Warning: Permanently added '[localhost]:46296' (ECDSA) to the list of known hosts. 2022/10/04 15:20:16 fuzzer started 2022/10/04 15:20:16 dialing manager at localhost:46847 syzkaller login: [ 36.566104] cgroup: Unknown subsys name 'net' [ 36.659517] cgroup: Unknown subsys name 'rlimit' 2022/10/04 15:20:30 syscalls: 2215 2022/10/04 15:20:30 code coverage: enabled 2022/10/04 15:20:30 comparison tracing: enabled 2022/10/04 15:20:30 extra coverage: enabled 2022/10/04 15:20:30 setuid sandbox: enabled 2022/10/04 15:20:30 namespace sandbox: enabled 2022/10/04 15:20:30 Android sandbox: enabled 2022/10/04 15:20:30 fault injection: enabled 2022/10/04 15:20:30 leak checking: enabled 2022/10/04 15:20:30 net packet injection: enabled 2022/10/04 15:20:30 net device setup: enabled 2022/10/04 15:20:30 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 15:20:30 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 15:20:30 USB emulation: enabled 2022/10/04 15:20:30 hci packet injection: enabled 2022/10/04 15:20:30 wifi device emulation: failed to parse kernel version (6.0.0-next-20221004) 2022/10/04 15:20:30 802.15.4 emulation: enabled 2022/10/04 15:20:30 fetching corpus: 0, signal 0/2000 (executing program) 2022/10/04 15:20:30 fetching corpus: 47, signal 26749/30169 (executing program) 2022/10/04 15:20:30 fetching corpus: 97, signal 37070/41862 (executing program) 2022/10/04 15:20:30 fetching corpus: 146, signal 46545/52569 (executing program) 2022/10/04 15:20:30 fetching corpus: 196, signal 52624/59838 (executing program) 2022/10/04 15:20:31 fetching corpus: 246, signal 57152/65525 (executing program) 2022/10/04 15:20:31 fetching corpus: 294, signal 62512/71869 (executing program) 2022/10/04 15:20:31 fetching corpus: 344, signal 70128/80214 (executing program) 2022/10/04 15:20:31 fetching corpus: 393, signal 74592/85498 (executing program) 2022/10/04 15:20:31 fetching corpus: 443, signal 78620/90352 (executing program) 2022/10/04 15:20:31 fetching corpus: 493, signal 81285/93909 (executing program) 2022/10/04 15:20:31 fetching corpus: 543, signal 84960/98303 (executing program) 2022/10/04 15:20:32 fetching corpus: 593, signal 90236/103984 (executing program) 2022/10/04 15:20:32 fetching corpus: 641, signal 93624/107906 (executing program) 2022/10/04 15:20:32 fetching corpus: 691, signal 95573/110587 (executing program) 2022/10/04 15:20:32 fetching corpus: 741, signal 98784/114209 (executing program) 2022/10/04 15:20:32 fetching corpus: 791, signal 101561/117515 (executing program) 2022/10/04 15:20:32 fetching corpus: 841, signal 104126/120542 (executing program) 2022/10/04 15:20:32 fetching corpus: 891, signal 106099/122976 (executing program) 2022/10/04 15:20:32 fetching corpus: 940, signal 107574/125039 (executing program) 2022/10/04 15:20:32 fetching corpus: 990, signal 110468/128171 (executing program) 2022/10/04 15:20:32 fetching corpus: 1040, signal 111754/129966 (executing program) 2022/10/04 15:20:33 fetching corpus: 1089, signal 115382/133530 (executing program) 2022/10/04 15:20:33 fetching corpus: 1137, signal 116622/135293 (executing program) 2022/10/04 15:20:33 fetching corpus: 1187, signal 118171/137219 (executing program) 2022/10/04 15:20:33 fetching corpus: 1237, signal 119131/138661 (executing program) 2022/10/04 15:20:33 fetching corpus: 1287, signal 121840/141382 (executing program) 2022/10/04 15:20:33 fetching corpus: 1335, signal 122867/142844 (executing program) 2022/10/04 15:20:33 fetching corpus: 1383, signal 124674/144815 (executing program) 2022/10/04 15:20:33 fetching corpus: 1432, signal 126878/147010 (executing program) 2022/10/04 15:20:33 fetching corpus: 1480, signal 128179/148584 (executing program) 2022/10/04 15:20:33 fetching corpus: 1529, signal 129880/150348 (executing program) 2022/10/04 15:20:34 fetching corpus: 1578, signal 130952/151649 (executing program) 2022/10/04 15:20:34 fetching corpus: 1628, signal 132182/153087 (executing program) 2022/10/04 15:20:34 fetching corpus: 1678, signal 133589/154580 (executing program) 2022/10/04 15:20:34 fetching corpus: 1728, signal 134569/155735 (executing program) 2022/10/04 15:20:34 fetching corpus: 1778, signal 136531/157571 (executing program) 2022/10/04 15:20:34 fetching corpus: 1828, signal 138447/159315 (executing program) 2022/10/04 15:20:34 fetching corpus: 1878, signal 139712/160572 (executing program) 2022/10/04 15:20:34 fetching corpus: 1928, signal 140782/161768 (executing program) 2022/10/04 15:20:35 fetching corpus: 1974, signal 142038/162987 (executing program) 2022/10/04 15:20:35 fetching corpus: 2022, signal 143027/164043 (executing program) 2022/10/04 15:20:35 fetching corpus: 2071, signal 143671/164907 (executing program) 2022/10/04 15:20:35 fetching corpus: 2121, signal 144759/166018 (executing program) 2022/10/04 15:20:35 fetching corpus: 2171, signal 145775/166992 (executing program) 2022/10/04 15:20:35 fetching corpus: 2221, signal 146794/167987 (executing program) 2022/10/04 15:20:35 fetching corpus: 2270, signal 147850/168959 (executing program) 2022/10/04 15:20:35 fetching corpus: 2320, signal 149269/170101 (executing program) 2022/10/04 15:20:36 fetching corpus: 2370, signal 150321/171020 (executing program) 2022/10/04 15:20:36 fetching corpus: 2420, signal 151099/171821 (executing program) 2022/10/04 15:20:36 fetching corpus: 2470, signal 152874/173068 (executing program) 2022/10/04 15:20:36 fetching corpus: 2520, signal 153903/173949 (executing program) 2022/10/04 15:20:36 fetching corpus: 2570, signal 154953/174771 (executing program) 2022/10/04 15:20:36 fetching corpus: 2620, signal 156053/175627 (executing program) 2022/10/04 15:20:36 fetching corpus: 2670, signal 157119/176501 (executing program) 2022/10/04 15:20:36 fetching corpus: 2720, signal 157892/177190 (executing program) 2022/10/04 15:20:37 fetching corpus: 2770, signal 158658/177853 (executing program) 2022/10/04 15:20:37 fetching corpus: 2820, signal 159751/178829 (executing program) 2022/10/04 15:20:37 fetching corpus: 2868, signal 160863/179576 (executing program) 2022/10/04 15:20:37 fetching corpus: 2918, signal 161461/180132 (executing program) 2022/10/04 15:20:37 fetching corpus: 2966, signal 162235/180723 (executing program) 2022/10/04 15:20:37 fetching corpus: 3016, signal 162903/181237 (executing program) 2022/10/04 15:20:37 fetching corpus: 3066, signal 164103/181927 (executing program) 2022/10/04 15:20:37 fetching corpus: 3116, signal 165219/182576 (executing program) 2022/10/04 15:20:38 fetching corpus: 3166, signal 166341/183168 (executing program) 2022/10/04 15:20:38 fetching corpus: 3215, signal 166758/183583 (executing program) 2022/10/04 15:20:38 fetching corpus: 3264, signal 167872/184161 (executing program) 2022/10/04 15:20:38 fetching corpus: 3314, signal 168700/184640 (executing program) 2022/10/04 15:20:38 fetching corpus: 3363, signal 169411/185030 (executing program) 2022/10/04 15:20:38 fetching corpus: 3413, signal 170287/185480 (executing program) 2022/10/04 15:20:38 fetching corpus: 3463, signal 171092/185901 (executing program) 2022/10/04 15:20:38 fetching corpus: 3513, signal 171399/186186 (executing program) 2022/10/04 15:20:38 fetching corpus: 3562, signal 171909/186534 (executing program) 2022/10/04 15:20:39 fetching corpus: 3612, signal 172571/186897 (executing program) 2022/10/04 15:20:39 fetching corpus: 3661, signal 173308/187256 (executing program) 2022/10/04 15:20:39 fetching corpus: 3711, signal 173947/187557 (executing program) 2022/10/04 15:20:39 fetching corpus: 3760, signal 175106/188319 (executing program) 2022/10/04 15:20:39 fetching corpus: 3810, signal 176163/188666 (executing program) 2022/10/04 15:20:39 fetching corpus: 3860, signal 176896/188952 (executing program) 2022/10/04 15:20:39 fetching corpus: 3910, signal 177778/189249 (executing program) 2022/10/04 15:20:39 fetching corpus: 3960, signal 178768/189532 (executing program) 2022/10/04 15:20:40 fetching corpus: 4010, signal 179779/189815 (executing program) 2022/10/04 15:20:40 fetching corpus: 4060, signal 180689/190040 (executing program) 2022/10/04 15:20:40 fetching corpus: 4110, signal 181342/190234 (executing program) 2022/10/04 15:20:40 fetching corpus: 4160, signal 181836/190393 (executing program) 2022/10/04 15:20:40 fetching corpus: 4210, signal 182430/190575 (executing program) 2022/10/04 15:20:40 fetching corpus: 4260, signal 183534/190737 (executing program) 2022/10/04 15:20:40 fetching corpus: 4310, signal 184009/190870 (executing program) 2022/10/04 15:20:40 fetching corpus: 4359, signal 184481/190976 (executing program) 2022/10/04 15:20:40 fetching corpus: 4409, signal 185099/191074 (executing program) 2022/10/04 15:20:40 fetching corpus: 4459, signal 185526/191144 (executing program) 2022/10/04 15:20:41 fetching corpus: 4483, signal 185771/191202 (executing program) 2022/10/04 15:20:41 fetching corpus: 4483, signal 185771/191259 (executing program) 2022/10/04 15:20:41 fetching corpus: 4483, signal 185771/191338 (executing program) 2022/10/04 15:20:41 fetching corpus: 4483, signal 185771/191338 (executing program) 2022/10/04 15:20:43 starting 8 fuzzer processes 15:20:43 executing program 0: r0 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000580)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0x1d, r0, &(0x7f00000005c0)='logon\x00', &(0x7f0000000600)='\x00') 15:20:43 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000007c0), 0x2}, 0xcc80, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) r1 = syz_io_uring_setup(0x4cdd, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x3, 0x20f}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000300)) syz_io_uring_setup(0x2c86, &(0x7f0000000600)={0x0, 0x501c, 0x2, 0x2, 0x213}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000680), &(0x7f0000000800)) syz_io_uring_setup(0x3740, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x3, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) getpid() syz_io_uring_setup(0xf95, &(0x7f00000004c0)={0x0, 0x23d1, 0x20, 0x3, 0x316, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) pidfd_open(0x0, 0x0) syz_io_uring_setup(0x2037bc, &(0x7f0000000400)={0x0, 0x82bf, 0x20, 0x1, 0x1f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000006c0)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x2) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0) ftruncate(r1, 0xfffffffffffffff7) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x100000, 0x95) close(r2) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) finit_module(r0, &(0x7f00000005c0)='\x00', 0x0) syz_open_dev$vcsa(&(0x7f0000000780), 0x2, 0xb447604bfb64757e) syz_io_uring_setup(0x6546, &(0x7f00000031c0)={0x0, 0x0, 0x41}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)) syz_io_uring_setup(0x5e00, &(0x7f0000000840)={0x0, 0x595c, 0x10, 0x1, 0xff}, &(0x7f0000ffa000/0x6000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000008c0), &(0x7f0000000900)) 15:20:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801002000400000000000000000008000294e4252f153595a4b414c4c4552202046415431322020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/96, 0x60, 0x1e0}, {&(0x7f0000010200)="f8ffff00f0ff056000ffffff09a0000bc0000de0000f000111200113400115600117800119f0ffff0f00"/64, 0x40, 0x400}, {&(0x7f0000010300)="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", 0x120, 0x600}, {&(0x7f0000010500)="2e202020202020202020201000a7e870325132510000e87032510300000000002e2e2020202020202020201000a7e870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020202000a7e870325132510000e870325104001a040000", 0x80, 0x1000}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x1200}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0x1800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x3e00}], 0x0, &(0x7f0000010d00)) 15:20:43 executing program 3: r0 = open$dir(&(0x7f0000000200)='.\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getdents(r0, &(0x7f0000000000)=""/42, 0x2a) 15:20:43 executing program 4: syz_emit_ethernet(0x2a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @private=0xa010102, @remote}, {0x11, 0x0, 0x0, @remote}}}}}, 0x0) 15:20:43 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029f2118df153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029f2118df153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="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", 0x120, 0x4800}, {&(0x7f0000010b00)="2e20202020202020202020100088ea70325132510000ea7032510300000000002e2e202020202020202020100088ea70325132510000ea70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200088ea70325132510000ea70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) [ 63.406589] audit: type=1400 audit(1664896843.512:6): avc: denied { execmem } for pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:20:43 executing program 7: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x8) r0 = syz_io_uring_setup(0x6c02, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0xd, 0x1, {0x2}}, 0x3f) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index=0x7}, 0x6) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ff6000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0xbc, &(0x7f0000001180)=@l2tp6={0xa, 0x0, 0x0, @mcast1}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r3, 0x7, 0x0, 0x7, 0x1}, 0x6) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa567}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r7 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f00000004c0)={0x2, 0x80, 0x7, 0x20, 0x1f, 0x7f, 0x0, 0x5, 0x1e2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x6, 0x1000000000}, 0x20, 0x7, 0x2, 0x0, 0x4, 0x1, 0x1, 0x0, 0x40, 0x0, 0xff}) io_uring_enter(r0, 0x284, 0x8cb7, 0x3, &(0x7f0000000440)={[0xf6]}, 0x8) ppoll(&(0x7f0000000480)=[{r7, 0x9480}, {0xffffffffffffffff, 0x8008}, {r7, 0x1}], 0x3, &(0x7f0000001dc0)={0x0, 0x989680}, &(0x7f0000001e00), 0x8) 15:20:43 executing program 5: request_key(&(0x7f0000002f00)='id_resolver\x00', &(0x7f0000002f40)={'syz', 0x3}, 0x0, 0x0) [ 64.745511] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.751105] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.753646] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.758363] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.761300] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 64.762753] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.769099] Bluetooth: hci0: HCI_REQ-0x0c1a [ 64.826844] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 64.828909] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 64.830345] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 64.832917] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 64.834600] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 64.841241] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 64.842407] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.844422] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.845979] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.847593] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.849677] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.851126] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.852249] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.853306] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.854421] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.855619] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.856782] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.857852] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.858887] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.860804] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.862150] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.867515] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 64.868559] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.869716] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 64.870723] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.872154] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 64.879894] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 64.882030] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 64.883119] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 64.883897] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 64.884220] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 64.886805] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 64.888058] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 64.889077] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 64.890023] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 64.890875] Bluetooth: hci6: HCI_REQ-0x0c1a [ 64.895236] Bluetooth: hci4: HCI_REQ-0x0c1a [ 64.896190] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 64.896715] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 64.898664] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 64.902320] Bluetooth: hci5: HCI_REQ-0x0c1a [ 64.911017] Bluetooth: hci2: HCI_REQ-0x0c1a [ 64.911975] Bluetooth: hci1: HCI_REQ-0x0c1a [ 64.912006] Bluetooth: hci3: HCI_REQ-0x0c1a [ 64.940174] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 64.945136] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 64.946878] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 64.948766] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 64.958026] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.819645] Bluetooth: hci0: command 0x0409 tx timeout [ 66.946968] Bluetooth: hci4: command 0x0409 tx timeout [ 66.947101] Bluetooth: hci3: command 0x0409 tx timeout [ 66.947662] Bluetooth: hci1: command 0x0409 tx timeout [ 66.949266] Bluetooth: hci2: command 0x0409 tx timeout [ 66.949506] Bluetooth: hci5: command 0x0409 tx timeout [ 66.950450] Bluetooth: hci6: command 0x0409 tx timeout [ 67.011973] Bluetooth: hci7: command 0x0409 tx timeout [ 68.867884] Bluetooth: hci0: command 0x041b tx timeout [ 68.994988] Bluetooth: hci6: command 0x041b tx timeout [ 68.995622] Bluetooth: hci5: command 0x041b tx timeout [ 68.996285] Bluetooth: hci2: command 0x041b tx timeout [ 68.996909] Bluetooth: hci1: command 0x041b tx timeout [ 68.997525] Bluetooth: hci3: command 0x041b tx timeout [ 68.998152] Bluetooth: hci4: command 0x041b tx timeout [ 69.059013] Bluetooth: hci7: command 0x041b tx timeout [ 70.914871] Bluetooth: hci0: command 0x040f tx timeout [ 71.042908] Bluetooth: hci4: command 0x040f tx timeout [ 71.043353] Bluetooth: hci3: command 0x040f tx timeout [ 71.043728] Bluetooth: hci1: command 0x040f tx timeout [ 71.044151] Bluetooth: hci2: command 0x040f tx timeout [ 71.044545] Bluetooth: hci5: command 0x040f tx timeout [ 71.044945] Bluetooth: hci6: command 0x040f tx timeout [ 71.106888] Bluetooth: hci7: command 0x040f tx timeout [ 72.962879] Bluetooth: hci0: command 0x0419 tx timeout [ 73.090965] Bluetooth: hci6: command 0x0419 tx timeout [ 73.091430] Bluetooth: hci5: command 0x0419 tx timeout [ 73.091879] Bluetooth: hci2: command 0x0419 tx timeout [ 73.092284] Bluetooth: hci1: command 0x0419 tx timeout [ 73.092697] Bluetooth: hci3: command 0x0419 tx timeout [ 73.093164] Bluetooth: hci4: command 0x0419 tx timeout [ 73.154876] Bluetooth: hci7: command 0x0419 tx timeout [ 118.802572] audit: type=1400 audit(1664896898.912:7): avc: denied { open } for pid=3751 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.831269] audit: type=1400 audit(1664896898.941:8): avc: denied { kernel } for pid=3751 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.863419] ------------[ cut here ]------------ [ 118.863441] [ 118.863446] ====================================================== [ 118.863449] WARNING: possible circular locking dependency detected [ 118.863454] 6.0.0-next-20221004 #1 Not tainted [ 118.863461] ------------------------------------------------------ [ 118.863465] syz-executor.7/3752 is trying to acquire lock: [ 118.863471] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 118.863513] [ 118.863513] but task is already holding lock: [ 118.863516] ffff88803f77ec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 118.863543] [ 118.863543] which lock already depends on the new lock. [ 118.863543] [ 118.863549] [ 118.863549] the existing dependency chain (in reverse order) is: [ 118.863553] [ 118.863553] -> #3 (&ctx->lock){....}-{2:2}: [ 118.863567] _raw_spin_lock+0x2a/0x40 [ 118.863579] __perf_event_task_sched_out+0x53b/0x18d0 [ 118.863591] __schedule+0xedd/0x2470 [ 118.863605] schedule+0xda/0x1b0 [ 118.863619] futex_wait_queue+0xf5/0x1e0 [ 118.863632] futex_wait+0x28e/0x690 [ 118.863642] do_futex+0x2ff/0x380 [ 118.863651] __x64_sys_futex+0x1c6/0x4d0 [ 118.863662] do_syscall_64+0x3b/0x90 [ 118.863679] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.863692] [ 118.863692] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 118.863706] _raw_spin_lock_nested+0x30/0x40 [ 118.863717] raw_spin_rq_lock_nested+0x1e/0x30 [ 118.863730] task_fork_fair+0x63/0x4d0 [ 118.863747] sched_cgroup_fork+0x3d0/0x540 [ 118.863761] copy_process+0x4183/0x6e20 [ 118.863772] kernel_clone+0xe7/0x890 [ 118.863782] user_mode_thread+0xad/0xf0 [ 118.863792] rest_init+0x24/0x250 [ 118.863805] arch_call_rest_init+0xf/0x14 [ 118.863826] start_kernel+0x4c6/0x4eb [ 118.863843] secondary_startup_64_no_verify+0xe0/0xeb [ 118.863857] [ 118.863857] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 118.863870] _raw_spin_lock_irqsave+0x39/0x60 [ 118.863881] try_to_wake_up+0xab/0x1930 [ 118.863895] up+0x75/0xb0 [ 118.863909] __up_console_sem+0x6e/0x80 [ 118.863925] console_unlock+0x46a/0x590 [ 118.863941] do_con_write+0xc05/0x1d50 [ 118.863953] con_write+0x21/0x40 [ 118.863963] n_tty_write+0x4d4/0xfe0 [ 118.863975] file_tty_write.constprop.0+0x455/0x8a0 [ 118.863987] vfs_write+0x9c3/0xd90 [ 118.864004] ksys_write+0x127/0x250 [ 118.864020] do_syscall_64+0x3b/0x90 [ 118.864037] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.864050] [ 118.864050] -> #0 ((console_sem).lock){....}-{2:2}: [ 118.864064] __lock_acquire+0x2a02/0x5e70 [ 118.864081] lock_acquire+0x1a2/0x530 [ 118.864097] _raw_spin_lock_irqsave+0x39/0x60 [ 118.864108] down_trylock+0xe/0x70 [ 118.864123] __down_trylock_console_sem+0x3b/0xd0 [ 118.864139] vprintk_emit+0x16b/0x560 [ 118.864155] vprintk+0x84/0xa0 [ 118.864171] _printk+0xba/0xf1 [ 118.864183] report_bug.cold+0x72/0xab [ 118.864200] handle_bug+0x3c/0x70 [ 118.864208] exc_invalid_op+0x14/0x50 [ 118.864218] asm_exc_invalid_op+0x16/0x20 [ 118.864231] group_sched_out.part.0+0x2c7/0x460 [ 118.864249] ctx_sched_out+0x8f1/0xc10 [ 118.864265] __perf_event_task_sched_out+0x6d0/0x18d0 [ 118.864276] __schedule+0xedd/0x2470 [ 118.864290] schedule+0xda/0x1b0 [ 118.864304] futex_wait_queue+0xf5/0x1e0 [ 118.864315] futex_wait+0x28e/0x690 [ 118.864325] do_futex+0x2ff/0x380 [ 118.864334] __x64_sys_futex+0x1c6/0x4d0 [ 118.864344] do_syscall_64+0x3b/0x90 [ 118.864361] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.864374] [ 118.864374] other info that might help us debug this: [ 118.864374] [ 118.864377] Chain exists of: [ 118.864377] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 118.864377] [ 118.864391] Possible unsafe locking scenario: [ 118.864391] [ 118.864393] CPU0 CPU1 [ 118.864396] ---- ---- [ 118.864398] lock(&ctx->lock); [ 118.864404] lock(&rq->__lock); [ 118.864410] lock(&ctx->lock); [ 118.864416] lock((console_sem).lock); [ 118.864422] [ 118.864422] *** DEADLOCK *** [ 118.864422] [ 118.864424] 2 locks held by syz-executor.7/3752: [ 118.864431] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 118.864460] #1: ffff88803f77ec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 118.864486] [ 118.864486] stack backtrace: [ 118.864489] CPU: 1 PID: 3752 Comm: syz-executor.7 Not tainted 6.0.0-next-20221004 #1 [ 118.864501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 118.864510] Call Trace: [ 118.864513] [ 118.864518] dump_stack_lvl+0x8b/0xb3 [ 118.864537] check_noncircular+0x263/0x2e0 [ 118.864553] ? format_decode+0x26c/0xb50 [ 118.864571] ? print_circular_bug+0x450/0x450 [ 118.864588] ? simple_strtoul+0x30/0x30 [ 118.864604] ? format_decode+0x26c/0xb50 [ 118.864622] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 118.864639] __lock_acquire+0x2a02/0x5e70 [ 118.864660] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 118.864683] lock_acquire+0x1a2/0x530 [ 118.864699] ? down_trylock+0xe/0x70 [ 118.864717] ? lock_release+0x750/0x750 [ 118.864737] ? vprintk+0x84/0xa0 [ 118.864755] _raw_spin_lock_irqsave+0x39/0x60 [ 118.864767] ? down_trylock+0xe/0x70 [ 118.864783] down_trylock+0xe/0x70 [ 118.864800] ? vprintk+0x84/0xa0 [ 118.864816] __down_trylock_console_sem+0x3b/0xd0 [ 118.864834] vprintk_emit+0x16b/0x560 [ 118.864852] vprintk+0x84/0xa0 [ 118.864869] _printk+0xba/0xf1 [ 118.864881] ? record_print_text.cold+0x16/0x16 [ 118.864898] ? report_bug.cold+0x66/0xab [ 118.864916] ? group_sched_out.part.0+0x2c7/0x460 [ 118.864934] report_bug.cold+0x72/0xab [ 118.864953] handle_bug+0x3c/0x70 [ 118.864963] exc_invalid_op+0x14/0x50 [ 118.864974] asm_exc_invalid_op+0x16/0x20 [ 118.864987] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 118.865008] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 118.865020] RSP: 0018:ffff88803eb178f8 EFLAGS: 00010006 [ 118.865029] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 118.865036] RDX: ffff88801755d040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 118.865044] RBP: ffff88801f5f8000 R08: 0000000000000005 R09: 0000000000000001 [ 118.865052] R10: 0000000000000000 R11: ffffffff865b605b R12: ffff88803f77ec00 [ 118.865059] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 118.865070] ? group_sched_out.part.0+0x2c7/0x460 [ 118.865090] ? group_sched_out.part.0+0x2c7/0x460 [ 118.865110] ctx_sched_out+0x8f1/0xc10 [ 118.865130] __perf_event_task_sched_out+0x6d0/0x18d0 [ 118.865144] ? lock_is_held_type+0xd7/0x130 [ 118.865158] ? __perf_cgroup_move+0x160/0x160 [ 118.865169] ? set_next_entity+0x304/0x550 [ 118.865189] ? lock_is_held_type+0xd7/0x130 [ 118.865203] __schedule+0xedd/0x2470 [ 118.865221] ? io_schedule_timeout+0x150/0x150 [ 118.865237] ? futex_wait_setup+0x166/0x230 [ 118.865251] schedule+0xda/0x1b0 [ 118.865267] futex_wait_queue+0xf5/0x1e0 [ 118.865279] futex_wait+0x28e/0x690 [ 118.865292] ? futex_wait_setup+0x230/0x230 [ 118.865305] ? wake_up_q+0x8b/0xf0 [ 118.865318] ? do_raw_spin_unlock+0x4f/0x220 [ 118.865338] ? futex_wake+0x158/0x490 [ 118.865354] ? fd_install+0x1f9/0x640 [ 118.865369] do_futex+0x2ff/0x380 [ 118.865381] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 118.865397] __x64_sys_futex+0x1c6/0x4d0 [ 118.865410] ? __x64_sys_futex_time32+0x480/0x480 [ 118.865423] ? syscall_enter_from_user_mode+0x1d/0x50 [ 118.865437] ? syscall_enter_from_user_mode+0x1d/0x50 [ 118.865453] do_syscall_64+0x3b/0x90 [ 118.865472] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.865486] RIP: 0033:0x7f0d9a3dbb19 [ 118.865494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.865505] RSP: 002b:00007f0d97951218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.865516] RAX: ffffffffffffffda RBX: 00007f0d9a4eef68 RCX: 00007f0d9a3dbb19 [ 118.865523] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0d9a4eef68 [ 118.865531] RBP: 00007f0d9a4eef60 R08: 0000000000000000 R09: 0000000000000000 [ 118.865538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0d9a4eef6c [ 118.865545] R13: 00007ffc50d9989f R14: 00007f0d97951300 R15: 0000000000022000 [ 118.865565] [ 118.925262] WARNING: CPU: 1 PID: 3752 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 118.925959] Modules linked in: [ 118.926195] CPU: 1 PID: 3752 Comm: syz-executor.7 Not tainted 6.0.0-next-20221004 #1 [ 118.926758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 118.927575] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 118.927982] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 118.929287] RSP: 0018:ffff88803eb178f8 EFLAGS: 00010006 [ 118.929674] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 118.930182] RDX: ffff88801755d040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 118.930690] RBP: ffff88801f5f8000 R08: 0000000000000005 R09: 0000000000000001 [ 118.931202] R10: 0000000000000000 R11: ffffffff865b605b R12: ffff88803f77ec00 [ 118.931712] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 118.932226] FS: 00007f0d97951700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 118.932790] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.933208] CR2: 00007fe7032ccb70 CR3: 000000001d8ec000 CR4: 0000000000350ee0 [ 118.933730] Call Trace: [ 118.933923] [ 118.934097] ctx_sched_out+0x8f1/0xc10 [ 118.934392] __perf_event_task_sched_out+0x6d0/0x18d0 [ 118.934768] ? lock_is_held_type+0xd7/0x130 [ 118.935105] ? __perf_cgroup_move+0x160/0x160 [ 118.935452] ? set_next_entity+0x304/0x550 [ 118.935786] ? lock_is_held_type+0xd7/0x130 [ 118.936112] __schedule+0xedd/0x2470 [ 118.936408] ? io_schedule_timeout+0x150/0x150 [ 118.936758] ? futex_wait_setup+0x166/0x230 [ 118.937081] schedule+0xda/0x1b0 [ 118.937351] futex_wait_queue+0xf5/0x1e0 [ 118.937681] futex_wait+0x28e/0x690 [ 118.937963] ? futex_wait_setup+0x230/0x230 [ 118.938301] ? wake_up_q+0x8b/0xf0 [ 118.938576] ? do_raw_spin_unlock+0x4f/0x220 [ 118.938915] ? futex_wake+0x158/0x490 [ 118.939211] ? fd_install+0x1f9/0x640 [ 118.939514] do_futex+0x2ff/0x380 [ 118.939785] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 118.940232] __x64_sys_futex+0x1c6/0x4d0 [ 118.940544] ? __x64_sys_futex_time32+0x480/0x480 [ 118.940909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 118.941301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 118.941705] do_syscall_64+0x3b/0x90 [ 118.942001] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.942402] RIP: 0033:0x7f0d9a3dbb19 [ 118.942689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.944039] RSP: 002b:00007f0d97951218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.944579] RAX: ffffffffffffffda RBX: 00007f0d9a4eef68 RCX: 00007f0d9a3dbb19 [ 118.945124] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0d9a4eef68 [ 118.945661] RBP: 00007f0d9a4eef60 R08: 0000000000000000 R09: 0000000000000000 [ 118.946197] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0d9a4eef6c [ 118.946735] R13: 00007ffc50d9989f R14: 00007f0d97951300 R15: 0000000000022000 [ 118.947281] [ 118.947463] irq event stamp: 5406 [ 118.947733] hardirqs last enabled at (5405): [] syscall_enter_from_user_mode+0x1d/0x50 [ 118.948448] hardirqs last disabled at (5406): [] __schedule+0x1225/0x2470 [ 118.949089] softirqs last enabled at (5064): [] __irq_exit_rcu+0x11b/0x180 [ 118.949742] softirqs last disabled at (4915): [] __irq_exit_rcu+0x11b/0x180 [ 118.950383] ---[ end trace 0000000000000000 ]--- 15:21:39 executing program 7: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x8) r0 = syz_io_uring_setup(0x6c02, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0xd, 0x1, {0x2}}, 0x3f) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index=0x7}, 0x6) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ff6000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0xbc, &(0x7f0000001180)=@l2tp6={0xa, 0x0, 0x0, @mcast1}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r3, 0x7, 0x0, 0x7, 0x1}, 0x6) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa567}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r7 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f00000004c0)={0x2, 0x80, 0x7, 0x20, 0x1f, 0x7f, 0x0, 0x5, 0x1e2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x6, 0x1000000000}, 0x20, 0x7, 0x2, 0x0, 0x4, 0x1, 0x1, 0x0, 0x40, 0x0, 0xff}) io_uring_enter(r0, 0x284, 0x8cb7, 0x3, &(0x7f0000000440)={[0xf6]}, 0x8) ppoll(&(0x7f0000000480)=[{r7, 0x9480}, {0xffffffffffffffff, 0x8008}, {r7, 0x1}], 0x3, &(0x7f0000001dc0)={0x0, 0x989680}, &(0x7f0000001e00), 0x8) 15:21:39 executing program 7: io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x8) r0 = syz_io_uring_setup(0x6c02, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0xd, 0x1, {0x2}}, 0x3f) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd_index=0x7}, 0x6) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ff6000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0xbc, &(0x7f0000001180)=@l2tp6={0xa, 0x0, 0x0, @mcast1}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd=r3, 0x7, 0x0, 0x7, 0x1}, 0x6) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa567}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r7 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f00000004c0)={0x2, 0x80, 0x7, 0x20, 0x1f, 0x7f, 0x0, 0x5, 0x1e2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0x6, 0x1000000000}, 0x20, 0x7, 0x2, 0x0, 0x4, 0x1, 0x1, 0x0, 0x40, 0x0, 0xff}) io_uring_enter(r0, 0x284, 0x8cb7, 0x3, &(0x7f0000000440)={[0xf6]}, 0x8) ppoll(&(0x7f0000000480)=[{r7, 0x9480}, {0xffffffffffffffff, 0x8008}, {r7, 0x1}], 0x3, &(0x7f0000001dc0)={0x0, 0x989680}, &(0x7f0000001e00), 0x8) [ 120.628830] hrtimer: interrupt took 17663 ns [ 120.863503] loop6: detected capacity change from 0 to 1352 [ 121.431419] loop2: detected capacity change from 0 to 128 VM DIAGNOSIS: 15:21:39 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=8000000000000025 RCX=ffffffff81691fff RDX=ffff8880174ab580 RSI=0000000000000000 RDI=0000000000000005 RBP=ffff88800dc92990 RSP=ffff88800b0bf908 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffff88800b0bfcf8 R13=80000000078da025 R14=dffffc0000000000 R15=0000000000000001 RIP=ffffffff814617f5 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055d0bbca7030 CR3=000000003e044000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bd531 RDI=ffffffff8765c9a0 RBP=ffffffff8765c960 RSP=ffff88803eb17340 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000078 R11=0000000000000001 R12=0000000000000078 R13=ffffffff8765c960 R14=0000000000000010 R15=ffffffff823bd520 RIP=ffffffff823bd589 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0d97951700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe7032ccb70 CR3=000000001d8ec000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000007 ffffffff00000418 YMM01=0000000000000000 0000000000000000 0000000100000007 0000000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000