Warning: Permanently added '[localhost]:29460' (ECDSA) to the list of known hosts.
2022/09/21 13:33:02 fuzzer started
2022/09/21 13:33:02 dialing manager at localhost:40289
syzkaller login: [   46.720707] cgroup: Unknown subsys name 'net'
[   46.819824] cgroup: Unknown subsys name 'rlimit'
2022/09/21 13:33:17 syscalls: 2215
2022/09/21 13:33:17 code coverage: enabled
2022/09/21 13:33:17 comparison tracing: enabled
2022/09/21 13:33:17 extra coverage: enabled
2022/09/21 13:33:17 setuid sandbox: enabled
2022/09/21 13:33:17 namespace sandbox: enabled
2022/09/21 13:33:17 Android sandbox: enabled
2022/09/21 13:33:17 fault injection: enabled
2022/09/21 13:33:17 leak checking: enabled
2022/09/21 13:33:17 net packet injection: enabled
2022/09/21 13:33:17 net device setup: enabled
2022/09/21 13:33:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/21 13:33:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/21 13:33:17 USB emulation: enabled
2022/09/21 13:33:17 hci packet injection: enabled
2022/09/21 13:33:17 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921                                          )
2022/09/21 13:33:17 802.15.4 emulation: enabled
2022/09/21 13:33:17 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/21 13:33:17 fetching corpus: 50, signal 24709/28130 (executing program)
2022/09/21 13:33:17 fetching corpus: 100, signal 37830/42485 (executing program)
2022/09/21 13:33:17 fetching corpus: 150, signal 44592/50487 (executing program)
2022/09/21 13:33:17 fetching corpus: 200, signal 51376/58397 (executing program)
2022/09/21 13:33:18 fetching corpus: 250, signal 57295/65334 (executing program)
2022/09/21 13:33:18 fetching corpus: 300, signal 64557/73345 (executing program)
2022/09/21 13:33:18 fetching corpus: 350, signal 67504/77263 (executing program)
2022/09/21 13:33:18 fetching corpus: 400, signal 70068/80812 (executing program)
2022/09/21 13:33:18 fetching corpus: 450, signal 74419/85851 (executing program)
2022/09/21 13:33:18 fetching corpus: 500, signal 78548/90647 (executing program)
2022/09/21 13:33:18 fetching corpus: 550, signal 81072/93901 (executing program)
2022/09/21 13:33:18 fetching corpus: 600, signal 84687/98046 (executing program)
2022/09/21 13:33:18 fetching corpus: 650, signal 88024/101889 (executing program)
2022/09/21 13:33:19 fetching corpus: 700, signal 91900/106083 (executing program)
2022/09/21 13:33:19 fetching corpus: 750, signal 93791/108584 (executing program)
2022/09/21 13:33:19 fetching corpus: 800, signal 96219/111540 (executing program)
2022/09/21 13:33:19 fetching corpus: 850, signal 99084/114743 (executing program)
2022/09/21 13:33:19 fetching corpus: 900, signal 101422/117500 (executing program)
2022/09/21 13:33:19 fetching corpus: 950, signal 103057/119579 (executing program)
2022/09/21 13:33:19 fetching corpus: 1000, signal 105295/122083 (executing program)
2022/09/21 13:33:19 fetching corpus: 1050, signal 106867/124063 (executing program)
2022/09/21 13:33:20 fetching corpus: 1100, signal 109854/127061 (executing program)
2022/09/21 13:33:20 fetching corpus: 1150, signal 112855/129930 (executing program)
2022/09/21 13:33:20 fetching corpus: 1200, signal 114809/132121 (executing program)
2022/09/21 13:33:20 fetching corpus: 1250, signal 116961/134363 (executing program)
2022/09/21 13:33:20 fetching corpus: 1300, signal 119690/136941 (executing program)
2022/09/21 13:33:20 fetching corpus: 1350, signal 121483/138838 (executing program)
2022/09/21 13:33:20 fetching corpus: 1400, signal 122575/140161 (executing program)
2022/09/21 13:33:20 fetching corpus: 1450, signal 123726/141551 (executing program)
2022/09/21 13:33:21 fetching corpus: 1500, signal 125280/143104 (executing program)
2022/09/21 13:33:21 fetching corpus: 1550, signal 126662/144558 (executing program)
2022/09/21 13:33:21 fetching corpus: 1600, signal 127938/145879 (executing program)
2022/09/21 13:33:21 fetching corpus: 1650, signal 129392/147342 (executing program)
2022/09/21 13:33:21 fetching corpus: 1700, signal 131746/149272 (executing program)
2022/09/21 13:33:21 fetching corpus: 1750, signal 132863/150478 (executing program)
2022/09/21 13:33:21 fetching corpus: 1800, signal 133725/151475 (executing program)
2022/09/21 13:33:21 fetching corpus: 1850, signal 135200/152766 (executing program)
2022/09/21 13:33:22 fetching corpus: 1900, signal 136345/153876 (executing program)
2022/09/21 13:33:22 fetching corpus: 1950, signal 137448/155015 (executing program)
2022/09/21 13:33:22 fetching corpus: 2000, signal 138993/156267 (executing program)
2022/09/21 13:33:22 fetching corpus: 2050, signal 140005/157184 (executing program)
2022/09/21 13:33:22 fetching corpus: 2100, signal 141195/158175 (executing program)
2022/09/21 13:33:22 fetching corpus: 2150, signal 142066/159070 (executing program)
2022/09/21 13:33:22 fetching corpus: 2200, signal 142864/159837 (executing program)
2022/09/21 13:33:22 fetching corpus: 2250, signal 143996/160825 (executing program)
2022/09/21 13:33:23 fetching corpus: 2300, signal 145481/161912 (executing program)
2022/09/21 13:33:23 fetching corpus: 2350, signal 146527/162741 (executing program)
2022/09/21 13:33:23 fetching corpus: 2400, signal 147526/163563 (executing program)
2022/09/21 13:33:23 fetching corpus: 2450, signal 148362/164209 (executing program)
2022/09/21 13:33:23 fetching corpus: 2500, signal 150176/165406 (executing program)
2022/09/21 13:33:23 fetching corpus: 2550, signal 151233/166093 (executing program)
2022/09/21 13:33:23 fetching corpus: 2600, signal 152428/166895 (executing program)
2022/09/21 13:33:23 fetching corpus: 2650, signal 153490/167577 (executing program)
2022/09/21 13:33:24 fetching corpus: 2700, signal 154747/168286 (executing program)
2022/09/21 13:33:24 fetching corpus: 2750, signal 155199/168690 (executing program)
2022/09/21 13:33:24 fetching corpus: 2800, signal 157606/169754 (executing program)
2022/09/21 13:33:24 fetching corpus: 2850, signal 158262/170162 (executing program)
2022/09/21 13:33:24 fetching corpus: 2900, signal 159407/170673 (executing program)
2022/09/21 13:33:24 fetching corpus: 2950, signal 160212/171148 (executing program)
2022/09/21 13:33:24 fetching corpus: 3000, signal 161082/171542 (executing program)
2022/09/21 13:33:24 fetching corpus: 3050, signal 162138/172019 (executing program)
2022/09/21 13:33:25 fetching corpus: 3100, signal 163307/172480 (executing program)
2022/09/21 13:33:25 fetching corpus: 3150, signal 164425/172882 (executing program)
2022/09/21 13:33:25 fetching corpus: 3200, signal 165160/173212 (executing program)
2022/09/21 13:33:25 fetching corpus: 3250, signal 167137/173956 (executing program)
2022/09/21 13:33:25 fetching corpus: 3300, signal 168029/174255 (executing program)
2022/09/21 13:33:25 fetching corpus: 3350, signal 169096/174540 (executing program)
2022/09/21 13:33:25 fetching corpus: 3400, signal 170301/174907 (executing program)
2022/09/21 13:33:26 fetching corpus: 3450, signal 171545/175526 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175646 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175704 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175762 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175813 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175867 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175918 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/175970 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176029 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176093 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176140 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176187 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176237 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176302 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176317 (executing program)
2022/09/21 13:33:26 fetching corpus: 3483, signal 171943/176317 (executing program)
2022/09/21 13:33:28 starting 8 fuzzer processes
13:33:28 executing program 0:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x125d, &(0x7f0000002340))

13:33:28 executing program 6:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x16, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000dcf4655fdcf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38333735393934343800"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000001bb3a207e2d04cff8ff0e42050b3d130010000000c00000000000000dbf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003900000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000030000f000300040000000000000000000f008ec4", 0x20, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000dbf4655fdbf4655fdbf4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012600)="ed41000000100000dbf4655fdcf4655fdcf4655f00000000000004000800000000000000050000000800"/64, 0x40, 0x4200}, {&(0x7f0000012700)="20000000482a2723482a272300000000dbf4655f00"/32, 0x20, 0x4280}, {&(0x7f0000012800)="c041000000300000dbf4655fdbf4655fdbf4655f0000000000000200180000000000000000000000090000000a0000000b00"/64, 0x40, 0x5400}, {&(0x7f0000012900)="20000000000000000000000000000000dbf4655f000000000000000000000000000002ea00"/64, 0x40, 0x5480}, {&(0x7f0000012a00)="ed4100003c000000dcf4655fdcf4655fdcf4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000e6b4b61700000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x5600}, {&(0x7f0000012b00)="ed8100001a040000dcf4655fdcf4655fdcf4655f00000000000001000800000000000000010000000c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001df408b00000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000", 0xa0, 0x5800}, {&(0x7f0000012c00)="ffa1000026000000dcf4655fdcf4655fdcf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3833373539393434382f66696c65302f66696c6530000000000000000000000000000000000000000000006f9eb2d200000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000", 0xa0, 0x5a00}, {&(0x7f0000012d00)="ed8100000a000000dcf4655fdcf4655fdcf4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000914f493900000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x5c00}, {&(0x7f0000012e00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000dcf4655fdcf4655fdcf4655f00000000000002001800000000000000010000000d0000000e0000000f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000de9dcec00000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000", 0xc0, 0x5de0}, {&(0x7f0000012f00)="ed81000064000000dcf4655fdcf4655fdcf4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c68e4d45a00000000000000000000000000000000000000000000000020000000482a2723482a2723482a2723dcf4655f482a27230000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x6000}, {&(0x7f0000013000)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x61c0}, {&(0x7f0000013100)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000013200)="0b0000000c0001022e000000020000000c0002022e2e000000000000e80f0000", 0x20, 0x9000}, {&(0x7f0000013300)="00000000001000"/32, 0x20, 0xa000}, {&(0x7f0000013400)="00000000001000"/32, 0x20, 0xb000}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xc000}], 0x0, &(0x7f0000013a00))

13:33:28 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, {0x14, 0x0, 0x0, @empty, "39a4ba8385314b5edc3d8aabae540cb5a69bcbd9"}}}}}, 0x0)

13:33:28 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000300), 0x0, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

13:33:28 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:33:28 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_user}]}})

13:33:28 executing program 5:
r0 = timerfd_create(0x0, 0x0)
read(r0, 0x0, 0x0)

[   71.344684] audit: type=1400 audit(1663767208.585:6): avc:  denied  { execmem } for  pid=291 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:33:28 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
getsockopt$inet6_int(r0, 0x29, 0x10, 0x0, &(0x7f0000000540))

[   72.643994] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   72.645971] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   72.647658] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.648912] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   72.650369] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.651914] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   72.655013] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.656876] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   72.658506] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   72.660691] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   72.682616] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   72.684186] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   72.688626] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   72.689775] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   72.691438] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   72.693348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   72.695726] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   72.695792] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   72.699896] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   72.702684] Bluetooth: hci0: HCI_REQ-0x0c1a
[   72.706125] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   72.707033] Bluetooth: hci2: HCI_REQ-0x0c1a
[   72.708832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   72.716636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   72.719352] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   72.721150] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   72.723339] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   72.727049] Bluetooth: hci3: HCI_REQ-0x0c1a
[   72.734574] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   72.735892] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   72.737648] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   72.738647] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   72.739418] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   72.741560] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   72.743710] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   72.744734] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   72.744847] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   72.745989] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   72.748486] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   72.752699] Bluetooth: hci4: HCI_REQ-0x0c1a
[   72.754039] Bluetooth: hci1: HCI_REQ-0x0c1a
[   72.763531] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   72.764993] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   72.769958] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   72.772326] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   72.773748] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   72.778774] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   72.780209] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   72.781581] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   72.783095] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   72.786593] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   72.787751] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   72.791082] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   72.795540] Bluetooth: hci6: HCI_REQ-0x0c1a
[   72.799529] Bluetooth: hci7: HCI_REQ-0x0c1a
[   72.815977] Bluetooth: hci5: HCI_REQ-0x0c1a
[   74.772933] Bluetooth: hci4: command 0x0409 tx timeout
[   74.772997] Bluetooth: hci3: command 0x0409 tx timeout
[   74.773710] Bluetooth: hci1: command 0x0409 tx timeout
[   74.774704] Bluetooth: hci0: command 0x0409 tx timeout
[   74.775193] Bluetooth: hci2: command 0x0409 tx timeout
[   74.836453] Bluetooth: hci6: command 0x0409 tx timeout
[   74.836507] Bluetooth: hci7: command 0x0409 tx timeout
[   74.900593] Bluetooth: hci5: command 0x0409 tx timeout
[   76.820582] Bluetooth: hci2: command 0x041b tx timeout
[   76.821356] Bluetooth: hci0: command 0x041b tx timeout
[   76.822490] Bluetooth: hci1: command 0x041b tx timeout
[   76.823194] Bluetooth: hci3: command 0x041b tx timeout
[   76.823975] Bluetooth: hci4: command 0x041b tx timeout
[   76.938834] Bluetooth: hci6: command 0x041b tx timeout
[   76.939651] Bluetooth: hci7: command 0x041b tx timeout
[   77.002313] Bluetooth: hci5: command 0x041b tx timeout
[   78.868504] Bluetooth: hci4: command 0x040f tx timeout
[   78.868952] Bluetooth: hci3: command 0x040f tx timeout
[   78.869367] Bluetooth: hci1: command 0x040f tx timeout
[   78.869795] Bluetooth: hci0: command 0x040f tx timeout
[   78.870207] Bluetooth: hci2: command 0x040f tx timeout
[   78.996442] Bluetooth: hci7: command 0x040f tx timeout
[   78.996897] Bluetooth: hci6: command 0x040f tx timeout
[   79.060491] Bluetooth: hci5: command 0x040f tx timeout
[   80.917475] Bluetooth: hci2: command 0x0419 tx timeout
[   80.917958] Bluetooth: hci0: command 0x0419 tx timeout
[   80.918413] Bluetooth: hci1: command 0x0419 tx timeout
[   80.918837] Bluetooth: hci3: command 0x0419 tx timeout
[   80.919260] Bluetooth: hci4: command 0x0419 tx timeout
[   81.044502] Bluetooth: hci6: command 0x0419 tx timeout
[   81.044972] Bluetooth: hci7: command 0x0419 tx timeout
[   81.109466] Bluetooth: hci5: command 0x0419 tx timeout
[  132.759830] syz-executor.1 (299) used greatest stack depth: 24104 bytes left
[  135.415848] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  135.417641] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  135.419951] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  135.421873] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  135.426185] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  135.427525] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  135.429723] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  135.430940] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  135.434169] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  135.435187] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  135.437184] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  135.438542] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  135.443017] Bluetooth: hci0: HCI_REQ-0x0c1a
[  135.458842] Bluetooth: hci1: HCI_REQ-0x0c1a
[  135.502265] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  135.502743] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  135.505607] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  135.505671] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  135.510618] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  135.514201] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  135.516124] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  135.517225] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  135.520209] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  135.521758] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  135.522926] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  135.524062] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  135.526718] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  135.530702] Bluetooth: hci5: HCI_REQ-0x0c1a
[  135.531484] Bluetooth: hci6: HCI_REQ-0x0c1a
[  135.535012] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  135.536713] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  135.539764] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  135.549848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  135.550659] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  135.553988] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  135.559626] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  135.562085] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  135.565826] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  135.569145] Bluetooth: hci3: HCI_REQ-0x0c1a
[  135.585326] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  135.587361] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  135.597030] Bluetooth: hci7: HCI_REQ-0x0c1a
[  137.492499] Bluetooth: hci1: command 0x0409 tx timeout
[  137.492528] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  137.493524] Bluetooth: hci0: command 0x0409 tx timeout
[  137.495437] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  137.556506] Bluetooth: hci6: command 0x0409 tx timeout
[  137.556578] Bluetooth: hci5: command 0x0409 tx timeout
[  137.621463] Bluetooth: hci7: command 0x0409 tx timeout
[  137.622137] Bluetooth: hci3: command 0x0409 tx timeout
[  139.540458] Bluetooth: hci1: command 0x041b tx timeout
[  139.541481] Bluetooth: hci0: command 0x041b tx timeout
[  139.604467] Bluetooth: hci6: command 0x041b tx timeout
[  139.605657] Bluetooth: hci5: command 0x041b tx timeout
[  139.669616] Bluetooth: hci3: command 0x041b tx timeout
[  139.670033] Bluetooth: hci7: command 0x041b tx timeout
[  140.185278] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  140.186801] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  140.187884] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  140.190320] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  140.191565] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  140.192667] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  140.195919] Bluetooth: hci2: HCI_REQ-0x0c1a
[  141.588506] Bluetooth: hci0: command 0x040f tx timeout
[  141.588528] Bluetooth: hci1: command 0x040f tx timeout
[  141.653495] Bluetooth: hci5: command 0x040f tx timeout
[  141.653561] Bluetooth: hci6: command 0x040f tx timeout
[  141.717545] Bluetooth: hci7: command 0x040f tx timeout
[  141.718455] Bluetooth: hci3: command 0x040f tx timeout
[  142.228576] Bluetooth: hci2: command 0x0409 tx timeout
[  142.357504] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  143.636481] Bluetooth: hci0: command 0x0419 tx timeout
[  143.636502] Bluetooth: hci1: command 0x0419 tx timeout
[  143.700481] Bluetooth: hci5: command 0x0419 tx timeout
[  143.704096] Bluetooth: hci6: command 0x0419 tx timeout
[  143.764486] Bluetooth: hci3: command 0x0419 tx timeout
[  143.764579] Bluetooth: hci7: command 0x0419 tx timeout
[  144.276455] Bluetooth: hci2: command 0x041b tx timeout
[  146.324480] Bluetooth: hci2: command 0x040f tx timeout
[  147.156540] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  148.372422] Bluetooth: hci2: command 0x0419 tx timeout
[  151.764448] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  156.372454] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  159.063835] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  159.065226] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  159.066127] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  159.068351] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  159.070435] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  159.071120] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  159.076185] Bluetooth: hci4: HCI_REQ-0x0c1a
[  161.108493] Bluetooth: hci4: command 0x0409 tx timeout
[  163.156454] Bluetooth: hci4: command 0x041b tx timeout
[  165.204475] Bluetooth: hci4: command 0x040f tx timeout
[  167.252532] Bluetooth: hci4: command 0x0419 tx timeout
13:35:24 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:24 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:24 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:24 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:25 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:25 executing program 3:
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000001080)=ANY=[@ANYBLOB="02"], 0xdd, 0x0)
msgrcv(r0, &(0x7f0000000000)={0x0, ""/203}, 0xd3, 0x0, 0x1000)

13:35:25 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x0, 0x212}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000780)={0x0, 0x4})
syz_io_uring_setup(0x5024, &(0x7f0000000700)={0x0, 0x573c, 0x0, 0x2, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340))
pidfd_open(0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x400800, 0x14)
r3 = fork()
r4 = fork()
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, 0xffffffffffffffff, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x7})
syz_io_uring_setup(0x32fb, &(0x7f0000000200)={0x0, 0xe580, 0x0, 0x1, 0x346}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000003c0))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x13, r1, 0x0)
fallocate(r0, 0x64, 0xffffffff, 0x8)

[  188.013025] audit: type=1400 audit(1663767325.253:7): avc:  denied  { open } for  pid=7048 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  188.014966] audit: type=1400 audit(1663767325.253:8): avc:  denied  { kernel } for  pid=7048 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  188.030647] ------------[ cut here ]------------
[  188.030669] 
[  188.030672] ======================================================
[  188.030676] WARNING: possible circular locking dependency detected
[  188.030680] 6.0.0-rc6-next-20220921 #1 Not tainted
[  188.030687] ------------------------------------------------------
[  188.030690] syz-executor.3/7051 is trying to acquire lock:
[  188.030696] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  188.030736] 
[  188.030736] but task is already holding lock:
[  188.030739] ffff88800fc73020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  188.030769] 
[  188.030769] which lock already depends on the new lock.
[  188.030769] 
[  188.030772] 
[  188.030772] the existing dependency chain (in reverse order) is:
[  188.030775] 
[  188.030775] -> #3 (&ctx->lock){....}-{2:2}:
[  188.030790]        _raw_spin_lock+0x2a/0x40
[  188.030810]        __perf_event_task_sched_out+0x53b/0x18d0
[  188.030823]        __schedule+0xedd/0x2470
[  188.030837]        schedule+0xda/0x1b0
[  188.030850]        exit_to_user_mode_prepare+0x114/0x1a0
[  188.030862]        syscall_exit_to_user_mode+0x19/0x40
[  188.030875]        do_syscall_64+0x48/0x90
[  188.030892]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  188.030904] 
[  188.030904] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  188.030919]        _raw_spin_lock_nested+0x30/0x40
[  188.030938]        raw_spin_rq_lock_nested+0x1e/0x30
[  188.030952]        task_fork_fair+0x63/0x4d0
[  188.030970]        sched_cgroup_fork+0x3d0/0x540
[  188.030985]        copy_process+0x4183/0x6e20
[  188.030996]        kernel_clone+0xe7/0x890
[  188.031006]        user_mode_thread+0xad/0xf0
[  188.031017]        rest_init+0x24/0x250
[  188.031028]        arch_call_rest_init+0xf/0x14
[  188.031045]        start_kernel+0x4c1/0x4e6
[  188.031060]        secondary_startup_64_no_verify+0xe0/0xeb
[  188.031075] 
[  188.031075] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  188.031089]        _raw_spin_lock_irqsave+0x39/0x60
[  188.031109]        try_to_wake_up+0xab/0x1930
[  188.031123]        up+0x75/0xb0
[  188.031137]        __up_console_sem+0x6e/0x80
[  188.031155]        console_unlock+0x46a/0x590
[  188.031172]        do_con_write+0xc05/0x1d50
[  188.031184]        con_write+0x21/0x40
[  188.031195]        n_tty_write+0x4d4/0xfe0
[  188.031209]        file_tty_write.constprop.0+0x49c/0x8f0
[  188.031222]        vfs_write+0x9c3/0xd90
[  188.031242]        ksys_write+0x127/0x250
[  188.031264]        do_syscall_64+0x3b/0x90
[  188.031281]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  188.031293] 
[  188.031293] -> #0 ((console_sem).lock){....}-{2:2}:
[  188.031308]        __lock_acquire+0x2a02/0x5e70
[  188.031326]        lock_acquire+0x1a2/0x530
[  188.031343]        _raw_spin_lock_irqsave+0x39/0x60
[  188.031363]        down_trylock+0xe/0x70
[  188.031378]        __down_trylock_console_sem+0x3b/0xd0
[  188.031399]        vprintk_emit+0x16b/0x560
[  188.031417]        vprintk+0x84/0xa0
[  188.031434]        _printk+0xba/0xf1
[  188.031445]        report_bug.cold+0x72/0xab
[  188.031462]        handle_bug+0x3c/0x70
[  188.031479]        exc_invalid_op+0x14/0x50
[  188.031497]        asm_exc_invalid_op+0x16/0x20
[  188.031508]        group_sched_out.part.0+0x2c7/0x460
[  188.031519]        ctx_sched_out+0x8f1/0xc10
[  188.031530]        __perf_event_task_sched_out+0x6d0/0x18d0
[  188.031543]        __schedule+0xedd/0x2470
[  188.031556]        schedule+0xda/0x1b0
[  188.031569]        exit_to_user_mode_prepare+0x114/0x1a0
[  188.031580]        syscall_exit_to_user_mode+0x19/0x40
[  188.031592]        do_syscall_64+0x48/0x90
[  188.031610]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  188.031621] 
[  188.031621] other info that might help us debug this:
[  188.031621] 
[  188.031624] Chain exists of:
[  188.031624]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  188.031624] 
[  188.031640]  Possible unsafe locking scenario:
[  188.031640] 
[  188.031642]        CPU0                    CPU1
[  188.031645]        ----                    ----
[  188.031647]   lock(&ctx->lock);
[  188.031653]                                lock(&rq->__lock);
[  188.031660]                                lock(&ctx->lock);
[  188.031666]   lock((console_sem).lock);
[  188.031673] 
[  188.031673]  *** DEADLOCK ***
[  188.031673] 
[  188.031674] 2 locks held by syz-executor.3/7051:
[  188.031682]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  188.031712]  #1: ffff88800fc73020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  188.031742] 
[  188.031742] stack backtrace:
[  188.031744] CPU: 0 PID: 7051 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220921 #1
[  188.031758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  188.031766] Call Trace:
[  188.031769]  <TASK>
[  188.031774]  dump_stack_lvl+0x8b/0xb3
[  188.031792]  check_noncircular+0x263/0x2e0
[  188.031810]  ? format_decode+0x26c/0xb50
[  188.031827]  ? print_circular_bug+0x450/0x450
[  188.031846]  ? enable_ptr_key_workfn+0x20/0x20
[  188.031863]  ? format_decode+0x26c/0xb50
[  188.031881]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  188.031900]  __lock_acquire+0x2a02/0x5e70
[  188.031923]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  188.031947]  lock_acquire+0x1a2/0x530
[  188.031966]  ? down_trylock+0xe/0x70
[  188.031983]  ? lock_release+0x750/0x750
[  188.032005]  ? vprintk+0x84/0xa0
[  188.032025]  _raw_spin_lock_irqsave+0x39/0x60
[  188.032045]  ? down_trylock+0xe/0x70
[  188.032062]  down_trylock+0xe/0x70
[  188.032078]  ? vprintk+0x84/0xa0
[  188.032097]  __down_trylock_console_sem+0x3b/0xd0
[  188.032115]  vprintk_emit+0x16b/0x560
[  188.032136]  vprintk+0x84/0xa0
[  188.032155]  _printk+0xba/0xf1
[  188.032166]  ? record_print_text.cold+0x16/0x16
[  188.032182]  ? report_bug.cold+0x66/0xab
[  188.032201]  ? group_sched_out.part.0+0x2c7/0x460
[  188.032213]  report_bug.cold+0x72/0xab
[  188.032232]  handle_bug+0x3c/0x70
[  188.032250]  exc_invalid_op+0x14/0x50
[  188.032269]  asm_exc_invalid_op+0x16/0x20
[  188.032281] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  188.032295] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  188.032307] RSP: 0018:ffff88803f4ffc48 EFLAGS: 00010006
[  188.032316] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  188.032324] RDX: ffff8880189d0000 RSI: ffffffff815663a7 RDI: 0000000000000005
[  188.032333] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  188.032340] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800fc73000
[  188.032348] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  188.032360]  ? group_sched_out.part.0+0x2c7/0x460
[  188.032374]  ? group_sched_out.part.0+0x2c7/0x460
[  188.032387]  ctx_sched_out+0x8f1/0xc10
[  188.032401]  __perf_event_task_sched_out+0x6d0/0x18d0
[  188.032417]  ? lock_is_held_type+0xd7/0x130
[  188.032430]  ? __perf_cgroup_move+0x160/0x160
[  188.032443]  ? set_next_entity+0x304/0x550
[  188.032462]  ? update_curr+0x267/0x740
[  188.032483]  ? lock_is_held_type+0xd7/0x130
[  188.032496]  __schedule+0xedd/0x2470
[  188.032513]  ? io_schedule_timeout+0x150/0x150
[  188.032530]  ? rcu_read_lock_sched_held+0x3e/0x80
[  188.032551]  schedule+0xda/0x1b0
[  188.032566]  exit_to_user_mode_prepare+0x114/0x1a0
[  188.032579]  syscall_exit_to_user_mode+0x19/0x40
[  188.032592]  do_syscall_64+0x48/0x90
[  188.032610]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  188.032623] RIP: 0033:0x7f7105ae7b19
[  188.032632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  188.032643] RSP: 002b:00007f710305d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  188.032655] RAX: 0000000000000001 RBX: 00007f7105bfaf68 RCX: 00007f7105ae7b19
[  188.032663] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7105bfaf6c
[  188.032670] RBP: 00007f7105bfaf60 R08: 000000000000000e R09: 0000000000000000
[  188.032678] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7105bfaf6c
[  188.032686] R13: 00007fff0a95ffcf R14: 00007f710305d300 R15: 0000000000022000
[  188.032699]  </TASK>
[  188.087633] WARNING: CPU: 0 PID: 7051 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  188.088320] Modules linked in:
[  188.088563] CPU: 0 PID: 7051 Comm: syz-executor.3 Not tainted 6.0.0-rc6-next-20220921 #1
[  188.089162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  188.090011] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  188.090425] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  188.091776] RSP: 0018:ffff88803f4ffc48 EFLAGS: 00010006
[  188.092174] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  188.092713] RDX: ffff8880189d0000 RSI: ffffffff815663a7 RDI: 0000000000000005
[  188.093247] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  188.093788] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800fc73000
[  188.094319] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  188.094852] FS:  00007f710305d700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  188.095455] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  188.095897] CR2: 00007f5d0dd94000 CR3: 00000000367c8000 CR4: 0000000000350ef0
[  188.096427] Call Trace:
[  188.096629]  <TASK>
[  188.096801]  ctx_sched_out+0x8f1/0xc10
[  188.097095]  __perf_event_task_sched_out+0x6d0/0x18d0
[  188.097502]  ? lock_is_held_type+0xd7/0x130
[  188.097830]  ? __perf_cgroup_move+0x160/0x160
[  188.098181]  ? set_next_entity+0x304/0x550
[  188.098509]  ? update_curr+0x267/0x740
[  188.098815]  ? lock_is_held_type+0xd7/0x130
[  188.099140]  __schedule+0xedd/0x2470
[  188.099439]  ? io_schedule_timeout+0x150/0x150
[  188.099797]  ? rcu_read_lock_sched_held+0x3e/0x80
[  188.100174]  schedule+0xda/0x1b0
[  188.100441]  exit_to_user_mode_prepare+0x114/0x1a0
[  188.100817]  syscall_exit_to_user_mode+0x19/0x40
[  188.101184]  do_syscall_64+0x48/0x90
[  188.101490]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  188.101881] RIP: 0033:0x7f7105ae7b19
[  188.102159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  188.103518] RSP: 002b:00007f710305d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  188.104077] RAX: 0000000000000001 RBX: 00007f7105bfaf68 RCX: 00007f7105ae7b19
[  188.104614] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7105bfaf6c
[  188.105152] RBP: 00007f7105bfaf60 R08: 000000000000000e R09: 0000000000000000
[  188.105697] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7105bfaf6c
[  188.106220] R13: 00007fff0a95ffcf R14: 00007f710305d300 R15: 0000000000022000
[  188.106749]  </TASK>
[  188.106930] irq event stamp: 1100
[  188.107186] hardirqs last  enabled at (1099): [<ffffffff8133f9d9>] exit_to_user_mode_prepare+0x109/0x1a0
[  188.107891] hardirqs last disabled at (1100): [<ffffffff84259305>] __schedule+0x1225/0x2470
[  188.108515] softirqs last  enabled at (1086): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  188.109164] softirqs last disabled at (1081): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  188.109823] ---[ end trace 0000000000000000 ]---
13:35:25 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, {0x14, 0x0, 0x0, @empty, "39a4ba8385314b5edc3d8aabae540cb5a69bcbd9"}}}}}, 0x0)

[  188.269285] audit: type=1400 audit(1663767325.507:9): avc:  denied  { write } for  pid=7048 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  188.309002] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  188.310060] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  188.310618] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  188.311130] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00
[  188.311738] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 30 prio class 2
[  188.313092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.313552] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.314179] Buffer I/O error on dev sr0, logical block 0, async page read
[  188.314892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.315310] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.316051] Buffer I/O error on dev sr0, logical block 1, async page read
[  188.316789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.317204] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.317917] Buffer I/O error on dev sr0, logical block 2, async page read
[  188.318648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.319068] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.319730] Buffer I/O error on dev sr0, logical block 3, async page read
[  188.320498] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.320923] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.321588] Buffer I/O error on dev sr0, logical block 4, async page read
[  188.322298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.322739] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.323388] Buffer I/O error on dev sr0, logical block 5, async page read
[  188.324097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.324540] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.325176] Buffer I/O error on dev sr0, logical block 6, async page read
[  188.325927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.326347] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.326995] Buffer I/O error on dev sr0, logical block 7, async page read
[  188.327781] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.328196] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  188.328858] Buffer I/O error on dev sr0, logical block 0, async page read
[  188.329574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.329995] Buffer I/O error on dev sr0, logical block 1, async page read
[  188.365762] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.366523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.367097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.367663] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.370555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.371104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.371769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.372318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.373182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.373801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.377585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.378152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.379069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.380999] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.381648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.382209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.394578] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.395112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.395659] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.396178] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.397789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.398528] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.415315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.415863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.416361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.417269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.417842] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.419619] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.421661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.422217] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.422821] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.424036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.424591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.425150] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.426216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.426778] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.427930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.428525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.429204] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.429979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.430601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.431127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.431814] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.432339] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.433223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.433975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.461800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.462651] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.463274] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.463811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.464325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.465636] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.466182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.466836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.467572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.468157] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.468752] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.469395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.470055] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.470579] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.473537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.474218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.556965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.557617] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.564531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.565138] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.565784] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.566313] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.566847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.567398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.567991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.569245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.569809] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.570331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.570895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.571446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.571984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.576431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.590825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.597690] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.598215] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.599234] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.600130] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.601209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.604811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.605779] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.608611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.609132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.609691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.610221] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.623820] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.624807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.625402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.626799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.712085] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.714813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.716030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.719601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.720176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.721609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.722196] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  188.723130] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  190.662875] loop6: detected capacity change from 0 to 512
[  190.681775] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  190.708353] EXT4-fs (loop6): unmounting filesystem.
13:35:33 executing program 0:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0)
ioctl$SG_EMULATED_HOST(r0, 0x125d, &(0x7f0000002340))

13:35:33 executing program 5:
r0 = timerfd_create(0x0, 0x0)
read(r0, 0x0, 0x0)

13:35:33 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x0, 0x212}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000780)={0x0, 0x4})
syz_io_uring_setup(0x5024, &(0x7f0000000700)={0x0, 0x573c, 0x0, 0x2, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340))
pidfd_open(0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x400800, 0x14)
r3 = fork()
r4 = fork()
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, 0xffffffffffffffff, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x7})
syz_io_uring_setup(0x32fb, &(0x7f0000000200)={0x0, 0xe580, 0x0, 0x1, 0x346}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000003c0))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x13, r1, 0x0)
fallocate(r0, 0x64, 0xffffffff, 0x8)

13:35:33 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000140)={0x0, 0x6c4c, 0x10, 0x0, 0x212}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000780)={0x0, 0x4})
syz_io_uring_setup(0x5024, &(0x7f0000000700)={0x0, 0x573c, 0x0, 0x2, 0x309, 0x0, r1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340))
pidfd_open(0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x400800, 0x14)
r3 = fork()
r4 = fork()
kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, 0xffffffffffffffff, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x7})
syz_io_uring_setup(0x32fb, &(0x7f0000000200)={0x0, 0xe580, 0x0, 0x1, 0x346}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000380), &(0x7f00000003c0))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x13, r1, 0x0)
fallocate(r0, 0x64, 0xffffffff, 0x8)

13:35:33 executing program 1:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@multicast, @broadcast, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1}, {0x14, 0x0, 0x0, @empty, "39a4ba8385314b5edc3d8aabae540cb5a69bcbd9"}}}}}, 0x0)

13:35:33 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000300), 0x0, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

13:35:33 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
getsockopt$inet6_int(r0, 0x29, 0x10, 0x0, &(0x7f0000000540))

13:35:33 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_user}]}})

13:35:33 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000300), 0x0, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

[  196.246393] hrtimer: interrupt took 19687 ns
[  196.834244] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  196.835835] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  196.837006] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  196.838136] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00
[  196.839403] blk_print_req_error: 103 callbacks suppressed
[  196.839421] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 2
[  196.841690] buffer_io_error: 102 callbacks suppressed
[  196.841708] Buffer I/O error on dev sr0, logical block 0, async page read
[  196.843519] Buffer I/O error on dev sr0, logical block 1, async page read
[  196.844458] Buffer I/O error on dev sr0, logical block 2, async page read
[  196.845421] Buffer I/O error on dev sr0, logical block 3, async page read
[  196.846361] Buffer I/O error on dev sr0, logical block 4, async page read
[  196.847330] Buffer I/O error on dev sr0, logical block 5, async page read
[  196.848320] Buffer I/O error on dev sr0, logical block 6, async page read
[  196.849305] Buffer I/O error on dev sr0, logical block 7, async page read

VM DIAGNOSIS:
13:35:25  Registers:
info registers vcpu 0
RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff88803f4ff698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000069 R11=0000000000000001
R12=0000000000000069 R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80
RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f710305d700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5d0dd94000 CR3=00000000367c8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f7105bce7c0 00007f7105bce7c8
YMM02=0000000000000000 0000000000000000 00007f7105bce7e0 00007f7105bce7c0
YMM03=0000000000000000 0000000000000000 00007f7105bce7c8 00007f7105bce7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff842710f7 RDX=ffffed100d9c6fa1
RSI=0000000000000004 RDI=ffff88806ce37d00 RBP=ffff88806ce37d00 RSP=ffff888032347ab0
R8 =0000000000000000 R9 =ffff88806ce37d03 R10=ffffed100d9c6fa0 R11=0000000000000001
R12=0000000000000003 R13=ffffed100d9c6fa0 R14=0000000000000001 R15=1ffff11006468f57
RIP=ffffffff84271174 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555624a400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5f8f3241f0 CR3=0000000017590000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c
YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000