Warning: Permanently added '[localhost]:61301' (ECDSA) to the list of known hosts.
2022/09/12 19:34:14 fuzzer started
2022/09/12 19:34:14 dialing manager at localhost:38027
syzkaller login: [   43.942916] cgroup: Unknown subsys name 'net'
[   44.072283] cgroup: Unknown subsys name 'rlimit'
2022/09/12 19:34:28 syscalls: 2215
2022/09/12 19:34:28 code coverage: enabled
2022/09/12 19:34:28 comparison tracing: enabled
2022/09/12 19:34:28 extra coverage: enabled
2022/09/12 19:34:28 setuid sandbox: enabled
2022/09/12 19:34:28 namespace sandbox: enabled
2022/09/12 19:34:28 Android sandbox: enabled
2022/09/12 19:34:28 fault injection: enabled
2022/09/12 19:34:28 leak checking: enabled
2022/09/12 19:34:28 net packet injection: enabled
2022/09/12 19:34:28 net device setup: enabled
2022/09/12 19:34:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/12 19:34:28 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/12 19:34:28 USB emulation: enabled
2022/09/12 19:34:28 hci packet injection: enabled
2022/09/12 19:34:28 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912                                          )
2022/09/12 19:34:28 802.15.4 emulation: enabled
2022/09/12 19:34:28 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/12 19:34:28 fetching corpus: 27, signal 24319/27990 (executing program)
2022/09/12 19:34:28 fetching corpus: 77, signal 44001/49096 (executing program)
2022/09/12 19:34:29 fetching corpus: 127, signal 57938/64324 (executing program)
2022/09/12 19:34:29 fetching corpus: 177, signal 66314/74047 (executing program)
2022/09/12 19:34:29 fetching corpus: 227, signal 73235/82227 (executing program)
2022/09/12 19:34:29 fetching corpus: 276, signal 78991/89218 (executing program)
2022/09/12 19:34:29 fetching corpus: 326, signal 81636/93161 (executing program)
2022/09/12 19:34:29 fetching corpus: 376, signal 86216/98859 (executing program)
2022/09/12 19:34:29 fetching corpus: 426, signal 90375/104134 (executing program)
2022/09/12 19:34:29 fetching corpus: 476, signal 93779/108655 (executing program)
2022/09/12 19:34:30 fetching corpus: 526, signal 96625/112656 (executing program)
2022/09/12 19:34:30 fetching corpus: 576, signal 99521/116627 (executing program)
2022/09/12 19:34:30 fetching corpus: 626, signal 103444/121482 (executing program)
2022/09/12 19:34:30 fetching corpus: 676, signal 106661/125660 (executing program)
2022/09/12 19:34:30 fetching corpus: 726, signal 111858/131551 (executing program)
2022/09/12 19:34:30 fetching corpus: 776, signal 117945/138157 (executing program)
2022/09/12 19:34:31 fetching corpus: 826, signal 120454/141533 (executing program)
2022/09/12 19:34:31 fetching corpus: 876, signal 123693/145509 (executing program)
2022/09/12 19:34:31 fetching corpus: 926, signal 125475/148209 (executing program)
2022/09/12 19:34:31 fetching corpus: 976, signal 127718/151348 (executing program)
2022/09/12 19:34:31 fetching corpus: 1026, signal 129487/153974 (executing program)
2022/09/12 19:34:31 fetching corpus: 1076, signal 131491/156810 (executing program)
2022/09/12 19:34:31 fetching corpus: 1126, signal 133489/159608 (executing program)
2022/09/12 19:34:32 fetching corpus: 1176, signal 135762/162594 (executing program)
2022/09/12 19:34:32 fetching corpus: 1226, signal 138107/165620 (executing program)
2022/09/12 19:34:32 fetching corpus: 1276, signal 140721/168812 (executing program)
2022/09/12 19:34:32 fetching corpus: 1326, signal 142165/171040 (executing program)
2022/09/12 19:34:32 fetching corpus: 1376, signal 144137/173665 (executing program)
2022/09/12 19:34:32 fetching corpus: 1426, signal 145897/176118 (executing program)
2022/09/12 19:34:32 fetching corpus: 1476, signal 147899/178710 (executing program)
2022/09/12 19:34:33 fetching corpus: 1526, signal 149097/180622 (executing program)
2022/09/12 19:34:33 fetching corpus: 1576, signal 150849/182934 (executing program)
2022/09/12 19:34:33 fetching corpus: 1626, signal 152641/185293 (executing program)
2022/09/12 19:34:33 fetching corpus: 1676, signal 153854/187175 (executing program)
2022/09/12 19:34:33 fetching corpus: 1726, signal 155719/189532 (executing program)
2022/09/12 19:34:33 fetching corpus: 1776, signal 158128/192245 (executing program)
2022/09/12 19:34:33 fetching corpus: 1825, signal 159838/194398 (executing program)
2022/09/12 19:34:33 fetching corpus: 1874, signal 161014/196167 (executing program)
2022/09/12 19:34:34 fetching corpus: 1924, signal 162770/198376 (executing program)
2022/09/12 19:34:34 fetching corpus: 1974, signal 163946/200105 (executing program)
2022/09/12 19:34:34 fetching corpus: 2024, signal 165536/202146 (executing program)
2022/09/12 19:34:34 fetching corpus: 2074, signal 166921/204019 (executing program)
2022/09/12 19:34:34 fetching corpus: 2124, signal 168321/205850 (executing program)
2022/09/12 19:34:34 fetching corpus: 2174, signal 169913/207848 (executing program)
2022/09/12 19:34:34 fetching corpus: 2224, signal 171621/209881 (executing program)
2022/09/12 19:34:34 fetching corpus: 2274, signal 172649/211446 (executing program)
2022/09/12 19:34:35 fetching corpus: 2324, signal 174082/213201 (executing program)
2022/09/12 19:34:35 fetching corpus: 2374, signal 175207/214783 (executing program)
2022/09/12 19:34:35 fetching corpus: 2424, signal 176708/216554 (executing program)
2022/09/12 19:34:35 fetching corpus: 2474, signal 177614/217986 (executing program)
2022/09/12 19:34:35 fetching corpus: 2524, signal 179411/219925 (executing program)
2022/09/12 19:34:35 fetching corpus: 2574, signal 180756/221632 (executing program)
2022/09/12 19:34:35 fetching corpus: 2624, signal 181534/222875 (executing program)
2022/09/12 19:34:35 fetching corpus: 2674, signal 182491/224278 (executing program)
2022/09/12 19:34:36 fetching corpus: 2724, signal 183667/225739 (executing program)
2022/09/12 19:34:36 fetching corpus: 2774, signal 185552/227650 (executing program)
2022/09/12 19:34:36 fetching corpus: 2824, signal 186639/229059 (executing program)
2022/09/12 19:34:36 fetching corpus: 2874, signal 187629/230351 (executing program)
2022/09/12 19:34:36 fetching corpus: 2924, signal 188373/231484 (executing program)
2022/09/12 19:34:36 fetching corpus: 2974, signal 189087/232616 (executing program)
2022/09/12 19:34:36 fetching corpus: 3024, signal 189794/233742 (executing program)
2022/09/12 19:34:37 fetching corpus: 3074, signal 190981/235113 (executing program)
2022/09/12 19:34:37 fetching corpus: 3124, signal 192127/236504 (executing program)
2022/09/12 19:34:37 fetching corpus: 3174, signal 193098/237771 (executing program)
2022/09/12 19:34:37 fetching corpus: 3224, signal 194072/238995 (executing program)
2022/09/12 19:34:37 fetching corpus: 3274, signal 195108/240281 (executing program)
2022/09/12 19:34:37 fetching corpus: 3324, signal 196381/241627 (executing program)
2022/09/12 19:34:37 fetching corpus: 3374, signal 197709/242955 (executing program)
2022/09/12 19:34:38 fetching corpus: 3424, signal 198804/244213 (executing program)
2022/09/12 19:34:38 fetching corpus: 3474, signal 199950/245483 (executing program)
2022/09/12 19:34:38 fetching corpus: 3524, signal 200826/246584 (executing program)
2022/09/12 19:34:38 fetching corpus: 3574, signal 201622/247582 (executing program)
2022/09/12 19:34:38 fetching corpus: 3624, signal 202819/248851 (executing program)
2022/09/12 19:34:38 fetching corpus: 3674, signal 203557/249817 (executing program)
2022/09/12 19:34:38 fetching corpus: 3724, signal 204166/250705 (executing program)
2022/09/12 19:34:38 fetching corpus: 3774, signal 204630/251530 (executing program)
2022/09/12 19:34:39 fetching corpus: 3824, signal 205438/252492 (executing program)
2022/09/12 19:34:39 fetching corpus: 3874, signal 206182/253472 (executing program)
2022/09/12 19:34:39 fetching corpus: 3924, signal 207014/254420 (executing program)
2022/09/12 19:34:39 fetching corpus: 3974, signal 208370/255612 (executing program)
2022/09/12 19:34:39 fetching corpus: 4024, signal 209324/256616 (executing program)
2022/09/12 19:34:39 fetching corpus: 4074, signal 210190/257596 (executing program)
2022/09/12 19:34:39 fetching corpus: 4124, signal 210721/258343 (executing program)
2022/09/12 19:34:40 fetching corpus: 4174, signal 211466/259234 (executing program)
2022/09/12 19:34:40 fetching corpus: 4224, signal 212512/260214 (executing program)
2022/09/12 19:34:40 fetching corpus: 4274, signal 213340/261077 (executing program)
2022/09/12 19:34:40 fetching corpus: 4324, signal 213887/261862 (executing program)
2022/09/12 19:34:40 fetching corpus: 4374, signal 214835/262790 (executing program)
2022/09/12 19:34:40 fetching corpus: 4424, signal 215579/263695 (executing program)
2022/09/12 19:34:40 fetching corpus: 4474, signal 216448/264522 (executing program)
2022/09/12 19:34:41 fetching corpus: 4524, signal 217521/265412 (executing program)
2022/09/12 19:34:41 fetching corpus: 4574, signal 218117/266195 (executing program)
2022/09/12 19:34:41 fetching corpus: 4624, signal 218829/266972 (executing program)
2022/09/12 19:34:41 fetching corpus: 4674, signal 219600/267722 (executing program)
2022/09/12 19:34:41 fetching corpus: 4724, signal 221006/268730 (executing program)
2022/09/12 19:34:41 fetching corpus: 4774, signal 221926/269539 (executing program)
2022/09/12 19:34:41 fetching corpus: 4824, signal 222789/270283 (executing program)
2022/09/12 19:34:42 fetching corpus: 4874, signal 223901/271126 (executing program)
2022/09/12 19:34:42 fetching corpus: 4923, signal 224519/271813 (executing program)
2022/09/12 19:34:42 fetching corpus: 4973, signal 225189/272500 (executing program)
2022/09/12 19:34:42 fetching corpus: 5023, signal 225832/273173 (executing program)
2022/09/12 19:34:42 fetching corpus: 5073, signal 226604/273901 (executing program)
2022/09/12 19:34:42 fetching corpus: 5123, signal 227275/274573 (executing program)
2022/09/12 19:34:42 fetching corpus: 5173, signal 227967/275163 (executing program)
2022/09/12 19:34:43 fetching corpus: 5223, signal 228846/275801 (executing program)
2022/09/12 19:34:43 fetching corpus: 5273, signal 229559/276418 (executing program)
2022/09/12 19:34:43 fetching corpus: 5323, signal 230116/276957 (executing program)
2022/09/12 19:34:43 fetching corpus: 5373, signal 230715/277522 (executing program)
2022/09/12 19:34:43 fetching corpus: 5423, signal 231616/278151 (executing program)
2022/09/12 19:34:43 fetching corpus: 5473, signal 232459/278786 (executing program)
2022/09/12 19:34:43 fetching corpus: 5523, signal 233089/279350 (executing program)
2022/09/12 19:34:43 fetching corpus: 5573, signal 233674/279875 (executing program)
2022/09/12 19:34:43 fetching corpus: 5623, signal 234179/280347 (executing program)
2022/09/12 19:34:44 fetching corpus: 5673, signal 234812/280883 (executing program)
2022/09/12 19:34:44 fetching corpus: 5723, signal 235384/281383 (executing program)
2022/09/12 19:34:44 fetching corpus: 5773, signal 235917/281914 (executing program)
2022/09/12 19:34:44 fetching corpus: 5823, signal 236344/282434 (executing program)
2022/09/12 19:34:44 fetching corpus: 5873, signal 237033/283034 (executing program)
2022/09/12 19:34:44 fetching corpus: 5923, signal 237414/283471 (executing program)
2022/09/12 19:34:44 fetching corpus: 5973, signal 237909/284009 (executing program)
2022/09/12 19:34:45 fetching corpus: 6023, signal 238492/284507 (executing program)
2022/09/12 19:34:45 fetching corpus: 6073, signal 238984/284954 (executing program)
2022/09/12 19:34:45 fetching corpus: 6123, signal 239524/285495 (executing program)
2022/09/12 19:34:45 fetching corpus: 6173, signal 240124/286011 (executing program)
2022/09/12 19:34:45 fetching corpus: 6223, signal 240638/286432 (executing program)
2022/09/12 19:34:45 fetching corpus: 6273, signal 241001/286846 (executing program)
2022/09/12 19:34:45 fetching corpus: 6323, signal 241646/287327 (executing program)
2022/09/12 19:34:46 fetching corpus: 6373, signal 242399/287772 (executing program)
2022/09/12 19:34:46 fetching corpus: 6423, signal 242856/288190 (executing program)
2022/09/12 19:34:46 fetching corpus: 6473, signal 243326/288572 (executing program)
2022/09/12 19:34:46 fetching corpus: 6523, signal 243985/288980 (executing program)
2022/09/12 19:34:46 fetching corpus: 6573, signal 244677/289451 (executing program)
2022/09/12 19:34:46 fetching corpus: 6623, signal 245239/289818 (executing program)
2022/09/12 19:34:46 fetching corpus: 6673, signal 245703/290186 (executing program)
2022/09/12 19:34:46 fetching corpus: 6723, signal 246085/290528 (executing program)
2022/09/12 19:34:47 fetching corpus: 6773, signal 246563/290864 (executing program)
2022/09/12 19:34:47 fetching corpus: 6823, signal 247083/291250 (executing program)
2022/09/12 19:34:47 fetching corpus: 6873, signal 247607/291668 (executing program)
2022/09/12 19:34:47 fetching corpus: 6923, signal 248238/292005 (executing program)
2022/09/12 19:34:47 fetching corpus: 6973, signal 248776/292326 (executing program)
2022/09/12 19:34:47 fetching corpus: 7023, signal 249657/292646 (executing program)
2022/09/12 19:34:48 fetching corpus: 7073, signal 250431/292889 (executing program)
2022/09/12 19:34:48 fetching corpus: 7123, signal 251055/292955 (executing program)
2022/09/12 19:34:48 fetching corpus: 7173, signal 251595/292975 (executing program)
2022/09/12 19:34:48 fetching corpus: 7223, signal 252155/292985 (executing program)
2022/09/12 19:34:48 fetching corpus: 7273, signal 252836/292991 (executing program)
2022/09/12 19:34:48 fetching corpus: 7323, signal 253392/293000 (executing program)
2022/09/12 19:34:49 fetching corpus: 7373, signal 253951/293005 (executing program)
2022/09/12 19:34:49 fetching corpus: 7423, signal 254363/293018 (executing program)
2022/09/12 19:34:49 fetching corpus: 7473, signal 255207/293038 (executing program)
2022/09/12 19:34:49 fetching corpus: 7523, signal 255738/293050 (executing program)
2022/09/12 19:34:49 fetching corpus: 7573, signal 256264/293054 (executing program)
2022/09/12 19:34:49 fetching corpus: 7622, signal 256681/293061 (executing program)
2022/09/12 19:34:49 fetching corpus: 7672, signal 257221/293073 (executing program)
2022/09/12 19:34:50 fetching corpus: 7722, signal 257872/293098 (executing program)
2022/09/12 19:34:50 fetching corpus: 7772, signal 258204/293122 (executing program)
2022/09/12 19:34:50 fetching corpus: 7821, signal 258845/293137 (executing program)
2022/09/12 19:34:50 fetching corpus: 7871, signal 259302/293137 (executing program)
2022/09/12 19:34:50 fetching corpus: 7921, signal 259796/293141 (executing program)
2022/09/12 19:34:50 fetching corpus: 7971, signal 260175/293141 (executing program)
2022/09/12 19:34:51 fetching corpus: 8021, signal 260633/293142 (executing program)
2022/09/12 19:34:51 fetching corpus: 8071, signal 261113/293161 (executing program)
2022/09/12 19:34:51 fetching corpus: 8121, signal 261466/293164 (executing program)
2022/09/12 19:34:51 fetching corpus: 8171, signal 261995/293174 (executing program)
2022/09/12 19:34:51 fetching corpus: 8221, signal 262371/293179 (executing program)
2022/09/12 19:34:51 fetching corpus: 8271, signal 262743/293211 (executing program)
2022/09/12 19:34:51 fetching corpus: 8321, signal 263534/293211 (executing program)
2022/09/12 19:34:52 fetching corpus: 8371, signal 264094/293239 (executing program)
2022/09/12 19:34:52 fetching corpus: 8421, signal 264650/293241 (executing program)
2022/09/12 19:34:52 fetching corpus: 8471, signal 265121/293243 (executing program)
2022/09/12 19:34:52 fetching corpus: 8521, signal 265435/293244 (executing program)
2022/09/12 19:34:52 fetching corpus: 8571, signal 265759/293268 (executing program)
2022/09/12 19:34:52 fetching corpus: 8621, signal 266133/293271 (executing program)
2022/09/12 19:34:52 fetching corpus: 8671, signal 266425/293280 (executing program)
2022/09/12 19:34:53 fetching corpus: 8721, signal 267009/293290 (executing program)
2022/09/12 19:34:53 fetching corpus: 8771, signal 267444/293297 (executing program)
2022/09/12 19:34:53 fetching corpus: 8821, signal 267747/293297 (executing program)
2022/09/12 19:34:53 fetching corpus: 8871, signal 268122/293298 (executing program)
2022/09/12 19:34:53 fetching corpus: 8921, signal 268569/293308 (executing program)
2022/09/12 19:34:53 fetching corpus: 8971, signal 269228/293313 (executing program)
2022/09/12 19:34:53 fetching corpus: 9021, signal 269700/293316 (executing program)
2022/09/12 19:34:53 fetching corpus: 9071, signal 270141/293325 (executing program)
2022/09/12 19:34:54 fetching corpus: 9121, signal 270454/293342 (executing program)
2022/09/12 19:34:54 fetching corpus: 9171, signal 270744/293362 (executing program)
2022/09/12 19:34:54 fetching corpus: 9221, signal 271131/293413 (executing program)
2022/09/12 19:34:54 fetching corpus: 9271, signal 271592/293427 (executing program)
2022/09/12 19:34:54 fetching corpus: 9321, signal 271988/293428 (executing program)
2022/09/12 19:34:54 fetching corpus: 9371, signal 272216/293461 (executing program)
2022/09/12 19:34:55 fetching corpus: 9421, signal 272634/293469 (executing program)
2022/09/12 19:34:55 fetching corpus: 9471, signal 273108/293476 (executing program)
2022/09/12 19:34:55 fetching corpus: 9521, signal 274128/293627 (executing program)
2022/09/12 19:34:55 fetching corpus: 9571, signal 274484/293641 (executing program)
2022/09/12 19:34:55 fetching corpus: 9621, signal 274997/293672 (executing program)
2022/09/12 19:34:55 fetching corpus: 9670, signal 275338/293681 (executing program)
2022/09/12 19:34:55 fetching corpus: 9720, signal 275635/293686 (executing program)
2022/09/12 19:34:56 fetching corpus: 9770, signal 276230/293690 (executing program)
2022/09/12 19:34:56 fetching corpus: 9820, signal 276448/293694 (executing program)
2022/09/12 19:34:56 fetching corpus: 9870, signal 276913/293702 (executing program)
2022/09/12 19:34:56 fetching corpus: 9920, signal 277226/293713 (executing program)
2022/09/12 19:34:56 fetching corpus: 9970, signal 277797/293718 (executing program)
2022/09/12 19:34:56 fetching corpus: 10020, signal 278335/293726 (executing program)
2022/09/12 19:34:56 fetching corpus: 10070, signal 278757/293735 (executing program)
2022/09/12 19:34:56 fetching corpus: 10120, signal 279196/293752 (executing program)
2022/09/12 19:34:57 fetching corpus: 10170, signal 279649/293771 (executing program)
2022/09/12 19:34:57 fetching corpus: 10220, signal 280096/293775 (executing program)
2022/09/12 19:34:57 fetching corpus: 10270, signal 280596/293775 (executing program)
2022/09/12 19:34:57 fetching corpus: 10320, signal 280925/293808 (executing program)
2022/09/12 19:34:57 fetching corpus: 10370, signal 281462/293810 (executing program)
2022/09/12 19:34:57 fetching corpus: 10420, signal 281740/293820 (executing program)
2022/09/12 19:34:57 fetching corpus: 10458, signal 282165/293825 (executing program)
2022/09/12 19:34:57 fetching corpus: 10458, signal 282165/293825 (executing program)
2022/09/12 19:35:00 starting 8 fuzzer processes
19:35:00 executing program 0:
r0 = syz_io_uring_setup(0x677c, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PROBE(r0, 0x8, &(0x7f0000000180), 0x80000)

19:35:00 executing program 1:
syz_io_uring_setup(0x7969, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240))
fork()

19:35:00 executing program 2:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001800), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x40002, 0x180)
readv(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/7, 0x7}, {&(0x7f0000000140)=""/163, 0xa3}, {&(0x7f0000000200)=""/73, 0x49}, {&(0x7f0000000300)=""/185, 0xb9}], 0x4)
write$binfmt_aout(r1, &(0x7f00000003c0)={{0x107, 0x9, 0x20, 0x51, 0x38e, 0x2, 0x28a, 0x7fff}, "e38dff8cbd030526017e3209d8e46fc4a4bd65ded11755eedf28a3fd631321b30c3c5f010a3c9f5f3f02b8d1225d058086c0957d765c060f3a180c163d221e7dbb7e15912b177196ae71758eb2213680b2ca0a30f07f67842601df346d0bf4f2e5fe12eae41d351713aa85841649ceabdcd2474682430590ef01b01166bc5f37d56fa2094d9053dd3e098ee59b2b0b5f7b405258bca3030c4c52696c0de38d7c2551c1949132f6cf87423df8e01b373f3ec3e1b811bc97336073a4fa3efe1915a89ea3f6662228a6b86431c5fa9c7be5bdf67406eda1a4a876feb21199830f467dfd", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x602)
write(r0, &(0x7f0000000080)="01", 0x41030)

19:35:00 executing program 4:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000440))

19:35:00 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)

19:35:00 executing program 3:
clock_adjtime(0x0, &(0x7f0000000400)={0xffffffffffffcc5c})

[   89.510776] audit: type=1400 audit(1663011300.144:6): avc:  denied  { execmem } for  pid=287 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
19:35:00 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004040), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "d03e08c490e1d38a79f8f07c9bc13aa09a008e"})

19:35:00 executing program 7:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff)

[   90.792889] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   90.794712] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   90.796135] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   90.797731] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   90.798814] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   90.800148] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   90.801523] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   90.804886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   90.806108] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   90.809080] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   90.810411] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   90.811747] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   90.813143] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   90.830039] Bluetooth: hci0: HCI_REQ-0x0c1a
[   90.830443] Bluetooth: hci1: HCI_REQ-0x0c1a
[   90.848176] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   90.849435] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   90.850810] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   90.876000] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   90.878791] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   90.887399] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   90.893128] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   90.894314] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   90.897065] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   90.901534] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   90.905697] Bluetooth: hci2: HCI_REQ-0x0c1a
[   90.914362] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   90.915377] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   90.917104] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   90.918227] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   90.924216] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   90.925475] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   90.929552] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   90.930595] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   90.932303] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   90.933382] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   90.937074] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   90.938206] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   90.950104] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   90.951988] Bluetooth: hci4: HCI_REQ-0x0c1a
[   90.954936] Bluetooth: hci6: HCI_REQ-0x0c1a
[   90.958240] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   90.963188] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   90.964185] Bluetooth: hci3: HCI_REQ-0x0c1a
[   90.966781] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   90.969552] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   91.031422] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   91.035080] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   91.065818] Bluetooth: hci7: HCI_REQ-0x0c1a
[   92.865943] Bluetooth: hci5: Opcode 0x c03 failed: -110
[   92.866478] Bluetooth: hci1: command 0x0409 tx timeout
[   92.867890] Bluetooth: hci0: command 0x0409 tx timeout
[   92.929938] Bluetooth: hci2: command 0x0409 tx timeout
[   92.993881] Bluetooth: hci6: command 0x0409 tx timeout
[   92.993921] Bluetooth: hci3: command 0x0409 tx timeout
[   92.994777] Bluetooth: hci4: command 0x0409 tx timeout
[   93.122012] Bluetooth: hci7: command 0x0409 tx timeout
[   94.913902] Bluetooth: hci0: command 0x041b tx timeout
[   94.914443] Bluetooth: hci1: command 0x041b tx timeout
[   94.977956] Bluetooth: hci2: command 0x041b tx timeout
[   95.041904] Bluetooth: hci4: command 0x041b tx timeout
[   95.042372] Bluetooth: hci3: command 0x041b tx timeout
[   95.042792] Bluetooth: hci6: command 0x041b tx timeout
[   95.169958] Bluetooth: hci7: command 0x041b tx timeout
[   96.000989] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   96.003492] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   96.005434] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   96.019135] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   96.032063] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   96.046565] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   96.066133] Bluetooth: hci5: HCI_REQ-0x0c1a
[   96.961899] Bluetooth: hci1: command 0x040f tx timeout
[   96.962376] Bluetooth: hci0: command 0x040f tx timeout
[   97.026061] Bluetooth: hci2: command 0x040f tx timeout
[   97.090060] Bluetooth: hci6: command 0x040f tx timeout
[   97.090521] Bluetooth: hci3: command 0x040f tx timeout
[   97.090992] Bluetooth: hci4: command 0x040f tx timeout
[   97.217949] Bluetooth: hci7: command 0x040f tx timeout
[   98.113884] Bluetooth: hci5: command 0x0409 tx timeout
[   99.010890] Bluetooth: hci0: command 0x0419 tx timeout
[   99.011358] Bluetooth: hci1: command 0x0419 tx timeout
[   99.073885] Bluetooth: hci2: command 0x0419 tx timeout
[   99.137918] Bluetooth: hci4: command 0x0419 tx timeout
[   99.138357] Bluetooth: hci3: command 0x0419 tx timeout
[   99.138767] Bluetooth: hci6: command 0x0419 tx timeout
[   99.265877] Bluetooth: hci7: command 0x0419 tx timeout
[  100.162959] Bluetooth: hci5: command 0x041b tx timeout
[  102.210955] Bluetooth: hci5: command 0x040f tx timeout
[  104.258893] Bluetooth: hci5: command 0x0419 tx timeout
19:35:56 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004040), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "d03e08c490e1d38a79f8f07c9bc13aa09a008e"})

19:35:57 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004040), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "d03e08c490e1d38a79f8f07c9bc13aa09a008e"})

19:35:57 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004040), 0x0, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x0, 0x0, "d03e08c490e1d38a79f8f07c9bc13aa09a008e"})

19:35:57 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
read$hiddev(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = syz_io_uring_setup(0x6504, &(0x7f0000000040)={0x0, 0x4014, 0x0, 0x0, 0x3d7, 0x0, r0}, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
lseek(r1, 0x101, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x7fffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000006dc0)=@updsa={0x188, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x4c, 0x12, {{'aegis128-aesni\x00'}, 0x12}}, @algo_auth_trunc={0x4c, 0x14, {{'blake2s-160-x86\x00'}}}]}, 0x188}}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000440)=[{&(0x7f0000010000)="01434430303101004c494e75582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b7000000000000b70000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)='\x00\x00\x00\x00\x00\x00', 0x6, 0x8800}, {&(0x7f0000000300)="2200170000000000001700080000000008007809140b2a3a0882000001000001010022", 0x23, 0x10000b800}], 0x0, &(0x7f0000011300))

[  146.674478] loop6: detected capacity change from 0 to 264192
[  146.741045] isofs_fill_super: get root inode failed
19:35:57 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
read$hiddev(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = syz_io_uring_setup(0x6504, &(0x7f0000000040)={0x0, 0x4014, 0x0, 0x0, 0x3d7, 0x0, r0}, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
lseek(r1, 0x101, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x7fffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000006dc0)=@updsa={0x188, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x4c, 0x12, {{'aegis128-aesni\x00'}, 0x12}}, @algo_auth_trunc={0x4c, 0x14, {{'blake2s-160-x86\x00'}}}]}, 0x188}}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000440)=[{&(0x7f0000010000)="01434430303101004c494e75582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b7000000000000b70000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)='\x00\x00\x00\x00\x00\x00', 0x6, 0x8800}, {&(0x7f0000000300)="2200170000000000001700080000000008007809140b2a3a0882000001000001010022", 0x23, 0x10000b800}], 0x0, &(0x7f0000011300))

19:35:57 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
read$hiddev(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = syz_io_uring_setup(0x6504, &(0x7f0000000040)={0x0, 0x4014, 0x0, 0x0, 0x3d7, 0x0, r0}, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
lseek(r1, 0x101, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x7fffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000006dc0)=@updsa={0x188, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x4c, 0x12, {{'aegis128-aesni\x00'}, 0x12}}, @algo_auth_trunc={0x4c, 0x14, {{'blake2s-160-x86\x00'}}}]}, 0x188}}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000440)=[{&(0x7f0000010000)="01434430303101004c494e75582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b7000000000000b70000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)='\x00\x00\x00\x00\x00\x00', 0x6, 0x8800}, {&(0x7f0000000300)="2200170000000000001700080000000008007809140b2a3a0882000001000001010022", 0x23, 0x10000b800}], 0x0, &(0x7f0000011300))

[  147.066809] loop6: detected capacity change from 0 to 264192
[  147.128086] isofs_fill_super: get root inode failed
19:35:57 executing program 6:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
read$hiddev(r0, &(0x7f0000000000)=""/109, 0x6d)
r1 = syz_io_uring_setup(0x6504, &(0x7f0000000040)={0x0, 0x4014, 0x0, 0x0, 0x3d7, 0x0, r0}, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f00000000c0), &(0x7f0000000140))
lseek(r1, 0x101, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x7fffffff)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000006dc0)=@updsa={0x188, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x32}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x4c, 0x12, {{'aegis128-aesni\x00'}, 0x12}}, @algo_auth_trunc={0x4c, 0x14, {{'blake2s-160-x86\x00'}}}]}, 0x188}}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000440)=[{&(0x7f0000010000)="01434430303101004c494e75582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b7000000000000b70000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)='\x00\x00\x00\x00\x00\x00', 0x6, 0x8800}, {&(0x7f0000000300)="2200170000000000001700080000000008007809140b2a3a0882000001000001010022", 0x23, 0x10000b800}], 0x0, &(0x7f0000011300))

[  147.322633] loop6: detected capacity change from 0 to 264192
[  147.426950] isofs_fill_super: get root inode failed
19:35:58 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0xfe2c, 0x0, 0x0, 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
rename(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00')

[  147.656525] audit: type=1400 audit(1663011358.292:7): avc:  denied  { open } for  pid=3835 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  147.658283] audit: type=1400 audit(1663011358.294:8): avc:  denied  { kernel } for  pid=3835 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  149.364215] ------------[ cut here ]------------
[  149.364244] 
[  149.364248] ======================================================
[  149.364252] WARNING: possible circular locking dependency detected
[  149.364256] 6.0.0-rc5-next-20220912 #1 Not tainted
[  149.364263] ------------------------------------------------------
[  149.364267] syz-executor.5/3943 is trying to acquire lock:
[  149.364274] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  149.364314] 
[  149.364314] but task is already holding lock:
[  149.364317] ffff88800e88c420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  149.364345] 
[  149.364345] which lock already depends on the new lock.
[  149.364345] 
[  149.364348] 
[  149.364348] the existing dependency chain (in reverse order) is:
[  149.364351] 
[  149.364351] -> #3 (&ctx->lock){....}-{2:2}:
[  149.364365]        _raw_spin_lock+0x2a/0x40
[  149.364382]        __perf_event_task_sched_out+0x53b/0x18d0
[  149.364395]        __schedule+0xedd/0x2470
[  149.364405]        schedule+0xda/0x1b0
[  149.364414]        exit_to_user_mode_prepare+0x114/0x1a0
[  149.364435]        syscall_exit_to_user_mode+0x19/0x40
[  149.364453]        do_syscall_64+0x48/0x90
[  149.364466]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.364484] 
[  149.364484] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  149.364497]        _raw_spin_lock_nested+0x30/0x40
[  149.364512]        raw_spin_rq_lock_nested+0x1e/0x30
[  149.364525]        task_fork_fair+0x63/0x4d0
[  149.364543]        sched_cgroup_fork+0x3d0/0x540
[  149.364557]        copy_process+0x3f9e/0x6df0
[  149.364567]        kernel_clone+0xe7/0x890
[  149.364577]        user_mode_thread+0xad/0xf0
[  149.364587]        rest_init+0x24/0x250
[  149.364603]        arch_call_rest_init+0xf/0x14
[  149.364623]        start_kernel+0x4c1/0x4e6
[  149.364640]        secondary_startup_64_no_verify+0xe0/0xeb
[  149.364654] 
[  149.364654] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  149.364668]        _raw_spin_lock_irqsave+0x39/0x60
[  149.364683]        try_to_wake_up+0xab/0x1920
[  149.364697]        up+0x75/0xb0
[  149.364708]        __up_console_sem+0x6e/0x80
[  149.364725]        console_unlock+0x46a/0x590
[  149.364741]        vprintk_emit+0x1bd/0x560
[  149.364758]        vprintk+0x84/0xa0
[  149.364774]        _printk+0xba/0xf1
[  149.364792]        kauditd_hold_skb.cold+0x3f/0x4e
[  149.364806]        kauditd_send_queue+0x233/0x290
[  149.364821]        kauditd_thread+0x5da/0x9a0
[  149.364843]        kthread+0x2ed/0x3a0
[  149.364858]        ret_from_fork+0x22/0x30
[  149.364871] 
[  149.364871] -> #0 ((console_sem).lock){....}-{2:2}:
[  149.364885]        __lock_acquire+0x2a02/0x5e70
[  149.364902]        lock_acquire+0x1a2/0x530
[  149.364918]        _raw_spin_lock_irqsave+0x39/0x60
[  149.364932]        down_trylock+0xe/0x70
[  149.364945]        __down_trylock_console_sem+0x3b/0xd0
[  149.364961]        vprintk_emit+0x16b/0x560
[  149.364978]        vprintk+0x84/0xa0
[  149.364994]        _printk+0xba/0xf1
[  149.365010]        report_bug.cold+0x72/0xab
[  149.365023]        handle_bug+0x3c/0x70
[  149.365035]        exc_invalid_op+0x14/0x50
[  149.365048]        asm_exc_invalid_op+0x16/0x20
[  149.365064]        group_sched_out.part.0+0x2c7/0x460
[  149.365075]        ctx_sched_out+0x8f1/0xc10
[  149.365084]        __perf_event_task_sched_out+0x6d0/0x18d0
[  149.365097]        __schedule+0xedd/0x2470
[  149.365106]        schedule+0xda/0x1b0
[  149.365115]        futex_wait_queue+0xf5/0x1e0
[  149.365126]        futex_wait+0x28e/0x690
[  149.365136]        do_futex+0x2ff/0x380
[  149.365145]        __x64_sys_futex+0x1c6/0x4d0
[  149.365155]        do_syscall_64+0x3b/0x90
[  149.365168]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.365184] 
[  149.365184] other info that might help us debug this:
[  149.365184] 
[  149.365187] Chain exists of:
[  149.365187]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  149.365187] 
[  149.365202]  Possible unsafe locking scenario:
[  149.365202] 
[  149.365204]        CPU0                    CPU1
[  149.365207]        ----                    ----
[  149.365209]   lock(&ctx->lock);
[  149.365215]                                lock(&rq->__lock);
[  149.365221]                                lock(&ctx->lock);
[  149.365227]   lock((console_sem).lock);
[  149.365233] 
[  149.365233]  *** DEADLOCK ***
[  149.365233] 
[  149.365235] 2 locks held by syz-executor.5/3943:
[  149.365242]  #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  149.365267]  #1: ffff88800e88c420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  149.365295] 
[  149.365295] stack backtrace:
[  149.365298] CPU: 0 PID: 3943 Comm: syz-executor.5 Not tainted 6.0.0-rc5-next-20220912 #1
[  149.365311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  149.365319] Call Trace:
[  149.365322]  <TASK>
[  149.365327]  dump_stack_lvl+0x8b/0xb3
[  149.365342]  check_noncircular+0x263/0x2e0
[  149.365359]  ? format_decode+0x26c/0xb50
[  149.365374]  ? print_circular_bug+0x450/0x450
[  149.365391]  ? enable_ptr_key_workfn+0x20/0x20
[  149.365407]  ? format_decode+0x26c/0xb50
[  149.365423]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  149.365441]  __lock_acquire+0x2a02/0x5e70
[  149.365465]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  149.365490]  lock_acquire+0x1a2/0x530
[  149.365507]  ? down_trylock+0xe/0x70
[  149.365522]  ? rcu_read_unlock+0x40/0x40
[  149.365545]  ? vprintk+0x84/0xa0
[  149.365563]  _raw_spin_lock_irqsave+0x39/0x60
[  149.365579]  ? down_trylock+0xe/0x70
[  149.365593]  down_trylock+0xe/0x70
[  149.365606]  ? vprintk+0x84/0xa0
[  149.365624]  __down_trylock_console_sem+0x3b/0xd0
[  149.365641]  vprintk_emit+0x16b/0x560
[  149.365662]  vprintk+0x84/0xa0
[  149.365680]  _printk+0xba/0xf1
[  149.365697]  ? record_print_text.cold+0x16/0x16
[  149.365721]  ? report_bug.cold+0x66/0xab
[  149.365735]  ? group_sched_out.part.0+0x2c7/0x460
[  149.365747]  report_bug.cold+0x72/0xab
[  149.365762]  handle_bug+0x3c/0x70
[  149.365776]  exc_invalid_op+0x14/0x50
[  149.365790]  asm_exc_invalid_op+0x16/0x20
[  149.365807] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  149.365821] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  149.365832] RSP: 0018:ffff88804031f8f8 EFLAGS: 00010006
[  149.365842] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  149.365849] RDX: ffff88804287d040 RSI: ffffffff81566027 RDI: 0000000000000005
[  149.365857] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  149.365865] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800e88c400
[  149.365873] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  149.365885]  ? group_sched_out.part.0+0x2c7/0x460
[  149.365898]  ? group_sched_out.part.0+0x2c7/0x460
[  149.365912]  ctx_sched_out+0x8f1/0xc10
[  149.365925]  __perf_event_task_sched_out+0x6d0/0x18d0
[  149.365941]  ? lock_is_held_type+0xd7/0x130
[  149.365960]  ? __perf_cgroup_move+0x160/0x160
[  149.365972]  ? set_next_entity+0x304/0x550
[  149.365993]  ? lock_is_held_type+0xd7/0x130
[  149.366012]  __schedule+0xedd/0x2470
[  149.366026]  ? io_schedule_timeout+0x150/0x150
[  149.366037]  ? futex_wait_setup+0x166/0x230
[  149.366053]  schedule+0xda/0x1b0
[  149.366064]  futex_wait_queue+0xf5/0x1e0
[  149.366076]  futex_wait+0x28e/0x690
[  149.366089]  ? futex_wait_setup+0x230/0x230
[  149.366103]  ? wake_up_q+0x8b/0xf0
[  149.366116]  ? do_raw_spin_unlock+0x4f/0x220
[  149.366137]  ? futex_wake+0x158/0x490
[  149.366154]  ? fd_install+0x1f9/0x640
[  149.366172]  do_futex+0x2ff/0x380
[  149.366183]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  149.366201]  __x64_sys_futex+0x1c6/0x4d0
[  149.366214]  ? __x64_sys_futex_time32+0x480/0x480
[  149.366227]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.366245]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.366266]  do_syscall_64+0x3b/0x90
[  149.366280]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.366298] RIP: 0033:0x7f4205c5fb19
[  149.366306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  149.366317] RSP: 002b:00007f42031d5218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  149.366328] RAX: ffffffffffffffda RBX: 00007f4205d72f68 RCX: 00007f4205c5fb19
[  149.366336] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4205d72f68
[  149.366343] RBP: 00007f4205d72f60 R08: 0000000000000000 R09: 0000000000000000
[  149.366350] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4205d72f6c
[  149.366358] R13: 00007fff01f53b1f R14: 00007f42031d5300 R15: 0000000000022000
[  149.366372]  </TASK>
[  149.426325] WARNING: CPU: 0 PID: 3943 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  149.427026] Modules linked in:
[  149.427278] CPU: 0 PID: 3943 Comm: syz-executor.5 Not tainted 6.0.0-rc5-next-20220912 #1
[  149.427895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  149.428734] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  149.429154] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  149.430520] RSP: 0018:ffff88804031f8f8 EFLAGS: 00010006
[  149.430923] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  149.431463] RDX: ffff88804287d040 RSI: ffffffff81566027 RDI: 0000000000000005
[  149.431994] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  149.432535] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800e88c400
[  149.433082] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  149.433619] FS:  00007f42031d5700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  149.434239] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.434687] CR2: 00007f2e5f81c368 CR3: 0000000042cf8000 CR4: 0000000000350ef0
[  149.435228] Call Trace:
[  149.435432]  <TASK>
[  149.435620]  ctx_sched_out+0x8f1/0xc10
[  149.435922]  __perf_event_task_sched_out+0x6d0/0x18d0
[  149.436316]  ? lock_is_held_type+0xd7/0x130
[  149.436653]  ? __perf_cgroup_move+0x160/0x160
[  149.437034]  ? set_next_entity+0x304/0x550
[  149.437368]  ? lock_is_held_type+0xd7/0x130
[  149.437708]  __schedule+0xedd/0x2470
[  149.437997]  ? io_schedule_timeout+0x150/0x150
[  149.438344]  ? futex_wait_setup+0x166/0x230
[  149.438674]  schedule+0xda/0x1b0
[  149.438935]  futex_wait_queue+0xf5/0x1e0
[  149.439249]  futex_wait+0x28e/0x690
[  149.439529]  ? futex_wait_setup+0x230/0x230
[  149.439858]  ? wake_up_q+0x8b/0xf0
[  149.440135]  ? do_raw_spin_unlock+0x4f/0x220
[  149.440481]  ? futex_wake+0x158/0x490
[  149.440780]  ? fd_install+0x1f9/0x640
[  149.441087]  do_futex+0x2ff/0x380
[  149.441355]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  149.441794]  __x64_sys_futex+0x1c6/0x4d0
[  149.442109]  ? __x64_sys_futex_time32+0x480/0x480
[  149.442478]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.442871]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.443269]  do_syscall_64+0x3b/0x90
[  149.443559]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.443955] RIP: 0033:0x7f4205c5fb19
[  149.444238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  149.445603] RSP: 002b:00007f42031d5218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  149.446175] RAX: ffffffffffffffda RBX: 00007f4205d72f68 RCX: 00007f4205c5fb19
[  149.446714] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4205d72f68
[  149.447249] RBP: 00007f4205d72f60 R08: 0000000000000000 R09: 0000000000000000
[  149.447787] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4205d72f6c
[  149.448324] R13: 00007fff01f53b1f R14: 00007f42031d5300 R15: 0000000000022000
[  149.448886]  </TASK>
[  149.449071] irq event stamp: 328
[  149.449323] hardirqs last  enabled at (327): [<ffffffff8423e76d>] syscall_enter_from_user_mode+0x1d/0x50
[  149.450041] hardirqs last disabled at (328): [<ffffffff84247a45>] __schedule+0x1225/0x2470
[  149.450660] softirqs last  enabled at (0): [<ffffffff811500ce>] copy_process+0x1dfe/0x6df0
[  149.451278] softirqs last disabled at (0): [<0000000000000000>] 0x0
[  149.451755] ---[ end trace 0000000000000000 ]---
[  152.017780] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  152.019940] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  152.031273] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  152.035483] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  152.038670] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  152.040310] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  152.044792] Bluetooth: hci1: HCI_REQ-0x0c1a
[  154.049988] Bluetooth: hci1: command 0x0409 tx timeout
[  154.241888] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  156.098010] Bluetooth: hci1: command 0x041b tx timeout
[  158.145889] Bluetooth: hci1: command 0x040f tx timeout
[  158.529870] Bluetooth: hci6: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
19:36:00  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff88804031f348
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30
RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f42031d5700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2e5f81c368 CR3=0000000042cf8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f4205d467c0 00007f4205d467c8
YMM02=0000000000000000 0000000000000000 00007f4205d467e0 00007f4205d467c0
YMM03=0000000000000000 0000000000000000 00007f4205d467c8 00007f4205d467c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3eda0 RCX=0000000000000000 RDX=ffff888043573580
RSI=ffffffff813bccdb RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88804351f960
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffed100d9c7db5 R13=ffff88806ce3eda8 R14=0000000000000001 R15=dffffc0000000000
RIP=ffffffff813bccdd RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555564ec400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4205d6908c CR3=0000000042cf8000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f4205d467c0 00007f4205d467c8
YMM02=0000000000000000 0000000000000000 00007f4205d467e0 00007f4205d467c0
YMM03=0000000000000000 0000000000000000 00007f4205d467c8 00007f4205d467c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000