Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:7969' (ECDSA) to the list of known hosts. 2022/09/12 14:40:50 fuzzer started 2022/09/12 14:40:50 dialing manager at localhost:38027 syzkaller login: [ 37.109490] cgroup: Unknown subsys name 'net' [ 37.176328] cgroup: Unknown subsys name 'rlimit' 2022/09/12 14:41:06 syscalls: 2215 2022/09/12 14:41:06 code coverage: enabled 2022/09/12 14:41:06 comparison tracing: enabled 2022/09/12 14:41:06 extra coverage: enabled 2022/09/12 14:41:06 setuid sandbox: enabled 2022/09/12 14:41:06 namespace sandbox: enabled 2022/09/12 14:41:06 Android sandbox: enabled 2022/09/12 14:41:06 fault injection: enabled 2022/09/12 14:41:06 leak checking: enabled 2022/09/12 14:41:06 net packet injection: enabled 2022/09/12 14:41:06 net device setup: enabled 2022/09/12 14:41:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 14:41:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 14:41:06 USB emulation: enabled 2022/09/12 14:41:06 hci packet injection: enabled 2022/09/12 14:41:06 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 14:41:06 802.15.4 emulation: enabled 2022/09/12 14:41:06 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 14:41:06 fetching corpus: 50, signal 29969/33373 (executing program) 2022/09/12 14:41:06 fetching corpus: 100, signal 45353/49993 (executing program) 2022/09/12 14:41:06 fetching corpus: 150, signal 57866/63536 (executing program) 2022/09/12 14:41:06 fetching corpus: 200, signal 64667/71433 (executing program) 2022/09/12 14:41:06 fetching corpus: 250, signal 70819/78498 (executing program) 2022/09/12 14:41:07 fetching corpus: 300, signal 77908/86321 (executing program) 2022/09/12 14:41:07 fetching corpus: 350, signal 82553/91823 (executing program) 2022/09/12 14:41:07 fetching corpus: 400, signal 86920/96933 (executing program) 2022/09/12 14:41:07 fetching corpus: 450, signal 90406/101231 (executing program) 2022/09/12 14:41:07 fetching corpus: 500, signal 95039/106421 (executing program) 2022/09/12 14:41:07 fetching corpus: 550, signal 98106/110200 (executing program) 2022/09/12 14:41:07 fetching corpus: 600, signal 100733/113516 (executing program) 2022/09/12 14:41:08 fetching corpus: 650, signal 102765/116240 (executing program) 2022/09/12 14:41:08 fetching corpus: 700, signal 105841/119806 (executing program) 2022/09/12 14:41:08 fetching corpus: 750, signal 108825/123288 (executing program) 2022/09/12 14:41:08 fetching corpus: 800, signal 111625/126542 (executing program) 2022/09/12 14:41:08 fetching corpus: 850, signal 114370/129630 (executing program) 2022/09/12 14:41:08 fetching corpus: 900, signal 117135/132775 (executing program) 2022/09/12 14:41:08 fetching corpus: 950, signal 119108/135137 (executing program) 2022/09/12 14:41:09 fetching corpus: 1000, signal 120962/137438 (executing program) 2022/09/12 14:41:09 fetching corpus: 1050, signal 124562/140989 (executing program) 2022/09/12 14:41:09 fetching corpus: 1100, signal 126704/143453 (executing program) 2022/09/12 14:41:09 fetching corpus: 1150, signal 129245/146099 (executing program) 2022/09/12 14:41:09 fetching corpus: 1200, signal 130915/148077 (executing program) 2022/09/12 14:41:09 fetching corpus: 1250, signal 132836/150108 (executing program) 2022/09/12 14:41:10 fetching corpus: 1300, signal 134824/152214 (executing program) 2022/09/12 14:41:10 fetching corpus: 1350, signal 136942/154343 (executing program) 2022/09/12 14:41:10 fetching corpus: 1400, signal 138941/156395 (executing program) 2022/09/12 14:41:10 fetching corpus: 1450, signal 140502/158042 (executing program) 2022/09/12 14:41:10 fetching corpus: 1500, signal 142370/159944 (executing program) 2022/09/12 14:41:10 fetching corpus: 1550, signal 143988/161614 (executing program) 2022/09/12 14:41:11 fetching corpus: 1600, signal 145740/163334 (executing program) 2022/09/12 14:41:11 fetching corpus: 1650, signal 147782/165226 (executing program) 2022/09/12 14:41:11 fetching corpus: 1700, signal 149479/166830 (executing program) 2022/09/12 14:41:11 fetching corpus: 1750, signal 151027/168321 (executing program) 2022/09/12 14:41:11 fetching corpus: 1800, signal 152743/169920 (executing program) 2022/09/12 14:41:11 fetching corpus: 1850, signal 154125/171259 (executing program) 2022/09/12 14:41:12 fetching corpus: 1900, signal 155713/172731 (executing program) 2022/09/12 14:41:12 fetching corpus: 1950, signal 156600/173717 (executing program) 2022/09/12 14:41:12 fetching corpus: 2000, signal 157770/174899 (executing program) 2022/09/12 14:41:12 fetching corpus: 2050, signal 159431/176330 (executing program) 2022/09/12 14:41:12 fetching corpus: 2100, signal 160338/177253 (executing program) 2022/09/12 14:41:12 fetching corpus: 2150, signal 161742/178496 (executing program) 2022/09/12 14:41:12 fetching corpus: 2200, signal 162493/179275 (executing program) 2022/09/12 14:41:13 fetching corpus: 2250, signal 163981/180477 (executing program) 2022/09/12 14:41:13 fetching corpus: 2300, signal 164853/181312 (executing program) 2022/09/12 14:41:13 fetching corpus: 2350, signal 166167/182317 (executing program) 2022/09/12 14:41:13 fetching corpus: 2400, signal 167043/183072 (executing program) 2022/09/12 14:41:13 fetching corpus: 2450, signal 168417/184053 (executing program) 2022/09/12 14:41:13 fetching corpus: 2500, signal 169488/184893 (executing program) 2022/09/12 14:41:14 fetching corpus: 2550, signal 170576/185686 (executing program) 2022/09/12 14:41:14 fetching corpus: 2600, signal 171871/186511 (executing program) 2022/09/12 14:41:14 fetching corpus: 2650, signal 172679/187145 (executing program) 2022/09/12 14:41:14 fetching corpus: 2700, signal 173341/187709 (executing program) 2022/09/12 14:41:14 fetching corpus: 2750, signal 174683/188553 (executing program) 2022/09/12 14:41:14 fetching corpus: 2800, signal 175813/189261 (executing program) 2022/09/12 14:41:14 fetching corpus: 2850, signal 176554/189865 (executing program) 2022/09/12 14:41:15 fetching corpus: 2900, signal 177513/190443 (executing program) 2022/09/12 14:41:15 fetching corpus: 2950, signal 178284/190974 (executing program) 2022/09/12 14:41:15 fetching corpus: 3000, signal 179246/191551 (executing program) 2022/09/12 14:41:15 fetching corpus: 3050, signal 180042/192069 (executing program) 2022/09/12 14:41:15 fetching corpus: 3100, signal 180857/192553 (executing program) 2022/09/12 14:41:15 fetching corpus: 3150, signal 181734/192984 (executing program) 2022/09/12 14:41:15 fetching corpus: 3200, signal 182764/193516 (executing program) 2022/09/12 14:41:16 fetching corpus: 3250, signal 183470/194033 (executing program) 2022/09/12 14:41:16 fetching corpus: 3300, signal 184139/194402 (executing program) 2022/09/12 14:41:16 fetching corpus: 3350, signal 184745/194751 (executing program) 2022/09/12 14:41:16 fetching corpus: 3400, signal 185548/195166 (executing program) 2022/09/12 14:41:16 fetching corpus: 3450, signal 186862/195745 (executing program) 2022/09/12 14:41:16 fetching corpus: 3500, signal 187789/196128 (executing program) 2022/09/12 14:41:17 fetching corpus: 3550, signal 188881/196591 (executing program) 2022/09/12 14:41:17 fetching corpus: 3600, signal 189887/196941 (executing program) 2022/09/12 14:41:17 fetching corpus: 3650, signal 190608/197201 (executing program) 2022/09/12 14:41:17 fetching corpus: 3700, signal 191395/197464 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/197617 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/197675 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/197767 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/197856 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/197937 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198026 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198125 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198215 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198284 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198369 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198440 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198525 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198603 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198693 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198769 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198864 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/198946 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199019 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199097 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199186 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199268 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199322 (executing program) 2022/09/12 14:41:17 fetching corpus: 3726, signal 191619/199322 (executing program) 2022/09/12 14:41:20 starting 8 fuzzer processes 14:41:20 executing program 0: r0 = socket$packet(0x11, 0x3, 0x300) recvmsg(r0, &(0x7f0000000900)={&(0x7f0000000480)=@nfc, 0x80, &(0x7f0000000880)=[{0x0}, {0x0}], 0x2}, 0x120) 14:41:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xf, 0x11, r0, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0}) 14:41:20 executing program 2: keyctl$set_timeout(0xf, 0x0, 0x0) 14:41:20 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:41:20 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0) [ 65.769323] audit: type=1400 audit(1662993680.549:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:41:20 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/shm\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) 14:41:20 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$inet6_opts(r1, 0x29, 0x4, 0x0, 0x88) 14:41:20 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_mr_vif\x00') pread64(r0, &(0x7f0000009780)=""/112, 0x70, 0x0) [ 67.113433] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.115336] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.117060] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.118463] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.138504] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.139861] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.143862] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.145030] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.153196] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.154309] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.155380] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.156669] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.157986] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.159677] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 67.161291] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.165101] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.169489] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.170949] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 67.172120] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.173373] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.175376] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.176604] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 67.177870] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.179147] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.180190] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.181413] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.182979] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.184038] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.190657] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 67.191648] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 67.192064] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 67.192603] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 67.194853] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.197211] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.198349] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.198478] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.206222] Bluetooth: hci0: HCI_REQ-0x0c1a [ 67.209637] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.210684] Bluetooth: hci3: HCI_REQ-0x0c1a [ 67.212857] Bluetooth: hci2: HCI_REQ-0x0c1a [ 67.215764] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.217049] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 67.222324] Bluetooth: hci1: HCI_REQ-0x0c1a [ 67.226482] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 67.227670] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 67.233147] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 67.234258] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.235389] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 67.236511] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.247621] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 67.255218] Bluetooth: hci5: HCI_REQ-0x0c1a [ 67.255797] Bluetooth: hci4: HCI_REQ-0x0c1a [ 67.256923] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 67.260813] Bluetooth: hci7: HCI_REQ-0x0c1a [ 67.263849] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.274512] Bluetooth: hci6: HCI_REQ-0x0c1a [ 69.232172] Bluetooth: hci1: command 0x0409 tx timeout [ 69.232809] Bluetooth: hci2: command 0x0409 tx timeout [ 69.295843] Bluetooth: hci0: command 0x0409 tx timeout [ 69.297202] Bluetooth: hci6: command 0x0409 tx timeout [ 69.298286] Bluetooth: hci5: command 0x0409 tx timeout [ 69.298777] Bluetooth: hci4: command 0x0409 tx timeout [ 69.299222] Bluetooth: hci7: command 0x0409 tx timeout [ 69.299652] Bluetooth: hci3: command 0x0409 tx timeout [ 71.280129] Bluetooth: hci2: command 0x041b tx timeout [ 71.281252] Bluetooth: hci1: command 0x041b tx timeout [ 71.343887] Bluetooth: hci3: command 0x041b tx timeout [ 71.345556] Bluetooth: hci7: command 0x041b tx timeout [ 71.346430] Bluetooth: hci4: command 0x041b tx timeout [ 71.347814] Bluetooth: hci5: command 0x041b tx timeout [ 71.348552] Bluetooth: hci6: command 0x041b tx timeout [ 71.350061] Bluetooth: hci0: command 0x041b tx timeout [ 73.328887] Bluetooth: hci1: command 0x040f tx timeout [ 73.329409] Bluetooth: hci2: command 0x040f tx timeout [ 73.392865] Bluetooth: hci0: command 0x040f tx timeout [ 73.393504] Bluetooth: hci6: command 0x040f tx timeout [ 73.394646] Bluetooth: hci5: command 0x040f tx timeout [ 73.395298] Bluetooth: hci4: command 0x040f tx timeout [ 73.395948] Bluetooth: hci7: command 0x040f tx timeout [ 73.396397] Bluetooth: hci3: command 0x040f tx timeout [ 75.376876] Bluetooth: hci2: command 0x0419 tx timeout [ 75.377376] Bluetooth: hci1: command 0x0419 tx timeout [ 75.440790] Bluetooth: hci3: command 0x0419 tx timeout [ 75.441274] Bluetooth: hci7: command 0x0419 tx timeout [ 75.441686] Bluetooth: hci4: command 0x0419 tx timeout [ 75.442477] Bluetooth: hci5: command 0x0419 tx timeout [ 75.444776] Bluetooth: hci6: command 0x0419 tx timeout [ 75.445204] Bluetooth: hci0: command 0x0419 tx timeout 14:42:14 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$inet6_opts(r1, 0x29, 0x4, 0x0, 0x88) 14:42:14 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$inet6_opts(r1, 0x29, 0x4, 0x0, 0x88) 14:42:14 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$inet6_opts(r1, 0x29, 0x4, 0x0, 0x88) 14:42:14 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 120.051144] audit: type=1400 audit(1662993734.830:7): avc: denied { open } for pid=3662 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.055672] audit: type=1400 audit(1662993734.831:8): avc: denied { kernel } for pid=3662 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.083041] ------------[ cut here ]------------ [ 120.083076] [ 120.083081] ====================================================== [ 120.083087] WARNING: possible circular locking dependency detected [ 120.083094] 6.0.0-rc5-next-20220912 #1 Not tainted [ 120.083107] ------------------------------------------------------ [ 120.083113] syz-executor.6/3663 is trying to acquire lock: [ 120.083125] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 120.083189] [ 120.083189] but task is already holding lock: [ 120.083195] ffff88801df8fc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.083247] [ 120.083247] which lock already depends on the new lock. [ 120.083247] [ 120.083252] [ 120.083252] the existing dependency chain (in reverse order) is: [ 120.083258] [ 120.083258] -> #3 (&ctx->lock){....}-{2:2}: [ 120.083285] _raw_spin_lock+0x2a/0x40 [ 120.083316] __perf_event_task_sched_out+0x53b/0x18d0 [ 120.083341] __schedule+0xedd/0x2470 [ 120.083359] schedule+0xda/0x1b0 [ 120.083377] futex_wait_queue+0xf5/0x1e0 [ 120.083398] futex_wait+0x28e/0x690 [ 120.083418] do_futex+0x2ff/0x380 [ 120.083436] __x64_sys_futex+0x1c6/0x4d0 [ 120.083455] do_syscall_64+0x3b/0x90 [ 120.083481] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.083514] [ 120.083514] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 120.083541] _raw_spin_lock_nested+0x30/0x40 [ 120.083570] raw_spin_rq_lock_nested+0x1e/0x30 [ 120.083594] task_fork_fair+0x63/0x4d0 [ 120.083628] sched_cgroup_fork+0x3d0/0x540 [ 120.083656] copy_process+0x3f9e/0x6df0 [ 120.083675] kernel_clone+0xe7/0x890 [ 120.083698] user_mode_thread+0xad/0xf0 [ 120.083719] rest_init+0x24/0x250 [ 120.083751] arch_call_rest_init+0xf/0x14 [ 120.083787] start_kernel+0x4c1/0x4e6 [ 120.083820] secondary_startup_64_no_verify+0xe0/0xeb [ 120.083847] [ 120.083847] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 120.083874] _raw_spin_lock_irqsave+0x39/0x60 [ 120.083903] try_to_wake_up+0xab/0x1920 [ 120.083930] up+0x75/0xb0 [ 120.083953] __up_console_sem+0x6e/0x80 [ 120.083984] console_unlock+0x46a/0x590 [ 120.084016] do_con_write+0xc05/0x1d50 [ 120.084037] con_write+0x21/0x40 [ 120.084055] n_tty_write+0x4d4/0xfe0 [ 120.084080] file_tty_write.constprop.0+0x49c/0x8f0 [ 120.084103] vfs_write+0x9c3/0xd90 [ 120.084138] ksys_write+0x127/0x250 [ 120.084172] do_syscall_64+0x3b/0x90 [ 120.084197] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.084231] [ 120.084231] -> #0 ((console_sem).lock){....}-{2:2}: [ 120.084258] __lock_acquire+0x2a02/0x5e70 [ 120.084291] lock_acquire+0x1a2/0x530 [ 120.084323] _raw_spin_lock_irqsave+0x39/0x60 [ 120.084352] down_trylock+0xe/0x70 [ 120.084377] __down_trylock_console_sem+0x3b/0xd0 [ 120.084410] vprintk_emit+0x16b/0x560 [ 120.084443] vprintk+0x84/0xa0 [ 120.084476] _printk+0xba/0xf1 [ 120.084509] report_bug.cold+0x72/0xab [ 120.084533] handle_bug+0x3c/0x70 [ 120.084558] exc_invalid_op+0x14/0x50 [ 120.084584] asm_exc_invalid_op+0x16/0x20 [ 120.084616] group_sched_out.part.0+0x2c7/0x460 [ 120.084637] ctx_sched_out+0x8f1/0xc10 [ 120.084656] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.084680] __schedule+0xedd/0x2470 [ 120.084698] schedule+0xda/0x1b0 [ 120.084716] futex_wait_queue+0xf5/0x1e0 [ 120.084737] futex_wait+0x28e/0x690 [ 120.084756] do_futex+0x2ff/0x380 [ 120.084774] __x64_sys_futex+0x1c6/0x4d0 [ 120.084793] do_syscall_64+0x3b/0x90 [ 120.084818] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.084852] [ 120.084852] other info that might help us debug this: [ 120.084852] [ 120.084857] Chain exists of: [ 120.084857] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 120.084857] [ 120.084886] Possible unsafe locking scenario: [ 120.084886] [ 120.084891] CPU0 CPU1 [ 120.084895] ---- ---- [ 120.084899] lock(&ctx->lock); [ 120.084910] lock(&rq->__lock); [ 120.084923] lock(&ctx->lock); [ 120.084935] lock((console_sem).lock); [ 120.084947] [ 120.084947] *** DEADLOCK *** [ 120.084947] [ 120.084950] 2 locks held by syz-executor.6/3663: [ 120.084964] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 120.085014] #1: ffff88801df8fc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.085069] [ 120.085069] stack backtrace: [ 120.085074] CPU: 1 PID: 3663 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1 [ 120.085099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 120.085113] Call Trace: [ 120.085119] [ 120.085127] dump_stack_lvl+0x8b/0xb3 [ 120.085155] check_noncircular+0x263/0x2e0 [ 120.085197] ? format_decode+0x26c/0xb50 [ 120.085226] ? print_circular_bug+0x450/0x450 [ 120.085261] ? enable_ptr_key_workfn+0x20/0x20 [ 120.085289] ? perf_trace_lock+0x308/0x560 [ 120.085317] ? format_decode+0x26c/0xb50 [ 120.085349] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 120.085386] __lock_acquire+0x2a02/0x5e70 [ 120.085434] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 120.085483] lock_acquire+0x1a2/0x530 [ 120.085517] ? down_trylock+0xe/0x70 [ 120.085548] ? rcu_read_unlock+0x40/0x40 [ 120.085593] ? vprintk+0x84/0xa0 [ 120.085631] _raw_spin_lock_irqsave+0x39/0x60 [ 120.085661] ? down_trylock+0xe/0x70 [ 120.085689] down_trylock+0xe/0x70 [ 120.085716] ? vprintk+0x84/0xa0 [ 120.085751] __down_trylock_console_sem+0x3b/0xd0 [ 120.085787] vprintk_emit+0x16b/0x560 [ 120.085827] vprintk+0x84/0xa0 [ 120.085863] _printk+0xba/0xf1 [ 120.085899] ? record_print_text.cold+0x16/0x16 [ 120.085945] ? report_bug.cold+0x66/0xab [ 120.085974] ? group_sched_out.part.0+0x2c7/0x460 [ 120.085997] report_bug.cold+0x72/0xab [ 120.086028] handle_bug+0x3c/0x70 [ 120.086055] exc_invalid_op+0x14/0x50 [ 120.086083] asm_exc_invalid_op+0x16/0x20 [ 120.086118] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.086143] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.086166] RSP: 0018:ffff88803feaf8f8 EFLAGS: 00010006 [ 120.086184] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.086199] RDX: ffff88801751d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 120.086215] RBP: ffff888018610000 R08: 0000000000000005 R09: 0000000000000001 [ 120.086229] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88801df8fc00 [ 120.086244] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 120.086269] ? group_sched_out.part.0+0x2c7/0x460 [ 120.086296] ? group_sched_out.part.0+0x2c7/0x460 [ 120.086322] ctx_sched_out+0x8f1/0xc10 [ 120.086349] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.086381] ? lock_is_held_type+0xd7/0x130 [ 120.086419] ? __perf_cgroup_move+0x160/0x160 [ 120.086442] ? set_next_entity+0x304/0x550 [ 120.086485] ? lock_is_held_type+0xd7/0x130 [ 120.086522] __schedule+0xedd/0x2470 [ 120.086550] ? io_schedule_timeout+0x150/0x150 [ 120.086572] ? futex_wait_setup+0x166/0x230 [ 120.086603] schedule+0xda/0x1b0 [ 120.086625] futex_wait_queue+0xf5/0x1e0 [ 120.086649] futex_wait+0x28e/0x690 [ 120.086675] ? futex_wait_setup+0x230/0x230 [ 120.086703] ? wake_up_q+0x8b/0xf0 [ 120.086729] ? do_raw_spin_unlock+0x4f/0x220 [ 120.086770] ? futex_wake+0x158/0x490 [ 120.086805] ? fd_install+0x1f9/0x640 [ 120.086838] do_futex+0x2ff/0x380 [ 120.086861] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 120.086895] __x64_sys_futex+0x1c6/0x4d0 [ 120.086921] ? __x64_sys_futex_time32+0x480/0x480 [ 120.086947] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.086984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.087025] do_syscall_64+0x3b/0x90 [ 120.087053] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.087088] RIP: 0033:0x7f48006ecb19 [ 120.087105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.087127] RSP: 002b:00007f47fdc62218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.087148] RAX: ffffffffffffffda RBX: 00007f48007fff68 RCX: 00007f48006ecb19 [ 120.087164] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f48007fff68 [ 120.087179] RBP: 00007f48007fff60 R08: 0000000000000000 R09: 0000000000000000 [ 120.087193] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f48007fff6c [ 120.087208] R13: 00007ffd62c54caf R14: 00007f47fdc62300 R15: 0000000000022000 [ 120.087237] [ 120.207037] WARNING: CPU: 1 PID: 3663 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 120.208389] Modules linked in: [ 120.208873] CPU: 1 PID: 3663 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1 [ 120.210056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 120.211683] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.212472] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.215108] RSP: 0018:ffff88803feaf8f8 EFLAGS: 00010006 [ 120.215887] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.216925] RDX: ffff88801751d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 120.217968] RBP: ffff888018610000 R08: 0000000000000005 R09: 0000000000000001 [ 120.218997] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88801df8fc00 [ 120.220039] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 120.221075] FS: 00007f47fdc62700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 120.222269] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.223121] CR2: 00007fa1961f7269 CR3: 0000000008cd2000 CR4: 0000000000350ee0 [ 120.224166] Call Trace: [ 120.224548] [ 120.224894] ctx_sched_out+0x8f1/0xc10 [ 120.225488] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.226254] ? lock_is_held_type+0xd7/0x130 [ 120.226904] ? __perf_cgroup_move+0x160/0x160 [ 120.227576] ? set_next_entity+0x304/0x550 [ 120.228213] ? lock_is_held_type+0xd7/0x130 [ 120.228861] __schedule+0xedd/0x2470 [ 120.229435] ? io_schedule_timeout+0x150/0x150 [ 120.230115] ? futex_wait_setup+0x166/0x230 [ 120.230757] schedule+0xda/0x1b0 [ 120.231263] futex_wait_queue+0xf5/0x1e0 [ 120.231865] futex_wait+0x28e/0x690 [ 120.232412] ? futex_wait_setup+0x230/0x230 [ 120.233055] ? wake_up_q+0x8b/0xf0 [ 120.233608] ? do_raw_spin_unlock+0x4f/0x220 [ 120.234288] ? futex_wake+0x158/0x490 [ 120.234875] ? fd_install+0x1f9/0x640 [ 120.235451] do_futex+0x2ff/0x380 [ 120.235977] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 120.236831] __x64_sys_futex+0x1c6/0x4d0 [ 120.237462] ? __x64_sys_futex_time32+0x480/0x480 [ 120.238175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.238952] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.239729] do_syscall_64+0x3b/0x90 [ 120.240288] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.241052] RIP: 0033:0x7f48006ecb19 [ 120.241604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.244229] RSP: 002b:00007f47fdc62218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.245362] RAX: ffffffffffffffda RBX: 00007f48007fff68 RCX: 00007f48006ecb19 [ 120.246392] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f48007fff68 [ 120.247426] RBP: 00007f48007fff60 R08: 0000000000000000 R09: 0000000000000000 [ 120.248455] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f48007fff6c [ 120.249503] R13: 00007ffd62c54caf R14: 00007f47fdc62300 R15: 0000000000022000 [ 120.250541] [ 120.250888] irq event stamp: 946 [ 120.251385] hardirqs last enabled at (945): [] syscall_enter_from_user_mode+0x1d/0x50 [ 120.252771] hardirqs last disabled at (946): [] __schedule+0x1225/0x2470 [ 120.253992] softirqs last enabled at (934): [] __irq_exit_rcu+0x11b/0x180 [ 120.255220] softirqs last disabled at (929): [] __irq_exit_rcu+0x11b/0x180 [ 120.256454] ---[ end trace 0000000000000000 ]--- 14:42:15 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 14:42:16 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 14:42:16 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 14:42:16 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) [ 123.690719] hrtimer: interrupt took 18314 ns 14:42:20 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:20 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:20 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_mr_vif\x00') pread64(r0, &(0x7f0000009780)=""/112, 0x70, 0x0) 14:42:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xf, 0x11, r0, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0}) 14:42:20 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:20 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/shm\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) 14:42:20 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:20 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:20 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_mr_vif\x00') pread64(r0, &(0x7f0000009780)=""/112, 0x70, 0x0) 14:42:20 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:20 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_mr_vif\x00') pread64(r0, &(0x7f0000009780)=""/112, 0x70, 0x0) 14:42:20 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/shm\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) 14:42:20 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xf, 0x11, r0, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0}) 14:42:20 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:20 executing program 2: r0 = io_uring_setup(0x454c, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0xf, 0x0, 0x0) [ 125.699497] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 125.700254] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 125.700780] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 125.701278] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 125.701840] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 31 prio class 2 [ 125.704048] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.704476] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.705089] Buffer I/O error on dev sr0, logical block 0, async page read [ 125.707877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.708306] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.709268] Buffer I/O error on dev sr0, logical block 1, async page read [ 125.710013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.710418] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.711104] Buffer I/O error on dev sr0, logical block 2, async page read [ 125.713932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.714344] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.715012] Buffer I/O error on dev sr0, logical block 3, async page read [ 125.715697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.716122] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.716747] Buffer I/O error on dev sr0, logical block 4, async page read [ 125.717464] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.718319] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.718962] Buffer I/O error on dev sr0, logical block 5, async page read [ 125.719647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.720099] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.720750] Buffer I/O error on dev sr0, logical block 6, async page read [ 125.721459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 125.721968] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 125.722576] Buffer I/O error on dev sr0, logical block 7, async page read 14:42:21 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:21 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sysvipc/shm\x00', 0x0, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) 14:42:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:21 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) 14:42:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0xf, 0x11, r0, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0}) 14:42:21 executing program 2: r0 = io_uring_setup(0x454c, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0xf, 0x0, 0x0) 14:42:21 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:21 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) [ 126.352825] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 126.353498] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 126.353972] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 126.354399] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 126.354893] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 30 prio class 2 [ 126.358342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.358771] Buffer I/O error on dev sr0, logical block 0, async page read [ 126.359384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.359767] Buffer I/O error on dev sr0, logical block 1, async page read [ 126.360463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.361470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.362061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.362589] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.363201] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.363816] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.364620] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.365275] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.365867] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.366456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.367089] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.367649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.368221] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.368916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.369628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.370220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.371827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.372392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.373026] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.373613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.374210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.374986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.380056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 14:42:21 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:21 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000008440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003d80)=[@dontfrag={{0x14, 0x29, 0x3e, 0x4}}], 0x18}}], 0x2, 0x0) 14:42:21 executing program 2: r0 = io_uring_setup(0x454c, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0xf, 0x0, 0x0) 14:42:21 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create1(0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)) close_range(r0, 0xffffffffffffffff, 0x0) [ 126.552590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 14:42:21 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:21 executing program 2: r0 = io_uring_setup(0x454c, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0xf, 0x0, 0x0) 14:42:21 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) [ 127.365867] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 127.367377] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 127.368463] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 127.369526] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 127.462381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.463286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.464531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.465789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.467237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.468103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.469462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 127.470944] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 14:42:22 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:22 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:22 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0xb) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @random="1150f9716385"}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000440)=0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={0x0, @private, @local}, &(0x7f00000003c0)=0xc) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000200)={r1, 0x1, 0x6, @remote}, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) getsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, &(0x7f0000000240), &(0x7f0000000280)=0x4) bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @broadcast}, 0x10) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmmsg(r2, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) timer_create(0x0, 0x0, &(0x7f0000000040)) 14:42:22 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0003}]}) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 14:42:22 executing program 3: syz_open_dev$sg(&(0x7f0000000440), 0x2, 0x0) 14:42:22 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000008440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003d80)=[@dontfrag={{0x14, 0x29, 0x3e, 0x4}}], 0x18}}], 0x2, 0x0) 14:42:22 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) 14:42:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_sset_info}) 14:42:22 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000008440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003d80)=[@dontfrag={{0x14, 0x29, 0x3e, 0x4}}], 0x18}}], 0x2, 0x0) 14:42:22 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x0, 0x1}, 'port1\x00'}) 14:42:22 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0003}]}) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 14:42:22 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_sset_info}) 14:42:22 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x0, 0x1}, 'port1\x00'}) 14:42:22 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000008440)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003d80)=[@dontfrag={{0x14, 0x29, 0x3e, 0x4}}], 0x18}}], 0x2, 0x0) 14:42:22 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0003}]}) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 14:42:22 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x0, 0x1}, 'port1\x00'}) 14:42:23 executing program 1: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(0xffffffffffffffff, 0x404c534a, &(0x7f0000000140)={0x0, 0x0, 0x2}) sched_setattr(0x0, &(0x7f0000000100)={0x91}, 0x0) 14:42:23 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0003}]}) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 14:42:23 executing program 3: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{0x0, 0x1}, 'port1\x00'}) 14:42:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_sset_info}) 14:42:23 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) 14:42:23 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x46, &(0x7f00000000c0), 0x4) 14:42:23 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x45}, {0x6}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) [ 128.544781] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 128.544781] program syz-executor.7 not setting count and/or reply_len properly [ 128.625203] audit: type=1326 audit(1662993743.405:9): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4108 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6c07ddbb19 code=0x0 14:42:23 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_sset_info}) 14:42:23 executing program 5: shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) 14:42:23 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x46, &(0x7f00000000c0), 0x4) [ 128.835715] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 128.835715] program syz-executor.7 not setting count and/or reply_len properly [ 129.455789] audit: type=1326 audit(1662993744.235:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4108 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6c07ddbb19 code=0x0 14:42:24 executing program 6: mq_open(&(0x7f000000b0c0)='\\Q\x00', 0x0, 0x0, 0x0) 14:42:24 executing program 1: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(0xffffffffffffffff, 0x404c534a, &(0x7f0000000140)={0x0, 0x0, 0x2}) sched_setattr(0x0, &(0x7f0000000100)={0x91}, 0x0) 14:42:24 executing program 5: clock_getres(0x0, 0x0) 14:42:24 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x46, &(0x7f00000000c0), 0x4) 14:42:24 executing program 2: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="746172676574205043493a393ab0"], 0x15) 14:42:24 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = syz_io_uring_setup(0xb9b, &(0x7f0000000440), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000004c0), &(0x7f0000000500)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) 14:42:24 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) 14:42:24 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x45}, {0x6}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) [ 129.572467] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 129.572467] program syz-executor.7 not setting count and/or reply_len properly 14:42:24 executing program 1: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(0xffffffffffffffff, 0x404c534a, &(0x7f0000000140)={0x0, 0x0, 0x2}) sched_setattr(0x0, &(0x7f0000000100)={0x91}, 0x0) 14:42:24 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x45}, {0x6}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) 14:42:24 executing program 5: clock_getres(0x0, 0x0) [ 129.616207] audit: type=1326 audit(1662993744.396:11): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4138 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6c07ddbb19 code=0x0 14:42:24 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x46, &(0x7f00000000c0), 0x4) [ 129.645620] audit: type=1326 audit(1662993744.425:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4141 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f48006ecb19 code=0x0 14:42:24 executing program 2: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="746172676574205043493a393ab0"], 0x15) 14:42:24 executing program 1: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(0xffffffffffffffff, 0x404c534a, &(0x7f0000000140)={0x0, 0x0, 0x2}) sched_setattr(0x0, &(0x7f0000000100)={0x91}, 0x0) 14:42:24 executing program 5: clock_getres(0x0, 0x0) 14:42:24 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) 14:42:24 executing program 5: clock_getres(0x0, 0x0) [ 129.734929] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 129.734929] program syz-executor.3 not setting count and/or reply_len properly 14:42:24 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) 14:42:24 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) 14:42:24 executing program 2: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="746172676574205043493a393ab0"], 0x15) 14:42:24 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0) close_range(r1, r1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040)) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4) openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0) creat(&(0x7f0000000240)='./file0\x00', 0x11) dup(0xffffffffffffffff) sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0) [ 129.822712] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 129.822712] program syz-executor.0 not setting count and/or reply_len properly [ 129.852835] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 129.852835] program syz-executor.5 not setting count and/or reply_len properly VM DIAGNOSIS: 14:42:15 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf3d420 RCX=0000000000000000 RDX=ffff88801751b580 RSI=ffffffff813bccdb RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880206b7960 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d9e7a85 R13=ffff88806cf3d428 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff813bccdd RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556307400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f48007f56dc CR3=0000000008cd2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f48007d37c0 00007f48007d37c8 YMM02=0000000000000000 0000000000000000 00007f48007d37e0 00007f48007d37c0 YMM03=0000000000000000 0000000000000000 00007f48007d37c8 00007f48007d37c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff88803feaf348 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006f R11=0000000000000001 R12=000000000000006f R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f47fdc62700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa1961f7269 CR3=0000000008cd2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f48007d37c0 00007f48007d37c8 YMM02=0000000000000000 0000000000000000 00007f48007d37e0 00007f48007d37c0 YMM03=0000000000000000 0000000000000000 00007f48007d37c8 00007f48007d37c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000