Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:20890' (ECDSA) to the list of known hosts. 2022/10/04 11:49:37 fuzzer started 2022/10/04 11:49:37 dialing manager at localhost:35095 syzkaller login: [ 37.373876] cgroup: Unknown subsys name 'net' [ 37.474416] cgroup: Unknown subsys name 'rlimit' 2022/10/04 11:49:51 syscalls: 2215 2022/10/04 11:49:51 code coverage: enabled 2022/10/04 11:49:51 comparison tracing: enabled 2022/10/04 11:49:51 extra coverage: enabled 2022/10/04 11:49:51 setuid sandbox: enabled 2022/10/04 11:49:51 namespace sandbox: enabled 2022/10/04 11:49:51 Android sandbox: enabled 2022/10/04 11:49:51 fault injection: enabled 2022/10/04 11:49:51 leak checking: enabled 2022/10/04 11:49:51 net packet injection: enabled 2022/10/04 11:49:51 net device setup: enabled 2022/10/04 11:49:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 11:49:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 11:49:51 USB emulation: enabled 2022/10/04 11:49:51 hci packet injection: enabled 2022/10/04 11:49:51 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/04 11:49:51 802.15.4 emulation: enabled 2022/10/04 11:49:52 fetching corpus: 50, signal 31842/33655 (executing program) 2022/10/04 11:49:52 fetching corpus: 100, signal 41989/45469 (executing program) 2022/10/04 11:49:52 fetching corpus: 150, signal 47658/52775 (executing program) 2022/10/04 11:49:52 fetching corpus: 200, signal 54193/60846 (executing program) 2022/10/04 11:49:52 fetching corpus: 250, signal 61045/69145 (executing program) 2022/10/04 11:49:52 fetching corpus: 300, signal 65101/74675 (executing program) 2022/10/04 11:49:52 fetching corpus: 350, signal 68965/79952 (executing program) 2022/10/04 11:49:52 fetching corpus: 400, signal 73052/85397 (executing program) 2022/10/04 11:49:52 fetching corpus: 450, signal 78547/92074 (executing program) 2022/10/04 11:49:53 fetching corpus: 500, signal 80713/95615 (executing program) 2022/10/04 11:49:53 fetching corpus: 550, signal 83061/99307 (executing program) 2022/10/04 11:49:53 fetching corpus: 600, signal 86014/103558 (executing program) 2022/10/04 11:49:53 fetching corpus: 650, signal 90014/108677 (executing program) 2022/10/04 11:49:53 fetching corpus: 700, signal 94787/114437 (executing program) 2022/10/04 11:49:53 fetching corpus: 750, signal 99137/119780 (executing program) 2022/10/04 11:49:53 fetching corpus: 800, signal 103557/125142 (executing program) 2022/10/04 11:49:53 fetching corpus: 850, signal 105653/128380 (executing program) 2022/10/04 11:49:53 fetching corpus: 900, signal 107945/131748 (executing program) 2022/10/04 11:49:54 fetching corpus: 950, signal 109737/134640 (executing program) 2022/10/04 11:49:54 fetching corpus: 1000, signal 111183/137227 (executing program) 2022/10/04 11:49:54 fetching corpus: 1050, signal 111968/139210 (executing program) 2022/10/04 11:49:54 fetching corpus: 1100, signal 112904/141301 (executing program) 2022/10/04 11:49:54 fetching corpus: 1150, signal 114418/143875 (executing program) 2022/10/04 11:49:54 fetching corpus: 1200, signal 115862/146334 (executing program) 2022/10/04 11:49:54 fetching corpus: 1250, signal 117752/149287 (executing program) 2022/10/04 11:49:54 fetching corpus: 1300, signal 118983/151559 (executing program) 2022/10/04 11:49:54 fetching corpus: 1350, signal 120806/154335 (executing program) 2022/10/04 11:49:54 fetching corpus: 1400, signal 122051/156644 (executing program) 2022/10/04 11:49:55 fetching corpus: 1450, signal 123228/158830 (executing program) 2022/10/04 11:49:55 fetching corpus: 1500, signal 125469/161885 (executing program) 2022/10/04 11:49:55 fetching corpus: 1550, signal 126667/164084 (executing program) 2022/10/04 11:49:55 fetching corpus: 1600, signal 127721/166175 (executing program) 2022/10/04 11:49:55 fetching corpus: 1650, signal 128868/168246 (executing program) 2022/10/04 11:49:55 fetching corpus: 1700, signal 129782/170179 (executing program) 2022/10/04 11:49:55 fetching corpus: 1750, signal 130628/172037 (executing program) 2022/10/04 11:49:55 fetching corpus: 1800, signal 131527/173921 (executing program) 2022/10/04 11:49:55 fetching corpus: 1850, signal 132589/175911 (executing program) 2022/10/04 11:49:55 fetching corpus: 1900, signal 133896/178100 (executing program) 2022/10/04 11:49:55 fetching corpus: 1950, signal 135308/180300 (executing program) 2022/10/04 11:49:56 fetching corpus: 2000, signal 136674/182488 (executing program) 2022/10/04 11:49:56 fetching corpus: 2050, signal 137451/184186 (executing program) 2022/10/04 11:49:56 fetching corpus: 2100, signal 138764/186302 (executing program) 2022/10/04 11:49:56 fetching corpus: 2150, signal 140066/188464 (executing program) 2022/10/04 11:49:56 fetching corpus: 2200, signal 141030/190286 (executing program) 2022/10/04 11:49:56 fetching corpus: 2250, signal 142053/192109 (executing program) 2022/10/04 11:49:56 fetching corpus: 2300, signal 143070/193944 (executing program) 2022/10/04 11:49:56 fetching corpus: 2350, signal 144763/196269 (executing program) 2022/10/04 11:49:56 fetching corpus: 2400, signal 146061/198271 (executing program) 2022/10/04 11:49:57 fetching corpus: 2450, signal 146915/199976 (executing program) 2022/10/04 11:49:57 fetching corpus: 2500, signal 148024/201790 (executing program) 2022/10/04 11:49:57 fetching corpus: 2550, signal 150226/204363 (executing program) 2022/10/04 11:49:57 fetching corpus: 2600, signal 151380/206189 (executing program) 2022/10/04 11:49:57 fetching corpus: 2650, signal 152834/208223 (executing program) 2022/10/04 11:49:57 fetching corpus: 2700, signal 154066/210077 (executing program) 2022/10/04 11:49:57 fetching corpus: 2750, signal 155790/212263 (executing program) 2022/10/04 11:49:57 fetching corpus: 2800, signal 157271/214237 (executing program) 2022/10/04 11:49:57 fetching corpus: 2850, signal 158273/215918 (executing program) 2022/10/04 11:49:58 fetching corpus: 2900, signal 159759/217861 (executing program) 2022/10/04 11:49:58 fetching corpus: 2950, signal 161036/219678 (executing program) 2022/10/04 11:49:58 fetching corpus: 3000, signal 162319/221468 (executing program) 2022/10/04 11:49:58 fetching corpus: 3050, signal 163584/223261 (executing program) 2022/10/04 11:49:58 fetching corpus: 3100, signal 164086/224508 (executing program) 2022/10/04 11:49:58 fetching corpus: 3150, signal 164526/225743 (executing program) 2022/10/04 11:49:58 fetching corpus: 3200, signal 164975/227002 (executing program) 2022/10/04 11:49:58 fetching corpus: 3250, signal 166001/228577 (executing program) 2022/10/04 11:49:59 fetching corpus: 3300, signal 167682/230522 (executing program) 2022/10/04 11:49:59 fetching corpus: 3350, signal 169071/232288 (executing program) 2022/10/04 11:49:59 fetching corpus: 3400, signal 169961/233788 (executing program) 2022/10/04 11:49:59 fetching corpus: 3450, signal 171450/235576 (executing program) 2022/10/04 11:49:59 fetching corpus: 3500, signal 173013/237400 (executing program) 2022/10/04 11:49:59 fetching corpus: 3550, signal 174236/238985 (executing program) 2022/10/04 11:49:59 fetching corpus: 3600, signal 175006/240309 (executing program) 2022/10/04 11:49:59 fetching corpus: 3650, signal 175730/241574 (executing program) 2022/10/04 11:49:59 fetching corpus: 3700, signal 176532/242875 (executing program) 2022/10/04 11:49:59 fetching corpus: 3750, signal 176976/244024 (executing program) 2022/10/04 11:50:00 fetching corpus: 3800, signal 177925/245435 (executing program) 2022/10/04 11:50:00 fetching corpus: 3850, signal 178614/246673 (executing program) 2022/10/04 11:50:00 fetching corpus: 3900, signal 179148/247836 (executing program) 2022/10/04 11:50:00 fetching corpus: 3950, signal 179723/249012 (executing program) 2022/10/04 11:50:00 fetching corpus: 4000, signal 180628/250350 (executing program) 2022/10/04 11:50:00 fetching corpus: 4050, signal 181547/251686 (executing program) 2022/10/04 11:50:00 fetching corpus: 4100, signal 182469/252975 (executing program) 2022/10/04 11:50:00 fetching corpus: 4150, signal 183557/254315 (executing program) 2022/10/04 11:50:00 fetching corpus: 4200, signal 184020/255427 (executing program) 2022/10/04 11:50:00 fetching corpus: 4250, signal 184692/256639 (executing program) 2022/10/04 11:50:01 fetching corpus: 4300, signal 185497/257894 (executing program) 2022/10/04 11:50:01 fetching corpus: 4350, signal 186058/259030 (executing program) 2022/10/04 11:50:01 fetching corpus: 4400, signal 186854/260210 (executing program) 2022/10/04 11:50:01 fetching corpus: 4450, signal 187583/261415 (executing program) 2022/10/04 11:50:01 fetching corpus: 4500, signal 188171/262509 (executing program) 2022/10/04 11:50:01 fetching corpus: 4550, signal 188595/263567 (executing program) 2022/10/04 11:50:01 fetching corpus: 4600, signal 189884/265023 (executing program) 2022/10/04 11:50:01 fetching corpus: 4650, signal 190434/266089 (executing program) 2022/10/04 11:50:01 fetching corpus: 4700, signal 190949/267121 (executing program) 2022/10/04 11:50:02 fetching corpus: 4750, signal 191728/268283 (executing program) 2022/10/04 11:50:02 fetching corpus: 4800, signal 192355/269390 (executing program) 2022/10/04 11:50:02 fetching corpus: 4850, signal 193233/270508 (executing program) 2022/10/04 11:50:02 fetching corpus: 4900, signal 193703/271515 (executing program) 2022/10/04 11:50:02 fetching corpus: 4950, signal 194282/272527 (executing program) 2022/10/04 11:50:02 fetching corpus: 5000, signal 194754/273496 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/274288 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/275059 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/275856 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/276655 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/277442 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/278216 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/278981 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/279774 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/280555 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/281356 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/282167 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/282987 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/283768 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/284555 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/285337 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/286132 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/286920 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/287734 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/288483 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/289302 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/290089 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/290913 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/291717 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/292475 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/293252 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/294060 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/294863 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/295647 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/296444 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/297244 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/298048 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/298839 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/299574 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/300329 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/301155 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/301953 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/302746 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/303512 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/304322 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/305083 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/305861 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/306675 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/307471 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/308259 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/309057 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/309825 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/310584 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/311368 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/312164 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/312983 (executing program) 2022/10/04 11:50:02 fetching corpus: 5015, signal 194826/313737 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/314539 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/315302 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/316078 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/316845 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/317655 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/318481 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/319301 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/319495 (executing program) 2022/10/04 11:50:03 fetching corpus: 5015, signal 194826/319495 (executing program) 2022/10/04 11:50:05 starting 8 fuzzer processes 11:50:05 executing program 0: ioctl$EVIOCSCLOCKID(0xffffffffffffffff, 0x400445a0, &(0x7f0000000000)=0x7fff) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000040)=""/26) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000080)=""/111) r1 = signalfd4(r0, &(0x7f0000000100)={[0x5]}, 0x8, 0x80000) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x60, r2, 0x300, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xffffff98, 0x7c}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x19}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x30}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x16}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x30}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x17}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xa}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x5}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x35}]}, 0x60}, 0x1, 0x0, 0x0, 0x10}, 0x10) ioctl$EVIOCSABS3F(r1, 0x401845ff, &(0x7f00000002c0)={0x1, 0xfffffc01, 0xfffffbff, 0x7, 0x5, 0x3}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000300)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f0000000340)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'}) ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000380)=0x10000) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0xf503, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'}) fcntl$setpipe(r5, 0x407, 0x5) r6 = syz_mount_image$iso9660(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x8001, 0x4, &(0x7f00000015c0)=[{&(0x7f0000000480)="e673f0f4c09081ee28356a491a7322e3dd6e1b4ec2d9546b", 0x18, 0x8000}, {&(0x7f00000004c0)="917e4b2a6a56e63ee842c7cfffeeedb39bf2dce12157a2e238a11964cbc6bdc08e581a3457cfb17e803b90be3e57f0cecbb4fa3d6369520689f20f7575287cf1bf5e0e88c25aac0b804bbe3c73f67c7b5e3dbf43e91c86fc28928deec078ac2fb5fba59b86a388a203e2db15648654fe733ab7d5899d62473a2207f71f8d0ee4117951bc2a583692463a5b10a201d045c981191b8053521df05223f9062194f93244c34503c811a7431c0cdc49aed8663cef4bb6a014e8d0f3edc74d0e32b68eb1a200f265f17c59103cd47a1a260bdef860b85e5d71497346ec0f0e8e5a29ddf22c54921734ebb4d0c81157e48b5b321e8acf98702af39d5f6df2c03be3e4f34ebfc8873d824f0269a84ab8335e7d45b82fb7f7365a69db708c98565b51a63313c01a07a3d0fa981991e0f2a2c9fd288b3fa385feba1493f59679399bf85a52d0bf162c1825fd1b1dd84f6e389e7cad13337e9723a5f46586fd2248e95b7c973f3acc47d316d98469c35fca9fb22988953e6eefb72b36069b6e26dfe76cdf97d8e4fe6f884f606ee28139ecfe650f8d3509866318407575828c51fd7095ae421792ff1518e4ff83ffbd2cdfb3fc3c6b99506ddf00b1b377b255b9fad56e640c657da8da079d9d97452cb850fa9dab2959f57f3f73f224150127fed086536ca161a465c883ca964a3e31e63cf705e1d7d3aa0dd5381f281b40ab893f14be8048f15f8daf31e39611af331a7fe0131777dde787d83b2ca3d08b76dd1f1f0cea657107e4aba94e592600163152e13581bd18c8283007a64fbbbb0510fa0bbaaf71197fff3407ece24afd3fb0ec5b7fd6c86e1e82ef80843aba2af9447067a38b0d2c5f5de9ed0ae3dca84ecd2237d60e18891c1ced9f75f8122582282a915d72b7e0af72c6be68a9b6412c2c6536d73bab4cd22161d8da56e960f2f6af157a57ceeb439249bec44cf6c041c8c4f4ed110c80d7d5e9319fe028158dabed57602bf2673fecf3838854b7598d6b1e80296dd7461c52317769e4d7ba4d24d7dd0981bda3aab2a997a9856a4f5c37a1d1569835237abfe61bd6e7879c612bed5d8bff141c97f0119e4ac66b374d87d2eeed24bc373c152ec31ab48afe768128b296a2c919dedaedcab785b30c60f0f8462aebe3c52a66411df2c19f131025c0ac0b1274ea6c5a4065f25b1f84cd5cf58566eccefbe817705efa8a42b8f0ffeccf3f72248736a5bf71cf86a36374b177cee4e9443de357934356e6546841a42873de0922d9a424c0bd990d11a30675caf48e85fef784357180d3fb9f4dba65c85d902a0b6a62ff3a87d5f673c2b0602e4d92286b016adab6eeb22ad3f3e38ab21f708450474c1ea8ff0b234aec75584b9f81e9c130d62ea31eb98fef26806c528b5fc145bb448bdb81d7d7c758f43a223dec97b7c72a0ecaea0d1f07f7a15aa8368099b0c8238fd8ca1b59e745c941dfe999f798648977f1c352c179c0f1475c4152f98939e0161dcb61b2fab7b6c67bc65dc0fbbf981d4ddfeecd87da0a31764cb2cc4c872bf2e90bb43c00d1fa4c1cc58ee2e61ef842935f8d0e9bcb0d0c70b305afde2d89974954f50b3a75d270e000e7b7500c0f0fe0ec14a012194194d184b84a5b4b218f00e29c7de66b9994855ef49c22ea02d42b660d54c917b4008085a3ff9f7ef7b83d5e631df9defea7c14734599829ed5180bec18f206c0621c7d2d99f54cb5f54c8c0d28fd221c105c1882e890e6d6439be1ef81e49cc14a0e9a81239ca71a29ced0bc870d01c52e5a32ac60a0d18dda663b5d7c138b94fa4509d94bb83fa5973cd8e3703df49bf654f95488d19879e0cc177ab436e74f1b6993f158b5ed7517cfa7a170a1b062b0fc886ae2940a58c128e86b0396c47db8ea485481b64a67142b5f764591de312ac02cde5e8efc646110ebff23bd962fce8a9a8c4a3ff7d0f09e1dd26f846e852e0fb5ed8c2e71a43b75b63087f0ab1f7fb2277a2b0d02fe6fcd99871c8ac730a39dafb6f9c1085b162acf3a33c91f7905941917068868f4542391ec22dd89673a986e77172fb8796671737e9a5d5e9deea7701ba58e0cecfacc3504565f2941e7eefabbb1edd3822f3981fa627f714c5e9789f915162b29125f7572c0ac24f41df94782e10314ea7141dc10767be8b821b433454d2756f18172e39ab4a84e91a7df1e2c500bcedd50f627fb90af6c3d47185c01a98d466a6470ccd9bf52fe4cd3c561a29d7bc3406f49bb40907309b737e9a2848f4e484316793665e77926082fdcc911cffe38eb43b2dc2166c50be3ebae3836695b112561fdc2918da80a3a3dbd1439f5c0788f400cd339e9fb93730af214d5761fbc7316082bc150236c17872c180379e70694c34dbc766f8a3b6a480868dc7bc233b789b6e6130a40d8c43ad1fcf7457877fd2d8a2c72c5df8e6a3e45d8c97509f841fdfbb0c43231ba85abeea5eb90b65f0deb099d7f0587f3429ef02a7f61769ffc723d5349d8d9291a94b476d3cb43b6586bc8c04acf6217650c2643877cd8f2807e47280df0046bc334363778decfc62c199d6f0c9ccb78a0ae150cb8219cb1c429dd0350e8c2bb7c896fab4492805399f646504ebe4c24485b7e56854f3485ed1f4006424da23828117a96132550dc12b951c6b289731e105d29a604c9ffa3c0281ca64c5f6b610248d502b10801d4f1f1896876c874f72593c1be7cffe345805ef7ae43dbaa6e546f836d076970788d9bfe732f5824a11501cf80a9c9b44e1ac022b402083dcb663a74d6b76b7826a4d865a609c09060974ed55e37273d59688b3b5c9bf72464bc69e42354e7e6ae33b7b42c48b4ed412a37c368d0f893a4becb7480ba09ccc896d04eb7244069d1b61741679712e8523ebeadcb8d6c24381a7c0da4e31858c941fd6aad6ab725525901f1c5b26b4ea24a7aa451ecf6ebbcb0f84ea1c55bc61d509fa8d0ce95f52ed0fdabc775c06a0f1a141368c05acda975e97bc920ead3403241a2f14798542ef73eeb507cbe366a59ec44cfd33a8c526d95acec8b6ac814b5ff6b56061088dcf4c6401836ebcb98a82a94d6ac4e5e6c3972be5317d9c6c1caeaf5744be8b333a4da1a384eb6d551a64e1207ec55b1c38ef6d2646aa87e3cd0f1cad140a7f2af91dd9c442ad71411a70462ab40027c9d98929af733b1daca9e54631f43f7afcca9755e7546979a976fae8eb9a964a459c44bd3758c7c20f4d8565fd6e2c7ff38780c87fae0343537009f391b32e674215b6cfd5461d7fbbc8d00aba50105e4115594a8707ab2a6b30787c6341264af775044b2b607f415d44e39108fe29345e9a7ba85cda74d4f08ac50ca18323535e1911e50f5a05ee98493ce9af724041116153ea9b69882f2384c68853a7e208ae49d3e56f9408129f99e9013bd9ea2f0b86bfaf4a97946e378c2dafc2377a2c25cf6c1c9a100f9a7482217c5d9792ca1e8628fd2fd0163fe1f2d39318ab3807ea042f4d05c85e0ef0d7320d4353d4d21c48cd0cd84edddc69e8a0aa7df9b404bb2c7be73d8938638165a8c0713b351d77e8f120b11cfb8a8f06e5002e01f373d301b9123a250e105ff06e31b862329ed31f5c2bf02dda12d35f697d6f99097061a089ab099f32e0f9b618575f086ab1d28f9c1130725023882fb625ee2cc3e5f4cac80f144779f27532cfbbb1b2bf912e32f04710b7ae545400c1191f188864804b51c4b3fc77405d5e8eb07ee58ac06fc08d275e80888a12843318a2853583c2b9212d38cdef14c4435b715ffe1a372d3e69f0419649f33646432e1f0b48a6fb1a0baacc9f53f5434086bbbbac96cc1a34a92994f617b08b15c3570862436c617c1de48f3e7d4b43050c02a792317af75ef3e455d1acc4b48f9b7e0b76fb99f9f6a29cd58ffb5e27c8df550ade0242d308917d6bac46f2ee030ff62a36201be10e14d6512eb867a63eb63c45ed8c26ae20a35d962593642ac3d28faf7dbd4fd6c28c82719ab5bedfe37b17927918336a7e794eeeb61174fb6afc430c6030348b5bb94b856c90fdcd6e75e71a2da7bfaf8c20b0647dc12368701abb5548fc052d72f0289fd779bda1d966be884b987bec0013d073b740cbb167522063ad4dccd62590636e7cff4353e28fed69b2e377981c04a935e4f75a453dc0bfb2864911ad328a9450c1d8a6371ad84c2c4940a74076c3678540744480094c283fdf00f5e52b19b98399e5b0f9c7ff72ca48a455ceb467b94e176ea1d0098e5faa899bdfc4cb4362795de34b5e9d91d758f6a60720b9a6ed3469fd32eb5578a28c850a281240252b8d7a46ba74107f6d8dbc003ea2090b43a7686e995a7ad2cee87df4772bdd6ea826f534843b5cd015e28350da97a4cf65d14f761ea67f8df811477ed460e666b7d8261a92daa32b6e7e417ea71d7c7b6a6780f62003b26ea3e80da17ac1699e5ad5738d2013d7a1d21d88e6cf248a9ee0557ae94d1c0b57d55791bcf91b75ac1d70a5983a81c9bfb128ce5f1f5b7237c1d5bf9f887309087d1a2d98d841612c18f1aed66d8d15f97171721777439e799a4cfe152ca7f934f865b5aec1f2923b7764fc81d2a20fbacb0ec99f6fb5735378390c23f7342de0a1f8ffcc660ef0e29f873d2c32e42b7aed5ec4c1c91d2dbb85f8c3501a92a1cbb1e3a09ca1212c63728c885f41737111344e2251255cbc69b921a52ad2cf386788cfd02962bbbfee9b8124b3b19e667d7a6119f7ebd51ec2c37ad2bae813d7dbdc8cde1d4ad03a40a4f4ccae9ee785d498d6148a51dcf163d1631e180895e99955a49e5d5fb63153cd9920e89c5eb9efb49175344f9b65c7348068d8b8e3e6665050dad7bd92b10c107b0a39c9309822ea4f6fc5267895c49ad3811a93a57e0ccb115802ea7b15bdbc2d65bc6cf6e9f123abc2ed476562119095b2d13edda7d04fba6d7745ea33c61972c6bbb7060db7bc43fd309ac20663ae2fa5c83239f42f1d795b95769546d6c2f4395076dac41b4a54dc766583129917847f987270a4eb2d73a7d56ffba7c20b47d06a88356aeef8fa2348dd18e593e8b301cce04abf9950134e1836517675ed520755249acfab32d17426f71722793cb2efc683bb2dc62704fdf8bbb619813b205d1e1885a4af33d233e53d037727750ef1fe99f45f27601de13c9c91011cf14caad88d1815562712a5ddff68c274fa3507b942163188d73185ed5f2d0a0ded29b5ec1415b4fb49d4a1b56f626116dd5ff129df48bd903432cd43260dde4c9cc1ed14f437d0ed8b0c90001f67f780253d2386c01f658dda314c3dafb103bde70423d2e5167e79edd7a13d9ccf89141c945b13d8c25ee30f4e00f74c106e23d354c7df4afbf8a658ebd97bf1e8cc07ab8194c1c380e3423677ecb5b8c7b02b8ac65aec258769165c9f8b1e190d75420e0a5dfd11816a6253ada8e53b70545df8e434d36eef048ba719b3beceaaa4eeaefa76ff8a527a71a3319ddb34e7f9c2007adf22aaaf361a24ebc5c616e8729f7afe7178b0ba515592d46fd5076a66e9b4fd6e33710a059376836e079858fbba3e96777ca8c5809d26f73c0798bf575df61ee9b958a993abeaf02871c37ef0cd87c0e49dffebf0918827f1eb85a9a3060aaa0d9010651d556748bc1f201770b0b0bbdaf6a9ddd126922969efb651bac4194526c0e57a0e1a1e4f659cd91478383d4fdcdcb6cb7dcfcac8ae5fd04ddc998f27cd254371e548337f14276fe2d409f7556e5b85c908c3b7b1eec3f606a68935113e00b8ad7106edf864341a1ad940c03c9899c9cc57b8d1ca17d0094d", 0x1000, 0x4}, {&(0x7f00000014c0)="1f3926", 0x3, 0x3d}, {&(0x7f0000001500)="9dad660c631e220503af2953148066e3e84aedd94e6ec4c580a8035e47811146801251924f9a638ecbc135c2beaa7de64b68f9ad1ba84950b61c4cedecfe4e9cb5c94e7e31a355a6c59ca5580fcde90d45ec9b167770b36f9a1e341fbb389410e6e46c74856fbbafe7e9e428ddff2beee5defc23a49b2363bb0c2feefdd11814fca9a784708d7e73498458b1", 0x8c, 0x1}], 0x1000, &(0x7f0000001640)={[{@session={'session', 0x3d, 0x1d}}], [{@hash}, {@measure}, {@obj_role={'obj_role', 0x3d, '/:%\\{[$){:{/^}!^{\'\\%'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}]}) fsetxattr$security_ima(r6, &(0x7f00000016c0), &(0x7f0000001700)=@v2={0x5, 0x3, 0xf, 0x4, 0x3, "4975a7"}, 0xc, 0x1) statfs(&(0x7f0000001740)='./file0\x00', &(0x7f0000001780)=""/28) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f00000017c0)={0x0, 0xbde, 0x3, 0x1}) r7 = accept(r3, &(0x7f0000001bc0)=@can, &(0x7f0000001c40)=0x80) fcntl$setflags(r7, 0x2, 0x0) 11:50:05 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000040)={{r0}, 0x4, &(0x7f0000000000)=[0x7ff, 0x10001, 0x4, 0x9], 0x10001, 0x6, [0x3, 0x6, 0x2, 0x1]}) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000000c0)=0x10001, 0x4) sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_TX_COUNT={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x40408d0) fadvise64(r0, 0x248, 0x18b1, 0x3) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000200)={0xec, 0xd268, 0x100000000}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/module/pci_hotplug', 0x2000, 0x13c) write$vga_arbiter(r1, &(0x7f0000000280)=@target={'target ', {'PCI:', '15', ':', '1c', ':', '1d', '.', '4'}}, 0x16) syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r1) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000300)={'veth1_to_team\x00', {0x2, 0x0, @dev}}) sendmsg$ETHTOOL_MSG_WOL_GET(r1, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x104, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x24004891}, 0x800) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000540)=0x1, 0x4) r2 = syz_open_dev$vcsu(&(0x7f0000001a40), 0x0, 0x420000) lstat(&(0x7f0000001a80)='./file0\x00', &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x0, 0x0}) sendmsg$netlink(r1, &(0x7f0000001bc0)={&(0x7f0000000580)=@proc={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc, &(0x7f0000001a00)=[{&(0x7f00000005c0)={0x1210, 0x28, 0x300, 0x70bd28, 0x25dfdbfb, "", [@typed={0x8, 0x4c, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0x5, 0x4c, 0x0, 0x0, @str='\x00'}, @nested={0xea, 0x13, 0x0, 0x1, [@typed={0xc, 0x2a, 0x0, 0x0, @u64=0x3}, @generic="2b10029f29644fbdefa92b85cfa525e38488a7618c7ca3b78972e8904f5fcb982221c99b9bdcb9fa6f896a4312f63fb0d1ce2241f4505bec12892dc59e358db126606da3d352219e3d3c1e7819dc1a0ed4373814bf43f392ea021a8b7d9d230a48cbbd0650b6bde7f7d5faea575c4eceeabdd0289875ea9eb50db34148db277fc5dc95b7c31263071a748f47febfd2410bad9ae04f7c208d70d84ea6e69374e2b42036f185a789d86bd2368a8201dd9c7474b1d340719fc9c892c35d576be03088fc844bd59a2311374f79d2700867c92107", @typed={0x8, 0x9, 0x0, 0x0, @u32=0xfffffff8}]}, @nested={0x18, 0x6c, 0x0, 0x1, [@typed={0x8, 0x8d, 0x0, 0x0, @fd=r0}, @typed={0xc, 0x3e, 0x0, 0x0, @binary="e8e240e82dabe4da"}]}, @typed={0x1004, 0x90, 0x0, 0x0, @binary="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"}, @generic="f7dbc509471d72cc06d8e05abef9b151b48506ea055c7fa3a30e75e38e2c305cb7c62278ecd8f8a041ba942585162c76b5cafc80374dae97667565ce5d491ccf3abe0e2d7222d90f8f3a452a72e2bf5a90ba77643213b109e6e0372de29672a962e984460383dcc96fbd7fa0d7e46631b2548e6bac142f2f05d7910f9d80b9cbe79c41a3be40299e016c407dea830b5410571eeae29b0cb122c77cfce95bec6f881374aa735a45cd1d371da5bfb893dcab889edcf269bc6aae2bc509e5a0c70c4806b6e31c882547985e6bb58725d53d78ce7c932114d40b16b0dc9e3bbdc8ce7b8c0783251301"]}, 0x1210}, {&(0x7f0000001800)={0x1e8, 0x16, 0x300, 0x70bd2b, 0x25dfdbfe, "", [@typed={0xd0, 0x10, 0x0, 0x0, @binary="b9b8d9aa63e29bc9f8306e4e05b40d85b58d44d60ff77a69b03ef161e95b90e15534cc675085d9f273526f5a5c1aeadcf8822b1569f5229ca58480862516c46a23de7fa98b8142d82a6a890089e758a04f876dc56d00769d1ee8687033079f835bd1058306ca6c720cdfd10e201fbba2f840533a1170e89f1da875ee6861774c97215b4c80816d2a0f92f312abe0f73ad51950491e8044331b7def19d491dd26c65eac995f3e9fe61bfad42b255923ccf27b0e2e1ebabd03210d9f1a262f8ae473e5da65c405e5a4785a0625"}, @generic="3e294716f78e69acaae03db91980f30b86bce8ded3404a424efba0d3d49ce6f500a6ff02c06637d35c96dc3c03c4790f74caa08ab8fa324dbd811a7de72f24d12cbe331b485d824f5da920dfb280c7f1039ff2e97b6f4b16d9f36b69be59d22f2165b97aaa6d668e56f33bd7d17d94906b123f872dd62dda96268ff1cd5d5ab4c67784508a8af59d3790d96942179a00d9224b74ea7bfa9e8b0c7fa9eb2db08c2ebc4a2842594b057f13c8b54540b825b709040df01feccc40db64ce2fd596b4f1950b8faee04de8a2834df10b6a1c9573e10396e47747cd86d6fa0bbebfbd39080e83e385a36af7c444e8a5fafab059adc082ac256a1850", @nested={0xc, 0x4, 0x0, 0x1, [@typed={0x8, 0x83, 0x0, 0x0, @fd}]}, @nested={0x4, 0x7a, 0x0, 0x1, [@generic]}]}, 0x1e8}], 0x2, &(0x7f0000001b40)=[@rights={{0x28, 0x1, 0x1, [r1, r1, r0, r0, 0xffffffffffffffff, r2]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r3, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x60, 0x4}, 0x804) r4 = accept4$inet(r1, &(0x7f0000001c00)={0x2, 0x0, @empty}, &(0x7f0000001c40)=0x10, 0x80800) ioctl$sock_inet_SIOCGIFBRDADDR(r4, 0x8919, &(0x7f0000001c80)={'ipvlan1\x00', {0x2, 0x0, @remote}}) r5 = signalfd4(r0, &(0x7f0000001cc0)={[0x1000]}, 0x8, 0x80000) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000001d00)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) [ 64.797286] audit: type=1400 audit(1664884205.311:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:50:05 executing program 1: sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, 0x0, 0x2, 0x70bd27, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040}, 0x44) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'sit0\x00', 0x0, 0x4, 0x9, 0x80, 0x4, 0x65, @empty, @remote, 0x10, 0x700, 0x2, 0x2bc}}) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000240)=0x14) sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000100), 0xc, &(0x7f0000000480)={&(0x7f0000000280)={0x1c8, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r0}, {0xc8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}]}}, {{0x8}, {0xd0, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa32}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r1}, {0x4}}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x4}, 0x40012) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x809060}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, r2, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x4fd7}]}, 0x24}}, 0x81) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, r3, 0x200, 0x70bd25, 0x25dfdbfc, {{}, {}, {0x8, 0x2, 0x4}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x404c020}, 0x20000000) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x24, r2, 0x300, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x7ff}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4841}, 0x20000000) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x30, r4, 0x4, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x7e}, @val={0x8}, @val={0xc, 0x99, {0x3, 0x67}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x850}, 0x1c084) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002240)=[{{&(0x7f00000009c0)=@abs, 0x6e, &(0x7f0000000cc0)=[{&(0x7f0000000a40)=""/232, 0xe8}, {0xffffffffffffffff}, {&(0x7f0000000b40)=""/230, 0xe6}, {&(0x7f0000000c40)=""/125, 0x7d}], 0x4}}, {{&(0x7f0000000d00)=@abs, 0x6e, &(0x7f0000002100)=[{&(0x7f0000000d80)=""/1, 0x1}, {&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000001dc0)=""/158, 0x9e}, {&(0x7f0000001e80)=""/154, 0x9a}, {&(0x7f0000001f40)=""/150, 0x96}, {&(0x7f0000002000)=""/224, 0xe0}], 0x6, &(0x7f0000002180)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa0}}], 0x2, 0x0, &(0x7f00000022c0)={0x0, 0x989680}) sendmsg$TIPC_NL_MON_SET(r5, &(0x7f0000002480)={&(0x7f0000002300), 0xc, &(0x7f0000002440)={&(0x7f0000002340)={0xe4, 0x0, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x64, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x489a064a}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff6a}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4bb}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0x54, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x44}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x81}, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r5, &(0x7f0000002580)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002540)={&(0x7f0000002500)={0x1c, r3, 0x200, 0x70bd2a, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20040010) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002600), r6) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000002640)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r7, &(0x7f0000002700)={&(0x7f00000025c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000026c0)={&(0x7f0000002680)={0x3c, r8, 0x401, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6}, @NL80211_ATTR_KEYS={0x18, 0x51, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT_MGMT={0x4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x5}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x801}, 0x2000) r10 = signalfd(r5, &(0x7f0000002740)={[0x800]}, 0x8) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r10, &(0x7f0000002980)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000002940)={&(0x7f00000027c0)={0x144, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xffffffff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7fffffff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xc0}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x200}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x723}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}}]}, 0x144}, 0x1, 0x0, 0x0, 0x24008000}, 0x0) syz_genetlink_get_family_id$wireguard(&(0x7f00000029c0), r10) 11:50:05 executing program 6: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x1, 0x80) sendmsg$FOU_CMD_GET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0x0, 0x300, 0x70bd28, 0x25dfdbfe, {}, [@FOU_ATTR_LOCAL_V6={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x2b}]}, 0x44}, 0x1, 0x0, 0x0, 0x20008831}, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) sendfile(r0, r2, &(0x7f00000001c0)=0x1, 0x1) r3 = signalfd(r2, &(0x7f0000000200)={[0x9]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000280)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) poll(&(0x7f00000002c0)=[{r0, 0x8424}, {0xffffffffffffffff, 0x2020}, {r5, 0x2}], 0x3, 0xb89) ioctl$KDGKBMODE(r3, 0x4b44, &(0x7f0000000300)) r6 = mq_open(&(0x7f0000000340)='/dev/vcsu#\x00', 0x40, 0x190, &(0x7f0000000380)={0x3ff, 0x4, 0x7, 0x4000000000}) ioctl$BTRFS_IOC_WAIT_SYNC(r6, 0x40089416, &(0x7f00000003c0)) sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x44, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1c5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16ee}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000600)={{{@in=@broadcast, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@multicast2}}, &(0x7f0000000700)=0xe8) mount$9p_unix(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x1110081, &(0x7f0000000740)={'trans=unix,', {[{@aname={'aname', 0x3d, '['}}], [{@euid_gt={'euid>', r7}}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/vcsu#\x00'}}]}}) ioctl$TIOCCBRK(r3, 0x5428) close_range(r0, r5, 0x2) ioctl$BTRFS_IOC_DEV_REPLACE(r3, 0xca289435, &(0x7f00000007c0)={0x3, 0x9a, @status={[0x4, 0x1, 0x8, 0x8, 0x0, 0x4000000000000000]}, [0x3, 0x9c, 0x5, 0x9, 0xe6, 0x9, 0x1, 0x100, 0x6, 0xffffffffffffff5d, 0x36f, 0xb73b, 0x6, 0x9, 0x1, 0x1, 0x8, 0xfffffffffffffff8, 0x9, 0x5, 0x2, 0xfffffffffffffc01, 0x4, 0x7, 0x1000, 0xfffffffffffffff7, 0x8, 0x8, 0x3, 0x9, 0x3ff, 0x1, 0x6, 0x800, 0xfffffffffffffffb, 0x80000001, 0x1, 0x0, 0x0, 0x4, 0x9, 0x7, 0x5, 0x9, 0xffffffffffffffff, 0x2, 0x1ff, 0x8, 0x1, 0x4000000000000000, 0x7, 0x4, 0x1, 0x1000, 0x62, 0x909, 0x78, 0x1ff, 0x80000001, 0x4, 0xffffffff, 0x10000, 0x8c8, 0xf2]}) stat(&(0x7f0000001200)='./file0\x00', &(0x7f0000001240)) r8 = signalfd4(r0, &(0x7f00000012c0)={[0x4]}, 0x8, 0x80000) sendmsg$AUDIT_MAKE_EQUIV(r8, &(0x7f00000013c0)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001380)={&(0x7f0000001340)={0x28, 0x3f7, 0x400, 0x70bd2b, 0x25dfdbfb, {0x7, 0x7, './file0', './file0'}, ["", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0xc810}, 0x10) 11:50:05 executing program 4: r0 = add_key(&(0x7f0000000000)='ceph\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="6662c47a771bb4f3d008af688b1af345114bb50f3cd356f0ca484256376d7a1fde3bba61a4d2fd11dfcb79b297a0806cc36caeee17df39c96f5b318d34bcdfdb4774c13d239c57fff8e32c01a4c6c612316e2f469a53e75dea7128a1f2465b726d76985d58d3025584ed2726b3da9fbf8272ddacc8d5d859986c6244ee604b5e936616d37b4835f718208187529c51a271f206b853ba12a84b0f117e0bf92232011758235c7d4f695a60daa95a6f1661f4930ed5b3cfef368708eec6d9d08e9197b3ae11982120894c07733be80bd688b1fb3738136ac35adaf7a927128001605fcb9709ff", 0xe5, 0xfffffffffffffffb) keyctl$search(0xa, r0, &(0x7f0000000180)='pkcs7_test\x00', &(0x7f00000001c0)={'syz', 0x1}, r0) r1 = add_key$user(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)="d5bec9a1009057fb813cd070916037f7c12f788e7d87c332481a5c93271922474414e7e45e17b1217c721c946951d915ffc008e47b86142af106d40e1f59030a6879d945ded7324407b89406ca46319748a426f42c403a8256499eed84bedd998706d2405c572369e0ae195e69b9102cdc7c473b3646ef7b09c9588d705496fe5d2921435edeb8941e6fbe56aecd592cd634835b0354ffe7e36a9b253eea98daab793958dfa2752942b786f176689854644922a5e9daab65cf3717e2", 0xbc, r0) keyctl$describe(0x6, r1, &(0x7f0000000340)=""/180, 0xb4) r2 = request_key(&(0x7f0000000480)='user\x00', &(0x7f00000004c0)={'syz', 0x2}, &(0x7f0000000500)='Z\x00', r0) keyctl$instantiate_iov(0x14, r0, &(0x7f0000000440)=[{&(0x7f0000000400)="ad4c2f9d567f27", 0x7}], 0x1, r2) r3 = request_key(&(0x7f0000000540)='logon\x00', &(0x7f0000000580)={'syz', 0x1}, &(0x7f00000005c0)='ceph\x00', r2) r4 = add_key$keyring(&(0x7f0000000600), &(0x7f0000000640)={'syz', 0x0}, 0x0, 0x0, r2) keyctl$KEYCTL_MOVE(0x1e, r3, r4, r0, 0x0) r5 = add_key$user(&(0x7f0000000680), &(0x7f00000006c0)={'syz', 0x0}, &(0x7f0000000700)="8394bb2891b0d5d55215df4bde70ee394261a7d41e3ba1c77d003cfafc802c55b21d038af7343d20352d2dcfd43051a98e733f815dbb17ab6a7d0e7de5fa246750548e7f46348093a2ffae295715cd64cf482977cad242481c687a023cb6220ca7f5fad2d7c65b3e757746a5508e606db95aaf771abd93dc9230fb794a255924b96084ffc91b12185199", 0x8a, r2) keyctl$search(0xa, r5, &(0x7f00000007c0)='rxrpc_s\x00', &(0x7f0000000800)={'syz', 0x2}, r2) keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000840)={r2, 0xc4, 0xcb}, 0x0, &(0x7f0000000880)="7a6ae74114c4aaf608a7ee4e4df82f624ca7f9231596c3583da5654f1eddd1c38bf7f7c257c0a762c8cfaac6e9d9a2601cdf57429d50b2c2b935b938ab0ed9bcd42ac4b7d94bb7ef5ec6f7616dd23a70eea4b0bc2ecb05b6b6f35142af10ade27aae7f54ca9acc3890fb20822dbbcda8931034a0e91fdf3bb7bec671fe90348c425643501193ae9e9684941500bc158e2d50caa17bc975a0900510723073d0d8593d537bda0e6fb5ddbb54dfdfd11543797c9af03527c84c9f59e24bb3a74028eb4eb564", &(0x7f0000000980)=""/203) r6 = fork() r7 = add_key$fscrypt_v1(&(0x7f0000000b00), &(0x7f0000000b40)={'fscrypt:', @desc2}, &(0x7f0000000b80)={0x0, "a95fc54c7098fa42abe26dfd4aae8cc53a4c715cb73f1e9f9d2b59fb975dfd326e8fde97b017b99d5b76466a208da78f484083333fce851941f465d01091acd7", 0x30}, 0x48, r4) add_key$keyring(&(0x7f0000000a80), &(0x7f0000000ac0)={'syz', 0x3}, 0x0, 0x0, r7) add_key$keyring(&(0x7f0000000c00), &(0x7f0000000c40)={'syz', 0x2}, 0x0, 0x0, r0) request_key(&(0x7f0000000c80)='ceph\x00', &(0x7f0000000cc0)={'syz', 0x0}, &(0x7f0000000d00)='\x00', 0xfffffffffffffff8) add_key(&(0x7f0000000d40)='id_resolver\x00', &(0x7f0000000d80)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) r8 = getpgid(r6) perf_event_open(&(0x7f0000000dc0)={0x4, 0x80, 0x1, 0x5e, 0x5, 0xff, 0x0, 0x8, 0x20, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x8, 0x3}, 0x41720, 0xffffffffffffffc1, 0x1, 0x4, 0x100000001, 0x9, 0x5, 0x0, 0x5, 0x0, 0x10000}, r8, 0xf, 0xffffffffffffffff, 0xb) 11:50:05 executing program 3: ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, &(0x7f0000000000)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r0 = pidfd_open(0x0, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f00000002c0)={{}, 0x0, 0xa, @inherit={0x68, &(0x7f0000000240)={0x0, 0x4, 0xffffffffffffff82, 0x3, {0x20, 0x5, 0x4, 0x4}, [0x1f, 0x10001, 0x2, 0xfff]}}, @subvolid}) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, &(0x7f00000012c0)) r1 = fcntl$dupfd(r0, 0x406, r0) pidfd_send_signal(r1, 0x3e, &(0x7f0000001300)={0x22, 0x6, 0x8}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000001380)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) process_mrelease(r2, 0x0) mknod$loop(&(0x7f00000013c0)='./file0\x00', 0xc000, 0x1) pipe(&(0x7f0000001400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000001480)={0x20000002}) ioctl$SNDRV_TIMER_IOCTL_STATUS64(r3, 0x80605414, &(0x7f00000014c0)) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001540)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x4, 0x7, 0x0, 0x6, 0x0, 0x0, {0x0, r6}}, 0xdb70) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r3, 0x50009417, &(0x7f0000001600)={{r3}, 0x0, 0xa, @inherit={0x58, &(0x7f0000001580)={0x0, 0x2, 0x488, 0x7, {0x1, 0x3d, 0x1, 0x7, 0x6}, [0x21c1fa21, 0x2]}}, @devid}) write$binfmt_aout(r4, &(0x7f0000002600)={{0x108, 0x5, 0x2, 0x138, 0x13b, 0x6ccf48e8, 0x3ca, 0x7}, "2f8c45c65f23cd0add3064d4fb18b5d249e847e26cafd3b193a04868e74ee2b1ebe6bceadacb6355aa428fa2124ddf68263d4d81e9d5b599fcd0c14ef0513a1a8710b0de42407d5d958a6d52e6f8d25e2e97269524365b3ab95307dfbbe966c9c22ecfed01b6f0d1c09161028272722829c63a87b0e7a285eab8abf0cd460b21b1100698df1fe9ad7f23a74c788e27f60e50a65b1d166c3fe00d9fefe1c7e9227470e2c518c015b07328a0959c7fc4fd51312cf0069dd7d7380f9e651867721088cc4e981853"}, 0xe6) r7 = syz_io_uring_setup(0x5059, &(0x7f0000002700)={0x0, 0x458b, 0x1, 0x0, 0x3a2, 0x0, r3}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000002780), &(0x7f00000027c0)) r8 = syz_open_dev$usbmon(&(0x7f0000002800), 0x3, 0x62080) io_uring_register$IORING_REGISTER_FILES(r7, 0x2, &(0x7f0000002980)=[r0, r4, r5, r3, r1, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0xa) 11:50:05 executing program 5: r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/current\x00', 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x40, 0x14}}, './file0\x00'}) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f00000002c0)={{}, {0x19}, 0x18, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)="e08556242c9a0215ade0bb2a83bc326fb258b4fbbf9107", 0x17, 0x0, &(0x7f0000000140)={0x2, 0xdf, {0x1, 0xc, 0x9, "78931fd0f719503360", 0xc9, "a69dc59e5170dff3e8438d2dc4e8be7be86542b4adfa31d85f2ed30127a3d61caefbb0d4b6affbef64d99f6708a51226e8fa6a417a97a112e81714e53bacc8d2638c79885142cd8b3c915038818c68521e07f840925aebfe83f3493eb828c64cd773fead58c41c416356ba9a1e608411b413e8b48834d09cf697ebd1dcf2f316b4094d43b8824b5f43f48bfe1d1b1e8ee7464fd6fe4713bfe6644d07672fe74c1d9bf6ba21e1966dc6a0316bb40d14724a7f03a7e90487f7faeac6c8ea2b24348abaa95a27570c28de"}, 0x8d, "2ffb65deae9482b5ddbeeb1912bc11f9dc36198789d1929fcf071c9377613c9004facfddd7fe9937c9bc74dbf16a1ac1d11ba3eff72a26d54c0ba5f9dbb7c5762a20cda556de66de1909207b7735002a6a7c6474e742a767037dec22b646ef0db197ca46e002f34ad8ba7138a7fb823ffe329e3099a082347b32d4ad980fa6536a659d22fff17df1f32bef276d"}, 0x178}) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@mcast2, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000440)=0xe8) lstat(&(0x7f0000000480)='./file0/file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RGETATTR(0xffffffffffffffff, &(0x7f0000000540)={0xa0, 0x19, 0x1, {0x0, {0x10, 0x2, 0x7}, 0x120, r2, r3, 0x4, 0x7, 0x3, 0x1, 0x0, 0x0, 0x200, 0x7fffffff, 0x80000000, 0x74d0, 0xee9, 0x10001, 0x2, 0x2}}, 0xa0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000600)={@private0={0xfc, 0x0, '\x00', 0x1}}, 0x14) write$selinux_attr(r1, &(0x7f0000000640)='system_u:object_r:modules_object_t:s0\x00', 0x26) write$P9_RREADLINK(r1, &(0x7f0000000680)={0x16, 0x17, 0x1, {0xd, './file0/file0'}}, 0x16) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000006c0), 0x101000, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(r4, 0x4040942c, &(0x7f0000000700)={0x0, 0x1000, [0x837, 0x101, 0x0, 0x3, 0x100]}) write$P9_RLERRORu(r4, &(0x7f0000000740)={0xe, 0x7, 0x2, {{0x1, '!'}, 0x7e}}, 0xe) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000780)) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000800), r4) sendmsg$TIPC_NL_SOCK_GET(r1, &(0x7f0000000940)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000900)={&(0x7f0000000840)={0x88, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7a00}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xf5d0}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}, @TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfa}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe7d}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20000880}, 0x80c0) r6 = syz_open_dev$hidraw(&(0x7f0000000980), 0x1, 0x4c500) tee(r6, r1, 0x5, 0x5) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000002, 0x80010, r6, 0xb01d7000) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$sock_SIOCADDDLCI(r7, 0x8980, &(0x7f0000000a00)={'wlan1\x00', 0x9}) 11:50:05 executing program 7: r0 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)={0x1d8, 0x28, 0x1, 0x70bd2b, 0x25dfdbff, {0x16}, [@nested={0x9e, 0x72, 0x0, 0x1, [@generic="a8bc9c5733eac63fa081b7a48fd3c619304b76f08db4edb750a5ffcc9cd18a176137a08fae606fb47c0d390edcbd0ff1b5588c9c8874ecd463991ee9500d242fcf6d1be3c943488b934afe97aca9bfb1dcc02e55e8364fd7841948c98ce4d28ae115c03c1f874af3d87cbe97d0e126cb0de4ea44de7325e792ba5ff5769533454057a65b5513a1e47aa6a77ce2f5af5f2c1c9e9e32f4a2c5343b"]}, @nested={0x5c, 0x12, 0x0, 0x1, [@generic="7d0cdcaef3b75910f75dad9eb8d6302cfe4865e2e9650a144f11d7b3dca99044706dc4619fcf2cefd1d654d26d854bb43d424aa63fdb43a005d1710883cda39741ca08efc61bea86b5daaa376f6941436c9d407eb719337f"]}, @nested={0x18, 0x95, 0x0, 0x1, [@typed={0x14, 0x43, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, @typed={0x5, 0x1e, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x8b, 0x0, 0x0, @fd=r0}, @nested={0x10, 0x5f, 0x0, 0x1, [@typed={0xc, 0x36, 0x0, 0x0, @u64=0x8}]}, @typed={0x4, 0x51}, @typed={0x6, 0x35, 0x0, 0x0, @str='[\x00'}, @generic="b6a3f2ccbaad139600b5a2e0105042c72cdf40c7705ba5cc22c5c8489a9a090a4f3749c91dc5011b024e87ef3544285d11ddbabfdf141569af1ef4f55841695f166a2c75515bfe53bab2bc977696080f2411c69a69189fb6a70f33a8cd4dbb9c52367f6e0f2f44fab5ad875bd6deb2b7318c0e933ccaf93ef51b0d7326d570abf07ee83e"]}, 0x1d8}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) sendmsg$NLBL_CIPSOV4_C_REMOVE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x138, 0x0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4da9}]}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x6c, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x59}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4c}]}, {0x4c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x41}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x56f9b444}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x338f2f37}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xa48c255}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x60d6b6ba}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4f69a618}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5ffba790}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2868499b}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x88, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x41224c2b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5857}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe93a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9cc3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9f4}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa730}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1379}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7fb2ee74}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2309}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa537}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61a55067}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x34f197b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2cfbdc37}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe265}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb78}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x138}, 0x1, 0x0, 0x0, 0xc000}, 0x80000) r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x5000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x64, r1, 0x410, 0x70bd27, 0x25dfdbfb, {}, [@GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_TID={0xc, 0x3, 0x2}, @GTPA_TID={0xc}, @GTPA_MS_ADDRESS={0x8, 0x5, @local}, @GTPA_MS_ADDRESS={0x8, 0x5, @rand_addr=0x64010102}, @GTPA_FLOW={0x6, 0x6, 0x2}, @GTPA_LINK={0x8}, @GTPA_O_TEI={0x8, 0x9, 0x2}, @GTPA_O_TEI={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x20004040}, 0x4000000) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000640)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r2, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x3c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x2}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9e08}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4080}, 0x404c095) fsetxattr$security_capability(r0, &(0x7f0000000780), &(0x7f00000007c0)=@v1={0x1000000, [{0xbdeee32, 0x52e}]}, 0xc, 0x0) recvmsg$unix(r2, &(0x7f0000001d80)={&(0x7f0000000800)=@abs, 0x6e, &(0x7f0000001bc0)=[{&(0x7f0000000880)=""/119, 0x77}, {&(0x7f0000000900)=""/105, 0x69}, {&(0x7f0000000980)=""/20, 0x14}, {&(0x7f00000009c0)=""/4096, 0x1000}, {&(0x7f00000019c0)=""/179, 0xb3}, {&(0x7f0000001a80)=""/167, 0xa7}, {&(0x7f0000001b40)=""/108, 0x6c}], 0x7, &(0x7f0000001c40)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x138}, 0x40) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000001dc0)={{0x1, 0x1, 0x18, r2, {0x5, 0xc8e}}, './file0\x00'}) r7 = openat2(0xffffffffffffffff, &(0x7f0000001e00)='./file0\x00', &(0x7f0000001e40)={0x110580, 0x2, 0x2}, 0x18) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r4, &(0x7f0000001e80)={0x8}) socketpair(0x3, 0x800, 0x1, &(0x7f0000001ec0)) sendmsg$GTP_CMD_GETPDP(r6, &(0x7f0000001fc0)={&(0x7f0000001f00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001f80)={&(0x7f0000001f40)={0x34, r1, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_O_TEI={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x8800}, 0x20000810) sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f00000020c0)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000002080)={&(0x7f0000002040)={0x30, 0x0, 0x0, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x54}, @val={0x8}, @val={0xc, 0x99, {0x1, 0x2a}}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x20000801) r8 = inotify_init1(0x80800) fcntl$lock(r8, 0x6, &(0x7f0000002100)={0x1, 0x4, 0x5, 0xfffffffffffffff7, r3}) syz_genetlink_get_family_id$ethtool(&(0x7f0000002140), r5) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(0xffffffffffffffff, &(0x7f0000002380)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000002340)={&(0x7f0000002240)={0xe8, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4000000}, 0xc8d1) [ 66.031172] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.034611] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.037192] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.049036] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.051146] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.052923] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.058549] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.109410] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.111537] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.113501] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.119219] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.121497] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.123477] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.143043] Bluetooth: hci2: HCI_REQ-0x0c1a [ 66.159671] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 66.162909] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.164476] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 66.165246] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.166777] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 66.168292] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.170305] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 66.171617] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 66.173118] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 66.174028] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.175916] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.177275] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.180159] Bluetooth: hci3: HCI_REQ-0x0c1a [ 66.182047] Bluetooth: hci4: HCI_REQ-0x0c1a [ 66.185890] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.187479] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.188345] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.193582] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.197702] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.198515] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.201786] Bluetooth: hci5: HCI_REQ-0x0c1a [ 66.206904] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 66.208202] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 66.209147] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 66.210939] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 66.211868] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 66.213267] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.214213] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.215590] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.217340] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.218207] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.219542] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.223193] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.223893] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.227854] Bluetooth: hci7: HCI_REQ-0x0c1a [ 68.117298] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 68.117313] Bluetooth: hci0: command 0x0409 tx timeout [ 68.246475] Bluetooth: hci7: command 0x0409 tx timeout [ 68.247030] Bluetooth: hci6: command 0x0409 tx timeout [ 68.247487] Bluetooth: hci5: command 0x0409 tx timeout [ 68.247961] Bluetooth: hci4: command 0x0409 tx timeout [ 68.248416] Bluetooth: hci2: command 0x0409 tx timeout [ 68.248868] Bluetooth: hci3: command 0x0409 tx timeout [ 70.164835] Bluetooth: hci0: command 0x041b tx timeout [ 70.292971] Bluetooth: hci3: command 0x041b tx timeout [ 70.293936] Bluetooth: hci2: command 0x041b tx timeout [ 70.294701] Bluetooth: hci4: command 0x041b tx timeout [ 70.295457] Bluetooth: hci5: command 0x041b tx timeout [ 70.296188] Bluetooth: hci6: command 0x041b tx timeout [ 70.296936] Bluetooth: hci7: command 0x041b tx timeout [ 72.212844] Bluetooth: hci0: command 0x040f tx timeout [ 72.341005] Bluetooth: hci7: command 0x040f tx timeout [ 72.341117] Bluetooth: hci6: command 0x040f tx timeout [ 72.341908] Bluetooth: hci5: command 0x040f tx timeout [ 72.342514] Bluetooth: hci4: command 0x040f tx timeout [ 72.343304] Bluetooth: hci2: command 0x040f tx timeout [ 72.343893] Bluetooth: hci3: command 0x040f tx timeout [ 73.301888] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 74.261795] Bluetooth: hci0: command 0x0419 tx timeout [ 74.388854] Bluetooth: hci3: command 0x0419 tx timeout [ 74.389815] Bluetooth: hci2: command 0x0419 tx timeout [ 74.389857] Bluetooth: hci4: command 0x0419 tx timeout [ 74.390596] Bluetooth: hci5: command 0x0419 tx timeout [ 74.391030] Bluetooth: hci6: command 0x0419 tx timeout [ 74.391049] Bluetooth: hci7: command 0x0419 tx timeout [ 76.061099] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.062700] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.064534] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.067662] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.069464] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.070575] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.076870] Bluetooth: hci1: HCI_REQ-0x0c1a [ 78.100884] Bluetooth: hci1: command 0x0409 tx timeout [ 80.148822] Bluetooth: hci1: command 0x041b tx timeout [ 82.197795] Bluetooth: hci1: command 0x040f tx timeout [ 84.244913] Bluetooth: hci1: command 0x0419 tx timeout [ 128.227275] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 128.230498] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 128.234062] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 128.245249] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 128.246943] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 128.253142] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 128.263404] Bluetooth: hci0: HCI_REQ-0x0c1a [ 128.636051] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 128.637600] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 128.638583] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 128.642245] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 128.643815] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 128.644977] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 128.650871] Bluetooth: hci3: HCI_REQ-0x0c1a [ 128.780634] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 128.785056] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 128.788710] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 128.796978] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 128.821030] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 128.822707] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 128.835157] Bluetooth: hci4: HCI_REQ-0x0c1a [ 130.324979] Bluetooth: hci0: command 0x0409 tx timeout [ 130.644830] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 130.708979] Bluetooth: hci3: command 0x0409 tx timeout [ 130.710654] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 130.712230] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 130.713423] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 130.900938] Bluetooth: hci4: command 0x0409 tx timeout [ 132.372951] Bluetooth: hci0: command 0x041b tx timeout [ 132.756837] Bluetooth: hci3: command 0x041b tx timeout 11:51:13 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) r2 = syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0) ftruncate(r1, 0xfffffffffffffff7) r4 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r3) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r4, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) syz_io_uring_setup(0x5787, &(0x7f0000000400)={0x0, 0x700f, 0x0, 0x3, 0x28a, 0x0, r2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000005c0)) [ 132.900019] audit: type=1400 audit(1664884273.413:7): avc: denied { open } for pid=3920 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.901996] audit: type=1400 audit(1664884273.414:8): avc: denied { kernel } for pid=3920 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.920849] ------------[ cut here ]------------ [ 132.920886] [ 132.920892] ====================================================== [ 132.920896] WARNING: possible circular locking dependency detected [ 132.920902] 6.0.0-rc7-next-20220930 #1 Not tainted [ 132.920913] ------------------------------------------------------ [ 132.920917] syz-executor.7/3921 is trying to acquire lock: [ 132.920925] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 132.920977] [ 132.920977] but task is already holding lock: [ 132.920980] ffff88800ed58c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 132.921012] [ 132.921012] which lock already depends on the new lock. [ 132.921012] [ 132.921016] [ 132.921016] the existing dependency chain (in reverse order) is: [ 132.921021] [ 132.921021] -> #3 (&ctx->lock){....}-{2:2}: [ 132.921038] _raw_spin_lock+0x2a/0x40 [ 132.921052] __perf_event_task_sched_out+0x53b/0x18d0 [ 132.921066] __schedule+0xedd/0x2470 [ 132.921084] schedule+0xda/0x1b0 [ 132.921102] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.921118] syscall_exit_to_user_mode+0x19/0x40 [ 132.921136] do_syscall_64+0x48/0x90 [ 132.921160] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.921176] [ 132.921176] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 132.921193] _raw_spin_lock_nested+0x30/0x40 [ 132.921207] raw_spin_rq_lock_nested+0x1e/0x30 [ 132.921224] task_fork_fair+0x63/0x4d0 [ 132.921248] sched_cgroup_fork+0x3d0/0x540 [ 132.921271] copy_process+0x4183/0x6e20 [ 132.921287] kernel_clone+0xe7/0x890 [ 132.921301] user_mode_thread+0xad/0xf0 [ 132.921316] rest_init+0x24/0x250 [ 132.921332] arch_call_rest_init+0xf/0x14 [ 132.921357] start_kernel+0x4c6/0x4eb [ 132.921377] secondary_startup_64_no_verify+0xe0/0xeb [ 132.921396] [ 132.921396] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 132.921413] _raw_spin_lock_irqsave+0x39/0x60 [ 132.921427] try_to_wake_up+0xab/0x1930 [ 132.921445] up+0x75/0xb0 [ 132.921464] __up_console_sem+0x6e/0x80 [ 132.921485] console_unlock+0x46a/0x590 [ 132.921507] do_con_write+0xc05/0x1d50 [ 132.921523] con_write+0x21/0x40 [ 132.921533] n_tty_write+0x4d4/0xfe0 [ 132.921549] file_tty_write.constprop.0+0x455/0x8a0 [ 132.921563] vfs_write+0x9c3/0xd90 [ 132.921587] ksys_write+0x127/0x250 [ 132.921607] do_syscall_64+0x3b/0x90 [ 132.921629] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.921644] [ 132.921644] -> #0 ((console_sem).lock){....}-{2:2}: [ 132.921660] __lock_acquire+0x2a02/0x5e70 [ 132.921684] lock_acquire+0x1a2/0x530 [ 132.921704] _raw_spin_lock_irqsave+0x39/0x60 [ 132.921717] down_trylock+0xe/0x70 [ 132.921734] __down_trylock_console_sem+0x3b/0xd0 [ 132.921754] vprintk_emit+0x16b/0x560 [ 132.921776] vprintk+0x84/0xa0 [ 132.921798] _printk+0xba/0xf1 [ 132.921813] report_bug.cold+0x72/0xab [ 132.921832] handle_bug+0x3c/0x70 [ 132.921855] exc_invalid_op+0x14/0x50 [ 132.921878] asm_exc_invalid_op+0x16/0x20 [ 132.921894] group_sched_out.part.0+0x2c7/0x460 [ 132.921915] ctx_sched_out+0x8f1/0xc10 [ 132.921935] __perf_event_task_sched_out+0x6d0/0x18d0 [ 132.921948] __schedule+0xedd/0x2470 [ 132.921964] schedule+0xda/0x1b0 [ 132.921980] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.921993] syscall_exit_to_user_mode+0x19/0x40 [ 132.922009] do_syscall_64+0x48/0x90 [ 132.922028] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.922044] [ 132.922044] other info that might help us debug this: [ 132.922044] [ 132.922047] Chain exists of: [ 132.922047] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 132.922047] [ 132.922065] Possible unsafe locking scenario: [ 132.922065] [ 132.922068] CPU0 CPU1 [ 132.922071] ---- ---- [ 132.922074] lock(&ctx->lock); [ 132.922080] lock(&rq->__lock); [ 132.922089] lock(&ctx->lock); [ 132.922097] lock((console_sem).lock); [ 132.922104] [ 132.922104] *** DEADLOCK *** [ 132.922104] [ 132.922106] 2 locks held by syz-executor.7/3921: [ 132.922114] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 132.922151] #1: ffff88800ed58c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 132.922183] [ 132.922183] stack backtrace: [ 132.922187] CPU: 1 PID: 3921 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1 [ 132.922203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 132.922214] Call Trace: [ 132.922219] [ 132.922224] dump_stack_lvl+0x8b/0xb3 [ 132.922246] check_noncircular+0x263/0x2e0 [ 132.922267] ? format_decode+0x26c/0xb50 [ 132.922287] ? print_circular_bug+0x450/0x450 [ 132.922309] ? simple_strtoul+0x30/0x30 [ 132.922328] ? perf_swevent_event+0x6c/0x550 [ 132.922350] ? format_decode+0x26c/0xb50 [ 132.922371] ? memcpy+0x39/0x60 [ 132.922393] ? vsnprintf+0x4ba/0x1600 [ 132.922414] __lock_acquire+0x2a02/0x5e70 [ 132.922438] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 132.922462] lock_acquire+0x1a2/0x530 [ 132.922481] ? down_trylock+0xe/0x70 [ 132.922501] ? lock_release+0x750/0x750 [ 132.922525] ? vprintk+0x84/0xa0 [ 132.922545] _raw_spin_lock_irqsave+0x39/0x60 [ 132.922558] ? down_trylock+0xe/0x70 [ 132.922576] down_trylock+0xe/0x70 [ 132.922594] ? vprintk+0x84/0xa0 [ 132.922613] __down_trylock_console_sem+0x3b/0xd0 [ 132.922633] vprintk_emit+0x16b/0x560 [ 132.922654] vprintk+0x84/0xa0 [ 132.922674] _printk+0xba/0xf1 [ 132.922688] ? record_print_text.cold+0x16/0x16 [ 132.922709] ? report_bug.cold+0x66/0xab [ 132.922732] ? group_sched_out.part.0+0x2c7/0x460 [ 132.922756] report_bug.cold+0x72/0xab [ 132.922781] handle_bug+0x3c/0x70 [ 132.922801] exc_invalid_op+0x14/0x50 [ 132.922821] asm_exc_invalid_op+0x16/0x20 [ 132.922836] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 132.922859] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 132.922872] RSP: 0018:ffff888018217c48 EFLAGS: 00010006 [ 132.922882] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 132.922890] RDX: ffff888030051ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 132.922899] RBP: ffff8880394c0000 R08: 0000000000000005 R09: 0000000000000001 [ 132.922907] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800ed58c00 [ 132.922915] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 132.922928] ? group_sched_out.part.0+0x2c7/0x460 [ 132.922967] ? group_sched_out.part.0+0x2c7/0x460 [ 132.922989] ctx_sched_out+0x8f1/0xc10 [ 132.923011] __perf_event_task_sched_out+0x6d0/0x18d0 [ 132.923027] ? lock_is_held_type+0xd7/0x130 [ 132.923042] ? __perf_cgroup_move+0x160/0x160 [ 132.923054] ? set_next_entity+0x304/0x550 [ 132.923073] ? update_curr+0x267/0x740 [ 132.923093] ? lock_is_held_type+0xd7/0x130 [ 132.923109] __schedule+0xedd/0x2470 [ 132.923128] ? io_schedule_timeout+0x150/0x150 [ 132.923145] ? trace_rcu_dyntick+0x1a7/0x250 [ 132.923168] schedule+0xda/0x1b0 [ 132.923187] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.923202] syscall_exit_to_user_mode+0x19/0x40 [ 132.923218] do_syscall_64+0x48/0x90 [ 132.923238] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.923252] RIP: 0033:0x7fcb0ff38b19 [ 132.923263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 132.923274] RSP: 002b:00007fcb0d4ae218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 132.923287] RAX: 0000000000000001 RBX: 00007fcb1004bf68 RCX: 00007fcb0ff38b19 [ 132.923295] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcb1004bf6c [ 132.923303] RBP: 00007fcb1004bf60 R08: 000000000000000e R09: 0000000000000000 [ 132.923311] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcb1004bf6c [ 132.923319] R13: 00007ffef612cb2f R14: 00007fcb0d4ae300 R15: 0000000000022000 [ 132.923333] [ 132.991874] WARNING: CPU: 1 PID: 3921 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 132.992715] Modules linked in: [ 132.993008] CPU: 1 PID: 3921 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1 [ 132.993755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 132.994756] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 132.995315] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 132.996924] RSP: 0018:ffff888018217c48 EFLAGS: 00010006 [ 132.997458] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 132.998106] RDX: ffff888030051ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 132.998724] RBP: ffff8880394c0000 R08: 0000000000000005 R09: 0000000000000001 [ 132.999364] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800ed58c00 [ 133.000019] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 133.000703] FS: 00007fcb0d4ae700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 133.001435] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.001940] CR2: 00007fe70e74f1d0 CR3: 000000001f440000 CR4: 0000000000350ee0 [ 133.002583] Call Trace: [ 133.002816] [ 133.003044] ctx_sched_out+0x8f1/0xc10 [ 133.003404] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.003855] ? lock_is_held_type+0xd7/0x130 [ 133.004243] ? __perf_cgroup_move+0x160/0x160 [ 133.004640] ? set_next_entity+0x304/0x550 [ 133.005046] ? update_curr+0x267/0x740 [ 133.005424] ? lock_is_held_type+0xd7/0x130 [ 133.005834] __schedule+0xedd/0x2470 [ 133.006221] ? io_schedule_timeout+0x150/0x150 [ 133.006684] ? trace_rcu_dyntick+0x1a7/0x250 [ 133.007180] schedule+0xda/0x1b0 [ 133.007527] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.008022] syscall_exit_to_user_mode+0x19/0x40 [ 133.008525] do_syscall_64+0x48/0x90 [ 133.008925] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.009466] RIP: 0033:0x7fcb0ff38b19 [ 133.009842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.011466] RSP: 002b:00007fcb0d4ae218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.012151] RAX: 0000000000000001 RBX: 00007fcb1004bf68 RCX: 00007fcb0ff38b19 [ 133.012786] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcb1004bf6c [ 133.013436] RBP: 00007fcb1004bf60 R08: 000000000000000e R09: 0000000000000000 [ 133.014081] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcb1004bf6c [ 133.014737] R13: 00007ffef612cb2f R14: 00007fcb0d4ae300 R15: 0000000000022000 [ 133.015395] [ 133.015596] irq event stamp: 676 [ 133.015877] hardirqs last enabled at (675): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 133.016668] hardirqs last disabled at (676): [] __schedule+0x1225/0x2470 [ 133.017368] softirqs last enabled at (568): [] __irq_exit_rcu+0x11b/0x180 [ 133.018109] softirqs last disabled at (467): [] __irq_exit_rcu+0x11b/0x180 [ 133.018825] ---[ end trace 0000000000000000 ]--- [ 133.019563] Bluetooth: hci4: command 0x041b tx timeout [ 133.246603] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 133.247582] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 133.248278] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 133.248891] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 133.249553] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 27 prio class 2 [ 133.256494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.257187] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.258026] Buffer I/O error on dev sr0, logical block 0, async page read [ 133.259503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.260081] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.260847] Buffer I/O error on dev sr0, logical block 1, async page read [ 133.271493] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.272212] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.272956] Buffer I/O error on dev sr0, logical block 2, async page read [ 133.277444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.278033] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.278758] Buffer I/O error on dev sr0, logical block 3, async page read [ 133.282823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.283452] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.284227] Buffer I/O error on dev sr0, logical block 4, async page read [ 133.286490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.287194] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.287978] Buffer I/O error on dev sr0, logical block 5, async page read [ 133.294495] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.295132] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.296307] Buffer I/O error on dev sr0, logical block 6, async page read [ 133.300626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.301170] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 133.301865] Buffer I/O error on dev sr0, logical block 7, async page read [ 133.435763] hrtimer: interrupt took 19286 ns 11:51:14 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) r2 = syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0) ftruncate(r1, 0xfffffffffffffff7) r4 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r3) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r4, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) syz_io_uring_setup(0x5787, &(0x7f0000000400)={0x0, 0x700f, 0x0, 0x3, 0x28a, 0x0, r2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000005c0)) [ 133.676541] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 133.677552] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 133.678253] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 133.678874] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 133.679574] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 21 prio class 2 [ 133.682447] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.683010] Buffer I/O error on dev sr0, logical block 0, async page read [ 133.684611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.685097] Buffer I/O error on dev sr0, logical block 1, async page read [ 133.685962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.686644] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.687387] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.688047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.688711] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.689393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.690438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.691203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.692116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.692854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.693548] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.694319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.695043] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 133.695723] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 11:51:14 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) r2 = syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0) ftruncate(r1, 0xfffffffffffffff7) r4 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r3) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r4, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) syz_io_uring_setup(0x5787, &(0x7f0000000400)={0x0, 0x700f, 0x0, 0x3, 0x28a, 0x0, r2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000005c0)) [ 134.116344] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 134.117511] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 134.118166] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 134.118760] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 134.121657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.122512] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.123540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.124235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.125098] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.125774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.126479] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.127281] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.128243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.129193] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.129935] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.130621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.131372] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.140090] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.141006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.141759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.423420] Bluetooth: hci0: command 0x040f tx timeout [ 134.456298] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 134.459707] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 134.471969] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 11:51:14 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) r2 = syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0) ftruncate(r1, 0xfffffffffffffff7) r4 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r3) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r4, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) syz_io_uring_setup(0x5787, &(0x7f0000000400)={0x0, 0x700f, 0x0, 0x3, 0x28a, 0x0, r2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480), &(0x7f00000005c0)) [ 134.490110] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 134.509037] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 134.520649] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 134.527220] Bluetooth: hci5: HCI_REQ-0x0c1a [ 134.626334] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 134.627451] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 134.628565] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 134.629712] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 134.630859] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 134.631597] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 134.649821] Bluetooth: hci7: HCI_REQ-0x0c1a [ 134.674166] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 134.675482] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 134.676143] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 134.676832] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 134.680140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.693594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.704375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.708798] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.717525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.721983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.727609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.735303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 134.804836] Bluetooth: hci3: command 0x040f tx timeout 11:51:15 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0) ftruncate(r1, 0xfffffffffffffff7) r3 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r2) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r3, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) [ 135.060978] Bluetooth: hci4: command 0x040f tx timeout [ 135.061007] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 135.062656] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 135.063401] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 135.064123] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 135.079978] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.081438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.089207] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.091403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.092145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.093027] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.094301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.097124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 11:51:15 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0) ftruncate(r1, 0xfffffffffffffff7) r3 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r2) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r3, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) open(&(0x7f00000006c0)='./file0\x00', 0x10240, 0x10) [ 135.396779] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 135.397633] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 135.398242] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 135.398839] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 135.404599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.408489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.409459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.412405] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.413379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.416457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.419488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.420478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 11:51:16 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0) ftruncate(r1, 0xfffffffffffffff7) r3 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r2) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r3, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) [ 135.658242] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 135.659226] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 135.659872] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 135.660457] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 135.664945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.666983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.673828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.675204] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.677102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.681050] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.689397] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.692899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 11:51:16 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x0, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x29e5, 0x20, 0x3, 0x5f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0) ftruncate(r1, 0xfffffffffffffff7) r3 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r2) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, 0x0, 0x0) write(r3, &(0x7f0000000940)="271e438cbd86e5774654e3f9c729ac6ba7d19cea783a97a8400808431d1c0de78315dedf319ee7b27c19823ccaef3ae665748962eab1eb7bbd717539ef69f460ee210b9ced4e4746dd3e5687c2bfcb0cb20a74471453195ff846fddeca98877e34925058f0e6f7f837894ed3e0864eb585e9eec950454a8b3c93cf530aac42", 0x7f) [ 135.942693] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 135.943695] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 135.944340] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 135.944963] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 135.947546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.948316] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.949620] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.950462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.951196] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.953006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.954312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.956245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.962251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.965250] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.969329] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.974303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.976122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.979295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.984495] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 135.985694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 136.213307] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 136.468816] Bluetooth: hci0: command 0x0419 tx timeout [ 136.534906] Bluetooth: hci5: command 0x0409 tx timeout [ 136.596821] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 136.726066] Bluetooth: hci7: command 0x0409 tx timeout [ 136.852827] Bluetooth: hci3: command 0x0419 tx timeout [ 137.108845] Bluetooth: hci4: command 0x0419 tx timeout [ 138.581000] Bluetooth: hci5: command 0x041b tx timeout [ 138.773807] Bluetooth: hci7: command 0x041b tx timeout [ 138.923060] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 138.924062] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 138.925424] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 138.927640] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 138.933678] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 138.935506] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 138.946814] Bluetooth: hci2: HCI_REQ-0x0c1a [ 140.629850] Bluetooth: hci5: command 0x040f tx timeout [ 140.821871] Bluetooth: hci7: command 0x040f tx timeout [ 141.012861] Bluetooth: hci2: command 0x0409 tx timeout [ 141.205826] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 142.677801] Bluetooth: hci5: command 0x0419 tx timeout [ 142.869915] Bluetooth: hci7: command 0x0419 tx timeout VM DIAGNOSIS: 11:51:13 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=ffff888020c05040 RSI=0000000000000000 RDI=0000000000000000 RBP=ffffffff848cccc0 RSP=ffff888036a177e8 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=4000000000000000 R13=4000000000000002 R14=000000000004a2cc R15=ffffffff848cccc0 RIP=ffffffff814608a0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb930e176f4 CR3=0000000009304000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fb930e26470 00007fb930e25f20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff823bb06c RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888018217698 R8 =0000000000000001 R9 =ffff888018217623 R10=ffffed1003042ec4 R11=0000000000000001 R12=0000000000000041 R13=ffffffff8765a960 R14=ffffffff8765a9b0 R15=ffffffff8765ac10 RIP=ffffffff823bb0c1 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fcb0d4ae700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe70e74f1d0 CR3=000000001f440000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fcb1001f7c0 00007fcb1001f7c8 YMM02=0000000000000000 0000000000000000 00007fcb1001f7e0 00007fcb1001f7c0 YMM03=0000000000000000 0000000000000000 00007fcb1001f7c8 00007fcb1001f7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000