Warning: Permanently added '[localhost]:16342' (ECDSA) to the list of known hosts. 2022/09/12 17:59:15 fuzzer started 2022/09/12 17:59:15 dialing manager at localhost:38027 syzkaller login: [ 36.727761] cgroup: Unknown subsys name 'net' [ 36.821594] cgroup: Unknown subsys name 'rlimit' 2022/09/12 17:59:29 syscalls: 2215 2022/09/12 17:59:29 code coverage: enabled 2022/09/12 17:59:29 comparison tracing: enabled 2022/09/12 17:59:29 extra coverage: enabled 2022/09/12 17:59:29 setuid sandbox: enabled 2022/09/12 17:59:29 namespace sandbox: enabled 2022/09/12 17:59:29 Android sandbox: enabled 2022/09/12 17:59:29 fault injection: enabled 2022/09/12 17:59:29 leak checking: enabled 2022/09/12 17:59:29 net packet injection: enabled 2022/09/12 17:59:29 net device setup: enabled 2022/09/12 17:59:29 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 17:59:29 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 17:59:29 USB emulation: enabled 2022/09/12 17:59:29 hci packet injection: enabled 2022/09/12 17:59:29 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 17:59:29 802.15.4 emulation: enabled 2022/09/12 17:59:29 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 17:59:29 fetching corpus: 50, signal 33381/36877 (executing program) 2022/09/12 17:59:29 fetching corpus: 100, signal 50456/55334 (executing program) 2022/09/12 17:59:29 fetching corpus: 150, signal 55328/61669 (executing program) 2022/09/12 17:59:29 fetching corpus: 200, signal 62990/70614 (executing program) 2022/09/12 17:59:29 fetching corpus: 250, signal 68584/77451 (executing program) 2022/09/12 17:59:30 fetching corpus: 300, signal 75345/85324 (executing program) 2022/09/12 17:59:30 fetching corpus: 350, signal 81437/92455 (executing program) 2022/09/12 17:59:30 fetching corpus: 400, signal 86477/98549 (executing program) 2022/09/12 17:59:30 fetching corpus: 450, signal 90845/103939 (executing program) 2022/09/12 17:59:30 fetching corpus: 500, signal 94830/108951 (executing program) 2022/09/12 17:59:30 fetching corpus: 550, signal 97561/112755 (executing program) 2022/09/12 17:59:30 fetching corpus: 600, signal 100097/116300 (executing program) 2022/09/12 17:59:31 fetching corpus: 650, signal 103005/120148 (executing program) 2022/09/12 17:59:31 fetching corpus: 700, signal 106169/124248 (executing program) 2022/09/12 17:59:31 fetching corpus: 750, signal 109159/128123 (executing program) 2022/09/12 17:59:31 fetching corpus: 800, signal 112630/132281 (executing program) 2022/09/12 17:59:31 fetching corpus: 850, signal 115244/135691 (executing program) 2022/09/12 17:59:31 fetching corpus: 900, signal 117454/138726 (executing program) 2022/09/12 17:59:31 fetching corpus: 950, signal 119857/141905 (executing program) 2022/09/12 17:59:31 fetching corpus: 1000, signal 121717/144552 (executing program) 2022/09/12 17:59:31 fetching corpus: 1050, signal 123963/147519 (executing program) 2022/09/12 17:59:32 fetching corpus: 1100, signal 125533/149933 (executing program) 2022/09/12 17:59:32 fetching corpus: 1150, signal 127507/152622 (executing program) 2022/09/12 17:59:32 fetching corpus: 1200, signal 129929/155648 (executing program) 2022/09/12 17:59:32 fetching corpus: 1250, signal 131296/157778 (executing program) 2022/09/12 17:59:32 fetching corpus: 1300, signal 132938/160111 (executing program) 2022/09/12 17:59:32 fetching corpus: 1350, signal 134748/162551 (executing program) 2022/09/12 17:59:32 fetching corpus: 1400, signal 136806/165115 (executing program) 2022/09/12 17:59:32 fetching corpus: 1450, signal 138220/167142 (executing program) 2022/09/12 17:59:33 fetching corpus: 1500, signal 140199/169617 (executing program) 2022/09/12 17:59:33 fetching corpus: 1550, signal 142166/172081 (executing program) 2022/09/12 17:59:33 fetching corpus: 1600, signal 144672/174965 (executing program) 2022/09/12 17:59:33 fetching corpus: 1650, signal 146359/177138 (executing program) 2022/09/12 17:59:33 fetching corpus: 1700, signal 148046/179287 (executing program) 2022/09/12 17:59:33 fetching corpus: 1750, signal 149857/181513 (executing program) 2022/09/12 17:59:34 fetching corpus: 1800, signal 151158/183312 (executing program) 2022/09/12 17:59:34 fetching corpus: 1850, signal 152972/185468 (executing program) 2022/09/12 17:59:34 fetching corpus: 1900, signal 154354/187264 (executing program) 2022/09/12 17:59:34 fetching corpus: 1950, signal 155678/189071 (executing program) 2022/09/12 17:59:34 fetching corpus: 2000, signal 157140/190907 (executing program) 2022/09/12 17:59:34 fetching corpus: 2050, signal 158694/192814 (executing program) 2022/09/12 17:59:34 fetching corpus: 2100, signal 159919/194434 (executing program) 2022/09/12 17:59:35 fetching corpus: 2150, signal 161508/196331 (executing program) 2022/09/12 17:59:35 fetching corpus: 2200, signal 162553/197887 (executing program) 2022/09/12 17:59:35 fetching corpus: 2250, signal 164095/199738 (executing program) 2022/09/12 17:59:35 fetching corpus: 2300, signal 165722/201590 (executing program) 2022/09/12 17:59:35 fetching corpus: 2350, signal 167164/203279 (executing program) 2022/09/12 17:59:35 fetching corpus: 2400, signal 169143/205274 (executing program) 2022/09/12 17:59:36 fetching corpus: 2450, signal 170960/207172 (executing program) 2022/09/12 17:59:36 fetching corpus: 2500, signal 172510/208902 (executing program) 2022/09/12 17:59:36 fetching corpus: 2550, signal 173475/210184 (executing program) 2022/09/12 17:59:36 fetching corpus: 2600, signal 174963/211779 (executing program) 2022/09/12 17:59:36 fetching corpus: 2650, signal 176482/213371 (executing program) 2022/09/12 17:59:36 fetching corpus: 2700, signal 177191/214463 (executing program) 2022/09/12 17:59:36 fetching corpus: 2750, signal 178486/215871 (executing program) 2022/09/12 17:59:37 fetching corpus: 2800, signal 179501/217110 (executing program) 2022/09/12 17:59:37 fetching corpus: 2850, signal 180432/218272 (executing program) 2022/09/12 17:59:37 fetching corpus: 2900, signal 181019/219241 (executing program) 2022/09/12 17:59:37 fetching corpus: 2950, signal 182225/220599 (executing program) 2022/09/12 17:59:37 fetching corpus: 3000, signal 183520/221971 (executing program) 2022/09/12 17:59:37 fetching corpus: 3050, signal 184862/223364 (executing program) 2022/09/12 17:59:37 fetching corpus: 3100, signal 186127/224697 (executing program) 2022/09/12 17:59:37 fetching corpus: 3150, signal 187365/225982 (executing program) 2022/09/12 17:59:38 fetching corpus: 3200, signal 188687/227246 (executing program) 2022/09/12 17:59:38 fetching corpus: 3250, signal 189559/228271 (executing program) 2022/09/12 17:59:38 fetching corpus: 3300, signal 190721/229460 (executing program) 2022/09/12 17:59:38 fetching corpus: 3350, signal 191738/230519 (executing program) 2022/09/12 17:59:38 fetching corpus: 3400, signal 193222/231832 (executing program) 2022/09/12 17:59:38 fetching corpus: 3450, signal 193864/232712 (executing program) 2022/09/12 17:59:39 fetching corpus: 3500, signal 194999/233812 (executing program) 2022/09/12 17:59:39 fetching corpus: 3550, signal 195640/234661 (executing program) 2022/09/12 17:59:39 fetching corpus: 3600, signal 196443/235557 (executing program) 2022/09/12 17:59:39 fetching corpus: 3650, signal 197162/236430 (executing program) 2022/09/12 17:59:39 fetching corpus: 3700, signal 198433/237510 (executing program) 2022/09/12 17:59:39 fetching corpus: 3750, signal 199350/238412 (executing program) 2022/09/12 17:59:39 fetching corpus: 3800, signal 200382/239406 (executing program) 2022/09/12 17:59:39 fetching corpus: 3850, signal 201044/240161 (executing program) 2022/09/12 17:59:40 fetching corpus: 3900, signal 201747/240973 (executing program) 2022/09/12 17:59:40 fetching corpus: 3950, signal 203006/241975 (executing program) 2022/09/12 17:59:40 fetching corpus: 4000, signal 203678/242761 (executing program) 2022/09/12 17:59:40 fetching corpus: 4050, signal 204625/243601 (executing program) 2022/09/12 17:59:40 fetching corpus: 4100, signal 205673/244454 (executing program) 2022/09/12 17:59:40 fetching corpus: 4150, signal 206418/245236 (executing program) 2022/09/12 17:59:40 fetching corpus: 4200, signal 206990/245913 (executing program) 2022/09/12 17:59:41 fetching corpus: 4250, signal 208417/247022 (executing program) 2022/09/12 17:59:41 fetching corpus: 4300, signal 209034/247691 (executing program) 2022/09/12 17:59:41 fetching corpus: 4350, signal 209582/248342 (executing program) 2022/09/12 17:59:41 fetching corpus: 4400, signal 210209/248973 (executing program) 2022/09/12 17:59:41 fetching corpus: 4450, signal 211124/249709 (executing program) 2022/09/12 17:59:41 fetching corpus: 4500, signal 211889/250362 (executing program) 2022/09/12 17:59:41 fetching corpus: 4550, signal 212435/250983 (executing program) 2022/09/12 17:59:41 fetching corpus: 4600, signal 212860/251526 (executing program) 2022/09/12 17:59:42 fetching corpus: 4650, signal 213529/252184 (executing program) 2022/09/12 17:59:42 fetching corpus: 4700, signal 214159/252817 (executing program) 2022/09/12 17:59:42 fetching corpus: 4750, signal 214801/253403 (executing program) 2022/09/12 17:59:42 fetching corpus: 4800, signal 215419/254020 (executing program) 2022/09/12 17:59:42 fetching corpus: 4850, signal 216175/254578 (executing program) 2022/09/12 17:59:42 fetching corpus: 4900, signal 217002/255198 (executing program) 2022/09/12 17:59:42 fetching corpus: 4950, signal 217968/255830 (executing program) 2022/09/12 17:59:43 fetching corpus: 5000, signal 219029/256469 (executing program) 2022/09/12 17:59:43 fetching corpus: 5050, signal 219610/256965 (executing program) 2022/09/12 17:59:43 fetching corpus: 5100, signal 220110/257465 (executing program) 2022/09/12 17:59:43 fetching corpus: 5150, signal 220746/257943 (executing program) 2022/09/12 17:59:43 fetching corpus: 5200, signal 221260/258466 (executing program) 2022/09/12 17:59:43 fetching corpus: 5250, signal 221795/258967 (executing program) 2022/09/12 17:59:43 fetching corpus: 5300, signal 222489/259457 (executing program) 2022/09/12 17:59:44 fetching corpus: 5350, signal 223051/259915 (executing program) 2022/09/12 17:59:44 fetching corpus: 5400, signal 224296/260495 (executing program) 2022/09/12 17:59:44 fetching corpus: 5450, signal 224886/260906 (executing program) 2022/09/12 17:59:44 fetching corpus: 5500, signal 225337/261284 (executing program) 2022/09/12 17:59:44 fetching corpus: 5550, signal 226212/261752 (executing program) 2022/09/12 17:59:44 fetching corpus: 5600, signal 226693/262125 (executing program) 2022/09/12 17:59:45 fetching corpus: 5650, signal 227385/262552 (executing program) 2022/09/12 17:59:45 fetching corpus: 5700, signal 228118/262988 (executing program) 2022/09/12 17:59:45 fetching corpus: 5750, signal 228581/263332 (executing program) 2022/09/12 17:59:45 fetching corpus: 5800, signal 229250/263693 (executing program) 2022/09/12 17:59:45 fetching corpus: 5850, signal 229660/264060 (executing program) 2022/09/12 17:59:45 fetching corpus: 5900, signal 230481/264530 (executing program) 2022/09/12 17:59:45 fetching corpus: 5950, signal 231077/264869 (executing program) 2022/09/12 17:59:46 fetching corpus: 6000, signal 231857/265254 (executing program) 2022/09/12 17:59:46 fetching corpus: 6050, signal 232663/265590 (executing program) 2022/09/12 17:59:46 fetching corpus: 6100, signal 233470/266094 (executing program) 2022/09/12 17:59:46 fetching corpus: 6150, signal 233881/266419 (executing program) 2022/09/12 17:59:46 fetching corpus: 6200, signal 234589/266722 (executing program) 2022/09/12 17:59:46 fetching corpus: 6250, signal 235052/267002 (executing program) 2022/09/12 17:59:46 fetching corpus: 6300, signal 235451/267266 (executing program) 2022/09/12 17:59:47 fetching corpus: 6350, signal 235924/267547 (executing program) 2022/09/12 17:59:47 fetching corpus: 6400, signal 236424/267805 (executing program) 2022/09/12 17:59:47 fetching corpus: 6450, signal 236982/268054 (executing program) 2022/09/12 17:59:47 fetching corpus: 6500, signal 237636/268219 (executing program) 2022/09/12 17:59:47 fetching corpus: 6550, signal 238145/268346 (executing program) 2022/09/12 17:59:47 fetching corpus: 6600, signal 238525/268357 (executing program) 2022/09/12 17:59:47 fetching corpus: 6650, signal 239049/268361 (executing program) 2022/09/12 17:59:48 fetching corpus: 6700, signal 239661/268409 (executing program) 2022/09/12 17:59:48 fetching corpus: 6750, signal 240068/268475 (executing program) 2022/09/12 17:59:48 fetching corpus: 6800, signal 241165/268476 (executing program) 2022/09/12 17:59:48 fetching corpus: 6850, signal 241653/268479 (executing program) 2022/09/12 17:59:48 fetching corpus: 6900, signal 242154/268509 (executing program) 2022/09/12 17:59:48 fetching corpus: 6950, signal 242483/268529 (executing program) 2022/09/12 17:59:48 fetching corpus: 7000, signal 243051/268557 (executing program) 2022/09/12 17:59:48 fetching corpus: 7050, signal 243656/268572 (executing program) 2022/09/12 17:59:48 fetching corpus: 7100, signal 244028/268576 (executing program) 2022/09/12 17:59:49 fetching corpus: 7150, signal 244518/268584 (executing program) 2022/09/12 17:59:49 fetching corpus: 7200, signal 245175/268600 (executing program) 2022/09/12 17:59:49 fetching corpus: 7250, signal 245559/268626 (executing program) 2022/09/12 17:59:49 fetching corpus: 7300, signal 245916/268645 (executing program) 2022/09/12 17:59:49 fetching corpus: 7350, signal 246379/268649 (executing program) 2022/09/12 17:59:49 fetching corpus: 7400, signal 246704/268655 (executing program) 2022/09/12 17:59:49 fetching corpus: 7450, signal 247041/268655 (executing program) 2022/09/12 17:59:49 fetching corpus: 7500, signal 247374/268655 (executing program) 2022/09/12 17:59:50 fetching corpus: 7550, signal 247848/268665 (executing program) 2022/09/12 17:59:50 fetching corpus: 7600, signal 248473/268673 (executing program) 2022/09/12 17:59:50 fetching corpus: 7650, signal 249067/268694 (executing program) 2022/09/12 17:59:50 fetching corpus: 7700, signal 249771/268771 (executing program) 2022/09/12 17:59:50 fetching corpus: 7750, signal 250267/268775 (executing program) 2022/09/12 17:59:50 fetching corpus: 7800, signal 250773/268791 (executing program) 2022/09/12 17:59:51 fetching corpus: 7850, signal 251219/268800 (executing program) 2022/09/12 17:59:51 fetching corpus: 7900, signal 251695/268801 (executing program) 2022/09/12 17:59:51 fetching corpus: 7950, signal 252237/268813 (executing program) 2022/09/12 17:59:51 fetching corpus: 8000, signal 252814/268817 (executing program) 2022/09/12 17:59:51 fetching corpus: 8050, signal 253192/268826 (executing program) 2022/09/12 17:59:51 fetching corpus: 8100, signal 253602/268866 (executing program) 2022/09/12 17:59:51 fetching corpus: 8150, signal 254019/268867 (executing program) 2022/09/12 17:59:52 fetching corpus: 8200, signal 254578/268905 (executing program) 2022/09/12 17:59:52 fetching corpus: 8250, signal 254853/268924 (executing program) 2022/09/12 17:59:52 fetching corpus: 8300, signal 255329/268924 (executing program) 2022/09/12 17:59:52 fetching corpus: 8350, signal 255954/269085 (executing program) 2022/09/12 17:59:52 fetching corpus: 8400, signal 256366/269108 (executing program) 2022/09/12 17:59:52 fetching corpus: 8450, signal 256966/269135 (executing program) 2022/09/12 17:59:52 fetching corpus: 8500, signal 257321/269137 (executing program) 2022/09/12 17:59:52 fetching corpus: 8550, signal 257897/269140 (executing program) 2022/09/12 17:59:52 fetching corpus: 8600, signal 258307/269144 (executing program) 2022/09/12 17:59:53 fetching corpus: 8627, signal 258756/269145 (executing program) 2022/09/12 17:59:53 fetching corpus: 8627, signal 258756/269145 (executing program) 2022/09/12 17:59:55 starting 8 fuzzer processes 17:59:55 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') read$hiddev(r0, &(0x7f0000000040)=""/169, 0x200000e9) 17:59:55 executing program 1: ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, 0x0) openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0) poll(0x0, 0x0, 0x0) syz_open_dev$vcsu(0x0, 0x0, 0x0) syz_open_dev$sg(0x0, 0x0, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x7fff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="140000001d000100000000000000000004"], 0x14}], 0x1}, 0x0) 17:59:55 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000400)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9\xbb\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\xa4\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) 17:59:55 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000940)=[{{&(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=[@ip_retopts={{0x14, 0x0, 0x7, {[@generic={0x94, 0x2}]}}}], 0x18}}], 0x1, 0x0) 17:59:55 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x3) [ 77.006117] audit: type=1400 audit(1663005595.996:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:59:56 executing program 5: r0 = epoll_create(0x80) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)) r2 = socket$inet_udplite(0x2, 0x2, 0x88) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000080)) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000180)) 17:59:56 executing program 6: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000005, 0x32, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x5) 17:59:56 executing program 7: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) [ 78.282764] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 78.283927] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 78.284815] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.285635] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 78.287021] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 78.287558] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 78.288196] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.288828] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 78.289660] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.290220] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 78.290736] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 78.291506] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 78.330738] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 78.332732] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 78.334209] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 78.334259] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 78.336878] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 78.337182] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 78.338171] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 78.338797] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 78.339870] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 78.341872] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 78.343231] Bluetooth: hci4: HCI_REQ-0x0c1a [ 78.343836] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 78.344545] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 78.345283] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 78.346493] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 78.346500] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 78.348831] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 78.350684] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 78.352492] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 78.354481] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 78.356255] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 78.360117] Bluetooth: hci3: HCI_REQ-0x0c1a [ 78.363157] Bluetooth: hci0: HCI_REQ-0x0c1a [ 78.367087] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 78.368428] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 78.369502] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 78.371051] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 78.372184] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 78.373261] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 78.374879] Bluetooth: hci1: HCI_REQ-0x0c1a [ 78.376060] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 78.380774] Bluetooth: hci2: HCI_REQ-0x0c1a [ 78.401296] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 78.402519] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 78.403423] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 78.404341] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 78.409016] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 78.409661] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 78.412002] Bluetooth: hci7: HCI_REQ-0x0c1a [ 78.428499] Bluetooth: hci5: HCI_REQ-0x0c1a [ 78.447299] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 78.475921] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 78.482235] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 78.497964] Bluetooth: hci6: HCI_REQ-0x0c1a [ 80.407588] Bluetooth: hci3: command 0x0409 tx timeout [ 80.407956] Bluetooth: hci2: command 0x0409 tx timeout [ 80.408462] Bluetooth: hci0: command 0x0409 tx timeout [ 80.408961] Bluetooth: hci1: command 0x0409 tx timeout [ 80.410878] Bluetooth: hci4: command 0x0409 tx timeout [ 80.471014] Bluetooth: hci5: command 0x0409 tx timeout [ 80.471472] Bluetooth: hci7: command 0x0409 tx timeout [ 80.535126] Bluetooth: hci6: command 0x0409 tx timeout [ 82.455085] Bluetooth: hci0: command 0x041b tx timeout [ 82.455759] Bluetooth: hci2: command 0x041b tx timeout [ 82.455946] Bluetooth: hci4: command 0x041b tx timeout [ 82.456394] Bluetooth: hci3: command 0x041b tx timeout [ 82.457281] Bluetooth: hci1: command 0x041b tx timeout [ 82.519999] Bluetooth: hci7: command 0x041b tx timeout [ 82.520850] Bluetooth: hci5: command 0x041b tx timeout [ 82.583989] Bluetooth: hci6: command 0x041b tx timeout [ 84.502952] Bluetooth: hci3: command 0x040f tx timeout [ 84.503024] Bluetooth: hci1: command 0x040f tx timeout [ 84.504319] Bluetooth: hci4: command 0x040f tx timeout [ 84.505072] Bluetooth: hci2: command 0x040f tx timeout [ 84.505768] Bluetooth: hci0: command 0x040f tx timeout [ 84.566973] Bluetooth: hci5: command 0x040f tx timeout [ 84.567734] Bluetooth: hci7: command 0x040f tx timeout [ 84.631179] Bluetooth: hci6: command 0x040f tx timeout [ 86.550980] Bluetooth: hci0: command 0x0419 tx timeout [ 86.550996] Bluetooth: hci3: command 0x0419 tx timeout [ 86.551460] Bluetooth: hci2: command 0x0419 tx timeout [ 86.553564] Bluetooth: hci4: command 0x0419 tx timeout [ 86.554036] Bluetooth: hci1: command 0x0419 tx timeout [ 86.614983] Bluetooth: hci7: command 0x0419 tx timeout [ 86.615445] Bluetooth: hci5: command 0x0419 tx timeout [ 86.679012] Bluetooth: hci6: command 0x0419 tx timeout 18:00:50 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000940)=[{{&(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=[@ip_retopts={{0x14, 0x0, 0x7, {[@generic={0x94, 0x2}]}}}], 0x18}}], 0x1, 0x0) 18:00:50 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000940)=[{{&(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=[@ip_retopts={{0x14, 0x0, 0x7, {[@generic={0x94, 0x2}]}}}], 0x18}}], 0x1, 0x0) 18:00:50 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000940)=[{{&(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=[@ip_retopts={{0x14, 0x0, 0x7, {[@generic={0x94, 0x2}]}}}], 0x18}}], 0x1, 0x0) 18:00:50 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001200010000000000000000000c0000000000000000000000040000000c001d"], 0x2c}], 0x1}, 0x0) [ 131.651478] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 18:00:50 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001200010000000000000000000c0000000000000000000000040000000c001d"], 0x2c}], 0x1}, 0x0) [ 131.798407] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 18:00:50 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001200010000000000000000000c0000000000000000000000040000000c001d"], 0x2c}], 0x1}, 0x0) [ 131.910703] netlink: 'syz-executor.3': attribute type 29 has an invalid length. 18:00:50 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001200010000000000000000000c0000000000000000000000040000000c001d"], 0x2c}], 0x1}, 0x0) [ 132.021089] netlink: 'syz-executor.3': attribute type 29 has an invalid length. [ 132.711868] audit: type=1400 audit(1663005651.703:7): avc: denied { open } for pid=3836 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.713638] audit: type=1400 audit(1663005651.703:8): avc: denied { kernel } for pid=3836 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.735707] ------------[ cut here ]------------ [ 132.735741] [ 132.735746] ====================================================== [ 132.735752] WARNING: possible circular locking dependency detected [ 132.735759] 6.0.0-rc5-next-20220912 #1 Not tainted [ 132.735771] ------------------------------------------------------ [ 132.735777] syz-executor.4/3837 is trying to acquire lock: [ 132.735788] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 132.735849] [ 132.735849] but task is already holding lock: [ 132.735853] ffff888041e7d820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 132.735908] [ 132.735908] which lock already depends on the new lock. [ 132.735908] [ 132.735913] [ 132.735913] the existing dependency chain (in reverse order) is: [ 132.735918] [ 132.735918] -> #3 (&ctx->lock){....}-{2:2}: [ 132.735943] _raw_spin_lock+0x2a/0x40 [ 132.735973] __perf_event_task_sched_out+0x53b/0x18d0 [ 132.735996] __schedule+0xedd/0x2470 [ 132.736013] schedule+0xda/0x1b0 [ 132.736029] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.736067] syscall_exit_to_user_mode+0x19/0x40 [ 132.736099] do_syscall_64+0x48/0x90 [ 132.736123] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.736154] [ 132.736154] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 132.736179] _raw_spin_lock_nested+0x30/0x40 [ 132.736206] raw_spin_rq_lock_nested+0x1e/0x30 [ 132.736229] task_fork_fair+0x63/0x4d0 [ 132.736260] sched_cgroup_fork+0x3d0/0x540 [ 132.736287] copy_process+0x3f9e/0x6df0 [ 132.736305] kernel_clone+0xe7/0x890 [ 132.736322] user_mode_thread+0xad/0xf0 [ 132.736341] rest_init+0x24/0x250 [ 132.736371] arch_call_rest_init+0xf/0x14 [ 132.736405] start_kernel+0x4c1/0x4e6 [ 132.736436] secondary_startup_64_no_verify+0xe0/0xeb [ 132.736462] [ 132.736462] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 132.736487] _raw_spin_lock_irqsave+0x39/0x60 [ 132.736514] try_to_wake_up+0xab/0x1920 [ 132.736539] up+0x75/0xb0 [ 132.736560] __up_console_sem+0x6e/0x80 [ 132.736590] console_unlock+0x46a/0x590 [ 132.736619] vt_ioctl+0x2822/0x2ca0 [ 132.736641] tty_ioctl+0x7c4/0x1700 [ 132.736662] __x64_sys_ioctl+0x19a/0x210 [ 132.736689] do_syscall_64+0x3b/0x90 [ 132.736712] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.736743] [ 132.736743] -> #0 ((console_sem).lock){....}-{2:2}: [ 132.736768] __lock_acquire+0x2a02/0x5e70 [ 132.736799] lock_acquire+0x1a2/0x530 [ 132.736829] _raw_spin_lock_irqsave+0x39/0x60 [ 132.736856] down_trylock+0xe/0x70 [ 132.736879] __down_trylock_console_sem+0x3b/0xd0 [ 132.736910] vprintk_emit+0x16b/0x560 [ 132.736941] vprintk+0x84/0xa0 [ 132.736971] _printk+0xba/0xf1 [ 132.737003] report_bug.cold+0x72/0xab [ 132.737025] handle_bug+0x3c/0x70 [ 132.737048] exc_invalid_op+0x14/0x50 [ 132.737072] asm_exc_invalid_op+0x16/0x20 [ 132.737102] group_sched_out.part.0+0x2c7/0x460 [ 132.737122] ctx_sched_out+0x8f1/0xc10 [ 132.737140] __perf_event_task_sched_out+0x6d0/0x18d0 [ 132.737162] __schedule+0xedd/0x2470 [ 132.737180] schedule+0xda/0x1b0 [ 132.737196] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.737232] syscall_exit_to_user_mode+0x19/0x40 [ 132.737264] do_syscall_64+0x48/0x90 [ 132.737287] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.737318] [ 132.737318] other info that might help us debug this: [ 132.737318] [ 132.737323] Chain exists of: [ 132.737323] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 132.737323] [ 132.737350] Possible unsafe locking scenario: [ 132.737350] [ 132.737355] CPU0 CPU1 [ 132.737359] ---- ---- [ 132.737363] lock(&ctx->lock); [ 132.737373] lock(&rq->__lock); [ 132.737384] lock(&ctx->lock); [ 132.737396] lock((console_sem).lock); [ 132.737406] [ 132.737406] *** DEADLOCK *** [ 132.737406] [ 132.737410] 2 locks held by syz-executor.4/3837: [ 132.737422] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 132.737469] #1: ffff888041e7d820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 132.737520] [ 132.737520] stack backtrace: [ 132.737525] CPU: 0 PID: 3837 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220912 #1 [ 132.737548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 132.737562] Call Trace: [ 132.737567] [ 132.737574] dump_stack_lvl+0x8b/0xb3 [ 132.737601] check_noncircular+0x263/0x2e0 [ 132.737641] ? format_decode+0x26c/0xb50 [ 132.737668] ? print_circular_bug+0x450/0x450 [ 132.737701] ? enable_ptr_key_workfn+0x20/0x20 [ 132.737727] ? perf_trace_lock+0x308/0x560 [ 132.737753] ? format_decode+0x26c/0xb50 [ 132.737783] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 132.737817] __lock_acquire+0x2a02/0x5e70 [ 132.737861] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 132.737907] lock_acquire+0x1a2/0x530 [ 132.737939] ? down_trylock+0xe/0x70 [ 132.737968] ? rcu_read_unlock+0x40/0x40 [ 132.738010] ? vprintk+0x84/0xa0 [ 132.738045] _raw_spin_lock_irqsave+0x39/0x60 [ 132.738073] ? down_trylock+0xe/0x70 [ 132.738099] down_trylock+0xe/0x70 [ 132.738124] ? vprintk+0x84/0xa0 [ 132.738156] __down_trylock_console_sem+0x3b/0xd0 [ 132.738190] vprintk_emit+0x16b/0x560 [ 132.738227] vprintk+0x84/0xa0 [ 132.738261] _printk+0xba/0xf1 [ 132.738294] ? record_print_text.cold+0x16/0x16 [ 132.738337] ? report_bug.cold+0x66/0xab [ 132.738364] ? group_sched_out.part.0+0x2c7/0x460 [ 132.738385] report_bug.cold+0x72/0xab [ 132.738414] handle_bug+0x3c/0x70 [ 132.738439] exc_invalid_op+0x14/0x50 [ 132.738466] asm_exc_invalid_op+0x16/0x20 [ 132.738497] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 132.738521] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 132.738542] RSP: 0018:ffff888042d7fc48 EFLAGS: 00010006 [ 132.738559] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 132.738573] RDX: ffff88800f620000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 132.738588] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 132.738601] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff888041e7d800 [ 132.738615] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 132.738638] ? group_sched_out.part.0+0x2c7/0x460 [ 132.738663] ? group_sched_out.part.0+0x2c7/0x460 [ 132.738688] ctx_sched_out+0x8f1/0xc10 [ 132.738713] __perf_event_task_sched_out+0x6d0/0x18d0 [ 132.738743] ? lock_is_held_type+0xd7/0x130 [ 132.738778] ? __perf_cgroup_move+0x160/0x160 [ 132.738800] ? set_next_entity+0x304/0x550 [ 132.738834] ? update_curr+0x267/0x740 [ 132.738870] ? lock_is_held_type+0xd7/0x130 [ 132.738905] __schedule+0xedd/0x2470 [ 132.738931] ? io_schedule_timeout+0x150/0x150 [ 132.738955] ? __x64_sys_futex_time32+0x480/0x480 [ 132.738981] schedule+0xda/0x1b0 [ 132.739001] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.739040] syscall_exit_to_user_mode+0x19/0x40 [ 132.739074] do_syscall_64+0x48/0x90 [ 132.739100] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.739132] RIP: 0033:0x7fc06ed5ab19 [ 132.739148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 132.739168] RSP: 002b:00007fc06c2d0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 132.739188] RAX: 0000000000000001 RBX: 00007fc06ee6df68 RCX: 00007fc06ed5ab19 [ 132.739202] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc06ee6df6c [ 132.739216] RBP: 00007fc06ee6df60 R08: 000000000000000e R09: 0000000000000000 [ 132.739229] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc06ee6df6c [ 132.739243] R13: 00007ffd261232ff R14: 00007fc06c2d0300 R15: 0000000000022000 [ 132.739270] [ 132.840133] WARNING: CPU: 0 PID: 3837 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 132.841373] Modules linked in: [ 132.841826] CPU: 0 PID: 3837 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220912 #1 [ 132.842910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 132.844423] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 132.845164] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 132.847602] RSP: 0018:ffff888042d7fc48 EFLAGS: 00010006 [ 132.848324] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 132.849270] RDX: ffff88800f620000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 132.850237] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 132.851199] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff888041e7d800 [ 132.852151] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 132.853128] FS: 00007fc06c2d0700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 132.854223] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 132.855018] CR2: 00007f883522a1b0 CR3: 0000000042168000 CR4: 0000000000350ef0 [ 132.855972] Call Trace: [ 132.856329] [ 132.856654] ctx_sched_out+0x8f1/0xc10 [ 132.857194] __perf_event_task_sched_out+0x6d0/0x18d0 [ 132.857917] ? lock_is_held_type+0xd7/0x130 [ 132.858521] ? __perf_cgroup_move+0x160/0x160 [ 132.859146] ? set_next_entity+0x304/0x550 [ 132.859736] ? update_curr+0x267/0x740 [ 132.860284] ? lock_is_held_type+0xd7/0x130 [ 132.860883] __schedule+0xedd/0x2470 [ 132.861405] ? io_schedule_timeout+0x150/0x150 [ 132.862044] ? __x64_sys_futex_time32+0x480/0x480 [ 132.862710] schedule+0xda/0x1b0 [ 132.863185] exit_to_user_mode_prepare+0x114/0x1a0 [ 132.863871] syscall_exit_to_user_mode+0x19/0x40 [ 132.864525] do_syscall_64+0x48/0x90 [ 132.865051] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 132.865777] RIP: 0033:0x7fc06ed5ab19 [ 132.866279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 132.868706] RSP: 002b:00007fc06c2d0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 132.869723] RAX: 0000000000000001 RBX: 00007fc06ee6df68 RCX: 00007fc06ed5ab19 [ 132.870665] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc06ee6df6c [ 132.871608] RBP: 00007fc06ee6df60 R08: 000000000000000e R09: 0000000000000000 [ 132.872561] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc06ee6df6c [ 132.873525] R13: 00007ffd261232ff R14: 00007fc06c2d0300 R15: 0000000000022000 [ 132.874527] [ 132.874852] irq event stamp: 622 [ 132.875309] hardirqs last enabled at (621): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 132.876572] hardirqs last disabled at (622): [] __schedule+0x1225/0x2470 [ 132.877693] softirqs last enabled at (468): [] __irq_exit_rcu+0x11b/0x180 [ 132.878840] softirqs last disabled at (459): [] __irq_exit_rcu+0x11b/0x180 [ 132.880002] ---[ end trace 0000000000000000 ]--- [ 134.580318] ieee80211 phy2: Selected rate control algorithm 'minstrel_ht' 18:00:55 executing program 0: uname(0x0) 18:00:55 executing program 4: munmap(&(0x7f0000000000/0x2000)=nil, 0x2000) get_mempolicy(&(0x7f0000000000), 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x4) 18:00:55 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCGSOFTCAR(r0, 0x4b48, &(0x7f0000000040)) 18:00:55 executing program 1: ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, 0x0) openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0) poll(0x0, 0x0, 0x0) syz_open_dev$vcsu(0x0, 0x0, 0x0) syz_open_dev$sg(0x0, 0x0, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x7fff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="140000001d000100000000000000000004"], 0x14}], 0x1}, 0x0) 18:00:55 executing program 3: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:55 executing program 5: sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsync(0xffffffffffffffff) 18:00:55 executing program 2: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, 0x0, 0x0) 18:00:55 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x7, &(0x7f0000000000)) [ 136.609263] ieee80211 phy3: Selected rate control algorithm 'minstrel_ht' [ 136.653908] hrtimer: interrupt took 18775 ns [ 136.654748] audit: type=1400 audit(1663005655.635:9): avc: denied { write } for pid=3970 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 18:00:55 executing program 0: r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x4, 0x0) openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000200)={'\x00', 0x0, 0xfffeffff, 0x8000}) 18:00:55 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x163008, 0x0) mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2880, 0x0) 18:00:55 executing program 2: acct(&(0x7f0000000a00)='\x00') lstat(&(0x7f00000000c0)='./file0\x00', 0x0) 18:00:55 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x24, 0x2a, 0x1, 0x0, 0x0, {}, [@generic="0025e717285744a94bfd6410c6"]}, 0x24}}, 0x0) 18:00:55 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r0, &(0x7f0000001540)=[{&(0x7f0000000400)=""/57, 0x3ffffe00}], 0x1, 0x0, 0x0) 18:00:55 executing program 4: munmap(&(0x7f0000000000/0x2000)=nil, 0x2000) get_mempolicy(&(0x7f0000000000), 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x4) 18:00:55 executing program 1: ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, 0x0) openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0) poll(0x0, 0x0, 0x0) syz_open_dev$vcsu(0x0, 0x0, 0x0) syz_open_dev$sg(0x0, 0x0, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x7fff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="140000001d000100000000000000000004"], 0x14}], 0x1}, 0x0) 18:00:55 executing program 3: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) [ 136.934864] ieee80211 phy4: Selected rate control algorithm 'minstrel_ht' 18:00:56 executing program 2: acct(&(0x7f0000000a00)='\x00') lstat(&(0x7f00000000c0)='./file0\x00', 0x0) 18:00:56 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x24, 0x2a, 0x1, 0x0, 0x0, {}, [@generic="0025e717285744a94bfd6410c6"]}, 0x24}}, 0x0) 18:00:56 executing program 4: munmap(&(0x7f0000000000/0x2000)=nil, 0x2000) get_mempolicy(&(0x7f0000000000), 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x4) 18:00:56 executing program 7: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:56 executing program 0: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:56 executing program 1: ioctl$BLKPBSZGET(0xffffffffffffffff, 0x127b, 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, 0x0) openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0) poll(0x0, 0x0, 0x0) syz_open_dev$vcsu(0x0, 0x0, 0x0) syz_open_dev$sg(0x0, 0x0, 0x0) pread64(0xffffffffffffffff, 0x0, 0x0, 0x7fff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000400)=ANY=[@ANYBLOB="140000001d000100000000000000000004"], 0x14}], 0x1}, 0x0) 18:00:56 executing program 2: acct(&(0x7f0000000a00)='\x00') lstat(&(0x7f00000000c0)='./file0\x00', 0x0) [ 137.186535] ieee80211 phy5: Selected rate control algorithm 'minstrel_ht' [ 137.194526] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.196005] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.196837] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.197744] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 137.198671] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x4000 phys_seg 11 prio class 2 [ 137.219457] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.220663] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.221504] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.222336] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 40 00 00 40 00 [ 137.223265] I/O error, dev sr0, sector 256 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.245555] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.246983] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.247810] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.248553] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 80 00 00 40 00 [ 137.249325] I/O error, dev sr0, sector 512 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.265474] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.266453] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.267149] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.267791] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 c0 00 00 40 00 [ 137.268544] I/O error, dev sr0, sector 768 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.283566] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.284505] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.285700] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.286366] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 00 00 00 40 00 [ 137.287106] I/O error, dev sr0, sector 1024 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.304629] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.305587] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.306334] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.306987] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 40 00 00 40 00 [ 137.307702] I/O error, dev sr0, sector 1280 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.323945] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.324862] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.325810] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.326463] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 80 00 00 40 00 [ 137.327203] I/O error, dev sr0, sector 1536 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.342987] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.344241] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.344931] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.345555] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 01 c0 00 00 40 00 [ 137.346312] I/O error, dev sr0, sector 1792 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.369352] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.370700] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.371415] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.372234] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 02 00 00 00 40 00 [ 137.372983] I/O error, dev sr0, sector 2048 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 137.393203] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 137.394218] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 137.394872] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 137.395519] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 02 40 00 00 40 00 [ 137.396263] I/O error, dev sr0, sector 2304 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 139.806783] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 18:00:58 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x24, 0x2a, 0x1, 0x0, 0x0, {}, [@generic="0025e717285744a94bfd6410c6"]}, 0x24}}, 0x0) 18:00:58 executing program 4: munmap(&(0x7f0000000000/0x2000)=nil, 0x2000) get_mempolicy(&(0x7f0000000000), 0x0, 0x0, &(0x7f0000000000/0x2000)=nil, 0x4) 18:00:58 executing program 2: acct(&(0x7f0000000a00)='\x00') lstat(&(0x7f00000000c0)='./file0\x00', 0x0) 18:00:58 executing program 7: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:58 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r0, &(0x7f0000001540)=[{&(0x7f0000000400)=""/57, 0x3ffffe00}], 0x1, 0x0, 0x0) 18:00:58 executing program 3: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:58 executing program 1: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:58 executing program 0: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) 18:00:58 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x24, 0x2a, 0x1, 0x0, 0x0, {}, [@generic="0025e717285744a94bfd6410c6"]}, 0x24}}, 0x0) 18:00:59 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r0, &(0x7f0000001540)=[{&(0x7f0000000400)=""/57, 0x3ffffe00}], 0x1, 0x0, 0x0) 18:00:59 executing program 4: mq_unlink(&(0x7f0000000000)='/(\x00') mq_unlink(&(0x7f00000000c0)='.,,%\x00') mq_unlink(0x0) mq_unlink(0x0) 18:00:59 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b62, &(0x7f0000000380)=""/98) 18:00:59 executing program 1: pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)}], 0x1, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)=ANY=[@ANYBLOB="0000c329c0dd160b5cb4c6ea305bf5ffffd1372ddb613b1f955039c43f0cd05edc5f67ab497de2287d83fe16abd8d1d51199f4c846392a861ff377b34d5199d4deb5289b44f8b252ce44bac323c3e8d0180377697ac2d95787a8d09fe0c28286a141b764562829fc9c8645524d1b4a63895a4ea35a9566efbf98190378c6e9e7c29d56ea08977b738deb074ba8b71479be2f2b25d26536a83e791639f4a8213ff4712f5f592db3", @ANYRES32=r0, @ANYBLOB="000048e3081a6669"]) syz_io_uring_setup(0x45ac, &(0x7f0000000380)={0x0, 0x10005ffe, 0x0, 0x3, 0x3db, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x28661, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xc, r3, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x1, 0x0, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) r5 = open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) r6 = inotify_init1(0x0) inotify_add_watch(r6, &(0x7f0000000340)='./file0\x00', 0x0) dup2(r6, r5) [ 142.205510] scsi_io_completion_action: 201 callbacks suppressed [ 142.205580] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.208215] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.209317] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.210455] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 15 00 00 00 40 00 [ 142.211399] blk_print_req_error: 202 callbacks suppressed [ 142.211412] I/O error, dev sr0, sector 21504 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.230536] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.232108] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.233229] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.234341] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 15 40 00 00 40 00 [ 142.235569] I/O error, dev sr0, sector 21760 op 0x0:(READ) flags 0x4000 phys_seg 20 prio class 2 [ 142.257435] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.258636] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.259490] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.260372] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 15 80 00 00 40 00 [ 142.261287] I/O error, dev sr0, sector 22016 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.278805] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.280180] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.281081] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.281966] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 15 c0 00 00 40 00 [ 142.282948] I/O error, dev sr0, sector 22272 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.298542] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.300059] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.301165] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.302315] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 16 00 00 00 40 00 [ 142.303359] I/O error, dev sr0, sector 22528 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.322572] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.324124] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.325229] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.326325] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 16 40 00 00 40 00 [ 142.327565] I/O error, dev sr0, sector 22784 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.343530] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.345086] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.346224] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.347173] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 16 80 00 00 40 00 [ 142.348198] I/O error, dev sr0, sector 23040 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.367519] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.369082] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.370211] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.371253] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 16 c0 00 00 40 00 [ 142.372505] I/O error, dev sr0, sector 23296 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.388533] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.390081] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.391247] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.392303] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 17 00 00 00 40 00 [ 142.393492] I/O error, dev sr0, sector 23552 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 [ 142.410569] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 142.412159] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 142.413284] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 142.414349] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 17 40 00 00 40 00 [ 142.415541] I/O error, dev sr0, sector 23808 op 0x0:(READ) flags 0x4000 phys_seg 3 prio class 2 VM DIAGNOSIS: 18:00:52 Registers: info registers vcpu 0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff888042d7f698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000061 R11=0000000000000001 R12=0000000000000061 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc06c2d0700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f883522a1b0 CR3=0000000042168000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fc06ee417c0 00007fc06ee417c8 YMM02=0000000000000000 0000000000000000 00007fc06ee417e0 00007fc06ee417c0 YMM03=0000000000000000 0000000000000000 00007fc06ee417c8 00007fc06ee417c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000080000001 RBX=ffff888042d77d88 RCX=0000000000000000 RDX=ffff88800f625040 RSI=ffffffff8169a252 RDI=0000000000000007 RBP=ffffea0000194fc0 RSP=ffff888042d77b60 R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=800000000653f025 R13=ffff88800e816680 R14=ffffea0000194f88 R15=0000000000000000 RIP=ffffffff81461747 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe2c5340368 CR3=0000000042a0e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000