Warning: Permanently added '[localhost]:57078' (ECDSA) to the list of known hosts.
2022/09/14 13:35:39 fuzzer started
2022/09/14 13:35:39 dialing manager at localhost:33849
syzkaller login: [   44.004664] cgroup: Unknown subsys name 'net'
[   44.099499] cgroup: Unknown subsys name 'rlimit'
2022/09/14 13:35:52 syscalls: 2215
2022/09/14 13:35:52 code coverage: enabled
2022/09/14 13:35:52 comparison tracing: enabled
2022/09/14 13:35:52 extra coverage: enabled
2022/09/14 13:35:52 setuid sandbox: enabled
2022/09/14 13:35:52 namespace sandbox: enabled
2022/09/14 13:35:52 Android sandbox: enabled
2022/09/14 13:35:52 fault injection: enabled
2022/09/14 13:35:52 leak checking: enabled
2022/09/14 13:35:52 net packet injection: enabled
2022/09/14 13:35:52 net device setup: enabled
2022/09/14 13:35:52 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/14 13:35:52 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/14 13:35:52 USB emulation: enabled
2022/09/14 13:35:52 hci packet injection: enabled
2022/09/14 13:35:52 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220914                                          )
2022/09/14 13:35:52 802.15.4 emulation: enabled
2022/09/14 13:35:52 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/14 13:35:53 fetching corpus: 35, signal 29203/32779 (executing program)
2022/09/14 13:35:53 fetching corpus: 85, signal 47214/52150 (executing program)
2022/09/14 13:35:53 fetching corpus: 135, signal 56178/62498 (executing program)
2022/09/14 13:35:53 fetching corpus: 185, signal 66920/74354 (executing program)
2022/09/14 13:35:53 fetching corpus: 235, signal 72487/81126 (executing program)
2022/09/14 13:35:53 fetching corpus: 285, signal 77776/87543 (executing program)
2022/09/14 13:35:53 fetching corpus: 335, signal 81641/92583 (executing program)
2022/09/14 13:35:53 fetching corpus: 385, signal 87815/99711 (executing program)
2022/09/14 13:35:54 fetching corpus: 435, signal 91371/104305 (executing program)
2022/09/14 13:35:54 fetching corpus: 485, signal 95909/109751 (executing program)
2022/09/14 13:35:54 fetching corpus: 535, signal 98843/113635 (executing program)
2022/09/14 13:35:54 fetching corpus: 585, signal 102889/118435 (executing program)
2022/09/14 13:35:54 fetching corpus: 635, signal 104714/121251 (executing program)
2022/09/14 13:35:54 fetching corpus: 683, signal 107412/124799 (executing program)
2022/09/14 13:35:54 fetching corpus: 733, signal 110352/128513 (executing program)
2022/09/14 13:35:55 fetching corpus: 783, signal 112145/131178 (executing program)
2022/09/14 13:35:55 fetching corpus: 833, signal 116062/135674 (executing program)
2022/09/14 13:35:55 fetching corpus: 883, signal 118812/139143 (executing program)
2022/09/14 13:35:55 fetching corpus: 933, signal 121100/142072 (executing program)
2022/09/14 13:35:55 fetching corpus: 983, signal 122541/144279 (executing program)
2022/09/14 13:35:55 fetching corpus: 1033, signal 124975/147264 (executing program)
2022/09/14 13:35:55 fetching corpus: 1083, signal 127777/150625 (executing program)
2022/09/14 13:35:56 fetching corpus: 1133, signal 130858/154198 (executing program)
2022/09/14 13:35:56 fetching corpus: 1183, signal 134106/157756 (executing program)
2022/09/14 13:35:56 fetching corpus: 1233, signal 136707/160698 (executing program)
2022/09/14 13:35:56 fetching corpus: 1283, signal 137623/162314 (executing program)
2022/09/14 13:35:56 fetching corpus: 1333, signal 139458/164584 (executing program)
2022/09/14 13:35:56 fetching corpus: 1383, signal 141930/167339 (executing program)
2022/09/14 13:35:56 fetching corpus: 1433, signal 144475/170187 (executing program)
2022/09/14 13:35:57 fetching corpus: 1483, signal 147069/173023 (executing program)
2022/09/14 13:35:57 fetching corpus: 1532, signal 148408/174832 (executing program)
2022/09/14 13:35:57 fetching corpus: 1582, signal 149979/176780 (executing program)
2022/09/14 13:35:57 fetching corpus: 1632, signal 150907/178256 (executing program)
2022/09/14 13:35:57 fetching corpus: 1682, signal 152468/180110 (executing program)
2022/09/14 13:35:57 fetching corpus: 1732, signal 154113/181978 (executing program)
2022/09/14 13:35:57 fetching corpus: 1782, signal 155404/183604 (executing program)
2022/09/14 13:35:58 fetching corpus: 1832, signal 157322/185678 (executing program)
2022/09/14 13:35:58 fetching corpus: 1882, signal 158675/187311 (executing program)
2022/09/14 13:35:58 fetching corpus: 1932, signal 160258/189076 (executing program)
2022/09/14 13:35:58 fetching corpus: 1982, signal 161870/190799 (executing program)
2022/09/14 13:35:58 fetching corpus: 2032, signal 163114/192337 (executing program)
2022/09/14 13:35:58 fetching corpus: 2082, signal 164621/193992 (executing program)
2022/09/14 13:35:58 fetching corpus: 2132, signal 165875/195527 (executing program)
2022/09/14 13:35:58 fetching corpus: 2182, signal 166956/196831 (executing program)
2022/09/14 13:35:59 fetching corpus: 2231, signal 168959/198675 (executing program)
2022/09/14 13:35:59 fetching corpus: 2280, signal 169990/199935 (executing program)
2022/09/14 13:35:59 fetching corpus: 2330, signal 171459/201498 (executing program)
2022/09/14 13:35:59 fetching corpus: 2380, signal 172330/202681 (executing program)
2022/09/14 13:35:59 fetching corpus: 2430, signal 173704/204125 (executing program)
2022/09/14 13:35:59 fetching corpus: 2480, signal 174649/205281 (executing program)
2022/09/14 13:35:59 fetching corpus: 2530, signal 175405/206302 (executing program)
2022/09/14 13:36:00 fetching corpus: 2580, signal 176418/207471 (executing program)
2022/09/14 13:36:00 fetching corpus: 2630, signal 177567/208702 (executing program)
2022/09/14 13:36:00 fetching corpus: 2679, signal 179064/210111 (executing program)
2022/09/14 13:36:00 fetching corpus: 2729, signal 181139/211831 (executing program)
2022/09/14 13:36:00 fetching corpus: 2779, signal 182580/213093 (executing program)
2022/09/14 13:36:00 fetching corpus: 2829, signal 183675/214208 (executing program)
2022/09/14 13:36:00 fetching corpus: 2879, signal 184718/215263 (executing program)
2022/09/14 13:36:01 fetching corpus: 2929, signal 185322/216063 (executing program)
2022/09/14 13:36:01 fetching corpus: 2979, signal 186662/217178 (executing program)
2022/09/14 13:36:01 fetching corpus: 3029, signal 187913/218264 (executing program)
2022/09/14 13:36:01 fetching corpus: 3079, signal 188849/219161 (executing program)
2022/09/14 13:36:01 fetching corpus: 3129, signal 189880/220118 (executing program)
2022/09/14 13:36:01 fetching corpus: 3179, signal 190835/221008 (executing program)
2022/09/14 13:36:01 fetching corpus: 3229, signal 191506/221765 (executing program)
2022/09/14 13:36:01 fetching corpus: 3279, signal 191987/222494 (executing program)
2022/09/14 13:36:02 fetching corpus: 3329, signal 193019/223354 (executing program)
2022/09/14 13:36:02 fetching corpus: 3379, signal 194021/224196 (executing program)
2022/09/14 13:36:02 fetching corpus: 3429, signal 194523/224835 (executing program)
2022/09/14 13:36:02 fetching corpus: 3479, signal 195187/225497 (executing program)
2022/09/14 13:36:02 fetching corpus: 3529, signal 195716/226140 (executing program)
2022/09/14 13:36:02 fetching corpus: 3578, signal 196558/226843 (executing program)
2022/09/14 13:36:02 fetching corpus: 3628, signal 197282/227513 (executing program)
2022/09/14 13:36:02 fetching corpus: 3678, signal 198671/228377 (executing program)
2022/09/14 13:36:03 fetching corpus: 3728, signal 199936/229166 (executing program)
2022/09/14 13:36:03 fetching corpus: 3778, signal 201175/230022 (executing program)
2022/09/14 13:36:03 fetching corpus: 3828, signal 202130/230720 (executing program)
2022/09/14 13:36:03 fetching corpus: 3878, signal 202979/231424 (executing program)
2022/09/14 13:36:03 fetching corpus: 3928, signal 203777/232031 (executing program)
2022/09/14 13:36:03 fetching corpus: 3978, signal 204237/232586 (executing program)
2022/09/14 13:36:04 fetching corpus: 4028, signal 205267/233229 (executing program)
2022/09/14 13:36:04 fetching corpus: 4078, signal 206249/233896 (executing program)
2022/09/14 13:36:04 fetching corpus: 4128, signal 206919/234411 (executing program)
2022/09/14 13:36:04 fetching corpus: 4178, signal 207920/234994 (executing program)
2022/09/14 13:36:04 fetching corpus: 4228, signal 208639/235594 (executing program)
2022/09/14 13:36:04 fetching corpus: 4278, signal 209220/236086 (executing program)
2022/09/14 13:36:04 fetching corpus: 4328, signal 210087/236612 (executing program)
2022/09/14 13:36:05 fetching corpus: 4378, signal 210948/237138 (executing program)
2022/09/14 13:36:05 fetching corpus: 4428, signal 211366/237538 (executing program)
2022/09/14 13:36:05 fetching corpus: 4478, signal 212031/237958 (executing program)
2022/09/14 13:36:05 fetching corpus: 4528, signal 212815/238388 (executing program)
2022/09/14 13:36:05 fetching corpus: 4577, signal 213445/238834 (executing program)
2022/09/14 13:36:05 fetching corpus: 4627, signal 214933/239389 (executing program)
2022/09/14 13:36:05 fetching corpus: 4677, signal 215781/239896 (executing program)
2022/09/14 13:36:06 fetching corpus: 4727, signal 217076/240399 (executing program)
2022/09/14 13:36:06 fetching corpus: 4777, signal 217896/240889 (executing program)
2022/09/14 13:36:06 fetching corpus: 4827, signal 218822/241271 (executing program)
2022/09/14 13:36:06 fetching corpus: 4877, signal 219554/241589 (executing program)
2022/09/14 13:36:06 fetching corpus: 4927, signal 220683/241939 (executing program)
2022/09/14 13:36:06 fetching corpus: 4977, signal 221739/242287 (executing program)
2022/09/14 13:36:06 fetching corpus: 5027, signal 222351/242554 (executing program)
2022/09/14 13:36:07 fetching corpus: 5077, signal 223079/242871 (executing program)
2022/09/14 13:36:07 fetching corpus: 5127, signal 223582/243118 (executing program)
2022/09/14 13:36:07 fetching corpus: 5177, signal 224447/243374 (executing program)
2022/09/14 13:36:07 fetching corpus: 5227, signal 225195/243616 (executing program)
2022/09/14 13:36:07 fetching corpus: 5277, signal 225854/243846 (executing program)
2022/09/14 13:36:07 fetching corpus: 5327, signal 226291/244055 (executing program)
2022/09/14 13:36:08 fetching corpus: 5377, signal 226744/244254 (executing program)
2022/09/14 13:36:08 fetching corpus: 5427, signal 227627/244502 (executing program)
2022/09/14 13:36:08 fetching corpus: 5477, signal 228396/244743 (executing program)
2022/09/14 13:36:08 fetching corpus: 5527, signal 228942/244947 (executing program)
2022/09/14 13:36:08 fetching corpus: 5576, signal 229429/245083 (executing program)
2022/09/14 13:36:08 fetching corpus: 5626, signal 230136/245219 (executing program)
2022/09/14 13:36:08 fetching corpus: 5676, signal 230637/245226 (executing program)
2022/09/14 13:36:09 fetching corpus: 5726, signal 231261/245231 (executing program)
2022/09/14 13:36:09 fetching corpus: 5775, signal 231614/245246 (executing program)
2022/09/14 13:36:09 fetching corpus: 5825, signal 232176/245254 (executing program)
2022/09/14 13:36:09 fetching corpus: 5875, signal 232839/245317 (executing program)
2022/09/14 13:36:09 fetching corpus: 5925, signal 233456/245324 (executing program)
2022/09/14 13:36:09 fetching corpus: 5975, signal 234347/245358 (executing program)
2022/09/14 13:36:09 fetching corpus: 6025, signal 234998/245384 (executing program)
2022/09/14 13:36:09 fetching corpus: 6075, signal 235548/245398 (executing program)
2022/09/14 13:36:10 fetching corpus: 6125, signal 236125/245444 (executing program)
2022/09/14 13:36:10 fetching corpus: 6175, signal 237085/245458 (executing program)
2022/09/14 13:36:10 fetching corpus: 6195, signal 237297/245482 (executing program)
2022/09/14 13:36:10 fetching corpus: 6195, signal 237297/245482 (executing program)
2022/09/14 13:36:13 starting 8 fuzzer processes
13:36:13 executing program 0:
mkdir(&(0x7f0000003b80)='./file0\x00', 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
setxattr$security_evm(&(0x7f0000000200)='./file0\x00', &(0x7f00000003c0), 0x0, 0x0, 0x0)

13:36:13 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x5603, &(0x7f0000000040))

[   77.562822] audit: type=1400 audit(1663162573.304:6): avc:  denied  { execmem } for  pid=287 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:36:13 executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x3}, 0x1c)

13:36:13 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwritev(r0, 0x0, 0x0, 0x0, 0x0)

13:36:13 executing program 4:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000000)=@ethtool_rxnfc={0x2e, 0x0, 0x0, {0x0, @usr_ip4_spec={@multicast1, @multicast1}, {0x0, @local}, @esp_ip4_spec={@broadcast, @empty}, {0x0, @local}}}})

13:36:13 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'})
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), &(0x7f00000000c0)={0x0, 0xfb, 0xf6, 0x5, 0x9, "d2a149fd4415c7eb677a5b4636793d2e", "84784878199988e83ac2b08aacac3433328173d0861b22ed067b49bb67940306ca116fdad3c5faa346e20775406e86c9e10af6588da9448ac2effbf9c314da3d416e4b182461ba029338c85552d9e6e5595de04ec055b23e82e644939271ed7aa51fd8f0563211f839595e195b929ecd8d3c9d473048271484cf4c2684e438dd446a0e1e6d086e7f63ae66680bf1eff6cb761cdad0ec32f30256c01fbd7f8ad9b774c70177f2b59747f5584ddf99f9a91c9ddc815dfc147c7b50d0001f826823a2ae3d125fa668d015c73b1cbbe0d4017f14140bd63714baccd9e6f764a4105e7e"}, 0xf6, 0x2)
fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x1015, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x0, 0x487, &(0x7f0000000200), &(0x7f0000000240)=0x30)
dup2(r1, r0)
r3 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000018c0)={0x2, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x17)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f00000001c0)={'veth1_virt_wifi\x00', {0x2, 0x0, @initdev}})
socket$inet_udp(0x2, 0x2, 0x0)

13:36:13 executing program 6:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x10000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef0100010000009f09c75f000000000000000001000000000000000b0000008000000038000000c20201006b04000076b65be2f6da47278c750525a5b65a090000000000000000", 0x80, 0x400}, {&(0x7f0000010080)="000000000000000000000000ede2de4df49d4f87b54a3176cfd4eb4f010040000c000000000000009f09c75f00"/64, 0x40, 0x4e0}, {&(0x7f00000100c0)="0100000000000000000000000000000000000000040100001200000000000000", 0x20, 0x560}, {&(0x7f00000100e0)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb0300000013000000230000002b0005000200040000000000907306c205002a9c00000000000000000000000000000000000000000000000091ecd11b00000000", 0x60, 0x7e0}, {&(0x7f0000010160)="ffff05000c000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b000000dc030a026c6f73742b666f756e6400"/1088, 0x440, 0xc00}, {&(0x7f00000105a0)="0000000000000000000000000000000000000000000000000c0000de46b807b70b0000000c0001022e00000002000000e80302022e2e00"/64, 0x40, 0x13e0}, {&(0x7f00000105e0)="0000000000000000000000000000000000000000000000000c0000de5551aadd00000000f40300"/64, 0x40, 0x17e0}, {&(0x7f0000010620)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1be0}, {&(0x7f0000010660)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x1fe0}, {&(0x7f00000106a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x23e0}, {&(0x7f00000106e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x27e0}, {&(0x7f0000010720)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2be0}, {&(0x7f0000010760)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x2fe0}, {&(0x7f00000107a0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x33e0}, {&(0x7f00000107e0)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x37e0}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3be0}, {&(0x7f0000010860)="0000000000000000000000000000000000000000000000000c0000de2b607f2900000000f40300"/64, 0x40, 0x3fe0}, {&(0x7f00000108a0)="0000000000000000000000000000000000000000000000000c0000de2b607f29", 0x20, 0x43e0}, {&(0x7f00000108c0)="ff07ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x400, 0x4c00}, {&(0x7f0000010cc0)="00000000000000009f09c75f9f09c75f9f09c75f00"/32, 0x20, 0x8c00}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004000000000000000000000001000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005c1f0000", 0xa0, 0x8c60}, {&(0x7f0000010d80)="00000000000000000000000000000000000000000000000000000000acff0000", 0x20, 0x8d60}, {&(0x7f0000010da0)="000000000000000000000000000000000000000000000000000000000ee30000", 0x20, 0x8de0}, {&(0x7f0000010dc0)="00000000000000000000000000000000000000000000000000000000ce1e0000", 0x20, 0x8e60}, {&(0x7f0000010de0)="000000000000000000000000000000000000000000000000000000007f6e000080810000003004049f09c75f9f09c75f9f09c75f000000000000010002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000110000000000000000000000000000000000000000000000000000000000000005620000", 0xa0, 0x8ee0}, {&(0x7f0000010e80)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00;W\x00\x00', 0x20, 0x8fe0}, {&(0x7f0000010ea0)="00000000000000000000000000000000000000000000000000000000fbaa0000", 0x20, 0x9060}, {&(0x7f0000010ec0)="000000000000000000000000000000000000000000000000000000004ada0000c0410000003000009f09c75f9f09c75f9f09c75f00000000000002001800000000000800000000000af301000400000000000000000000000c0000000500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070fa0000", 0xa0, 0x90e0}], 0x0, &(0x7f0000010f60))
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='mnt', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000140)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x1c0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='mnt/encrypted_dir\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000540)=@v2={0x2, @aes256, 0x0, '\x00', @a})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000580)='mnt/encrypted_dir/file\x00', 0x42, 0x180)
write(r2, &(0x7f00000005c0)='foo', 0x3)

13:36:13 executing program 7:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
fcntl$addseals(r0, 0x409, 0x9b997b7eab353521)

[   78.934591] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   78.937403] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   78.939080] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   78.942347] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   78.945241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   78.946940] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   78.951966] Bluetooth: hci0: HCI_REQ-0x0c1a
[   79.018754] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.020510] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.022236] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   79.024364] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   79.026956] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.028014] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.029246] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   79.030424] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.031677] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.033069] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.034402] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   79.038033] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   79.039178] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.059761] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.062399] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   79.065710] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   79.067092] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   79.070010] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.071141] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   79.072584] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   79.074257] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   79.075733] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   79.077321] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.078745] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   79.080596] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.082093] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   79.084672] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   79.086011] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   79.087340] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   79.092082] Bluetooth: hci1: HCI_REQ-0x0c1a
[   79.093716] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.098816] Bluetooth: hci4: HCI_REQ-0x0c1a
[   79.101170] Bluetooth: hci3: HCI_REQ-0x0c1a
[   79.102201] Bluetooth: hci6: HCI_REQ-0x0c1a
[   79.128001] Bluetooth: hci2: HCI_REQ-0x0c1a
[   79.140389] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   79.147934] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   79.149933] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   79.151670] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   79.157558] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   79.159006] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   79.163377] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   79.167101] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   79.180209] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   79.181679] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   79.216966] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   79.231152] Bluetooth: hci5: HCI_REQ-0x0c1a
[   79.231394] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   79.242169] Bluetooth: hci7: HCI_REQ-0x0c1a
[   81.032146] Bluetooth: hci0: command 0x0409 tx timeout
[   81.150927] Bluetooth: hci1: command 0x0409 tx timeout
[   81.157372] Bluetooth: hci6: command 0x0409 tx timeout
[   81.157914] Bluetooth: hci3: command 0x0409 tx timeout
[   81.158365] Bluetooth: hci4: command 0x0409 tx timeout
[   81.216015] Bluetooth: hci2: command 0x0409 tx timeout
[   81.279929] Bluetooth: hci7: command 0x0409 tx timeout
[   81.280383] Bluetooth: hci5: command 0x0409 tx timeout
[   83.071977] Bluetooth: hci0: command 0x041b tx timeout
[   83.199019] Bluetooth: hci4: command 0x041b tx timeout
[   83.200833] Bluetooth: hci3: command 0x041b tx timeout
[   83.201333] Bluetooth: hci6: command 0x041b tx timeout
[   83.201772] Bluetooth: hci1: command 0x041b tx timeout
[   83.262925] Bluetooth: hci2: command 0x041b tx timeout
[   83.326940] Bluetooth: hci5: command 0x041b tx timeout
[   83.327451] Bluetooth: hci7: command 0x041b tx timeout
[   85.119200] Bluetooth: hci0: command 0x040f tx timeout
[   85.247005] Bluetooth: hci1: command 0x040f tx timeout
[   85.247849] Bluetooth: hci6: command 0x040f tx timeout
[   85.250744] Bluetooth: hci3: command 0x040f tx timeout
[   85.251799] Bluetooth: hci4: command 0x040f tx timeout
[   85.310973] Bluetooth: hci2: command 0x040f tx timeout
[   85.375198] Bluetooth: hci7: command 0x040f tx timeout
[   85.376297] Bluetooth: hci5: command 0x040f tx timeout
[   87.166927] Bluetooth: hci0: command 0x0419 tx timeout
[   87.295000] Bluetooth: hci4: command 0x0419 tx timeout
[   87.295467] Bluetooth: hci3: command 0x0419 tx timeout
[   87.296845] Bluetooth: hci6: command 0x0419 tx timeout
[   87.297308] Bluetooth: hci1: command 0x0419 tx timeout
[   87.358977] Bluetooth: hci2: command 0x0419 tx timeout
[   87.422926] Bluetooth: hci5: command 0x0419 tx timeout
[   87.423507] Bluetooth: hci7: command 0x0419 tx timeout
13:37:09 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x5603, &(0x7f0000000040))

13:37:09 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x5603, &(0x7f0000000040))

13:37:09 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSOFTCAR(r0, 0x5603, &(0x7f0000000040))

13:37:09 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x30, 0xffffffffffffffff, 0x10000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x200000007fffffff)
syz_io_uring_setup(0x5d6f, &(0x7f0000000680)={0x0, 0xbcc0, 0x2, 0x2, 0x273, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740))
syz_io_uring_submit(0x0, r0, &(0x7f0000000380)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@nfc, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f0000000280)=""/84, 0x54}, {&(0x7f0000000040)=""/30, 0x1e}], 0x3, &(0x7f0000000400)=""/165, 0xa5}, 0x0, 0x40, 0x1, {0x1}}, 0xffff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000500000008dd170230d161483ebf620444cd8999f471744f6373d2fb2e90b88d8df29bfafd7103dbe966e3775075003e0814526cde0479617255cec907ffc603dbe4a1fff2f6ff34c7c7f8a621f21e952bb7a39f496b091cd2d145c836d95351b02914b648a262ac7643868aa73d41f2e8635d4adb5ef24f01bab428570471c510d83275b6c77de422c70e560553d6749c70e6dd26f2b295f96bb8d042dbf9696a43debb0447639902d8a76e2de265ef8195583d96abefe14890db505fae654a2438a0f53859bb674d69"], 0x125)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0)
write(r2, &(0x7f0000000200)='E', 0x4000)
socket$netlink(0x10, 0x3, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00')
write$rfkill(r3, &(0x7f0000000780)={0x2, 0x6, 0x3, 0x1}, 0x8)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @private, @initdev}, &(0x7f0000000180)=0xc)

[  134.011856] audit: type=1400 audit(1663162629.752:7): avc:  denied  { open } for  pid=3736 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  134.017127] audit: type=1400 audit(1663162629.753:8): avc:  denied  { kernel } for  pid=3736 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  134.036463] ------------[ cut here ]------------
[  134.036488] 
[  134.036492] ======================================================
[  134.036496] WARNING: possible circular locking dependency detected
[  134.036501] 6.0.0-rc5-next-20220914 #1 Not tainted
[  134.036507] ------------------------------------------------------
[  134.036511] syz-executor.1/3738 is trying to acquire lock:
[  134.036518] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  134.036557] 
[  134.036557] but task is already holding lock:
[  134.036559] ffff888008b53020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  134.036587] 
[  134.036587] which lock already depends on the new lock.
[  134.036587] 
[  134.036590] 
[  134.036590] the existing dependency chain (in reverse order) is:
[  134.036594] 
[  134.036594] -> #3 (&ctx->lock){....}-{2:2}:
[  134.036608]        _raw_spin_lock+0x2a/0x40
[  134.036625]        __perf_event_task_sched_out+0x53b/0x18d0
[  134.036637]        __schedule+0xedd/0x2470
[  134.036648]        schedule+0xda/0x1b0
[  134.036657]        futex_wait_queue+0xf5/0x1e0
[  134.036669]        futex_wait+0x28e/0x690
[  134.036679]        do_futex+0x2ff/0x380
[  134.036688]        __x64_sys_futex+0x1c6/0x4d0
[  134.036698]        do_syscall_64+0x3b/0x90
[  134.036712]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  134.036729] 
[  134.036729] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  134.036743]        _raw_spin_lock_nested+0x30/0x40
[  134.036757]        raw_spin_rq_lock_nested+0x1e/0x30
[  134.036770]        task_fork_fair+0x63/0x4d0
[  134.036786]        sched_cgroup_fork+0x3d0/0x540
[  134.036800]        copy_process+0x4183/0x6e20
[  134.036810]        kernel_clone+0xe7/0x890
[  134.036820]        user_mode_thread+0xad/0xf0
[  134.036830]        rest_init+0x24/0x250
[  134.036846]        arch_call_rest_init+0xf/0x14
[  134.036858]        start_kernel+0x4c1/0x4e6
[  134.036870]        secondary_startup_64_no_verify+0xe0/0xeb
[  134.036884] 
[  134.036884] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  134.036898]        _raw_spin_lock_irqsave+0x39/0x60
[  134.036912]        try_to_wake_up+0xab/0x1920
[  134.036925]        up+0x75/0xb0
[  134.036936]        __up_console_sem+0x6e/0x80
[  134.036952]        console_unlock+0x46a/0x590
[  134.036967]        vprintk_emit+0x1bd/0x560
[  134.036983]        vprintk+0x84/0xa0
[  134.036999]        _printk+0xba/0xf1
[  134.037016]        kauditd_hold_skb.cold+0x3f/0x4e
[  134.037030]        kauditd_send_queue+0x233/0x290
[  134.037044]        kauditd_thread+0x5da/0x9a0
[  134.037057]        kthread+0x2ed/0x3a0
[  134.037072]        ret_from_fork+0x22/0x30
[  134.037084] 
[  134.037084] -> #0 ((console_sem).lock){....}-{2:2}:
[  134.037097]        __lock_acquire+0x2a02/0x5e70
[  134.037113]        lock_acquire+0x1a2/0x530
[  134.037129]        _raw_spin_lock_irqsave+0x39/0x60
[  134.037143]        down_trylock+0xe/0x70
[  134.037156]        __down_trylock_console_sem+0x3b/0xd0
[  134.037171]        vprintk_emit+0x16b/0x560
[  134.037187]        vprintk+0x84/0xa0
[  134.037202]        _printk+0xba/0xf1
[  134.037218]        report_bug.cold+0x72/0xab
[  134.037230]        handle_bug+0x3c/0x70
[  134.037243]        exc_invalid_op+0x14/0x50
[  134.037255]        asm_exc_invalid_op+0x16/0x20
[  134.037271]        group_sched_out.part.0+0x2c7/0x460
[  134.037282]        ctx_sched_out+0x8f1/0xc10
[  134.037291]        __perf_event_task_sched_out+0x6d0/0x18d0
[  134.037303]        __schedule+0xedd/0x2470
[  134.037313]        schedule+0xda/0x1b0
[  134.037322]        futex_wait_queue+0xf5/0x1e0
[  134.037332]        futex_wait+0x28e/0x690
[  134.037342]        do_futex+0x2ff/0x380
[  134.037351]        __x64_sys_futex+0x1c6/0x4d0
[  134.037360]        do_syscall_64+0x3b/0x90
[  134.037373]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  134.037389] 
[  134.037389] other info that might help us debug this:
[  134.037389] 
[  134.037392] Chain exists of:
[  134.037392]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  134.037392] 
[  134.037407]  Possible unsafe locking scenario:
[  134.037407] 
[  134.037410]        CPU0                    CPU1
[  134.037412]        ----                    ----
[  134.037414]   lock(&ctx->lock);
[  134.037420]                                lock(&rq->__lock);
[  134.037426]                                lock(&ctx->lock);
[  134.037433]   lock((console_sem).lock);
[  134.037438] 
[  134.037438]  *** DEADLOCK ***
[  134.037438] 
[  134.037440] 2 locks held by syz-executor.1/3738:
[  134.037447]  #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  134.037473]  #1: ffff888008b53020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  134.037500] 
[  134.037500] stack backtrace:
[  134.037503] CPU: 0 PID: 3738 Comm: syz-executor.1 Not tainted 6.0.0-rc5-next-20220914 #1
[  134.037516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  134.037524] Call Trace:
[  134.037528]  <TASK>
[  134.037532]  dump_stack_lvl+0x8b/0xb3
[  134.037546]  check_noncircular+0x263/0x2e0
[  134.037563]  ? format_decode+0x26c/0xb50
[  134.037577]  ? print_circular_bug+0x450/0x450
[  134.037594]  ? enable_ptr_key_workfn+0x20/0x20
[  134.037609]  ? format_decode+0x26c/0xb50
[  134.037624]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  134.037660]  __lock_acquire+0x2a02/0x5e70
[  134.037681]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  134.037703]  lock_acquire+0x1a2/0x530
[  134.037720]  ? down_trylock+0xe/0x70
[  134.037734]  ? rcu_read_unlock+0x40/0x40
[  134.037754]  ? vprintk+0x84/0xa0
[  134.037772]  _raw_spin_lock_irqsave+0x39/0x60
[  134.037787]  ? down_trylock+0xe/0x70
[  134.037800]  down_trylock+0xe/0x70
[  134.037813]  ? vprintk+0x84/0xa0
[  134.037830]  __down_trylock_console_sem+0x3b/0xd0
[  134.037847]  vprintk_emit+0x16b/0x560
[  134.037865]  vprintk+0x84/0xa0
[  134.037882]  _printk+0xba/0xf1
[  134.037899]  ? record_print_text.cold+0x16/0x16
[  134.037923]  ? report_bug.cold+0x66/0xab
[  134.037939]  ? group_sched_out.part.0+0x2c7/0x460
[  134.037951]  report_bug.cold+0x72/0xab
[  134.037966]  handle_bug+0x3c/0x70
[  134.037979]  exc_invalid_op+0x14/0x50
[  134.037993]  asm_exc_invalid_op+0x16/0x20
[  134.038010] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  134.038023] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  134.038035] RSP: 0018:ffff8880401778f8 EFLAGS: 00010006
[  134.038044] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  134.038051] RDX: ffff8880201a3580 RSI: ffffffff81566027 RDI: 0000000000000005
[  134.038059] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  134.038067] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff888008b53000
[  134.038074] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  134.038086]  ? group_sched_out.part.0+0x2c7/0x460
[  134.038098]  ? group_sched_out.part.0+0x2c7/0x460
[  134.038111]  ctx_sched_out+0x8f1/0xc10
[  134.038124]  __perf_event_task_sched_out+0x6d0/0x18d0
[  134.038139]  ? lock_is_held_type+0xd7/0x130
[  134.038157]  ? __perf_cgroup_move+0x160/0x160
[  134.038169]  ? set_next_entity+0x304/0x550
[  134.038188]  ? lock_is_held_type+0xd7/0x130
[  134.038206]  __schedule+0xedd/0x2470
[  134.038220]  ? io_schedule_timeout+0x150/0x150
[  134.038231]  ? futex_wait_setup+0x166/0x230
[  134.038245]  schedule+0xda/0x1b0
[  134.038256]  futex_wait_queue+0xf5/0x1e0
[  134.038268]  futex_wait+0x28e/0x690
[  134.038280]  ? futex_wait_setup+0x230/0x230
[  134.038293]  ? wake_up_q+0x8b/0xf0
[  134.038306]  ? do_raw_spin_unlock+0x4f/0x220
[  134.038325]  ? futex_wake+0x158/0x490
[  134.038341]  ? fd_install+0x1f9/0x640
[  134.038358]  do_futex+0x2ff/0x380
[  134.038368]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  134.038384]  __x64_sys_futex+0x1c6/0x4d0
[  134.038397]  ? __x64_sys_futex_time32+0x480/0x480
[  134.038409]  ? syscall_enter_from_user_mode+0x1d/0x50
[  134.038427]  ? syscall_enter_from_user_mode+0x1d/0x50
[  134.038447]  do_syscall_64+0x3b/0x90
[  134.038460]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  134.038478] RIP: 0033:0x7f293e6f3b19
[  134.038486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  134.038497] RSP: 002b:00007f293bc69218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  134.038508] RAX: ffffffffffffffda RBX: 00007f293e806f68 RCX: 00007f293e6f3b19
[  134.038516] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f293e806f68
[  134.038523] RBP: 00007f293e806f60 R08: 0000000000000000 R09: 0000000000000000
[  134.038530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f293e806f6c
[  134.038537] R13: 00007fff27e78d0f R14: 00007f293bc69300 R15: 0000000000022000
[  134.038550]  </TASK>
[  134.098629] WARNING: CPU: 0 PID: 3738 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  134.099320] Modules linked in:
[  134.099563] CPU: 0 PID: 3738 Comm: syz-executor.1 Not tainted 6.0.0-rc5-next-20220914 #1
[  134.100168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  134.101000] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  134.101408] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  134.102768] RSP: 0018:ffff8880401778f8 EFLAGS: 00010006
[  134.103172] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  134.103704] RDX: ffff8880201a3580 RSI: ffffffff81566027 RDI: 0000000000000005
[  134.104245] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  134.104776] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff888008b53000
[  134.105302] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  134.105840] FS:  00007f293bc69700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  134.106450] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  134.106886] CR2: 00007fa8e52b0008 CR3: 0000000017e76000 CR4: 0000000000350ef0
[  134.107427] Call Trace:
[  134.107622]  <TASK>
[  134.107799]  ctx_sched_out+0x8f1/0xc10
[  134.108101]  __perf_event_task_sched_out+0x6d0/0x18d0
[  134.108490]  ? lock_is_held_type+0xd7/0x130
[  134.108823]  ? __perf_cgroup_move+0x160/0x160
[  134.109164]  ? set_next_entity+0x304/0x550
[  134.109496]  ? lock_is_held_type+0xd7/0x130
[  134.109837]  __schedule+0xedd/0x2470
[  134.110128]  ? io_schedule_timeout+0x150/0x150
[  134.110479]  ? futex_wait_setup+0x166/0x230
[  134.110811]  schedule+0xda/0x1b0
[  134.111074]  futex_wait_queue+0xf5/0x1e0
[  134.111387]  futex_wait+0x28e/0x690
[  134.111665]  ? futex_wait_setup+0x230/0x230
[  134.111991]  ? wake_up_q+0x8b/0xf0
[  134.112269]  ? do_raw_spin_unlock+0x4f/0x220
[  134.112617]  ? futex_wake+0x158/0x490
[  134.112909]  ? fd_install+0x1f9/0x640
[  134.113205]  do_futex+0x2ff/0x380
[  134.113471]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  134.113911]  __x64_sys_futex+0x1c6/0x4d0
[  134.114223]  ? __x64_sys_futex_time32+0x480/0x480
[  134.114592]  ? syscall_enter_from_user_mode+0x1d/0x50
[  134.114987]  ? syscall_enter_from_user_mode+0x1d/0x50
[  134.115385]  do_syscall_64+0x3b/0x90
[  134.115676]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  134.116069] RIP: 0033:0x7f293e6f3b19
[  134.116353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  134.117722] RSP: 002b:00007f293bc69218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  134.118293] RAX: ffffffffffffffda RBX: 00007f293e806f68 RCX: 00007f293e6f3b19
[  134.118824] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f293e806f68
[  134.119357] RBP: 00007f293e806f60 R08: 0000000000000000 R09: 0000000000000000
[  134.119906] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f293e806f6c
[  134.120441] R13: 00007fff27e78d0f R14: 00007f293bc69300 R15: 0000000000022000
[  134.120981]  </TASK>
[  134.121162] irq event stamp: 1050
[  134.121422] hardirqs last  enabled at (1049): [<ffffffff84242a1d>] syscall_enter_from_user_mode+0x1d/0x50
[  134.122147] hardirqs last disabled at (1050): [<ffffffff8424bcf5>] __schedule+0x1225/0x2470
[  134.122763] softirqs last  enabled at (1036): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  134.123424] softirqs last disabled at (863): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  134.124077] ---[ end trace 0000000000000000 ]---
[  134.508889] hrtimer: interrupt took 18234 ns
13:37:10 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x30, 0xffffffffffffffff, 0x10000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x200000007fffffff)
syz_io_uring_setup(0x5d6f, &(0x7f0000000680)={0x0, 0xbcc0, 0x2, 0x2, 0x273, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740))
syz_io_uring_submit(0x0, r0, &(0x7f0000000380)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@nfc, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f0000000280)=""/84, 0x54}, {&(0x7f0000000040)=""/30, 0x1e}], 0x3, &(0x7f0000000400)=""/165, 0xa5}, 0x0, 0x40, 0x1, {0x1}}, 0xffff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000500000008dd170230d161483ebf620444cd8999f471744f6373d2fb2e90b88d8df29bfafd7103dbe966e3775075003e0814526cde0479617255cec907ffc603dbe4a1fff2f6ff34c7c7f8a621f21e952bb7a39f496b091cd2d145c836d95351b02914b648a262ac7643868aa73d41f2e8635d4adb5ef24f01bab428570471c510d83275b6c77de422c70e560553d6749c70e6dd26f2b295f96bb8d042dbf9696a43debb0447639902d8a76e2de265ef8195583d96abefe14890db505fae654a2438a0f53859bb674d69"], 0x125)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0)
write(r2, &(0x7f0000000200)='E', 0x4000)
socket$netlink(0x10, 0x3, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00')
write$rfkill(r3, &(0x7f0000000780)={0x2, 0x6, 0x3, 0x1}, 0x8)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @private, @initdev}, &(0x7f0000000180)=0xc)

13:37:10 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x30, 0xffffffffffffffff, 0x10000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x200000007fffffff)
syz_io_uring_setup(0x5d6f, &(0x7f0000000680)={0x0, 0xbcc0, 0x2, 0x2, 0x273, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740))
syz_io_uring_submit(0x0, r0, &(0x7f0000000380)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@nfc, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f0000000280)=""/84, 0x54}, {&(0x7f0000000040)=""/30, 0x1e}], 0x3, &(0x7f0000000400)=""/165, 0xa5}, 0x0, 0x40, 0x1, {0x1}}, 0xffff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000500000008dd170230d161483ebf620444cd8999f471744f6373d2fb2e90b88d8df29bfafd7103dbe966e3775075003e0814526cde0479617255cec907ffc603dbe4a1fff2f6ff34c7c7f8a621f21e952bb7a39f496b091cd2d145c836d95351b02914b648a262ac7643868aa73d41f2e8635d4adb5ef24f01bab428570471c510d83275b6c77de422c70e560553d6749c70e6dd26f2b295f96bb8d042dbf9696a43debb0447639902d8a76e2de265ef8195583d96abefe14890db505fae654a2438a0f53859bb674d69"], 0x125)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0)
write(r2, &(0x7f0000000200)='E', 0x4000)
socket$netlink(0x10, 0x3, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00')
write$rfkill(r3, &(0x7f0000000780)={0x2, 0x6, 0x3, 0x1}, 0x8)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @private, @initdev}, &(0x7f0000000180)=0xc)

13:37:11 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x30, 0xffffffffffffffff, 0x10000000)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x200000007fffffff)
syz_io_uring_setup(0x5d6f, &(0x7f0000000680)={0x0, 0xbcc0, 0x2, 0x2, 0x273, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000700), &(0x7f0000000740))
syz_io_uring_submit(0x0, r0, &(0x7f0000000380)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@nfc, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f0000000280)=""/84, 0x54}, {&(0x7f0000000040)=""/30, 0x1e}], 0x3, &(0x7f0000000400)=""/165, 0xa5}, 0x0, 0x40, 0x1, {0x1}}, 0xffff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="02000500000008dd170230d161483ebf620444cd8999f471744f6373d2fb2e90b88d8df29bfafd7103dbe966e3775075003e0814526cde0479617255cec907ffc603dbe4a1fff2f6ff34c7c7f8a621f21e952bb7a39f496b091cd2d145c836d95351b02914b648a262ac7643868aa73d41f2e8635d4adb5ef24f01bab428570471c510d83275b6c77de422c70e560553d6749c70e6dd26f2b295f96bb8d042dbf9696a43debb0447639902d8a76e2de265ef8195583d96abefe14890db505fae654a2438a0f53859bb674d69"], 0x125)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0)
write(r2, &(0x7f0000000200)='E', 0x4000)
socket$netlink(0x10, 0x3, 0xb)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00')
write$rfkill(r3, &(0x7f0000000780)={0x2, 0x6, 0x3, 0x1}, 0x8)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @private, @initdev}, &(0x7f0000000180)=0xc)

13:37:11 executing program 7:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
fcntl$addseals(r0, 0x409, 0x9b997b7eab353521)

[  136.489834] loop6: detected capacity change from 0 to 144
[  136.528358] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  136.531713] ext4 filesystem being mounted at /syzkaller-testdir669243404/syzkaller.Pq8xZl/0/mnt supports timestamps until 2038 (0x7fffffff)
[  136.605594] EXT4-fs (loop6): unmounting filesystem.
[  142.078983] Bluetooth: hci7: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
13:37:10  Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff822b246c RDI=ffffffff87641b60 RBP=ffffffff87641b20 RSP=ffff888040177350
R8 =0000000000000001 R9 =ffff8880401772db R10=ffffed100802ee5b R11=0000000000000001
R12=0000000000000067 R13=ffffffff87641b20 R14=ffffffff87641b70 R15=ffffffff87641dc8
RIP=ffffffff822b24c1 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f293bc69700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa8e52b0008 CR3=0000000017e76000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f293e7da7c0 00007f293e7da7c8
YMM02=0000000000000000 0000000000000000 00007f293e7da7e0 00007f293e7da7c0
YMM03=0000000000000000 0000000000000000 00007f293e7da7c8 00007f293e7da7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3eda0 RCX=0000000000000000 RDX=ffff88801a631ac0
RSI=ffffffff813bccdb RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88800ec6f960
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffed100d9c7db5 R13=ffff88806ce3eda8 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff813bccdd RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555d0c400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f293e7fc6dc CR3=0000000017e76000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f293e7da7c0 00007f293e7da7c8
YMM02=0000000000000000 0000000000000000 00007f293e7da7e0 00007f293e7da7c0
YMM03=0000000000000000 0000000000000000 00007f293e7da7c8 00007f293e7da7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000