Warning: Permanently added '[localhost]:36284' (ECDSA) to the list of known hosts.
2022/09/12 16:34:32 fuzzer started
2022/09/12 16:34:32 dialing manager at localhost:38027
syzkaller login: [   39.418389] cgroup: Unknown subsys name 'net'
[   39.498896] cgroup: Unknown subsys name 'rlimit'
2022/09/12 16:34:47 syscalls: 2215
2022/09/12 16:34:47 code coverage: enabled
2022/09/12 16:34:47 comparison tracing: enabled
2022/09/12 16:34:47 extra coverage: enabled
2022/09/12 16:34:47 setuid sandbox: enabled
2022/09/12 16:34:47 namespace sandbox: enabled
2022/09/12 16:34:47 Android sandbox: enabled
2022/09/12 16:34:47 fault injection: enabled
2022/09/12 16:34:47 leak checking: enabled
2022/09/12 16:34:47 net packet injection: enabled
2022/09/12 16:34:47 net device setup: enabled
2022/09/12 16:34:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/12 16:34:47 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/12 16:34:47 USB emulation: enabled
2022/09/12 16:34:47 hci packet injection: enabled
2022/09/12 16:34:47 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912                                          )
2022/09/12 16:34:47 802.15.4 emulation: enabled
2022/09/12 16:34:47 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/12 16:34:47 fetching corpus: 50, signal 35477/38879 (executing program)
2022/09/12 16:34:47 fetching corpus: 100, signal 49446/54220 (executing program)
2022/09/12 16:34:47 fetching corpus: 150, signal 57467/63579 (executing program)
2022/09/12 16:34:47 fetching corpus: 200, signal 65630/72931 (executing program)
2022/09/12 16:34:47 fetching corpus: 250, signal 70527/79060 (executing program)
2022/09/12 16:34:48 fetching corpus: 300, signal 76807/86395 (executing program)
2022/09/12 16:34:48 fetching corpus: 350, signal 80214/90926 (executing program)
2022/09/12 16:34:48 fetching corpus: 400, signal 89034/100466 (executing program)
2022/09/12 16:34:48 fetching corpus: 450, signal 92853/105244 (executing program)
2022/09/12 16:34:48 fetching corpus: 500, signal 97073/110306 (executing program)
2022/09/12 16:34:48 fetching corpus: 550, signal 100830/114921 (executing program)
2022/09/12 16:34:48 fetching corpus: 600, signal 104053/118992 (executing program)
2022/09/12 16:34:49 fetching corpus: 650, signal 107810/123458 (executing program)
2022/09/12 16:34:49 fetching corpus: 700, signal 110248/126708 (executing program)
2022/09/12 16:34:49 fetching corpus: 750, signal 113229/130372 (executing program)
2022/09/12 16:34:49 fetching corpus: 800, signal 115836/133734 (executing program)
2022/09/12 16:34:49 fetching corpus: 850, signal 118690/137153 (executing program)
2022/09/12 16:34:49 fetching corpus: 900, signal 120757/139940 (executing program)
2022/09/12 16:34:49 fetching corpus: 950, signal 122553/142512 (executing program)
2022/09/12 16:34:50 fetching corpus: 1000, signal 123974/144673 (executing program)
2022/09/12 16:34:50 fetching corpus: 1050, signal 125783/147175 (executing program)
2022/09/12 16:34:50 fetching corpus: 1100, signal 128656/150457 (executing program)
2022/09/12 16:34:50 fetching corpus: 1150, signal 130530/152943 (executing program)
2022/09/12 16:34:50 fetching corpus: 1200, signal 132141/155169 (executing program)
2022/09/12 16:34:50 fetching corpus: 1250, signal 134242/157753 (executing program)
2022/09/12 16:34:50 fetching corpus: 1300, signal 137427/161176 (executing program)
2022/09/12 16:34:51 fetching corpus: 1350, signal 139569/163672 (executing program)
2022/09/12 16:34:51 fetching corpus: 1400, signal 140726/165394 (executing program)
2022/09/12 16:34:51 fetching corpus: 1450, signal 142692/167704 (executing program)
2022/09/12 16:34:51 fetching corpus: 1500, signal 143801/169386 (executing program)
2022/09/12 16:34:51 fetching corpus: 1550, signal 145449/171454 (executing program)
2022/09/12 16:34:51 fetching corpus: 1600, signal 146800/173223 (executing program)
2022/09/12 16:34:51 fetching corpus: 1650, signal 148106/174954 (executing program)
2022/09/12 16:34:52 fetching corpus: 1700, signal 149163/176495 (executing program)
2022/09/12 16:34:52 fetching corpus: 1750, signal 150866/178463 (executing program)
2022/09/12 16:34:52 fetching corpus: 1800, signal 152976/180689 (executing program)
2022/09/12 16:34:52 fetching corpus: 1850, signal 154465/182433 (executing program)
2022/09/12 16:34:52 fetching corpus: 1900, signal 156270/184355 (executing program)
2022/09/12 16:34:52 fetching corpus: 1950, signal 157386/185825 (executing program)
2022/09/12 16:34:52 fetching corpus: 2000, signal 158647/187419 (executing program)
2022/09/12 16:34:53 fetching corpus: 2050, signal 160058/189038 (executing program)
2022/09/12 16:34:53 fetching corpus: 2100, signal 161098/190373 (executing program)
2022/09/12 16:34:53 fetching corpus: 2150, signal 161929/191613 (executing program)
2022/09/12 16:34:53 fetching corpus: 2200, signal 163167/193086 (executing program)
2022/09/12 16:34:53 fetching corpus: 2250, signal 164465/194516 (executing program)
2022/09/12 16:34:53 fetching corpus: 2300, signal 165489/195830 (executing program)
2022/09/12 16:34:53 fetching corpus: 2350, signal 166587/197144 (executing program)
2022/09/12 16:34:54 fetching corpus: 2400, signal 168441/198897 (executing program)
2022/09/12 16:34:54 fetching corpus: 2450, signal 169906/200417 (executing program)
2022/09/12 16:34:54 fetching corpus: 2500, signal 171277/201875 (executing program)
2022/09/12 16:34:54 fetching corpus: 2550, signal 172069/202952 (executing program)
2022/09/12 16:34:54 fetching corpus: 2600, signal 172748/203964 (executing program)
2022/09/12 16:34:54 fetching corpus: 2650, signal 174275/205415 (executing program)
2022/09/12 16:34:54 fetching corpus: 2700, signal 175482/206698 (executing program)
2022/09/12 16:34:54 fetching corpus: 2750, signal 176601/207838 (executing program)
2022/09/12 16:34:55 fetching corpus: 2800, signal 177511/208861 (executing program)
2022/09/12 16:34:55 fetching corpus: 2850, signal 178653/209999 (executing program)
2022/09/12 16:34:55 fetching corpus: 2900, signal 179239/210784 (executing program)
2022/09/12 16:34:55 fetching corpus: 2950, signal 180110/211734 (executing program)
2022/09/12 16:34:55 fetching corpus: 3000, signal 180866/212621 (executing program)
2022/09/12 16:34:55 fetching corpus: 3050, signal 181415/213425 (executing program)
2022/09/12 16:34:55 fetching corpus: 3100, signal 182429/214385 (executing program)
2022/09/12 16:34:55 fetching corpus: 3150, signal 183308/215365 (executing program)
2022/09/12 16:34:55 fetching corpus: 3200, signal 184272/216305 (executing program)
2022/09/12 16:34:56 fetching corpus: 3250, signal 184802/217058 (executing program)
2022/09/12 16:34:56 fetching corpus: 3300, signal 185418/217860 (executing program)
2022/09/12 16:34:56 fetching corpus: 3350, signal 186448/218833 (executing program)
2022/09/12 16:34:56 fetching corpus: 3400, signal 187382/219748 (executing program)
2022/09/12 16:34:56 fetching corpus: 3450, signal 188259/220593 (executing program)
2022/09/12 16:34:56 fetching corpus: 3500, signal 189054/221363 (executing program)
2022/09/12 16:34:56 fetching corpus: 3550, signal 190004/222235 (executing program)
2022/09/12 16:34:56 fetching corpus: 3600, signal 190600/222911 (executing program)
2022/09/12 16:34:57 fetching corpus: 3650, signal 191499/223723 (executing program)
2022/09/12 16:34:57 fetching corpus: 3700, signal 192155/224390 (executing program)
2022/09/12 16:34:57 fetching corpus: 3750, signal 193064/225133 (executing program)
2022/09/12 16:34:57 fetching corpus: 3800, signal 194003/225959 (executing program)
2022/09/12 16:34:57 fetching corpus: 3850, signal 194982/226714 (executing program)
2022/09/12 16:34:57 fetching corpus: 3900, signal 195828/227428 (executing program)
2022/09/12 16:34:57 fetching corpus: 3950, signal 196973/228309 (executing program)
2022/09/12 16:34:57 fetching corpus: 4000, signal 197791/229002 (executing program)
2022/09/12 16:34:58 fetching corpus: 4050, signal 198449/229612 (executing program)
2022/09/12 16:34:58 fetching corpus: 4100, signal 199347/230318 (executing program)
2022/09/12 16:34:58 fetching corpus: 4150, signal 200136/231001 (executing program)
2022/09/12 16:34:58 fetching corpus: 4200, signal 200597/231482 (executing program)
2022/09/12 16:34:58 fetching corpus: 4250, signal 201728/232160 (executing program)
2022/09/12 16:34:58 fetching corpus: 4300, signal 202452/232758 (executing program)
2022/09/12 16:34:58 fetching corpus: 4350, signal 203346/233330 (executing program)
2022/09/12 16:34:59 fetching corpus: 4400, signal 204156/233906 (executing program)
2022/09/12 16:34:59 fetching corpus: 4450, signal 204956/234423 (executing program)
2022/09/12 16:34:59 fetching corpus: 4500, signal 205704/234941 (executing program)
2022/09/12 16:34:59 fetching corpus: 4550, signal 206287/235411 (executing program)
2022/09/12 16:34:59 fetching corpus: 4600, signal 207008/235910 (executing program)
2022/09/12 16:34:59 fetching corpus: 4650, signal 207721/236440 (executing program)
2022/09/12 16:34:59 fetching corpus: 4700, signal 208619/236920 (executing program)
2022/09/12 16:34:59 fetching corpus: 4750, signal 209139/237333 (executing program)
2022/09/12 16:35:00 fetching corpus: 4800, signal 209707/237733 (executing program)
2022/09/12 16:35:00 fetching corpus: 4850, signal 210540/238178 (executing program)
2022/09/12 16:35:00 fetching corpus: 4900, signal 211466/238629 (executing program)
2022/09/12 16:35:00 fetching corpus: 4950, signal 211894/239013 (executing program)
2022/09/12 16:35:00 fetching corpus: 5000, signal 212404/239351 (executing program)
2022/09/12 16:35:00 fetching corpus: 5050, signal 212929/239735 (executing program)
2022/09/12 16:35:00 fetching corpus: 5100, signal 213596/240157 (executing program)
2022/09/12 16:35:01 fetching corpus: 5150, signal 214450/240700 (executing program)
2022/09/12 16:35:01 fetching corpus: 5200, signal 215066/241028 (executing program)
2022/09/12 16:35:01 fetching corpus: 5250, signal 215709/241398 (executing program)
2022/09/12 16:35:01 fetching corpus: 5300, signal 216317/241724 (executing program)
2022/09/12 16:35:01 fetching corpus: 5350, signal 216847/242048 (executing program)
2022/09/12 16:35:01 fetching corpus: 5400, signal 217365/242360 (executing program)
2022/09/12 16:35:01 fetching corpus: 5450, signal 218026/242678 (executing program)
2022/09/12 16:35:01 fetching corpus: 5500, signal 219001/242977 (executing program)
2022/09/12 16:35:02 fetching corpus: 5550, signal 219782/243345 (executing program)
2022/09/12 16:35:02 fetching corpus: 5600, signal 220397/243566 (executing program)
2022/09/12 16:35:02 fetching corpus: 5650, signal 221069/243831 (executing program)
2022/09/12 16:35:02 fetching corpus: 5700, signal 221737/244131 (executing program)
2022/09/12 16:35:02 fetching corpus: 5750, signal 222434/244328 (executing program)
2022/09/12 16:35:02 fetching corpus: 5800, signal 222954/244533 (executing program)
2022/09/12 16:35:02 fetching corpus: 5850, signal 223677/244739 (executing program)
2022/09/12 16:35:03 fetching corpus: 5900, signal 224217/244894 (executing program)
2022/09/12 16:35:03 fetching corpus: 5950, signal 224977/244894 (executing program)
2022/09/12 16:35:03 fetching corpus: 6000, signal 225911/244913 (executing program)
2022/09/12 16:35:03 fetching corpus: 6050, signal 226483/244969 (executing program)
2022/09/12 16:35:03 fetching corpus: 6100, signal 226994/245001 (executing program)
2022/09/12 16:35:03 fetching corpus: 6150, signal 227596/245010 (executing program)
2022/09/12 16:35:03 fetching corpus: 6200, signal 228046/245011 (executing program)
2022/09/12 16:35:04 fetching corpus: 6250, signal 228683/245032 (executing program)
2022/09/12 16:35:04 fetching corpus: 6300, signal 229143/245066 (executing program)
2022/09/12 16:35:04 fetching corpus: 6350, signal 229608/245086 (executing program)
2022/09/12 16:35:04 fetching corpus: 6400, signal 230218/245091 (executing program)
2022/09/12 16:35:04 fetching corpus: 6450, signal 230757/245101 (executing program)
2022/09/12 16:35:04 fetching corpus: 6500, signal 231239/245107 (executing program)
2022/09/12 16:35:04 fetching corpus: 6550, signal 231636/245112 (executing program)
2022/09/12 16:35:05 fetching corpus: 6600, signal 232058/245114 (executing program)
2022/09/12 16:35:05 fetching corpus: 6650, signal 232587/245128 (executing program)
2022/09/12 16:35:05 fetching corpus: 6700, signal 232950/245156 (executing program)
2022/09/12 16:35:05 fetching corpus: 6750, signal 233634/245160 (executing program)
2022/09/12 16:35:05 fetching corpus: 6800, signal 234103/245201 (executing program)
2022/09/12 16:35:05 fetching corpus: 6850, signal 234610/245211 (executing program)
2022/09/12 16:35:05 fetching corpus: 6900, signal 235087/245241 (executing program)
2022/09/12 16:35:05 fetching corpus: 6918, signal 235287/245241 (executing program)
2022/09/12 16:35:05 fetching corpus: 6918, signal 235287/245241 (executing program)
2022/09/12 16:35:07 starting 8 fuzzer processes
16:35:07 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000001300)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000012c0)={&(0x7f0000000900)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

16:35:07 executing program 1:
shmctl$IPC_SET(0x0, 0x1, &(0x7f00000004c0)={{0x1, 0x0, 0x0, 0x0, 0xee00}})

16:35:07 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6}]}, 0x10)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

16:35:07 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80042, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000340))

16:35:07 executing program 4:
r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[   74.433612] audit: type=1400 audit(1663000507.866:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
16:35:07 executing program 5:
r0 = fsopen(&(0x7f0000000080)='debugfs\x00', 0x0)
r1 = dup(r0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000100)='%\v\x85-,\xa0-B![!$\x00', &(0x7f0000000140)='\xb2}:\x00', 0x0)

16:35:07 executing program 6:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, r0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001800), 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
io_setup(0x0, &(0x7f0000000180))
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x6)
write$binfmt_aout(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x1820)
write(0xffffffffffffffff, &(0x7f0000000080)="01", 0x41030)
socketpair(0x25, 0x1, 0x4, &(0x7f0000000100))
perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x4, 0xfc, 0x6, 0x40, 0x0, 0x3, 0x80500, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x4000, 0xbae479d78125204, @perf_bp={&(0x7f00000000c0), 0x6}, 0x11021, 0x100000000, 0x9, 0x1, 0x4, 0xff, 0x7, 0x0, 0x51ac12b3, 0x0, 0x8001}, 0x0, 0xe, 0xffffffffffffffff, 0x3)
ioctl$GIO_SCRNMAP(0xffffffffffffffff, 0x4b40, &(0x7f00000001c0)=""/170)

16:35:07 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000040), 0x8)

[   75.767384] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   75.770822] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   75.772984] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   75.774645] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.776323] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   75.777831] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   75.779555] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   75.782378] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   75.784316] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   75.785771] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   75.787047] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   75.788149] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   75.789211] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.790643] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   75.791698] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.793153] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.794335] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   75.797956] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   75.799618] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   75.800916] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   75.803602] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   75.804614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.806002] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   75.808117] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.809595] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   75.810854] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   75.812246] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   75.813445] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   75.814681] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.815682] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.817205] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   75.818502] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.819497] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   75.820495] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   75.821702] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   75.822883] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   75.827169] Bluetooth: hci0: HCI_REQ-0x0c1a
[   75.831877] Bluetooth: hci2: HCI_REQ-0x0c1a
[   75.836037] Bluetooth: hci1: HCI_REQ-0x0c1a
[   75.836958] Bluetooth: hci4: HCI_REQ-0x0c1a
[   75.871359] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   75.873590] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   75.875937] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   75.879594] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   75.881622] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   75.883009] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   75.889165] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   75.890747] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   75.890981] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   75.892050] Bluetooth: hci3: HCI_REQ-0x0c1a
[   75.893172] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   75.899311] Bluetooth: hci5: HCI_REQ-0x0c1a
[   75.899484] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   75.900119] Bluetooth: hci6: HCI_REQ-0x0c1a
[   75.903730] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   75.927176] Bluetooth: hci7: HCI_REQ-0x0c1a
[   77.874829] Bluetooth: hci2: command 0x0409 tx timeout
[   77.875109] Bluetooth: hci4: command 0x0409 tx timeout
[   77.875470] Bluetooth: hci1: command 0x0409 tx timeout
[   77.875919] Bluetooth: hci0: command 0x0409 tx timeout
[   77.938705] Bluetooth: hci7: command 0x0409 tx timeout
[   77.938708] Bluetooth: hci3: command 0x0409 tx timeout
[   77.938792] Bluetooth: hci6: command 0x0409 tx timeout
[   77.940283] Bluetooth: hci5: command 0x0409 tx timeout
[   79.922590] Bluetooth: hci0: command 0x041b tx timeout
[   79.922615] Bluetooth: hci1: command 0x041b tx timeout
[   79.923894] Bluetooth: hci2: command 0x041b tx timeout
[   79.924325] Bluetooth: hci4: command 0x041b tx timeout
[   79.986828] Bluetooth: hci5: command 0x041b tx timeout
[   79.987792] Bluetooth: hci6: command 0x041b tx timeout
[   79.990739] Bluetooth: hci3: command 0x041b tx timeout
[   79.991947] Bluetooth: hci7: command 0x041b tx timeout
[   81.970498] Bluetooth: hci4: command 0x040f tx timeout
[   81.971118] Bluetooth: hci2: command 0x040f tx timeout
[   81.971696] Bluetooth: hci1: command 0x040f tx timeout
[   81.972223] Bluetooth: hci0: command 0x040f tx timeout
[   82.035479] Bluetooth: hci7: command 0x040f tx timeout
[   82.035993] Bluetooth: hci3: command 0x040f tx timeout
[   82.036451] Bluetooth: hci6: command 0x040f tx timeout
[   82.036891] Bluetooth: hci5: command 0x040f tx timeout
[   84.018530] Bluetooth: hci0: command 0x0419 tx timeout
[   84.019023] Bluetooth: hci1: command 0x0419 tx timeout
[   84.019479] Bluetooth: hci2: command 0x0419 tx timeout
[   84.019902] Bluetooth: hci4: command 0x0419 tx timeout
[   84.083484] Bluetooth: hci5: command 0x0419 tx timeout
[   84.083963] Bluetooth: hci6: command 0x0419 tx timeout
[   84.084365] Bluetooth: hci3: command 0x0419 tx timeout
[   84.084815] Bluetooth: hci7: command 0x0419 tx timeout
16:36:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000040), 0x8)

16:36:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000040), 0x8)

16:36:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000040), 0x8)

16:36:07 executing program 7:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x1c, 0x5f, 0x1, 0x0, 0x0, "", [@generic="aa910bd64865fb4b8e"]}, 0x1c}], 0x1}, 0x0)

16:36:07 executing program 7:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x1c, 0x5f, 0x1, 0x0, 0x0, "", [@generic="aa910bd64865fb4b8e"]}, 0x1c}], 0x1}, 0x0)

16:36:07 executing program 7:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x1c, 0x5f, 0x1, 0x0, 0x0, "", [@generic="aa910bd64865fb4b8e"]}, 0x1c}], 0x1}, 0x0)

16:36:07 executing program 7:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x1c, 0x5f, 0x1, 0x0, 0x0, "", [@generic="aa910bd64865fb4b8e"]}, 0x1c}], 0x1}, 0x0)

16:36:07 executing program 7:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1f, &(0x7f0000000000)=""/34, &(0x7f0000000040)=0x22)

[  134.105389] audit: type=1400 audit(1663000567.538:7): avc:  denied  { open } for  pid=3741 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  137.495513] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  137.499335] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  137.500910] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  137.505234] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  137.507196] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  137.508551] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  137.512933] Bluetooth: hci0: HCI_REQ-0x0c1a
[  137.528496] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  137.530116] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  137.532294] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  137.545730] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  137.549701] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  137.552211] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  137.559988] Bluetooth: hci1: HCI_REQ-0x0c1a
[  137.613244] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  137.615496] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  137.617295] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  137.622015] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  137.624989] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  137.626287] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  137.631680] Bluetooth: hci2: HCI_REQ-0x0c1a
[  137.679563] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  137.682051] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  137.684948] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  137.687752] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  137.688793] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  137.691648] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  137.697729] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  137.701544] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  137.709864] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  137.715767] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  137.718260] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  137.720980] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  137.727499] Bluetooth: hci5: HCI_REQ-0x0c1a
[  137.743573] Bluetooth: hci6: HCI_REQ-0x0c1a
[  139.570943] Bluetooth: hci1: command 0x0409 tx timeout
[  139.573151] Bluetooth: hci0: command 0x0409 tx timeout
[  139.634576] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  139.698471] Bluetooth: hci2: command 0x0409 tx timeout
[  139.698474] Bluetooth: hci7: Opcode 0x c03 failed: -110
[  139.763501] Bluetooth: hci6: command 0x0409 tx timeout
[  139.764089] Bluetooth: hci5: command 0x0409 tx timeout
[  141.619510] Bluetooth: hci0: command 0x041b tx timeout
[  141.620253] Bluetooth: hci1: command 0x041b tx timeout
[  141.746491] Bluetooth: hci2: command 0x041b tx timeout
[  141.810474] Bluetooth: hci5: command 0x041b tx timeout
[  141.811361] Bluetooth: hci6: command 0x041b tx timeout
[  142.701767] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  142.716709] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  142.718687] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  142.736212] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  142.763692] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  142.765715] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  142.772576] Bluetooth: hci4: HCI_REQ-0x0c1a
[  143.666474] Bluetooth: hci1: command 0x040f tx timeout
[  143.667172] Bluetooth: hci0: command 0x040f tx timeout
[  143.794480] Bluetooth: hci2: command 0x040f tx timeout
[  143.858530] Bluetooth: hci6: command 0x040f tx timeout
[  143.860726] Bluetooth: hci5: command 0x040f tx timeout
[  144.818649] Bluetooth: hci7: Opcode 0x c03 failed: -110
[  144.819973] Bluetooth: hci4: command 0x0409 tx timeout
[  145.714612] Bluetooth: hci0: command 0x0419 tx timeout
[  145.716102] Bluetooth: hci1: command 0x0419 tx timeout
[  145.842507] Bluetooth: hci2: command 0x0419 tx timeout
[  145.906578] Bluetooth: hci5: command 0x0419 tx timeout
[  145.908557] Bluetooth: hci6: command 0x0419 tx timeout
[  146.867531] Bluetooth: hci4: command 0x041b tx timeout
[  147.444236] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  147.446313] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  147.454955] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  147.463242] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  147.466707] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  147.468148] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  147.490532] Bluetooth: hci7: HCI_REQ-0x0c1a
[  148.914672] Bluetooth: hci4: command 0x040f tx timeout
[  149.554531] Bluetooth: hci7: command 0x0409 tx timeout
[  150.962560] Bluetooth: hci4: command 0x0419 tx timeout
[  151.602523] Bluetooth: hci7: command 0x041b tx timeout
[  153.650505] Bluetooth: hci7: command 0x040f tx timeout
[  155.698522] Bluetooth: hci7: command 0x0419 tx timeout
[  200.114500] Bluetooth: hci3: command 0x0406 tx timeout
[  200.279074] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  200.285179] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  200.286197] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  200.296834] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  200.310890] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  200.321751] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  200.327229] Bluetooth: hci2: HCI_REQ-0x0c1a
[  200.357079] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  200.370331] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  200.373380] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  200.380649] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  200.394319] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  200.399390] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  200.409502] Bluetooth: hci6: HCI_REQ-0x0c1a
[  201.842560] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  202.226488] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  202.291987] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  202.354541] Bluetooth: hci2: command 0x0409 tx timeout
[  202.418487] Bluetooth: hci6: command 0x0409 tx timeout
[  203.895988] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  203.897467] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  203.927160] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  203.930083] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  203.932362] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  203.953764] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  203.974585] Bluetooth: hci0: HCI_REQ-0x0c1a
[  204.402470] Bluetooth: hci2: command 0x041b tx timeout
[  204.466474] Bluetooth: hci6: command 0x041b tx timeout
[  204.727853] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  204.731029] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  204.734365] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  204.742815] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  204.746829] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  204.749744] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  204.756532] Bluetooth: hci4: HCI_REQ-0x0c1a
[  206.003628] Bluetooth: hci0: command 0x0409 tx timeout
[  206.065437] audit: type=1400 audit(1663000639.498:8): avc:  denied  { kernel } for  pid=6937 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  206.077744] ------------[ cut here ]------------
[  206.077774] 
[  206.077779] ======================================================
[  206.077783] WARNING: possible circular locking dependency detected
[  206.077789] 6.0.0-rc5-next-20220912 #1 Not tainted
[  206.077798] ------------------------------------------------------
[  206.077803] syz-executor.6/6938 is trying to acquire lock:
[  206.077813] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  206.077860] 
[  206.077860] but task is already holding lock:
[  206.077864] ffff88800fea1c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  206.077903] 
[  206.077903] which lock already depends on the new lock.
[  206.077903] 
[  206.077908] 
[  206.077908] the existing dependency chain (in reverse order) is:
[  206.077912] 
[  206.077912] -> #3 (&ctx->lock){....}-{2:2}:
[  206.077933]        _raw_spin_lock+0x2a/0x40
[  206.077956]        __perf_event_task_sched_out+0x53b/0x18d0
[  206.077974]        __schedule+0xedd/0x2470
[  206.077989]        schedule+0xda/0x1b0
[  206.078002]        exit_to_user_mode_prepare+0x114/0x1a0
[  206.078032]        syscall_exit_to_user_mode+0x19/0x40
[  206.078058]        do_syscall_64+0x48/0x90
[  206.078077]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  206.078103] 
[  206.078103] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  206.078124]        _raw_spin_lock_nested+0x30/0x40
[  206.078146]        raw_spin_rq_lock_nested+0x1e/0x30
[  206.078164]        task_fork_fair+0x63/0x4d0
[  206.078188]        sched_cgroup_fork+0x3d0/0x540
[  206.078207]        copy_process+0x3f9e/0x6df0
[  206.078222]        kernel_clone+0xe7/0x890
[  206.078236]        user_mode_thread+0xad/0xf0
[  206.078251]        rest_init+0x24/0x250
[  206.078274]        arch_call_rest_init+0xf/0x14
[  206.078302]        start_kernel+0x4c1/0x4e6
[  206.078327]        secondary_startup_64_no_verify+0xe0/0xeb
[  206.078348] 
[  206.078348] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  206.078369]        _raw_spin_lock_irqsave+0x39/0x60
[  206.078392]        try_to_wake_up+0xab/0x1920
[  206.078410]        up+0x75/0xb0
[  206.078426]        __up_console_sem+0x6e/0x80
[  206.078449]        console_unlock+0x46a/0x590
[  206.078472]        do_con_write+0xc05/0x1d50
[  206.078488]        con_write+0x21/0x40
[  206.078502]        n_tty_write+0x4d4/0xfe0
[  206.078520]        file_tty_write.constprop.0+0x49c/0x8f0
[  206.078536]        vfs_write+0x9c3/0xd90
[  206.078561]        ksys_write+0x127/0x250
[  206.078585]        do_syscall_64+0x3b/0x90
[  206.078603]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  206.078627] 
[  206.078627] -> #0 ((console_sem).lock){....}-{2:2}:
[  206.078648]        __lock_acquire+0x2a02/0x5e70
[  206.078669]        lock_acquire+0x1a2/0x530
[  206.078692]        _raw_spin_lock_irqsave+0x39/0x60
[  206.078713]        down_trylock+0xe/0x70
[  206.078730]        __down_trylock_console_sem+0x3b/0xd0
[  206.078754]        vprintk_emit+0x16b/0x560
[  206.078779]        vprintk+0x84/0xa0
[  206.078803]        _printk+0xba/0xf1
[  206.078828]        report_bug.cold+0x72/0xab
[  206.078846]        handle_bug+0x3c/0x70
[  206.078864]        exc_invalid_op+0x14/0x50
[  206.078884]        asm_exc_invalid_op+0x16/0x20
[  206.078908]        group_sched_out.part.0+0x2c7/0x460
[  206.078924]        ctx_sched_out+0x8f1/0xc10
[  206.078939]        __perf_event_task_sched_out+0x6d0/0x18d0
[  206.078958]        __schedule+0xedd/0x2470
[  206.078972]        schedule+0xda/0x1b0
[  206.078985]        exit_to_user_mode_prepare+0x114/0x1a0
[  206.079015]        syscall_exit_to_user_mode+0x19/0x40
[  206.079040]        do_syscall_64+0x48/0x90
[  206.079059]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  206.079085] 
[  206.079085] other info that might help us debug this:
[  206.079085] 
[  206.079088] Chain exists of:
[  206.079088]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  206.079088] 
[  206.079111]  Possible unsafe locking scenario:
[  206.079111] 
[  206.079115]        CPU0                    CPU1
[  206.079118]        ----                    ----
[  206.079122]   lock(&ctx->lock);
[  206.079130]                                lock(&rq->__lock);
[  206.079138]                                lock(&ctx->lock);
[  206.079147]   lock((console_sem).lock);
[  206.079155] 
[  206.079155]  *** DEADLOCK ***
[  206.079155] 
[  206.079158] 2 locks held by syz-executor.6/6938:
[  206.079168]  #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  206.079205]  #1: ffff88800fea1c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  206.079241] 
[  206.079241] stack backtrace:
[  206.079245] CPU: 0 PID: 6938 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1
[  206.079263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  206.079275] Call Trace:
[  206.079279]  <TASK>
[  206.079285]  dump_stack_lvl+0x8b/0xb3
[  206.079307]  check_noncircular+0x263/0x2e0
[  206.079333]  ? format_decode+0x26c/0xb50
[  206.079354]  ? print_circular_bug+0x450/0x450
[  206.079381]  ? enable_ptr_key_workfn+0x20/0x20
[  206.079403]  ? format_decode+0x26c/0xb50
[  206.079423]  ? memcpy+0x39/0x60
[  206.079451]  ? vsnprintf+0x4ba/0x1600
[  206.079474]  __lock_acquire+0x2a02/0x5e70
[  206.079506]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  206.079539]  lock_acquire+0x1a2/0x530
[  206.079565]  ? down_trylock+0xe/0x70
[  206.079586]  ? rcu_read_unlock+0x40/0x40
[  206.079618]  ? vprintk+0x84/0xa0
[  206.079646]  _raw_spin_lock_irqsave+0x39/0x60
[  206.079668]  ? down_trylock+0xe/0x70
[  206.079688]  down_trylock+0xe/0x70
[  206.079709]  ? vprintk+0x84/0xa0
[  206.079734]  __down_trylock_console_sem+0x3b/0xd0
[  206.079761]  vprintk_emit+0x16b/0x560
[  206.079789]  vprintk+0x84/0xa0
[  206.079816]  _printk+0xba/0xf1
[  206.079842]  ? record_print_text.cold+0x16/0x16
[  206.079874]  ? report_bug.cold+0x66/0xab
[  206.079912]  ? group_sched_out.part.0+0x2c7/0x460
[  206.079930]  report_bug.cold+0x72/0xab
[  206.079949]  handle_bug+0x3c/0x70
[  206.079967]  exc_invalid_op+0x14/0x50
[  206.079988]  asm_exc_invalid_op+0x16/0x20
[  206.080012] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  206.080031] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  206.080048] RSP: 0018:ffff888035e27c48 EFLAGS: 00010006
[  206.080061] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  206.080072] RDX: ffff888040ca0000 RSI: ffffffff81566027 RDI: 0000000000000005
[  206.080083] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  206.080093] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800fea1c00
[  206.080104] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  206.080120]  ? group_sched_out.part.0+0x2c7/0x460
[  206.080139]  ? group_sched_out.part.0+0x2c7/0x460
[  206.080157]  ctx_sched_out+0x8f1/0xc10
[  206.080175]  __perf_event_task_sched_out+0x6d0/0x18d0
[  206.080197]  ? lock_is_held_type+0xd7/0x130
[  206.080223]  ? __perf_cgroup_move+0x160/0x160
[  206.080240]  ? set_next_entity+0x304/0x550
[  206.080267]  ? update_curr+0x267/0x740
[  206.080294]  ? lock_is_held_type+0xd7/0x130
[  206.080320]  __schedule+0xedd/0x2470
[  206.080339]  ? io_schedule_timeout+0x150/0x150
[  206.080356]  ? rcu_read_lock_sched_held+0x3e/0x80
[  206.080386]  schedule+0xda/0x1b0
[  206.080401]  exit_to_user_mode_prepare+0x114/0x1a0
[  206.080431]  syscall_exit_to_user_mode+0x19/0x40
[  206.080457]  do_syscall_64+0x48/0x90
[  206.080477]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  206.080503] RIP: 0033:0x7fcb5bf26b19
[  206.080516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  206.080532] RSP: 002b:00007fcb5949c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  206.080547] RAX: 0000000000000001 RBX: 00007fcb5c039f68 RCX: 00007fcb5bf26b19
[  206.080558] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcb5c039f6c
[  206.080569] RBP: 00007fcb5c039f60 R08: 000000000000000e R09: 0000000000000000
[  206.080579] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcb5c039f6c
[  206.080590] R13: 00007fffc508428f R14: 00007fcb5949c300 R15: 0000000000022000
[  206.080608]  </TASK>
[  206.169877] WARNING: CPU: 0 PID: 6938 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  206.170696] Modules linked in:
[  206.170998] CPU: 0 PID: 6938 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1
[  206.171716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  206.176681] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  206.177189] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  206.178806] RSP: 0018:ffff888035e27c48 EFLAGS: 00010006
[  206.179290] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  206.179957] RDX: ffff888040ca0000 RSI: ffffffff81566027 RDI: 0000000000000005
[  206.180583] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  206.181217] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800fea1c00
[  206.181856] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  206.182496] FS:  00007fcb5949c700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  206.183211] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  206.183738] CR2: 00007f6a275eff00 CR3: 00000000386e2000 CR4: 0000000000350ef0
[  206.188493] Call Trace:
[  206.188743]  <TASK>
[  206.188965]  ctx_sched_out+0x8f1/0xc10
[  206.189333]  __perf_event_task_sched_out+0x6d0/0x18d0
[  206.189796]  ? lock_is_held_type+0xd7/0x130
[  206.190214]  ? __perf_cgroup_move+0x160/0x160
[  206.190644]  ? set_next_entity+0x304/0x550
[  206.191058]  ? update_curr+0x267/0x740
[  206.191446]  ? lock_is_held_type+0xd7/0x130
[  206.191863]  __schedule+0xedd/0x2470
[  206.193038]  ? io_schedule_timeout+0x150/0x150
[  206.194327]  ? rcu_read_lock_sched_held+0x3e/0x80
[  206.195652]  schedule+0xda/0x1b0
[  206.196176]  exit_to_user_mode_prepare+0x114/0x1a0
[  206.196646]  syscall_exit_to_user_mode+0x19/0x40
[  206.197095]  do_syscall_64+0x48/0x90
[  206.197451]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  206.197949] RIP: 0033:0x7fcb5bf26b19
[  206.198299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  206.200152] RSP: 002b:00007fcb5949c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  206.202335] RAX: 0000000000000001 RBX: 00007fcb5c039f68 RCX: 00007fcb5bf26b19
[  206.204072] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcb5c039f6c
[  206.204705] RBP: 00007fcb5c039f60 R08: 000000000000000e R09: 0000000000000000
[  206.205350] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcb5c039f6c
[  206.205993] R13: 00007fffc508428f R14: 00007fcb5949c300 R15: 0000000000022000
[  206.206637]  </TASK>
[  206.206860] irq event stamp: 614
[  206.207165] hardirqs last  enabled at (613): [<ffffffff8133ffc9>] exit_to_user_mode_prepare+0x109/0x1a0
[  206.208268] hardirqs last disabled at (614): [<ffffffff84247a45>] __schedule+0x1225/0x2470
[  206.210276] softirqs last  enabled at (346): [<ffffffff8117060b>] __irq_exit_rcu+0x11b/0x180
[  206.216457] softirqs last disabled at (261): [<ffffffff8117060b>] __irq_exit_rcu+0x11b/0x180
[  206.218682] ---[ end trace 0000000000000000 ]---
[  206.387475] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  206.450507] Bluetooth: hci2: command 0x040f tx timeout
[  206.514450] Bluetooth: hci6: command 0x040f tx timeout
[  206.770560] Bluetooth: hci4: command 0x0409 tx timeout
[  207.026505] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  208.050520] Bluetooth: hci0: command 0x041b tx timeout
[  208.498512] Bluetooth: hci2: command 0x0419 tx timeout
[  208.563490] Bluetooth: hci6: command 0x0419 tx timeout
[  208.818460] Bluetooth: hci4: command 0x041b tx timeout
[  210.098632] Bluetooth: hci0: command 0x040f tx timeout
[  210.866562] Bluetooth: hci4: command 0x040f tx timeout
[  211.058433] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  211.571539] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  212.146466] Bluetooth: hci0: command 0x0419 tx timeout
[  212.914500] Bluetooth: hci4: command 0x0419 tx timeout
[  215.538448] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  215.986470] Bluetooth: hci5: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
16:37:19  Registers:
info registers vcpu 0
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff888035e27698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000038 R11=0000000000000001
R12=0000000000000038 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30
RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fcb5949c700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6a275eff00 CR3=00000000386e2000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fcb5c00d7c0 00007fcb5c00d7c8
YMM02=0000000000000000 0000000000000000 00007fcb5c00d7e0 00007fcb5c00d7c0
YMM03=0000000000000000 0000000000000000 00007fcb5c00d7c8 00007fcb5c00d7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000005 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000001 RDI=ffffffff85bb7660 RBP=ffff888034b4f658 RSP=ffff888034b4f580
R8 =ffffffff85ed938a R9 =ffffffff85ed938e R10=ffffed1006969ecd R11=000000000003603d
R12=ffff888034b4f641 R13=ffff888034b4f660 R14=ffff888034b4f600 R15=ffffffff85ed938f
RIP=ffffffff8111b723 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f30d1b988e0 CR3=000000000f13a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000