Warning: Permanently added '[localhost]:44787' (ECDSA) to the list of known hosts.
2022/09/20 13:18:21 fuzzer started
2022/09/20 13:18:22 dialing manager at localhost:34957
syzkaller login: [   41.232227] cgroup: Unknown subsys name 'net'
[   41.357553] cgroup: Unknown subsys name 'rlimit'
2022/09/20 13:18:36 syscalls: 2215
2022/09/20 13:18:36 code coverage: enabled
2022/09/20 13:18:36 comparison tracing: enabled
2022/09/20 13:18:36 extra coverage: enabled
2022/09/20 13:18:36 setuid sandbox: enabled
2022/09/20 13:18:36 namespace sandbox: enabled
2022/09/20 13:18:36 Android sandbox: enabled
2022/09/20 13:18:36 fault injection: enabled
2022/09/20 13:18:36 leak checking: enabled
2022/09/20 13:18:36 net packet injection: enabled
2022/09/20 13:18:36 net device setup: enabled
2022/09/20 13:18:36 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/20 13:18:36 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/20 13:18:36 USB emulation: enabled
2022/09/20 13:18:36 hci packet injection: enabled
2022/09/20 13:18:36 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220920                                          )
2022/09/20 13:18:36 802.15.4 emulation: enabled
2022/09/20 13:18:36 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/20 13:18:36 fetching corpus: 50, signal 26019/29609 (executing program)
2022/09/20 13:18:36 fetching corpus: 100, signal 39028/44030 (executing program)
2022/09/20 13:18:36 fetching corpus: 150, signal 49921/56211 (executing program)
2022/09/20 13:18:36 fetching corpus: 200, signal 56010/63594 (executing program)
2022/09/20 13:18:37 fetching corpus: 250, signal 62603/71360 (executing program)
2022/09/20 13:18:37 fetching corpus: 300, signal 69364/79165 (executing program)
2022/09/20 13:18:37 fetching corpus: 350, signal 76502/87204 (executing program)
2022/09/20 13:18:37 fetching corpus: 400, signal 81884/93498 (executing program)
2022/09/20 13:18:37 fetching corpus: 450, signal 87366/99784 (executing program)
2022/09/20 13:18:37 fetching corpus: 500, signal 91425/104665 (executing program)
2022/09/20 13:18:37 fetching corpus: 550, signal 93536/107720 (executing program)
2022/09/20 13:18:38 fetching corpus: 600, signal 97644/112541 (executing program)
2022/09/20 13:18:38 fetching corpus: 650, signal 101036/116640 (executing program)
2022/09/20 13:18:38 fetching corpus: 700, signal 103854/120170 (executing program)
2022/09/20 13:18:38 fetching corpus: 749, signal 106358/123423 (executing program)
2022/09/20 13:18:38 fetching corpus: 799, signal 108376/126169 (executing program)
2022/09/20 13:18:38 fetching corpus: 848, signal 110649/129172 (executing program)
2022/09/20 13:18:38 fetching corpus: 898, signal 113272/132431 (executing program)
2022/09/20 13:18:38 fetching corpus: 948, signal 115506/135343 (executing program)
2022/09/20 13:18:39 fetching corpus: 998, signal 118340/138628 (executing program)
2022/09/20 13:18:39 fetching corpus: 1048, signal 120347/141206 (executing program)
2022/09/20 13:18:39 fetching corpus: 1098, signal 122802/144146 (executing program)
2022/09/20 13:18:39 fetching corpus: 1148, signal 125197/146963 (executing program)
2022/09/20 13:18:39 fetching corpus: 1198, signal 126864/149162 (executing program)
2022/09/20 13:18:39 fetching corpus: 1248, signal 130142/152613 (executing program)
2022/09/20 13:18:39 fetching corpus: 1297, signal 131776/154718 (executing program)
2022/09/20 13:18:40 fetching corpus: 1347, signal 133926/157204 (executing program)
2022/09/20 13:18:40 fetching corpus: 1396, signal 135688/159351 (executing program)
2022/09/20 13:18:40 fetching corpus: 1446, signal 137792/161717 (executing program)
2022/09/20 13:18:40 fetching corpus: 1496, signal 140107/164204 (executing program)
2022/09/20 13:18:40 fetching corpus: 1545, signal 141996/166319 (executing program)
2022/09/20 13:18:40 fetching corpus: 1592, signal 146065/170061 (executing program)
2022/09/20 13:18:40 fetching corpus: 1642, signal 146950/171454 (executing program)
2022/09/20 13:18:41 fetching corpus: 1692, signal 148709/173429 (executing program)
2022/09/20 13:18:41 fetching corpus: 1742, signal 150793/175620 (executing program)
2022/09/20 13:18:41 fetching corpus: 1792, signal 152439/177444 (executing program)
2022/09/20 13:18:41 fetching corpus: 1842, signal 153596/178893 (executing program)
2022/09/20 13:18:41 fetching corpus: 1889, signal 155003/180462 (executing program)
2022/09/20 13:18:41 fetching corpus: 1938, signal 155869/181681 (executing program)
2022/09/20 13:18:41 fetching corpus: 1988, signal 157390/183313 (executing program)
2022/09/20 13:18:41 fetching corpus: 2037, signal 158355/184550 (executing program)
2022/09/20 13:18:42 fetching corpus: 2087, signal 159573/185931 (executing program)
2022/09/20 13:18:42 fetching corpus: 2137, signal 160595/187168 (executing program)
2022/09/20 13:18:42 fetching corpus: 2187, signal 161913/188553 (executing program)
2022/09/20 13:18:42 fetching corpus: 2236, signal 162781/189693 (executing program)
2022/09/20 13:18:42 fetching corpus: 2286, signal 163699/190829 (executing program)
2022/09/20 13:18:42 fetching corpus: 2336, signal 164714/191967 (executing program)
2022/09/20 13:18:42 fetching corpus: 2386, signal 165876/193253 (executing program)
2022/09/20 13:18:42 fetching corpus: 2436, signal 167054/194494 (executing program)
2022/09/20 13:18:43 fetching corpus: 2486, signal 168438/195834 (executing program)
2022/09/20 13:18:43 fetching corpus: 2536, signal 169987/197231 (executing program)
2022/09/20 13:18:43 fetching corpus: 2584, signal 171002/198331 (executing program)
2022/09/20 13:18:43 fetching corpus: 2634, signal 172882/199983 (executing program)
2022/09/20 13:18:43 fetching corpus: 2684, signal 174159/201170 (executing program)
2022/09/20 13:18:43 fetching corpus: 2733, signal 175244/202264 (executing program)
2022/09/20 13:18:43 fetching corpus: 2782, signal 176227/203270 (executing program)
2022/09/20 13:18:43 fetching corpus: 2832, signal 177522/204481 (executing program)
2022/09/20 13:18:44 fetching corpus: 2882, signal 178358/205362 (executing program)
2022/09/20 13:18:44 fetching corpus: 2931, signal 179304/206259 (executing program)
2022/09/20 13:18:44 fetching corpus: 2980, signal 180458/207239 (executing program)
2022/09/20 13:18:44 fetching corpus: 3029, signal 181296/208083 (executing program)
2022/09/20 13:18:44 fetching corpus: 3078, signal 182638/209124 (executing program)
2022/09/20 13:18:44 fetching corpus: 3128, signal 183999/210172 (executing program)
2022/09/20 13:18:44 fetching corpus: 3178, signal 184649/210828 (executing program)
2022/09/20 13:18:44 fetching corpus: 3228, signal 185246/211502 (executing program)
2022/09/20 13:18:45 fetching corpus: 3278, signal 186309/212323 (executing program)
2022/09/20 13:18:45 fetching corpus: 3328, signal 186980/212998 (executing program)
2022/09/20 13:18:45 fetching corpus: 3378, signal 187913/213767 (executing program)
2022/09/20 13:18:45 fetching corpus: 3428, signal 188785/214423 (executing program)
2022/09/20 13:18:45 fetching corpus: 3478, signal 189919/215268 (executing program)
2022/09/20 13:18:45 fetching corpus: 3526, signal 190868/215988 (executing program)
2022/09/20 13:18:46 fetching corpus: 3576, signal 191625/216633 (executing program)
2022/09/20 13:18:46 fetching corpus: 3626, signal 192901/217454 (executing program)
2022/09/20 13:18:46 fetching corpus: 3676, signal 193594/218022 (executing program)
2022/09/20 13:18:46 fetching corpus: 3726, signal 194556/218676 (executing program)
2022/09/20 13:18:46 fetching corpus: 3776, signal 195855/219429 (executing program)
2022/09/20 13:18:46 fetching corpus: 3826, signal 197008/220119 (executing program)
2022/09/20 13:18:46 fetching corpus: 3874, signal 197996/220744 (executing program)
2022/09/20 13:18:46 fetching corpus: 3924, signal 198753/221302 (executing program)
2022/09/20 13:18:47 fetching corpus: 3974, signal 199494/221792 (executing program)
2022/09/20 13:18:47 fetching corpus: 4024, signal 200062/222213 (executing program)
2022/09/20 13:18:47 fetching corpus: 4074, signal 200938/222729 (executing program)
2022/09/20 13:18:47 fetching corpus: 4124, signal 201540/223132 (executing program)
2022/09/20 13:18:47 fetching corpus: 4174, signal 202064/223543 (executing program)
2022/09/20 13:18:47 fetching corpus: 4224, signal 202917/223999 (executing program)
2022/09/20 13:18:47 fetching corpus: 4274, signal 203759/224457 (executing program)
2022/09/20 13:18:47 fetching corpus: 4324, signal 204517/224845 (executing program)
2022/09/20 13:18:48 fetching corpus: 4373, signal 205148/225244 (executing program)
2022/09/20 13:18:48 fetching corpus: 4423, signal 206047/225697 (executing program)
2022/09/20 13:18:48 fetching corpus: 4473, signal 206486/226027 (executing program)
2022/09/20 13:18:48 fetching corpus: 4523, signal 207040/226352 (executing program)
2022/09/20 13:18:48 fetching corpus: 4573, signal 207985/226741 (executing program)
2022/09/20 13:18:48 fetching corpus: 4623, signal 209056/227148 (executing program)
2022/09/20 13:18:48 fetching corpus: 4673, signal 209789/227455 (executing program)
2022/09/20 13:18:48 fetching corpus: 4723, signal 210609/227755 (executing program)
2022/09/20 13:18:49 fetching corpus: 4772, signal 211474/228061 (executing program)
2022/09/20 13:18:49 fetching corpus: 4822, signal 212240/228340 (executing program)
2022/09/20 13:18:49 fetching corpus: 4871, signal 213289/228630 (executing program)
2022/09/20 13:18:49 fetching corpus: 4920, signal 213726/228845 (executing program)
2022/09/20 13:18:49 fetching corpus: 4970, signal 214145/229041 (executing program)
2022/09/20 13:18:49 fetching corpus: 5020, signal 215295/229405 (executing program)
2022/09/20 13:18:49 fetching corpus: 5070, signal 216013/229619 (executing program)
2022/09/20 13:18:50 fetching corpus: 5120, signal 216509/229835 (executing program)
2022/09/20 13:18:50 fetching corpus: 5170, signal 217023/229999 (executing program)
2022/09/20 13:18:50 fetching corpus: 5220, signal 217587/230146 (executing program)
2022/09/20 13:18:50 fetching corpus: 5270, signal 218745/230335 (executing program)
2022/09/20 13:18:50 fetching corpus: 5320, signal 219326/230498 (executing program)
2022/09/20 13:18:50 fetching corpus: 5370, signal 220173/230647 (executing program)
2022/09/20 13:18:50 fetching corpus: 5420, signal 221150/230778 (executing program)
2022/09/20 13:18:50 fetching corpus: 5470, signal 221887/230879 (executing program)
2022/09/20 13:18:51 fetching corpus: 5520, signal 222665/230969 (executing program)
2022/09/20 13:18:51 fetching corpus: 5570, signal 223236/231042 (executing program)
2022/09/20 13:18:51 fetching corpus: 5620, signal 223702/231118 (executing program)
2022/09/20 13:18:51 fetching corpus: 5670, signal 224385/231123 (executing program)
2022/09/20 13:18:51 fetching corpus: 5720, signal 224809/231126 (executing program)
2022/09/20 13:18:51 fetching corpus: 5746, signal 225110/231154 (executing program)
2022/09/20 13:18:51 fetching corpus: 5746, signal 225110/231154 (executing program)
2022/09/20 13:18:54 starting 8 fuzzer processes
13:18:54 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

13:18:54 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, 0x0, &(0x7f0000000080))

[   73.518863] audit: type=1400 audit(1663679934.742:6): avc:  denied  { execmem } for  pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:18:54 executing program 3:
syz_io_uring_setup(0xcc, &(0x7f00000001c0)={0x0, 0x0, 0x4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
syz_genetlink_get_family_id$nbd(0x0, 0xffffffffffffffff)
syz_mount_image$tmpfs(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x0, 0x1, &(0x7f0000000500)=[{&(0x7f0000000440)="c6", 0x1}], 0x0, &(0x7f0000000540)={[{@mpol={'mpol', 0x3d, {'interleave', '=relative'}}}]})
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000008c0)={0x14}, 0x14}}, 0x0)
setxattr$system_posix_acl(&(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00)='system.posix_acl_access\x00', &(0x7f0000000cc0)={{}, {}, [{0x2, 0x0, 0xee01}, {0x2, 0x0, 0xffffffffffffffff}]}, 0x34, 0x0)

13:18:54 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
write$binfmt_misc(r0, &(0x7f0000000880)={'syz1'}, 0x4)

13:18:54 executing program 6:
msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0)

13:18:54 executing program 4:
mount_setattr(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)

13:18:54 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x4040, 0x0)

13:18:54 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000002, 0x401a012, r1, 0x0)
pkey_mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

[   74.916450] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.918674] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.920156] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   74.921170] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   74.922642] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.923960] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   74.925628] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   74.927172] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   74.929488] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   74.931022] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   74.944231] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.945648] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   74.951130] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   74.954688] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   74.956202] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   74.959837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   74.961516] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.963262] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   74.964820] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.969883] Bluetooth: hci0: HCI_REQ-0x0c1a
[   74.970232] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   74.971438] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   74.971716] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   74.975800] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   74.977120] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   74.981654] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   74.983225] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   74.984985] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   74.985169] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   74.987400] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.988244] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   74.991573] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   74.993117] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   74.995060] Bluetooth: hci6: HCI_REQ-0x0c1a
[   74.998609] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   74.999991] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   75.008375] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.008657] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.011335] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   75.013373] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   75.016250] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   75.021114] Bluetooth: hci1: HCI_REQ-0x0c1a
[   75.021674] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.022575] Bluetooth: hci3: HCI_REQ-0x0c1a
[   75.026501] Bluetooth: hci2: HCI_REQ-0x0c1a
[   75.027368] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.028537] Bluetooth: hci5: HCI_REQ-0x0c1a
[   75.029363] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.047652] Bluetooth: hci4: HCI_REQ-0x0c1a
[   75.065134] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   75.067013] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   75.068594] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   75.071846] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   75.073965] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   75.075313] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   75.079890] Bluetooth: hci7: HCI_REQ-0x0c1a
[   77.085346] Bluetooth: hci5: command 0x0409 tx timeout
[   77.085373] Bluetooth: hci3: command 0x0409 tx timeout
[   77.086315] Bluetooth: hci2: command 0x0409 tx timeout
[   77.087053] Bluetooth: hci6: command 0x0409 tx timeout
[   77.087691] Bluetooth: hci0: command 0x0409 tx timeout
[   77.107908] Bluetooth: hci1: command 0x0409 tx timeout
[   77.108542] Bluetooth: hci7: command 0x0409 tx timeout
[   77.109201] Bluetooth: hci4: command 0x0409 tx timeout
[   79.091825] Bluetooth: hci0: command 0x041b tx timeout
[   79.092279] Bluetooth: hci6: command 0x041b tx timeout
[   79.092659] Bluetooth: hci2: command 0x041b tx timeout
[   79.093073] Bluetooth: hci3: command 0x041b tx timeout
[   79.093439] Bluetooth: hci5: command 0x041b tx timeout
[   79.155895] Bluetooth: hci4: command 0x041b tx timeout
[   79.156328] Bluetooth: hci7: command 0x041b tx timeout
[   79.156701] Bluetooth: hci1: command 0x041b tx timeout
[   81.139856] Bluetooth: hci5: command 0x040f tx timeout
[   81.140294] Bluetooth: hci3: command 0x040f tx timeout
[   81.140650] Bluetooth: hci2: command 0x040f tx timeout
[   81.141108] Bluetooth: hci6: command 0x040f tx timeout
[   81.141470] Bluetooth: hci0: command 0x040f tx timeout
[   81.203921] Bluetooth: hci1: command 0x040f tx timeout
[   81.204395] Bluetooth: hci7: command 0x040f tx timeout
[   81.205162] Bluetooth: hci4: command 0x040f tx timeout
[   83.187957] Bluetooth: hci0: command 0x0419 tx timeout
[   83.188404] Bluetooth: hci6: command 0x0419 tx timeout
[   83.188808] Bluetooth: hci2: command 0x0419 tx timeout
[   83.189187] Bluetooth: hci3: command 0x0419 tx timeout
[   83.189546] Bluetooth: hci5: command 0x0419 tx timeout
[   83.251811] Bluetooth: hci4: command 0x0419 tx timeout
[   83.252287] Bluetooth: hci7: command 0x0419 tx timeout
[   83.252650] Bluetooth: hci1: command 0x0419 tx timeout
[  129.962282] tmpfs: Bad value for 'mpol'
[  130.005623] tmpfs: Bad value for 'mpol'
13:19:51 executing program 3:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSLCKTRMIOS(r0, 0x5457, 0x0)

13:19:51 executing program 3:
r0 = epoll_create1(0x0)
epoll_pwait(r0, &(0x7f0000000080)=[{}], 0x1, 0x0, &(0x7f00000000c0)={[0x7fff]}, 0x8)

13:19:51 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x7f, @fixed}, 0xe)

13:19:52 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, 0x0, &(0x7f0000000080))

13:19:52 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, 0x0, &(0x7f0000000080))

13:19:52 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, 0x0, &(0x7f0000000080))

13:19:52 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read(r0, 0x0, 0x5f)

[  131.160026] audit: type=1400 audit(1663679992.383:7): avc:  denied  { open } for  pid=3929 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  131.161613] audit: type=1400 audit(1663679992.384:8): avc:  denied  { kernel } for  pid=3929 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  131.178868] audit: type=1400 audit(1663679992.402:9): avc:  denied  { read } for  pid=3929 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  131.190688] ------------[ cut here ]------------
[  131.190713] 
[  131.190716] ======================================================
[  131.190720] WARNING: possible circular locking dependency detected
[  131.190724] 6.0.0-rc6-next-20220920 #1 Not tainted
[  131.190734] ------------------------------------------------------
[  131.190737] syz-executor.5/3933 is trying to acquire lock:
[  131.190744] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  131.190783] 
[  131.190783] but task is already holding lock:
[  131.190786] ffff88804066a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  131.190814] 
[  131.190814] which lock already depends on the new lock.
[  131.190814] 
[  131.190817] 
[  131.190817] the existing dependency chain (in reverse order) is:
[  131.190821] 
[  131.190821] -> #3 (&ctx->lock){....}-{2:2}:
[  131.190835]        _raw_spin_lock+0x2a/0x40
[  131.190854]        __perf_event_task_sched_out+0x53b/0x18d0
[  131.190867]        __schedule+0xedd/0x2470
[  131.190880]        schedule+0xda/0x1b0
[  131.190892]        exit_to_user_mode_prepare+0x114/0x1a0
[  131.190904]        syscall_exit_to_user_mode+0x19/0x40
[  131.190915]        do_syscall_64+0x48/0x90
[  131.190931]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.190950] 
[  131.190950] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  131.190964]        _raw_spin_lock_nested+0x30/0x40
[  131.190981]        raw_spin_rq_lock_nested+0x1e/0x30
[  131.190995]        task_fork_fair+0x63/0x4d0
[  131.191011]        sched_cgroup_fork+0x3d0/0x540
[  131.191026]        copy_process+0x4183/0x6e20
[  131.191036]        kernel_clone+0xe7/0x890
[  131.191046]        user_mode_thread+0xad/0xf0
[  131.191056]        rest_init+0x24/0x250
[  131.191067]        arch_call_rest_init+0xf/0x14
[  131.191082]        start_kernel+0x4c1/0x4e6
[  131.191094]        secondary_startup_64_no_verify+0xe0/0xeb
[  131.191108] 
[  131.191108] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  131.191122]        _raw_spin_lock_irqsave+0x39/0x60
[  131.191139]        try_to_wake_up+0xab/0x1930
[  131.191152]        up+0x75/0xb0
[  131.191163]        __up_console_sem+0x6e/0x80
[  131.191179]        console_unlock+0x46a/0x590
[  131.191195]        vt_ioctl+0x2822/0x2ca0
[  131.191208]        tty_ioctl+0x7c4/0x1700
[  131.191220]        __x64_sys_ioctl+0x19a/0x210
[  131.191237]        do_syscall_64+0x3b/0x90
[  131.191252]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.191271] 
[  131.191271] -> #0 ((console_sem).lock){....}-{2:2}:
[  131.191284]        __lock_acquire+0x2a02/0x5e70
[  131.191301]        lock_acquire+0x1a2/0x530
[  131.191316]        _raw_spin_lock_irqsave+0x39/0x60
[  131.191334]        down_trylock+0xe/0x70
[  131.191346]        __down_trylock_console_sem+0x3b/0xd0
[  131.191362]        vprintk_emit+0x16b/0x560
[  131.191378]        vprintk+0x84/0xa0
[  131.191394]        _printk+0xba/0xf1
[  131.191404]        report_bug.cold+0x72/0xab
[  131.191422]        handle_bug+0x3c/0x70
[  131.191437]        exc_invalid_op+0x14/0x50
[  131.191453]        asm_exc_invalid_op+0x16/0x20
[  131.191463]        group_sched_out.part.0+0x2c7/0x460
[  131.191474]        ctx_sched_out+0x8f1/0xc10
[  131.191484]        __perf_event_task_sched_out+0x6d0/0x18d0
[  131.191496]        __schedule+0xedd/0x2470
[  131.191508]        schedule+0xda/0x1b0
[  131.191520]        exit_to_user_mode_prepare+0x114/0x1a0
[  131.191531]        syscall_exit_to_user_mode+0x19/0x40
[  131.191542]        do_syscall_64+0x48/0x90
[  131.191557]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.191575] 
[  131.191575] other info that might help us debug this:
[  131.191575] 
[  131.191578] Chain exists of:
[  131.191578]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  131.191578] 
[  131.191593]  Possible unsafe locking scenario:
[  131.191593] 
[  131.191595]        CPU0                    CPU1
[  131.191598]        ----                    ----
[  131.191600]   lock(&ctx->lock);
[  131.191606]                                lock(&rq->__lock);
[  131.191612]                                lock(&ctx->lock);
[  131.191618]   lock((console_sem).lock);
[  131.191624] 
[  131.191624]  *** DEADLOCK ***
[  131.191624] 
[  131.191626] 2 locks held by syz-executor.5/3933:
[  131.191633]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  131.191660]  #1: ffff88804066a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  131.191688] 
[  131.191688] stack backtrace:
[  131.191691] CPU: 0 PID: 3933 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220920 #1
[  131.191704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  131.191712] Call Trace:
[  131.191716]  <TASK>
[  131.191720]  dump_stack_lvl+0x8b/0xb3
[  131.191737]  check_noncircular+0x263/0x2e0
[  131.191754]  ? format_decode+0x26c/0xb50
[  131.191771]  ? print_circular_bug+0x450/0x450
[  131.191787]  ? enable_ptr_key_workfn+0x20/0x20
[  131.191803]  ? format_decode+0x26c/0xb50
[  131.191819]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  131.191836]  __lock_acquire+0x2a02/0x5e70
[  131.191858]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  131.191880]  lock_acquire+0x1a2/0x530
[  131.191896]  ? down_trylock+0xe/0x70
[  131.191911]  ? lock_release+0x750/0x750
[  131.191929]  ? __lock_acquire+0x164d/0x5e70
[  131.191947]  ? vprintk+0x84/0xa0
[  131.191965]  _raw_spin_lock_irqsave+0x39/0x60
[  131.191982]  ? down_trylock+0xe/0x70
[  131.191996]  down_trylock+0xe/0x70
[  131.192009]  ? vprintk+0x84/0xa0
[  131.192025]  __down_trylock_console_sem+0x3b/0xd0
[  131.192043]  vprintk_emit+0x16b/0x560
[  131.192061]  vprintk+0x84/0xa0
[  131.192078]  _printk+0xba/0xf1
[  131.192089]  ? record_print_text.cold+0x16/0x16
[  131.192103]  ? report_bug.cold+0x66/0xab
[  131.192120]  ? group_sched_out.part.0+0x2c7/0x460
[  131.192131]  report_bug.cold+0x72/0xab
[  131.192148]  handle_bug+0x3c/0x70
[  131.192164]  exc_invalid_op+0x14/0x50
[  131.192181]  asm_exc_invalid_op+0x16/0x20
[  131.192192] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  131.192205] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  131.192217] RSP: 0018:ffff8880412d7c48 EFLAGS: 00010006
[  131.192226] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  131.192233] RDX: ffff88803fb9b580 RSI: ffffffff815662c7 RDI: 0000000000000005
[  131.192241] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  131.192248] R10: 0000000000000000 R11: ffffffff865ae01b R12: ffff88804066a800
[  131.192256] R13: ffff88806ce3d140 R14: ffffffff8547cec0 R15: 0000000000000002
[  131.192267]  ? group_sched_out.part.0+0x2c7/0x460
[  131.192281]  ? group_sched_out.part.0+0x2c7/0x460
[  131.192294]  ctx_sched_out+0x8f1/0xc10
[  131.192306]  __perf_event_task_sched_out+0x6d0/0x18d0
[  131.192322]  ? lock_is_held_type+0xd7/0x130
[  131.192334]  ? __perf_cgroup_move+0x160/0x160
[  131.192346]  ? set_next_entity+0x304/0x550
[  131.192364]  ? update_curr+0x267/0x740
[  131.192382]  ? lock_is_held_type+0xd7/0x130
[  131.192394]  __schedule+0xedd/0x2470
[  131.192410]  ? io_schedule_timeout+0x150/0x150
[  131.192427]  schedule+0xda/0x1b0
[  131.192440]  exit_to_user_mode_prepare+0x114/0x1a0
[  131.192452]  syscall_exit_to_user_mode+0x19/0x40
[  131.192464]  do_syscall_64+0x48/0x90
[  131.192480]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.192500] RIP: 0033:0x7f348b270b19
[  131.192508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  131.192519] RSP: 002b:00007f34887e6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  131.192530] RAX: 0000000000000001 RBX: 00007f348b383f68 RCX: 00007f348b270b19
[  131.192537] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f348b383f6c
[  131.192545] RBP: 00007f348b383f60 R08: 000000000000000e R09: 0000000000000000
[  131.192552] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f348b383f6c
[  131.192559] R13: 00007ffe2f734fdf R14: 00007f34887e6300 R15: 0000000000022000
[  131.192573]  </TASK>
[  131.242031] WARNING: CPU: 0 PID: 3933 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  131.242630] Modules linked in:
[  131.242847] CPU: 0 PID: 3933 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220920 #1
[  131.243371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  131.244096] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  131.244452] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  131.245635] RSP: 0018:ffff8880412d7c48 EFLAGS: 00010006
[  131.245987] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  131.246452] RDX: ffff88803fb9b580 RSI: ffffffff815662c7 RDI: 0000000000000005
[  131.246916] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  131.247381] R10: 0000000000000000 R11: ffffffff865ae01b R12: ffff88804066a800
[  131.247845] R13: ffff88806ce3d140 R14: ffffffff8547cec0 R15: 0000000000000002
[  131.248363] FS:  00007f34887e6700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  131.248903] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  131.249288] CR2: 00007f348b384018 CR3: 0000000040aac000 CR4: 0000000000350ef0
[  131.249761] Call Trace:
[  131.249935]  <TASK>
[  131.250090]  ctx_sched_out+0x8f1/0xc10
[  131.250355]  __perf_event_task_sched_out+0x6d0/0x18d0
[  131.250701]  ? lock_is_held_type+0xd7/0x130
[  131.250988]  ? __perf_cgroup_move+0x160/0x160
[  131.251321]  ? set_next_entity+0x304/0x550
[  131.251615]  ? update_curr+0x267/0x740
[  131.251889]  ? lock_is_held_type+0xd7/0x130
[  131.252180]  __schedule+0xedd/0x2470
[  131.252438]  ? io_schedule_timeout+0x150/0x150
[  131.252758]  schedule+0xda/0x1b0
[  131.252996]  exit_to_user_mode_prepare+0x114/0x1a0
[  131.253328]  syscall_exit_to_user_mode+0x19/0x40
[  131.253670]  do_syscall_64+0x48/0x90
[  131.253928]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  131.254276] RIP: 0033:0x7f348b270b19
[  131.254526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  131.255694] RSP: 002b:00007f34887e6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  131.256191] RAX: 0000000000000001 RBX: 00007f348b383f68 RCX: 00007f348b270b19
[  131.256660] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f348b383f6c
[  131.257127] RBP: 00007f348b383f60 R08: 000000000000000e R09: 0000000000000000
[  131.257602] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f348b383f6c
[  131.258067] R13: 00007ffe2f734fdf R14: 00007f34887e6300 R15: 0000000000022000
[  131.258539]  </TASK>
[  131.258698] irq event stamp: 480
[  131.258922] hardirqs last  enabled at (479): [<ffffffff8133f8f9>] exit_to_user_mode_prepare+0x109/0x1a0
[  131.259529] hardirqs last disabled at (480): [<ffffffff8424c195>] __schedule+0x1225/0x2470
[  131.260067] softirqs last  enabled at (282): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  131.260626] softirqs last disabled at (79): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  131.261172] ---[ end trace 0000000000000000 ]---
13:19:52 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x7f, @fixed}, 0xe)

[  131.324815] audit: type=1400 audit(1663679992.545:10): avc:  denied  { write } for  pid=3935 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
13:19:53 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

13:19:53 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read(r0, 0x0, 0x5f)

13:19:53 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x4040, 0x0)

13:19:53 executing program 2:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)

13:19:53 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000002, 0x401a012, r1, 0x0)
pkey_mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

13:19:53 executing program 4:
prctl$PR_MCE_KILL(0x35, 0x0, 0x4)

13:19:53 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x7f, @fixed}, 0xe)

13:19:53 executing program 6:
msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0)

13:19:53 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

13:19:53 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00))

13:19:53 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000002, 0x401a012, r1, 0x0)
pkey_mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

13:19:53 executing program 6:
msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0)

[  132.260616] loop4: detected capacity change from 0 to 2048
13:19:53 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x4040, 0x0)

13:19:53 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read(r0, 0x0, 0x5f)

[  132.302713] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  132.304596] ext4 filesystem being mounted at /syzkaller-testdir698279999/syzkaller.dNtLpd/2/file0 supports timestamps until 2038 (0x7fffffff)
13:19:53 executing program 6:
msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0)

[  132.347191] EXT4-fs (loop4): unmounting filesystem.
13:19:53 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00))

[  132.410020] loop4: detected capacity change from 0 to 2048
[  132.433297] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  132.434424] ext4 filesystem being mounted at /syzkaller-testdir698279999/syzkaller.dNtLpd/3/file0 supports timestamps until 2038 (0x7fffffff)
[  132.460190] EXT4-fs (loop4): unmounting filesystem.
[  132.467775] Bluetooth: hci7: command 0x0405 tx timeout
13:19:54 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

13:19:54 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
read(r0, 0x0, 0x5f)

13:19:54 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x11, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000002, 0x401a012, r1, 0x0)
pkey_mprotect(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

13:19:54 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x4040, 0x0)

13:19:54 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

13:19:54 executing program 6:
msync(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x7)

13:19:54 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00))

13:19:54 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x7f, @fixed}, 0xe)

[  133.078759] loop4: detected capacity change from 0 to 2048
[  133.087098] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  133.089484] ext4 filesystem being mounted at /syzkaller-testdir698279999/syzkaller.dNtLpd/4/file0 supports timestamps until 2038 (0x7fffffff)
[  133.140094] EXT4-fs (loop4): unmounting filesystem.
13:19:54 executing program 6:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'icmp\x00'}, &(0x7f0000000080)=0x1e)

13:19:54 executing program 4:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00))

13:19:54 executing program 1:
syz_mount_image$nfs4(&(0x7f0000000740), &(0x7f0000000780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)={[{'ac,'}]})

13:19:54 executing program 1:
syz_mount_image$nfs4(&(0x7f0000000740), &(0x7f0000000780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)={[{'ac,'}]})

[  133.213274] loop4: detected capacity change from 0 to 2048
[  133.236714] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  133.238604] ext4 filesystem being mounted at /syzkaller-testdir698279999/syzkaller.dNtLpd/5/file0 supports timestamps until 2038 (0x7fffffff)
13:19:54 executing program 6:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'icmp\x00'}, &(0x7f0000000080)=0x1e)

13:19:54 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe57d)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xa, 0x7f, 0x4, 0xe0, 0x0, 0xffffffffffffff01, 0x8, 0x1e, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800, 0x4, @perf_config_ext={0x3, 0xf3}, 0x40030, 0x7, 0x7fff, 0x4, 0x0, 0x3343, 0x401, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xffffffffffffffff, r0, 0xb)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf70f0a5ea4736221, 0x80010, 0xffffffffffffffff, 0x10000000)
setsockopt$sock_timeval(r1, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

[  133.302404] EXT4-fs (loop4): unmounting filesystem.
13:19:54 executing program 6:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'icmp\x00'}, &(0x7f0000000080)=0x1e)

13:19:54 executing program 1:
syz_mount_image$nfs4(&(0x7f0000000740), &(0x7f0000000780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)={[{'ac,'}]})


VM DIAGNOSIS:
13:19:52  Registers:
info registers vcpu 0
RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1551 RDI=ffffffff87643ba0 RBP=ffffffff87643b60 RSP=ffff8880412d7698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000061 R11=0000000000000001
R12=0000000000000061 R13=ffffffff87643b60 R14=0000000000000010 R15=ffffffff822b1540
RIP=ffffffff822b15a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f34887e6700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f348b384018 CR3=0000000040aac000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f348b3577c0 00007f348b3577c8
YMM02=0000000000000000 0000000000000000 00007f348b3577e0 00007f348b3577c0
YMM03=0000000000000000 0000000000000000 00007f348b3577c8 00007f348b3577c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=000000000001f1ee RBX=ffff88806ce3eee0 RCX=ffffc90000bc5000 RDX=0000000000040000
RSI=ffffffff813bcd57 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880413076c0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffed100d9c7ddd R13=0000000000000001 R14=ffff88806ce3eee8 R15=dffffc0000000000
RIP=ffffffff81461c9c RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f95d1122700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f92e358727c CR3=0000000008a06000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000