing program) 2022/09/13 17:18:29 fetching corpus: 5513, signal 232425/264005 (executing program) 2022/09/13 17:18:29 fetching corpus: 5563, signal 233321/264459 (executing program) 2022/09/13 17:18:29 fetching corpus: 5613, signal 233884/264796 (executing program) 2022/09/13 17:18:30 fetching corpus: 5663, signal 234727/265199 (executing program) 2022/09/13 17:18:30 fetching corpus: 5713, signal 235515/265604 (executing program) 2022/09/13 17:18:30 fetching corpus: 5763, signal 236385/265987 (executing program) 2022/09/13 17:18:30 fetching corpus: 5813, signal 236912/266350 (executing program) 2022/09/13 17:18:30 fetching corpus: 5863, signal 237757/266741 (executing program) 2022/09/13 17:18:30 fetching corpus: 5913, signal 238244/267054 (executing program) 2022/09/13 17:18:30 fetching corpus: 5963, signal 238736/267356 (executing program) 2022/09/13 17:18:30 fetching corpus: 6013, signal 239298/267657 (executing program) 2022/09/13 17:18:31 fetching corpus: 6063, signal 239817/267908 (executing program) 2022/09/13 17:18:31 fetching corpus: 6113, signal 240366/268187 (executing program) 2022/09/13 17:18:31 fetching corpus: 6163, signal 241101/268493 (executing program) 2022/09/13 17:18:31 fetching corpus: 6213, signal 241977/268783 (executing program) 2022/09/13 17:18:31 fetching corpus: 6263, signal 242365/269007 (executing program) 2022/09/13 17:18:31 fetching corpus: 6313, signal 243034/269230 (executing program) 2022/09/13 17:18:31 fetching corpus: 6363, signal 243535/269454 (executing program) 2022/09/13 17:18:32 fetching corpus: 6412, signal 243957/269706 (executing program) 2022/09/13 17:18:32 fetching corpus: 6462, signal 244411/269937 (executing program) 2022/09/13 17:18:32 fetching corpus: 6512, signal 244815/270041 (executing program) 2022/09/13 17:18:32 fetching corpus: 6562, signal 246071/270064 (executing program) 2022/09/13 17:18:32 fetching corpus: 6612, signal 246892/270083 (executing program) 2022/09/13 17:18:32 fetching corpus: 6662, signal 247570/270096 (executing program) 2022/09/13 17:18:33 fetching corpus: 6712, signal 248009/270098 (executing program) 2022/09/13 17:18:33 fetching corpus: 6762, signal 248451/270104 (executing program) 2022/09/13 17:18:33 fetching corpus: 6812, signal 249366/270104 (executing program) 2022/09/13 17:18:33 fetching corpus: 6862, signal 249906/270118 (executing program) 2022/09/13 17:18:33 fetching corpus: 6912, signal 250602/270121 (executing program) 2022/09/13 17:18:33 fetching corpus: 6962, signal 251386/270160 (executing program) 2022/09/13 17:18:33 fetching corpus: 7012, signal 251811/270172 (executing program) 2022/09/13 17:18:34 fetching corpus: 7061, signal 252243/270178 (executing program) 2022/09/13 17:18:34 fetching corpus: 7111, signal 252605/270183 (executing program) 2022/09/13 17:18:34 fetching corpus: 7160, signal 253211/270185 (executing program) 2022/09/13 17:18:34 fetching corpus: 7210, signal 253947/270190 (executing program) 2022/09/13 17:18:34 fetching corpus: 7260, signal 254477/270191 (executing program) 2022/09/13 17:18:34 fetching corpus: 7310, signal 254939/270222 (executing program) 2022/09/13 17:18:35 fetching corpus: 7360, signal 255406/270226 (executing program) 2022/09/13 17:18:35 fetching corpus: 7410, signal 255916/270239 (executing program) 2022/09/13 17:18:35 fetching corpus: 7460, signal 256354/270250 (executing program) 2022/09/13 17:18:35 fetching corpus: 7510, signal 257152/270250 (executing program) 2022/09/13 17:18:35 fetching corpus: 7560, signal 257639/270258 (executing program) 2022/09/13 17:18:35 fetching corpus: 7609, signal 258119/270309 (executing program) 2022/09/13 17:18:35 fetching corpus: 7659, signal 258689/270314 (executing program) 2022/09/13 17:18:35 fetching corpus: 7709, signal 259184/270314 (executing program) 2022/09/13 17:18:36 fetching corpus: 7759, signal 259685/270317 (executing program) 2022/09/13 17:18:36 fetching corpus: 7809, signal 260097/270320 (executing program) 2022/09/13 17:18:36 fetching corpus: 7859, signal 260504/270321 (executing program) 2022/09/13 17:18:36 fetching corpus: 7896, signal 260959/270328 (executing program) 2022/09/13 17:18:36 fetching corpus: 7896, signal 260959/270328 (executing program) 2022/09/13 17:18:38 starting 8 fuzzer processes 17:18:38 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmmsg$inet(r0, &(0x7f00000065c0)=[{{&(0x7f00000021c0)={0x2, 0x4e23, @local}, 0x10, 0x0}}, {{&(0x7f0000003740)={0x2, 0x4e23, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000004b80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @dev={0xac, 0x14, 0x14, 0x39}, @multicast1}}}], 0x20}}], 0x2, 0x0) 17:18:38 executing program 1: ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x102) write$sndseq(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f00000009c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:18:38 executing program 2: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) rt_sigaction(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000001c0)) 17:18:38 executing program 4: pselect6(0x40, &(0x7f00000036c0), 0xfffffffffffffffd, 0x0, 0x0, 0x0) [ 85.763942] audit: type=1400 audit(1663089518.898:6): avc: denied { execmem } for pid=288 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:18:38 executing program 3: openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000480), 0x2, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) 17:18:38 executing program 7: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8936, &(0x7f0000000000)={@dev, 0x0, r2}) 17:18:38 executing program 5: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$perf(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x4) shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(0x0, &(0x7f0000ff6000/0x4000)=nil, 0x0) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$SNAPSHOT_FREE(r1, 0x3305) 17:18:38 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000080)="a2221503f72541b941ded3c56a109c9f2e0ef17c35fe", 0x16}, {0x0, 0x0, 0xffffffffffff1a96}], 0x0, &(0x7f0000000380)) [ 87.010320] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.013358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.022133] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.027023] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.035408] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.036914] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.047860] Bluetooth: hci0: HCI_REQ-0x0c1a [ 87.072810] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.084437] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.094973] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.096694] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.098052] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.099204] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.101836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.105042] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.108694] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.121059] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.122408] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.126677] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.127858] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.129493] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 87.133001] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.134115] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.136076] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.137532] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.137618] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.140203] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 87.142264] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.144252] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.145752] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.146847] Bluetooth: hci2: HCI_REQ-0x0c1a [ 87.149407] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 87.151598] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.151732] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.154115] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 87.157063] Bluetooth: hci1: HCI_REQ-0x0c1a [ 87.162011] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 87.163407] Bluetooth: hci3: HCI_REQ-0x0c1a [ 87.174555] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 87.175671] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 87.177421] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 87.185814] Bluetooth: hci4: HCI_REQ-0x0c1a [ 87.188816] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 87.189972] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 87.191883] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 87.193106] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 87.194237] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 87.196012] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 87.197200] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.197461] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 87.201297] Bluetooth: hci6: HCI_REQ-0x0c1a [ 87.203892] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 87.208369] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 87.210724] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 87.213726] Bluetooth: hci7: HCI_REQ-0x0c1a [ 87.234649] Bluetooth: hci5: HCI_REQ-0x0c1a [ 89.154940] Bluetooth: hci0: command 0x0409 tx timeout [ 89.218434] Bluetooth: hci6: command 0x0409 tx timeout [ 89.218434] Bluetooth: hci7: command 0x0409 tx timeout [ 89.218884] Bluetooth: hci3: command 0x0409 tx timeout [ 89.219478] Bluetooth: hci4: command 0x0409 tx timeout [ 89.219824] Bluetooth: hci1: command 0x0409 tx timeout [ 89.220209] Bluetooth: hci2: command 0x0409 tx timeout [ 89.282369] Bluetooth: hci5: command 0x0409 tx timeout [ 91.203481] Bluetooth: hci0: command 0x041b tx timeout [ 91.266399] Bluetooth: hci1: command 0x041b tx timeout [ 91.266883] Bluetooth: hci3: command 0x041b tx timeout [ 91.267626] Bluetooth: hci2: command 0x041b tx timeout [ 91.268145] Bluetooth: hci4: command 0x041b tx timeout [ 91.268607] Bluetooth: hci7: command 0x041b tx timeout [ 91.269085] Bluetooth: hci6: command 0x041b tx timeout [ 91.331435] Bluetooth: hci5: command 0x041b tx timeout [ 93.250430] Bluetooth: hci0: command 0x040f tx timeout [ 93.314519] Bluetooth: hci6: command 0x040f tx timeout [ 93.315921] Bluetooth: hci7: command 0x040f tx timeout [ 93.316891] Bluetooth: hci4: command 0x040f tx timeout [ 93.318132] Bluetooth: hci2: command 0x040f tx timeout [ 93.319593] Bluetooth: hci3: command 0x040f tx timeout [ 93.320435] Bluetooth: hci1: command 0x040f tx timeout [ 93.378638] Bluetooth: hci5: command 0x040f tx timeout [ 95.298413] Bluetooth: hci0: command 0x0419 tx timeout [ 95.362938] Bluetooth: hci1: command 0x0419 tx timeout [ 95.363755] Bluetooth: hci3: command 0x0419 tx timeout [ 95.364189] Bluetooth: hci2: command 0x0419 tx timeout [ 95.365118] Bluetooth: hci4: command 0x0419 tx timeout [ 95.365921] Bluetooth: hci7: command 0x0419 tx timeout [ 95.366703] Bluetooth: hci6: command 0x0419 tx timeout [ 95.427367] Bluetooth: hci5: command 0x0419 tx timeout 17:19:36 executing program 3: openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000480), 0x2, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) [ 143.145903] audit: type=1400 audit(1663089576.280:7): avc: denied { open } for pid=3841 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.148707] audit: type=1400 audit(1663089576.280:8): avc: denied { kernel } for pid=3841 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.164097] ------------[ cut here ]------------ [ 143.164120] [ 143.164124] ====================================================== [ 143.164128] WARNING: possible circular locking dependency detected [ 143.164132] 6.0.0-rc5-next-20220913 #1 Not tainted [ 143.164138] ------------------------------------------------------ [ 143.164141] syz-executor.5/3843 is trying to acquire lock: [ 143.164148] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 143.164184] [ 143.164184] but task is already holding lock: [ 143.164187] ffff88801763c820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.164214] [ 143.164214] which lock already depends on the new lock. [ 143.164214] [ 143.164217] [ 143.164217] the existing dependency chain (in reverse order) is: [ 143.164220] [ 143.164220] -> #3 (&ctx->lock){....}-{2:2}: [ 143.164234] _raw_spin_lock+0x2a/0x40 [ 143.164251] __perf_event_task_sched_out+0x53b/0x18d0 [ 143.164263] __schedule+0xedd/0x2470 [ 143.164273] schedule+0xda/0x1b0 [ 143.164282] exit_to_user_mode_prepare+0x114/0x1a0 [ 143.164302] syscall_exit_to_user_mode+0x19/0x40 [ 143.164323] do_syscall_64+0x48/0x90 [ 143.164336] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.164353] [ 143.164353] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 143.164367] _raw_spin_lock_nested+0x30/0x40 [ 143.164382] raw_spin_rq_lock_nested+0x1e/0x30 [ 143.164395] task_fork_fair+0x63/0x4d0 [ 143.164412] sched_cgroup_fork+0x3d0/0x540 [ 143.164426] copy_process+0x3f9e/0x6df0 [ 143.164437] kernel_clone+0xe7/0x890 [ 143.164446] user_mode_thread+0xad/0xf0 [ 143.164456] rest_init+0x24/0x250 [ 143.164472] arch_call_rest_init+0xf/0x14 [ 143.164491] start_kernel+0x4c1/0x4e6 [ 143.164509] secondary_startup_64_no_verify+0xe0/0xeb [ 143.164522] [ 143.164522] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 143.164536] _raw_spin_lock_irqsave+0x39/0x60 [ 143.164551] try_to_wake_up+0xab/0x1920 [ 143.164564] up+0x75/0xb0 [ 143.164576] __up_console_sem+0x6e/0x80 [ 143.164592] console_unlock+0x46a/0x590 [ 143.164608] vprintk_emit+0x1bd/0x560 [ 143.164624] vprintk+0x84/0xa0 [ 143.164641] _printk+0xba/0xf1 [ 143.164658] kauditd_hold_skb.cold+0x3f/0x4e [ 143.164672] kauditd_send_queue+0x233/0x290 [ 143.164687] kauditd_thread+0x5da/0x9a0 [ 143.164701] kthread+0x2ed/0x3a0 [ 143.164716] ret_from_fork+0x22/0x30 [ 143.164728] [ 143.164728] -> #0 ((console_sem).lock){....}-{2:2}: [ 143.164742] __lock_acquire+0x2a02/0x5e70 [ 143.164758] lock_acquire+0x1a2/0x530 [ 143.164774] _raw_spin_lock_irqsave+0x39/0x60 [ 143.164789] down_trylock+0xe/0x70 [ 143.164801] __down_trylock_console_sem+0x3b/0xd0 [ 143.164818] vprintk_emit+0x16b/0x560 [ 143.164834] vprintk+0x84/0xa0 [ 143.164850] _printk+0xba/0xf1 [ 143.164867] report_bug.cold+0x72/0xab [ 143.164879] handle_bug+0x3c/0x70 [ 143.164892] exc_invalid_op+0x14/0x50 [ 143.164905] asm_exc_invalid_op+0x16/0x20 [ 143.164921] group_sched_out.part.0+0x2c7/0x460 [ 143.164931] ctx_sched_out+0x8f1/0xc10 [ 143.164941] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.164953] __schedule+0xedd/0x2470 [ 143.164963] schedule+0xda/0x1b0 [ 143.164972] exit_to_user_mode_prepare+0x114/0x1a0 [ 143.164991] syscall_exit_to_user_mode+0x19/0x40 [ 143.165008] do_syscall_64+0x48/0x90 [ 143.165021] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.165038] [ 143.165038] other info that might help us debug this: [ 143.165038] [ 143.165041] Chain exists of: [ 143.165041] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 143.165041] [ 143.165055] Possible unsafe locking scenario: [ 143.165055] [ 143.165058] CPU0 CPU1 [ 143.165060] ---- ---- [ 143.165062] lock(&ctx->lock); [ 143.165067] lock(&rq->__lock); [ 143.165074] lock(&ctx->lock); [ 143.165080] lock((console_sem).lock); [ 143.165085] [ 143.165085] *** DEADLOCK *** [ 143.165085] [ 143.165087] 2 locks held by syz-executor.5/3843: [ 143.165094] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 143.165119] #1: ffff88801763c820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.165147] [ 143.165147] stack backtrace: [ 143.165149] CPU: 0 PID: 3843 Comm: syz-executor.5 Not tainted 6.0.0-rc5-next-20220913 #1 [ 143.165162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 143.165170] Call Trace: [ 143.165173] [ 143.165178] dump_stack_lvl+0x8b/0xb3 [ 143.165192] check_noncircular+0x263/0x2e0 [ 143.165209] ? format_decode+0x26c/0xb50 [ 143.165224] ? print_circular_bug+0x450/0x450 [ 143.165241] ? enable_ptr_key_workfn+0x20/0x20 [ 143.165256] ? format_decode+0x26c/0xb50 [ 143.165272] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 143.165289] __lock_acquire+0x2a02/0x5e70 [ 143.165311] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 143.165334] lock_acquire+0x1a2/0x530 [ 143.165351] ? down_trylock+0xe/0x70 [ 143.165366] ? rcu_read_unlock+0x40/0x40 [ 143.165387] ? vprintk+0x84/0xa0 [ 143.165405] _raw_spin_lock_irqsave+0x39/0x60 [ 143.165421] ? down_trylock+0xe/0x70 [ 143.165435] down_trylock+0xe/0x70 [ 143.165448] ? vprintk+0x84/0xa0 [ 143.165465] __down_trylock_console_sem+0x3b/0xd0 [ 143.165483] vprintk_emit+0x16b/0x560 [ 143.165502] vprintk+0x84/0xa0 [ 143.165520] _printk+0xba/0xf1 [ 143.165538] ? record_print_text.cold+0x16/0x16 [ 143.165560] ? report_bug.cold+0x66/0xab [ 143.165574] ? group_sched_out.part.0+0x2c7/0x460 [ 143.165585] report_bug.cold+0x72/0xab [ 143.165600] handle_bug+0x3c/0x70 [ 143.165614] exc_invalid_op+0x14/0x50 [ 143.165629] asm_exc_invalid_op+0x16/0x20 [ 143.165646] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 143.165659] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 143.165671] RSP: 0018:ffff888042827c48 EFLAGS: 00010006 [ 143.165680] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 143.165687] RDX: ffff8880419d5040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 143.165695] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 143.165703] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88801763c800 [ 143.165710] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 143.165721] ? group_sched_out.part.0+0x2c7/0x460 [ 143.165734] ? group_sched_out.part.0+0x2c7/0x460 [ 143.165747] ctx_sched_out+0x8f1/0xc10 [ 143.165759] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.165774] ? lock_is_held_type+0xd7/0x130 [ 143.165793] ? __perf_cgroup_move+0x160/0x160 [ 143.165805] ? set_next_entity+0x304/0x550 [ 143.165823] ? update_curr+0x267/0x740 [ 143.165841] ? lock_is_held_type+0xd7/0x130 [ 143.165860] __schedule+0xedd/0x2470 [ 143.165873] ? io_schedule_timeout+0x150/0x150 [ 143.165886] ? rcu_read_lock_sched_held+0x3e/0x80 [ 143.165906] schedule+0xda/0x1b0 [ 143.165917] exit_to_user_mode_prepare+0x114/0x1a0 [ 143.165938] syscall_exit_to_user_mode+0x19/0x40 [ 143.165956] do_syscall_64+0x48/0x90 [ 143.165970] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.165988] RIP: 0033:0x7f3ee6101b19 [ 143.165996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 143.166007] RSP: 002b:00007f3ee3677218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 143.166018] RAX: 0000000000000001 RBX: 00007f3ee6214f68 RCX: 00007f3ee6101b19 [ 143.166025] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3ee6214f6c [ 143.166033] RBP: 00007f3ee6214f60 R08: 000000000000000e R09: 0000000000000000 [ 143.166040] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3ee6214f6c [ 143.166047] R13: 00007ffc07d97dff R14: 00007f3ee3677300 R15: 0000000000022000 [ 143.166060] [ 143.223047] WARNING: CPU: 0 PID: 3843 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 143.223728] Modules linked in: [ 143.223979] CPU: 0 PID: 3843 Comm: syz-executor.5 Not tainted 6.0.0-rc5-next-20220913 #1 [ 143.224592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 143.225436] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 143.225842] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 143.227188] RSP: 0018:ffff888042827c48 EFLAGS: 00010006 [ 143.227613] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 143.228146] RDX: ffff8880419d5040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 143.228684] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 143.229225] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88801763c800 [ 143.229763] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 143.230300] FS: 00007f3ee3677700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 143.230909] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 143.231355] CR2: 00007fbf091f1260 CR3: 000000001df4a000 CR4: 0000000000350ef0 [ 143.231905] Call Trace: [ 143.232105] [ 143.232284] ctx_sched_out+0x8f1/0xc10 [ 143.232580] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.232982] ? lock_is_held_type+0xd7/0x130 [ 143.233315] ? __perf_cgroup_move+0x160/0x160 [ 143.233653] ? set_next_entity+0x304/0x550 [ 143.233978] ? update_curr+0x267/0x740 [ 143.234278] ? lock_is_held_type+0xd7/0x130 [ 143.234608] __schedule+0xedd/0x2470 [ 143.234898] ? io_schedule_timeout+0x150/0x150 [ 143.235248] ? rcu_read_lock_sched_held+0x3e/0x80 [ 143.235631] schedule+0xda/0x1b0 [ 143.235896] exit_to_user_mode_prepare+0x114/0x1a0 [ 143.236276] syscall_exit_to_user_mode+0x19/0x40 [ 143.236645] do_syscall_64+0x48/0x90 [ 143.236933] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.237336] RIP: 0033:0x7f3ee6101b19 [ 143.237626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 143.238976] RSP: 002b:00007f3ee3677218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 143.239554] RAX: 0000000000000001 RBX: 00007f3ee6214f68 RCX: 00007f3ee6101b19 [ 143.240093] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3ee6214f6c [ 143.240627] RBP: 00007f3ee6214f60 R08: 000000000000000e R09: 0000000000000000 [ 143.241163] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3ee6214f6c [ 143.241690] R13: 00007ffc07d97dff R14: 00007f3ee3677300 R15: 0000000000022000 [ 143.242232] [ 143.242411] irq event stamp: 682 [ 143.242662] hardirqs last enabled at (681): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 143.243383] hardirqs last disabled at (682): [] __schedule+0x1225/0x2470 [ 143.244005] softirqs last enabled at (382): [] __irq_exit_rcu+0x11b/0x180 [ 143.244647] softirqs last disabled at (311): [] __irq_exit_rcu+0x11b/0x180 [ 143.245295] ---[ end trace 0000000000000000 ]--- 17:19:36 executing program 3: openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000480), 0x2, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) 17:19:36 executing program 3: openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000480), 0x2, 0x0) arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000000)) [ 143.374166] loop6: detected capacity change from 0 to 16154 [ 143.379653] FAT-fs (loop6): bogus logical sector size 27333 [ 143.380063] FAT-fs (loop6): Can't find a valid FAT filesystem [ 143.385922] loop6: detected capacity change from 0 to 16154 [ 143.390895] FAT-fs (loop6): bogus logical sector size 27333 [ 143.391304] FAT-fs (loop6): Can't find a valid FAT filesystem [ 143.421336] hrtimer: interrupt took 19346 ns 17:19:36 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet(r0, &(0x7f0000008980)=[{{&(0x7f00000000c0)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000004c0)=[@ip_retopts={{0x18, 0x0, 0x7, {[@ssrr={0x89, 0x8, 0x4, [@local]}]}}}], 0x18}}], 0x1, 0x0) 17:19:36 executing program 3: syslog(0x4, &(0x7f00000016c0)=""/4096, 0x1000) 17:19:36 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) openat$hpet(0xffffffffffffff9c, &(0x7f0000000540), 0x4400, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x2, 0x20, 0x7f, 0x40, 0x0, 0x1, 0x12020, 0x8, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x10030, 0x1, 0x4, 0x0, 0xfff, 0x10001, 0x80, 0x0, 0x84, 0x0, 0xfffffffffffffffc}, r1, 0xf, r0, 0x9) syz_open_procfs(r1, &(0x7f0000000480)='net/ip_tables_matches\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) socket$packet(0x11, 0x3, 0x300) sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000040000000c00018008000100", @ANYRES32, @ANYBLOB="7a8b85bb3e5f4432fce6e644f19d71e9f5edbb8f21f371823aba4ce2c69decf0f67684938b3662beac4f7c00356949ec8833267fe8d3254941b0419a9ea7364867b34a8e6e332f0a17a180db80a04797b9728e615e94a7998bb961146ed61255a413b9416ed2186567c8585405ac2d69191d23369196cb5e1f9a65e7fef0c98512ba39437084602dc01b6808c721a3f2cf5f0c96630225613d290008efcb0cb300cc5356188eeaf4351f13dd1bade196f9ccbeb2fe6ba8cc8c13f5035ff525837012357a3c7448d544f7b35b8f1a35985e24b8797d480d8ef3d1894000"], 0x20}}, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mtu(r4, 0x0, 0x2, &(0x7f00000000c0), 0x4) sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000140)={0x14, r3, 0x1, 0x70bd2a, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x8842}, 0x20044804) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000, 0x81}, 0x603, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[]) [ 143.559144] loop6: detected capacity change from 0 to 256 [ 143.559862] random: crng reseeded on system resumption [ 143.574504] Restarting kernel threads ... done. [ 143.587706] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 143.594265] random: crng reseeded on system resumption 17:19:36 executing program 5: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$perf(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x4) shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(0x0, &(0x7f0000ff6000/0x4000)=nil, 0x0) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$SNAPSHOT_FREE(r1, 0x3305) 17:19:36 executing program 3: syslog(0x4, &(0x7f00000016c0)=""/4096, 0x1000) [ 143.985199] random: crng reseeded on system resumption [ 150.210495] Bluetooth: hci2: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 17:19:36 Registers: info registers vcpu 0 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b25c1 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff888042827698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000031 R11=0000000000000001 R12=0000000000000031 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b25b0 RIP=ffffffff822b2619 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3ee3677700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbf091f1260 CR3=000000001df4a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3ee61e87c0 00007f3ee61e87c8 YMM02=0000000000000000 0000000000000000 00007f3ee61e87e0 00007f3ee61e87c0 YMM03=0000000000000000 0000000000000000 00007f3ee61e87c8 00007f3ee61e87c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000033b60 RCX=0000000000000000 RDX=ffff88801df53580 RSI=0000000000000002 RDI=0000000000000000 RBP=ffffffff84de5be0 RSP=ffff88804280fa70 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000000000000001 R13=ffffffff84de5ba0 R14=ffff88801df53580 R15=0000000000000246 RIP=ffffffff8424287e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff32740e540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055ac03c8c008 CR3=00000000421de000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM01=0000000000000000 0000000000000000 2f7273752f3a6e69 62732f3d48544150 YMM02=0000000000000000 0000000000000000 0000000000000000 00ff000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 5f45424f5250444f 4d0068563a623a6b YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000