Warning: Permanently added '[localhost]:53303' (ECDSA) to the list of known hosts.
2022/09/12 19:57:33 fuzzer started
2022/09/12 19:57:33 dialing manager at localhost:38027
syzkaller login: [   42.581937] cgroup: Unknown subsys name 'net'
[   42.686757] cgroup: Unknown subsys name 'rlimit'
2022/09/12 19:57:49 syscalls: 2215
2022/09/12 19:57:49 code coverage: enabled
2022/09/12 19:57:49 comparison tracing: enabled
2022/09/12 19:57:49 extra coverage: enabled
2022/09/12 19:57:49 setuid sandbox: enabled
2022/09/12 19:57:49 namespace sandbox: enabled
2022/09/12 19:57:49 Android sandbox: enabled
2022/09/12 19:57:49 fault injection: enabled
2022/09/12 19:57:49 leak checking: enabled
2022/09/12 19:57:49 net packet injection: enabled
2022/09/12 19:57:49 net device setup: enabled
2022/09/12 19:57:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/12 19:57:49 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/12 19:57:49 USB emulation: enabled
2022/09/12 19:57:49 hci packet injection: enabled
2022/09/12 19:57:49 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912                                          )
2022/09/12 19:57:49 802.15.4 emulation: enabled
2022/09/12 19:57:49 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/12 19:57:49 fetching corpus: 50, signal 34288/37801 (executing program)
2022/09/12 19:57:49 fetching corpus: 100, signal 49995/54984 (executing program)
2022/09/12 19:57:49 fetching corpus: 150, signal 56268/62742 (executing program)
2022/09/12 19:57:49 fetching corpus: 200, signal 65208/73030 (executing program)
2022/09/12 19:57:49 fetching corpus: 250, signal 72584/81684 (executing program)
2022/09/12 19:57:50 fetching corpus: 300, signal 77532/87930 (executing program)
2022/09/12 19:57:50 fetching corpus: 350, signal 84171/95673 (executing program)
2022/09/12 19:57:50 fetching corpus: 400, signal 90001/102555 (executing program)
2022/09/12 19:57:50 fetching corpus: 450, signal 94805/108434 (executing program)
2022/09/12 19:57:50 fetching corpus: 500, signal 97609/112375 (executing program)
2022/09/12 19:57:50 fetching corpus: 550, signal 101423/117221 (executing program)
2022/09/12 19:57:50 fetching corpus: 600, signal 105134/121958 (executing program)
2022/09/12 19:57:51 fetching corpus: 650, signal 109482/127161 (executing program)
2022/09/12 19:57:51 fetching corpus: 700, signal 112336/131034 (executing program)
2022/09/12 19:57:51 fetching corpus: 750, signal 115130/134771 (executing program)
2022/09/12 19:57:51 fetching corpus: 800, signal 118774/139234 (executing program)
2022/09/12 19:57:51 fetching corpus: 850, signal 121122/142474 (executing program)
2022/09/12 19:57:51 fetching corpus: 900, signal 124088/146230 (executing program)
2022/09/12 19:57:51 fetching corpus: 950, signal 127810/150616 (executing program)
2022/09/12 19:57:52 fetching corpus: 1000, signal 131042/154516 (executing program)
2022/09/12 19:57:52 fetching corpus: 1050, signal 132669/156994 (executing program)
2022/09/12 19:57:52 fetching corpus: 1100, signal 134223/159419 (executing program)
2022/09/12 19:57:52 fetching corpus: 1150, signal 136008/162032 (executing program)
2022/09/12 19:57:52 fetching corpus: 1200, signal 139371/165899 (executing program)
2022/09/12 19:57:52 fetching corpus: 1250, signal 142266/169359 (executing program)
2022/09/12 19:57:52 fetching corpus: 1300, signal 143964/171808 (executing program)
2022/09/12 19:57:53 fetching corpus: 1350, signal 146068/174547 (executing program)
2022/09/12 19:57:53 fetching corpus: 1400, signal 147817/177036 (executing program)
2022/09/12 19:57:53 fetching corpus: 1450, signal 148986/178966 (executing program)
2022/09/12 19:57:53 fetching corpus: 1500, signal 150136/180899 (executing program)
2022/09/12 19:57:53 fetching corpus: 1550, signal 151609/183068 (executing program)
2022/09/12 19:57:53 fetching corpus: 1600, signal 153777/185716 (executing program)
2022/09/12 19:57:53 fetching corpus: 1650, signal 155041/187650 (executing program)
2022/09/12 19:57:53 fetching corpus: 1700, signal 156509/189776 (executing program)
2022/09/12 19:57:54 fetching corpus: 1750, signal 157615/191535 (executing program)
2022/09/12 19:57:54 fetching corpus: 1800, signal 159458/193842 (executing program)
2022/09/12 19:57:54 fetching corpus: 1850, signal 160585/195627 (executing program)
2022/09/12 19:57:54 fetching corpus: 1900, signal 162423/197905 (executing program)
2022/09/12 19:57:54 fetching corpus: 1950, signal 163773/199786 (executing program)
2022/09/12 19:57:54 fetching corpus: 2000, signal 165169/201715 (executing program)
2022/09/12 19:57:54 fetching corpus: 2050, signal 167298/204133 (executing program)
2022/09/12 19:57:55 fetching corpus: 2100, signal 168558/205912 (executing program)
2022/09/12 19:57:55 fetching corpus: 2150, signal 169441/207400 (executing program)
2022/09/12 19:57:55 fetching corpus: 2200, signal 170674/209100 (executing program)
2022/09/12 19:57:55 fetching corpus: 2250, signal 172008/210808 (executing program)
2022/09/12 19:57:55 fetching corpus: 2300, signal 173073/212369 (executing program)
2022/09/12 19:57:55 fetching corpus: 2350, signal 174798/214338 (executing program)
2022/09/12 19:57:55 fetching corpus: 2400, signal 175801/215841 (executing program)
2022/09/12 19:57:56 fetching corpus: 2450, signal 176959/217407 (executing program)
2022/09/12 19:57:56 fetching corpus: 2499, signal 178123/219019 (executing program)
2022/09/12 19:57:56 fetching corpus: 2549, signal 179996/221014 (executing program)
2022/09/12 19:57:56 fetching corpus: 2598, signal 180953/222449 (executing program)
2022/09/12 19:57:56 fetching corpus: 2648, signal 182961/224504 (executing program)
2022/09/12 19:57:56 fetching corpus: 2698, signal 184537/226298 (executing program)
2022/09/12 19:57:56 fetching corpus: 2747, signal 185471/227651 (executing program)
2022/09/12 19:57:57 fetching corpus: 2797, signal 186468/229013 (executing program)
2022/09/12 19:57:57 fetching corpus: 2847, signal 187211/230269 (executing program)
2022/09/12 19:57:57 fetching corpus: 2897, signal 188659/231924 (executing program)
2022/09/12 19:57:57 fetching corpus: 2947, signal 190586/233853 (executing program)
2022/09/12 19:57:57 fetching corpus: 2997, signal 191281/235005 (executing program)
2022/09/12 19:57:57 fetching corpus: 3047, signal 192338/236344 (executing program)
2022/09/12 19:57:57 fetching corpus: 3094, signal 193306/237653 (executing program)
2022/09/12 19:57:58 fetching corpus: 3144, signal 194296/238886 (executing program)
2022/09/12 19:57:58 fetching corpus: 3194, signal 195222/240125 (executing program)
2022/09/12 19:57:58 fetching corpus: 3244, signal 196476/241484 (executing program)
2022/09/12 19:57:58 fetching corpus: 3294, signal 197244/242624 (executing program)
2022/09/12 19:57:58 fetching corpus: 3344, signal 198441/244022 (executing program)
2022/09/12 19:57:58 fetching corpus: 3394, signal 199612/245314 (executing program)
2022/09/12 19:57:59 fetching corpus: 3444, signal 200444/246437 (executing program)
2022/09/12 19:57:59 fetching corpus: 3494, signal 201379/247584 (executing program)
2022/09/12 19:57:59 fetching corpus: 3541, signal 203417/249329 (executing program)
2022/09/12 19:57:59 fetching corpus: 3591, signal 204301/250426 (executing program)
2022/09/12 19:57:59 fetching corpus: 3641, signal 205311/251606 (executing program)
2022/09/12 19:57:59 fetching corpus: 3691, signal 206157/252632 (executing program)
2022/09/12 19:57:59 fetching corpus: 3740, signal 207322/253823 (executing program)
2022/09/12 19:57:59 fetching corpus: 3790, signal 207972/254752 (executing program)
2022/09/12 19:58:00 fetching corpus: 3840, signal 208990/255844 (executing program)
2022/09/12 19:58:00 fetching corpus: 3888, signal 210072/256980 (executing program)
2022/09/12 19:58:00 fetching corpus: 3938, signal 211016/258043 (executing program)
2022/09/12 19:58:00 fetching corpus: 3988, signal 211910/259016 (executing program)
2022/09/12 19:58:00 fetching corpus: 4038, signal 212441/259822 (executing program)
2022/09/12 19:58:00 fetching corpus: 4088, signal 213389/260849 (executing program)
2022/09/12 19:58:01 fetching corpus: 4138, signal 214539/261943 (executing program)
2022/09/12 19:58:01 fetching corpus: 4188, signal 215462/262902 (executing program)
2022/09/12 19:58:01 fetching corpus: 4238, signal 216334/263893 (executing program)
2022/09/12 19:58:01 fetching corpus: 4288, signal 217444/264907 (executing program)
2022/09/12 19:58:01 fetching corpus: 4338, signal 218040/265719 (executing program)
2022/09/12 19:58:01 fetching corpus: 4388, signal 218837/266566 (executing program)
2022/09/12 19:58:01 fetching corpus: 4438, signal 220283/267640 (executing program)
2022/09/12 19:58:02 fetching corpus: 4488, signal 221181/268499 (executing program)
2022/09/12 19:58:02 fetching corpus: 4538, signal 221780/269218 (executing program)
2022/09/12 19:58:02 fetching corpus: 4588, signal 222683/270105 (executing program)
2022/09/12 19:58:02 fetching corpus: 4638, signal 223466/270913 (executing program)
2022/09/12 19:58:02 fetching corpus: 4688, signal 224277/271766 (executing program)
2022/09/12 19:58:02 fetching corpus: 4738, signal 225071/272541 (executing program)
2022/09/12 19:58:02 fetching corpus: 4788, signal 226020/273407 (executing program)
2022/09/12 19:58:03 fetching corpus: 4838, signal 226566/274054 (executing program)
2022/09/12 19:58:03 fetching corpus: 4887, signal 227482/274850 (executing program)
2022/09/12 19:58:03 fetching corpus: 4937, signal 228269/275573 (executing program)
2022/09/12 19:58:03 fetching corpus: 4987, signal 228662/276214 (executing program)
2022/09/12 19:58:03 fetching corpus: 5036, signal 229234/276890 (executing program)
2022/09/12 19:58:03 fetching corpus: 5086, signal 229814/277551 (executing program)
2022/09/12 19:58:04 fetching corpus: 5136, signal 230574/278191 (executing program)
2022/09/12 19:58:04 fetching corpus: 5186, signal 231087/278793 (executing program)
2022/09/12 19:58:04 fetching corpus: 5234, signal 232160/279576 (executing program)
2022/09/12 19:58:04 fetching corpus: 5284, signal 232825/280287 (executing program)
2022/09/12 19:58:04 fetching corpus: 5334, signal 233195/280848 (executing program)
2022/09/12 19:58:04 fetching corpus: 5384, signal 233797/281437 (executing program)
2022/09/12 19:58:04 fetching corpus: 5434, signal 234518/282078 (executing program)
2022/09/12 19:58:04 fetching corpus: 5483, signal 235001/282623 (executing program)
2022/09/12 19:58:04 fetching corpus: 5533, signal 235575/283164 (executing program)
2022/09/12 19:58:05 fetching corpus: 5583, signal 236365/283774 (executing program)
2022/09/12 19:58:05 fetching corpus: 5633, signal 236900/284380 (executing program)
2022/09/12 19:58:05 fetching corpus: 5682, signal 237466/284910 (executing program)
2022/09/12 19:58:05 fetching corpus: 5731, signal 238171/285504 (executing program)
2022/09/12 19:58:05 fetching corpus: 5781, signal 238910/286068 (executing program)
2022/09/12 19:58:05 fetching corpus: 5831, signal 239518/286571 (executing program)
2022/09/12 19:58:05 fetching corpus: 5881, signal 240066/287102 (executing program)
2022/09/12 19:58:06 fetching corpus: 5931, signal 240565/287567 (executing program)
2022/09/12 19:58:06 fetching corpus: 5981, signal 241372/288141 (executing program)
2022/09/12 19:58:06 fetching corpus: 6031, signal 242241/288720 (executing program)
2022/09/12 19:58:06 fetching corpus: 6081, signal 242673/289183 (executing program)
2022/09/12 19:58:06 fetching corpus: 6131, signal 243101/289620 (executing program)
2022/09/12 19:58:06 fetching corpus: 6181, signal 244495/290193 (executing program)
2022/09/12 19:58:06 fetching corpus: 6231, signal 245123/290672 (executing program)
2022/09/12 19:58:06 fetching corpus: 6281, signal 245851/291098 (executing program)
2022/09/12 19:58:07 fetching corpus: 6331, signal 246278/291494 (executing program)
2022/09/12 19:58:07 fetching corpus: 6381, signal 246855/291915 (executing program)
2022/09/12 19:58:07 fetching corpus: 6431, signal 247465/292345 (executing program)
2022/09/12 19:58:07 fetching corpus: 6481, signal 248011/292744 (executing program)
2022/09/12 19:58:07 fetching corpus: 6531, signal 248584/293140 (executing program)
2022/09/12 19:58:07 fetching corpus: 6581, signal 249122/293523 (executing program)
2022/09/12 19:58:08 fetching corpus: 6631, signal 249658/293929 (executing program)
2022/09/12 19:58:08 fetching corpus: 6681, signal 250440/294315 (executing program)
2022/09/12 19:58:08 fetching corpus: 6731, signal 250833/294701 (executing program)
2022/09/12 19:58:08 fetching corpus: 6781, signal 251359/295102 (executing program)
2022/09/12 19:58:08 fetching corpus: 6831, signal 251854/295446 (executing program)
2022/09/12 19:58:08 fetching corpus: 6881, signal 252304/295766 (executing program)
2022/09/12 19:58:08 fetching corpus: 6931, signal 252981/296144 (executing program)
2022/09/12 19:58:08 fetching corpus: 6981, signal 253398/296488 (executing program)
2022/09/12 19:58:09 fetching corpus: 7031, signal 253946/296846 (executing program)
2022/09/12 19:58:09 fetching corpus: 7081, signal 254489/297178 (executing program)
2022/09/12 19:58:09 fetching corpus: 7131, signal 255013/297480 (executing program)
2022/09/12 19:58:09 fetching corpus: 7181, signal 255390/297795 (executing program)
2022/09/12 19:58:09 fetching corpus: 7231, signal 255997/297972 (executing program)
2022/09/12 19:58:09 fetching corpus: 7281, signal 256408/298003 (executing program)
2022/09/12 19:58:09 fetching corpus: 7331, signal 257000/298043 (executing program)
2022/09/12 19:58:09 fetching corpus: 7381, signal 257505/298068 (executing program)
2022/09/12 19:58:10 fetching corpus: 7431, signal 258072/298088 (executing program)
2022/09/12 19:58:10 fetching corpus: 7481, signal 258599/298110 (executing program)
2022/09/12 19:58:10 fetching corpus: 7531, signal 259092/298152 (executing program)
2022/09/12 19:58:10 fetching corpus: 7581, signal 259889/298252 (executing program)
2022/09/12 19:58:10 fetching corpus: 7631, signal 260473/298256 (executing program)
2022/09/12 19:58:10 fetching corpus: 7681, signal 260865/298271 (executing program)
2022/09/12 19:58:11 fetching corpus: 7731, signal 261873/298291 (executing program)
2022/09/12 19:58:11 fetching corpus: 7781, signal 262315/298301 (executing program)
2022/09/12 19:58:11 fetching corpus: 7831, signal 262876/298302 (executing program)
2022/09/12 19:58:11 fetching corpus: 7881, signal 263175/298306 (executing program)
2022/09/12 19:58:11 fetching corpus: 7931, signal 263662/298325 (executing program)
2022/09/12 19:58:11 fetching corpus: 7981, signal 264146/298332 (executing program)
2022/09/12 19:58:11 fetching corpus: 8031, signal 264563/298342 (executing program)
2022/09/12 19:58:12 fetching corpus: 8081, signal 265002/298344 (executing program)
2022/09/12 19:58:12 fetching corpus: 8131, signal 265341/298352 (executing program)
2022/09/12 19:58:12 fetching corpus: 8181, signal 265841/298419 (executing program)
2022/09/12 19:58:12 fetching corpus: 8230, signal 266211/298449 (executing program)
2022/09/12 19:58:12 fetching corpus: 8280, signal 266637/298460 (executing program)
2022/09/12 19:58:12 fetching corpus: 8330, signal 267074/298462 (executing program)
2022/09/12 19:58:12 fetching corpus: 8380, signal 267622/298486 (executing program)
2022/09/12 19:58:13 fetching corpus: 8430, signal 268370/298493 (executing program)
2022/09/12 19:58:13 fetching corpus: 8480, signal 268775/298510 (executing program)
2022/09/12 19:58:13 fetching corpus: 8530, signal 269281/298520 (executing program)
2022/09/12 19:58:13 fetching corpus: 8580, signal 269891/298521 (executing program)
2022/09/12 19:58:13 fetching corpus: 8630, signal 270286/298528 (executing program)
2022/09/12 19:58:13 fetching corpus: 8680, signal 270607/298529 (executing program)
2022/09/12 19:58:13 fetching corpus: 8730, signal 270944/298551 (executing program)
2022/09/12 19:58:14 fetching corpus: 8780, signal 271307/298579 (executing program)
2022/09/12 19:58:14 fetching corpus: 8830, signal 271848/298660 (executing program)
2022/09/12 19:58:14 fetching corpus: 8880, signal 272510/298682 (executing program)
2022/09/12 19:58:14 fetching corpus: 8930, signal 272856/298686 (executing program)
2022/09/12 19:58:14 fetching corpus: 8980, signal 273163/298691 (executing program)
2022/09/12 19:58:14 fetching corpus: 9030, signal 273694/298733 (executing program)
2022/09/12 19:58:15 fetching corpus: 9080, signal 274050/298749 (executing program)
2022/09/12 19:58:15 fetching corpus: 9130, signal 274348/298757 (executing program)
2022/09/12 19:58:15 fetching corpus: 9180, signal 274703/298758 (executing program)
2022/09/12 19:58:15 fetching corpus: 9230, signal 275118/298812 (executing program)
2022/09/12 19:58:15 fetching corpus: 9280, signal 275555/298816 (executing program)
2022/09/12 19:58:15 fetching corpus: 9330, signal 275809/298820 (executing program)
2022/09/12 19:58:15 fetching corpus: 9380, signal 276309/298862 (executing program)
2022/09/12 19:58:16 fetching corpus: 9429, signal 276726/298864 (executing program)
2022/09/12 19:58:16 fetching corpus: 9479, signal 277186/298877 (executing program)
2022/09/12 19:58:16 fetching corpus: 9529, signal 277706/298883 (executing program)
2022/09/12 19:58:16 fetching corpus: 9579, signal 278005/298889 (executing program)
2022/09/12 19:58:16 fetching corpus: 9629, signal 278324/298901 (executing program)
2022/09/12 19:58:16 fetching corpus: 9679, signal 278556/298913 (executing program)
2022/09/12 19:58:16 fetching corpus: 9729, signal 278833/298917 (executing program)
2022/09/12 19:58:16 fetching corpus: 9779, signal 279303/298918 (executing program)
2022/09/12 19:58:17 fetching corpus: 9829, signal 279568/298924 (executing program)
2022/09/12 19:58:17 fetching corpus: 9879, signal 279858/298937 (executing program)
2022/09/12 19:58:17 fetching corpus: 9929, signal 280360/298945 (executing program)
2022/09/12 19:58:17 fetching corpus: 9979, signal 280781/298954 (executing program)
2022/09/12 19:58:17 fetching corpus: 10029, signal 281070/298955 (executing program)
2022/09/12 19:58:17 fetching corpus: 10079, signal 281736/298962 (executing program)
2022/09/12 19:58:17 fetching corpus: 10129, signal 282154/299014 (executing program)
2022/09/12 19:58:18 fetching corpus: 10179, signal 282575/299042 (executing program)
2022/09/12 19:58:18 fetching corpus: 10229, signal 283027/299042 (executing program)
2022/09/12 19:58:18 fetching corpus: 10279, signal 283296/299045 (executing program)
2022/09/12 19:58:18 fetching corpus: 10329, signal 283529/299049 (executing program)
2022/09/12 19:58:18 fetching corpus: 10378, signal 284081/299099 (executing program)
2022/09/12 19:58:18 fetching corpus: 10428, signal 284628/299112 (executing program)
2022/09/12 19:58:18 fetching corpus: 10478, signal 285018/299115 (executing program)
2022/09/12 19:58:18 fetching corpus: 10528, signal 285508/299116 (executing program)
2022/09/12 19:58:19 fetching corpus: 10578, signal 285859/299126 (executing program)
2022/09/12 19:58:19 fetching corpus: 10628, signal 286042/299132 (executing program)
2022/09/12 19:58:19 fetching corpus: 10678, signal 286288/299146 (executing program)
2022/09/12 19:58:19 fetching corpus: 10727, signal 286627/299174 (executing program)
2022/09/12 19:58:19 fetching corpus: 10777, signal 286913/299177 (executing program)
2022/09/12 19:58:19 fetching corpus: 10827, signal 287365/299186 (executing program)
2022/09/12 19:58:19 fetching corpus: 10868, signal 287591/299212 (executing program)
2022/09/12 19:58:19 fetching corpus: 10868, signal 287591/299212 (executing program)
2022/09/12 19:58:22 starting 8 fuzzer processes
19:58:22 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0)

19:58:22 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2)
write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125)
read(r0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000340))
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'})

19:58:22 executing program 1:
r0 = io_uring_setup(0x454c, &(0x7f0000000240))
socketpair(0x0, 0x0, 0x0, &(0x7f00000002c0))
close_range(r0, 0xffffffffffffffff, 0x0)

[   91.187005] audit: type=1400 audit(1663012702.577:6): avc:  denied  { execmem } for  pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
19:58:22 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f00000035c0)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, &(0x7f0000002300)=[{&(0x7f0000000080)="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", 0xb49}, {0x0}], 0x2, &(0x7f0000002380)=[@rthdrdstopts={{0x18}}, @hoplimit={{0x14}}], 0x30}}], 0x1, 0x4000801)
syz_mount_image$vfat(&(0x7f0000002640), &(0x7f0000002680)='./file1\x00', 0xff, 0x3, &(0x7f0000000000)=[{&(0x7f00000026c0)="d0eb2d0366c505f2dcaa4fd339b41c6ca61c2b8d2e0416a8716208001e7ef01aa10a9e69a7fce47112aa5a73117023306c861620faae43814adde16054c09ab79eb1e6363e9bb8dd1fc38b8e08a777f04118e26cf8c36aade09017a89bc46fa49935b18c6ac537c6c2252fe0af4bb6878b97619719ad458b6486311204157d27f0dbae74d3e856b5505b215b9f9a5f50ec968e8bde2ea8ee063ad476d219176983d9417422e8f9e47042ef7b4a8242056d7f8416def60378", 0xb8, 0xffff}, {&(0x7f0000002880)="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", 0xcfc, 0x8000}, {&(0x7f0000003880)="d2c6d405c54b531ace9a570b93e394d488e9c6ddb0e32935ee08a4", 0x1b, 0xffffffff80000000}], 0x88008, &(0x7f0000000300)={[{@shortname_lower}, {@rodir}, {@utf8no}, {@uni_xlateno}, {@uni_xlate}, {@nonumtail}, {@uni_xlateno}, {@shortname_mixed}, {@fat=@usefree}], [{@smackfsdef={'smackfsdef', 0x3d, '&.'}}, {@obj_user}]})
gettid()

19:58:22 executing program 5:
r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat(r1, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r2, &(0x7f0000000640)=[{&(0x7f00000002c0)="19", 0x1}], 0x1, 0x8000000, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sendfile(r3, r2, 0x0, 0x10001)
read(r2, &(0x7f0000000140)=""/78, 0xfffffdef)

19:58:22 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@polexpire={0xc0, 0x1b, 0x1, 0x0, 0x0, {{{@in6=@rand_addr=' \x01\x00', @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0xee00}}}}, 0xc0}}, 0x0)

19:58:22 executing program 6:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_role_discovery={{}, {0x40, 0xc8, 0xbb}}}}, 0xa)

19:58:22 executing program 7:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2)
write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="30000500000008"], 0x125)
read(r0, 0x0, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40240, 0x0)
close_range(r1, r1, 0x2)
r2 = syz_open_procfs(0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, 0x0, &(0x7f0000000040))
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f00000001c0), 0x4)
openat$cgroup_type(r2, &(0x7f0000000200), 0x2, 0x0)
creat(&(0x7f0000000240)='./file0\x00', 0x11)
dup(0xffffffffffffffff)
sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)={0x24, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="a060bb866ba95c67d42331"]}, 0x24}], 0x1}, 0x0)

[   92.432805] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   92.434960] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.437172] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.440628] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.443078] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   92.444848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   92.454710] Bluetooth: hci0: HCI_REQ-0x0c1a
[   92.501478] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   92.503883] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   92.505987] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   92.507608] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   92.509127] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   92.510800] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   92.515407] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   92.516897] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   92.519337] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   92.521031] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   92.522560] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   92.524311] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   92.529303] Bluetooth: hci7: HCI_REQ-0x0c1a
[   92.532351] Bluetooth: hci5: HCI_REQ-0x0c1a
[   92.538036] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   92.539750] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   92.541050] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   92.545083] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   92.546515] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   92.547838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   92.550603] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   92.551719] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   92.552896] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   92.553949] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   92.557571] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   92.562514] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   92.564012] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   92.565007] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   92.566644] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   92.571387] Bluetooth: hci1: HCI_REQ-0x0c1a
[   92.571724] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   92.579517] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   92.579871] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   92.580803] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   92.589092] Bluetooth: hci2: HCI_REQ-0x0c1a
[   92.589109] Bluetooth: hci6: HCI_REQ-0x0c1a
[   92.610277] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   92.615176] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   92.621017] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   92.626760] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   92.631405] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   92.640471] Bluetooth: hci4: HCI_REQ-0x0c1a
[   94.506799] Bluetooth: hci0: command 0x0409 tx timeout
[   94.507428] Bluetooth: hci3: Opcode 0x c03 failed: -110
[   94.570258] Bluetooth: hci5: command 0x0409 tx timeout
[   94.571175] Bluetooth: hci7: command 0x0409 tx timeout
[   94.634266] Bluetooth: hci2: command 0x0409 tx timeout
[   94.634802] Bluetooth: hci6: command 0x0409 tx timeout
[   94.636116] Bluetooth: hci1: command 0x0409 tx timeout
[   94.698273] Bluetooth: hci4: command 0x0409 tx timeout
[   96.555254] Bluetooth: hci0: command 0x041b tx timeout
[   96.618340] Bluetooth: hci7: command 0x041b tx timeout
[   96.619015] Bluetooth: hci5: command 0x041b tx timeout
[   96.682287] Bluetooth: hci1: command 0x041b tx timeout
[   96.682922] Bluetooth: hci6: command 0x041b tx timeout
[   96.684119] Bluetooth: hci2: command 0x041b tx timeout
[   96.746305] Bluetooth: hci4: command 0x041b tx timeout
[   97.620249] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   97.628944] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   97.635072] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   97.644623] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   97.649632] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   97.651981] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   97.659164] Bluetooth: hci3: HCI_REQ-0x0c1a
[   98.602294] Bluetooth: hci0: command 0x040f tx timeout
[   98.666252] Bluetooth: hci5: command 0x040f tx timeout
[   98.666925] Bluetooth: hci7: command 0x040f tx timeout
[   98.730324] Bluetooth: hci2: command 0x040f tx timeout
[   98.731398] Bluetooth: hci6: command 0x040f tx timeout
[   98.733811] Bluetooth: hci1: command 0x040f tx timeout
[   98.794276] Bluetooth: hci4: command 0x040f tx timeout
[   99.690279] Bluetooth: hci3: command 0x0409 tx timeout
[  100.650377] Bluetooth: hci0: command 0x0419 tx timeout
[  100.714294] Bluetooth: hci7: command 0x0419 tx timeout
[  100.715085] Bluetooth: hci5: command 0x0419 tx timeout
[  100.779125] Bluetooth: hci1: command 0x0419 tx timeout
[  100.780015] Bluetooth: hci6: command 0x0419 tx timeout
[  100.783116] Bluetooth: hci2: command 0x0419 tx timeout
[  100.842361] Bluetooth: hci4: command 0x0419 tx timeout
[  101.738277] Bluetooth: hci3: command 0x041b tx timeout
[  103.786303] Bluetooth: hci3: command 0x040f tx timeout
[  105.834249] Bluetooth: hci3: command 0x0419 tx timeout
[  151.374527] syz-executor.0 (296) used greatest stack depth: 24776 bytes left
[  154.357915] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  154.360753] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  154.361878] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  154.366461] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  154.369443] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  154.371630] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  154.378709] Bluetooth: hci0: HCI_REQ-0x0c1a
19:59:26 executing program 6:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_role_discovery={{}, {0x40, 0xc8, 0xbb}}}}, 0xa)

19:59:26 executing program 6:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_role_discovery={{}, {0x40, 0xc8, 0xbb}}}}, 0xa)

19:59:26 executing program 6:
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x7}, @hci_rp_role_discovery={{}, {0x40, 0xc8, 0xbb}}}}, 0xa)

[  154.816716] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  154.817711] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  154.818763] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
19:59:26 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040))
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]})
io_setup(0x3ff, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7)
io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}])
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r1, @ANYBLOB])
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={<r5=>0xffffffffffffffff})
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpgid(0xffffffffffffffff)
r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2)
dup2(r4, r5)

[  154.882547] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  154.885139] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  154.889445] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  154.890336] audit: type=1400 audit(1663012766.280:7): avc:  denied  { open } for  pid=3835 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  154.891859] audit: type=1400 audit(1663012766.280:8): avc:  denied  { kernel } for  pid=3835 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  154.900086] Bluetooth: hci2: HCI_REQ-0x0c1a
[  154.900541] ------------[ cut here ]------------
[  154.900560] 
[  154.900563] ======================================================
[  154.900566] WARNING: possible circular locking dependency detected
[  154.900571] 6.0.0-rc5-next-20220912 #1 Not tainted
[  154.900577] ------------------------------------------------------
[  154.900581] syz-executor.6/3836 is trying to acquire lock:
[  154.900587] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  154.900628] 
[  154.900628] but task is already holding lock:
[  154.900631] ffff88800f9ad820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  154.900659] 
[  154.900659] which lock already depends on the new lock.
[  154.900659] 
[  154.900662] 
[  154.900662] the existing dependency chain (in reverse order) is:
[  154.900666] 
[  154.900666] -> #3 (&ctx->lock){....}-{2:2}:
[  154.900680]        _raw_spin_lock+0x2a/0x40
[  154.900697]        __perf_event_task_sched_out+0x53b/0x18d0
[  154.900710]        __schedule+0xedd/0x2470
[  154.900720]        schedule+0xda/0x1b0
[  154.900729]        exit_to_user_mode_prepare+0x114/0x1a0
[  154.900750]        syscall_exit_to_user_mode+0x19/0x40
[  154.900768]        do_syscall_64+0x48/0x90
[  154.900781]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.900800] 
[  154.900800] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  154.900814]        _raw_spin_lock_nested+0x30/0x40
[  154.900828]        raw_spin_rq_lock_nested+0x1e/0x30
[  154.900842]        task_fork_fair+0x63/0x4d0
[  154.900859]        sched_cgroup_fork+0x3d0/0x540
[  154.900874]        copy_process+0x3f9e/0x6df0
[  154.900884]        kernel_clone+0xe7/0x890
[  154.900894]        user_mode_thread+0xad/0xf0
[  154.900904]        rest_init+0x24/0x250
[  154.900920]        arch_call_rest_init+0xf/0x14
[  154.900940]        start_kernel+0x4c1/0x4e6
[  154.900957]        secondary_startup_64_no_verify+0xe0/0xeb
[  154.900972] 
[  154.900972] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  154.900985]        _raw_spin_lock_irqsave+0x39/0x60
[  154.901000]        try_to_wake_up+0xab/0x1920
[  154.901014]        up+0x75/0xb0
[  154.901025]        __up_console_sem+0x6e/0x80
[  154.901042]        console_unlock+0x46a/0x590
[  154.901058]        vprintk_emit+0x1bd/0x560
[  154.901075]        vprintk+0x84/0xa0
[  154.901094]        _printk+0xba/0xf1
[  154.901112]        kauditd_hold_skb.cold+0x3f/0x4e
[  154.901126]        kauditd_send_queue+0x233/0x290
[  154.901142]        kauditd_thread+0x5da/0x9a0
[  154.901155]        kthread+0x2ed/0x3a0
[  154.901171]        ret_from_fork+0x22/0x30
[  154.901183] 
[  154.901183] -> #0 ((console_sem).lock){....}-{2:2}:
[  154.901197]        __lock_acquire+0x2a02/0x5e70
[  154.901214]        lock_acquire+0x1a2/0x530
[  154.901230]        _raw_spin_lock_irqsave+0x39/0x60
[  154.901245]        down_trylock+0xe/0x70
[  154.901257]        __down_trylock_console_sem+0x3b/0xd0
[  154.901273]        vprintk_emit+0x16b/0x560
[  154.901290]        vprintk+0x84/0xa0
[  154.901306]        _printk+0xba/0xf1
[  154.901323]        report_bug.cold+0x72/0xab
[  154.901335]        handle_bug+0x3c/0x70
[  154.901347]        exc_invalid_op+0x14/0x50
[  154.901360]        asm_exc_invalid_op+0x16/0x20
[  154.901377]        group_sched_out.part.0+0x2c7/0x460
[  154.901387]        ctx_sched_out+0x8f1/0xc10
[  154.901397]        __perf_event_task_sched_out+0x6d0/0x18d0
[  154.901409]        __schedule+0xedd/0x2470
[  154.901418]        schedule+0xda/0x1b0
[  154.901427]        exit_to_user_mode_prepare+0x114/0x1a0
[  154.901447]        syscall_exit_to_user_mode+0x19/0x40
[  154.901464]        do_syscall_64+0x48/0x90
[  154.901477]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.901494] 
[  154.901494] other info that might help us debug this:
[  154.901494] 
[  154.901497] Chain exists of:
[  154.901497]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  154.901497] 
[  154.901512]  Possible unsafe locking scenario:
[  154.901512] 
[  154.901514]        CPU0                    CPU1
[  154.901517]        ----                    ----
[  154.901519]   lock(&ctx->lock);
[  154.901525]                                lock(&rq->__lock);
[  154.901531]                                lock(&ctx->lock);
[  154.901537]   lock((console_sem).lock);
[  154.901543] 
[  154.901543]  *** DEADLOCK ***
[  154.901543] 
[  154.901545] 2 locks held by syz-executor.6/3836:
[  154.901552]  #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  154.901577]  #1: ffff88800f9ad820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  154.901605] 
[  154.901605] stack backtrace:
[  154.901608] CPU: 1 PID: 3836 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1
[  154.901621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  154.901629] Call Trace:
[  154.901633]  <TASK>
[  154.901636]  dump_stack_lvl+0x8b/0xb3
[  154.901651]  check_noncircular+0x263/0x2e0
[  154.901668]  ? format_decode+0x26c/0xb50
[  154.901683]  ? print_circular_bug+0x450/0x450
[  154.901700]  ? enable_ptr_key_workfn+0x20/0x20
[  154.901715]  ? format_decode+0x26c/0xb50
[  154.901730]  ? memcpy+0x39/0x60
[  154.901750]  ? vsnprintf+0x4ba/0x1600
[  154.901767]  __lock_acquire+0x2a02/0x5e70
[  154.901789]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  154.901812]  lock_acquire+0x1a2/0x530
[  154.901829]  ? down_trylock+0xe/0x70
[  154.901843]  ? rcu_read_unlock+0x40/0x40
[  154.901865]  ? vprintk+0x84/0xa0
[  154.901883]  _raw_spin_lock_irqsave+0x39/0x60
[  154.901898]  ? down_trylock+0xe/0x70
[  154.901912]  down_trylock+0xe/0x70
[  154.901925]  ? vprintk+0x84/0xa0
[  154.901943]  __down_trylock_console_sem+0x3b/0xd0
[  154.901961]  vprintk_emit+0x16b/0x560
[  154.901980]  vprintk+0x84/0xa0
[  154.901998]  _printk+0xba/0xf1
[  154.902016]  ? record_print_text.cold+0x16/0x16
[  154.902038]  ? report_bug.cold+0x66/0xab
[  154.902052]  ? group_sched_out.part.0+0x2c7/0x460
[  154.902063]  report_bug.cold+0x72/0xab
[  154.902078]  handle_bug+0x3c/0x70
[  154.902091]  exc_invalid_op+0x14/0x50
[  154.902106]  asm_exc_invalid_op+0x16/0x20
[  154.902123] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  154.902136] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  154.902147] RSP: 0018:ffff88803dcefc48 EFLAGS: 00010006
[  154.902157] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  154.902164] RDX: ffff8880100d5040 RSI: ffffffff81566027 RDI: 0000000000000005
[  154.902172] RBP: ffff88803dcf0000 R08: 0000000000000005 R09: 0000000000000001
[  154.902180] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88800f9ad800
[  154.902188] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  154.902199]  ? group_sched_out.part.0+0x2c7/0x460
[  154.902212]  ? group_sched_out.part.0+0x2c7/0x460
[  154.902224]  ctx_sched_out+0x8f1/0xc10
[  154.902237]  __perf_event_task_sched_out+0x6d0/0x18d0
[  154.902252]  ? lock_is_held_type+0xd7/0x130
[  154.902271]  ? __perf_cgroup_move+0x160/0x160
[  154.902283]  ? set_next_entity+0x304/0x550
[  154.902301]  ? update_curr+0x267/0x740
[  154.902320]  ? lock_is_held_type+0xd7/0x130
[  154.902338]  __schedule+0xedd/0x2470
[  154.902351]  ? io_schedule_timeout+0x150/0x150
[  154.902363]  ? rcu_read_lock_sched_held+0x3e/0x80
[  154.902384]  schedule+0xda/0x1b0
[  154.902394]  exit_to_user_mode_prepare+0x114/0x1a0
[  154.902415]  syscall_exit_to_user_mode+0x19/0x40
[  154.902433]  do_syscall_64+0x48/0x90
[  154.902447]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.902465] RIP: 0033:0x7f6398f1db19
[  154.902473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  154.902484] RSP: 002b:00007f6396493218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  154.902495] RAX: 0000000000000001 RBX: 00007f6399030f68 RCX: 00007f6398f1db19
[  154.902503] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6399030f6c
[  154.902511] RBP: 00007f6399030f60 R08: 000000000000000e R09: 0000000000000000
[  154.902518] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6399030f6c
[  154.902525] R13: 00007ffc41a100ef R14: 00007f6396493300 R15: 0000000000022000
[  154.902538]  </TASK>
[  154.957271] WARNING: CPU: 1 PID: 3836 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  154.957979] Modules linked in:
[  154.958223] CPU: 1 PID: 3836 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220912 #1
[  154.958840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  154.959683] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  154.960101] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  154.961480] RSP: 0018:ffff88803dcefc48 EFLAGS: 00010006
[  154.961877] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  154.962413] RDX: ffff8880100d5040 RSI: ffffffff81566027 RDI: 0000000000000005
[  154.962946] RBP: ffff88803dcf0000 R08: 0000000000000005 R09: 0000000000000001
[  154.963482] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88800f9ad800
[  154.964028] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  154.964577] FS:  00007f6396493700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  154.965169] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  154.965609] CR2: 00007fbc6ebfb894 CR3: 000000001d4b2000 CR4: 0000000000350ee0
[  154.966138] Call Trace:
[  154.966337]  <TASK>
[  154.966516]  ctx_sched_out+0x8f1/0xc10
[  154.966818]  __perf_event_task_sched_out+0x6d0/0x18d0
[  154.967216]  ? lock_is_held_type+0xd7/0x130
[  154.967556]  ? __perf_cgroup_move+0x160/0x160
[  154.967914]  ? set_next_entity+0x304/0x550
[  154.968243]  ? update_curr+0x267/0x740
[  154.968552]  ? lock_is_held_type+0xd7/0x130
[  154.968889]  __schedule+0xedd/0x2470
[  154.969177]  ? io_schedule_timeout+0x150/0x150
[  154.969533]  ? rcu_read_lock_sched_held+0x3e/0x80
[  154.969907]  schedule+0xda/0x1b0
[  154.970177]  exit_to_user_mode_prepare+0x114/0x1a0
[  154.970566]  syscall_exit_to_user_mode+0x19/0x40
[  154.970930]  do_syscall_64+0x48/0x90
[  154.971221]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  154.971618] RIP: 0033:0x7f6398f1db19
[  154.971917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  154.973290] RSP: 002b:00007f6396493218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  154.973868] RAX: 0000000000000001 RBX: 00007f6399030f68 RCX: 00007f6398f1db19
[  154.974413] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6399030f6c
[  154.974952] RBP: 00007f6399030f60 R08: 000000000000000e R09: 0000000000000000
[  154.975493] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6399030f6c
[  154.976037] R13: 00007ffc41a100ef R14: 00007f6396493300 R15: 0000000000022000
[  154.976588]  </TASK>
[  154.976769] irq event stamp: 682
[  154.977028] hardirqs last  enabled at (681): [<ffffffff8133ffc9>] exit_to_user_mode_prepare+0x109/0x1a0
[  154.977740] hardirqs last disabled at (682): [<ffffffff84247a45>] __schedule+0x1225/0x2470
[  154.978357] softirqs last  enabled at (668): [<ffffffff8117060b>] __irq_exit_rcu+0x11b/0x180
[  154.978991] softirqs last disabled at (659): [<ffffffff8117060b>] __irq_exit_rcu+0x11b/0x180
[  154.979631] ---[ end trace 0000000000000000 ]---
[  154.980189] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  154.983855] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  154.995058] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  154.996783] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  154.998230] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  154.999428] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  155.003907] Bluetooth: hci7: HCI_REQ-0x0c1a
[  155.108229] hrtimer: interrupt took 31869 ns
[  155.165495] audit: type=1400 audit(1663012766.547:9): avc:  denied  { write } for  pid=3835 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
19:59:26 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040))
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]})
io_setup(0x3ff, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7)
io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}])
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r1, @ANYBLOB])
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={<r5=>0xffffffffffffffff})
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpgid(0xffffffffffffffff)
r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2)
dup2(r4, r5)

19:59:26 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040))
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]})
io_setup(0x3ff, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7)
io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}])
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r1, @ANYBLOB])
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={<r5=>0xffffffffffffffff})
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpgid(0xffffffffffffffff)
r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2)
dup2(r4, r5)

19:59:27 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040))
ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]})
io_setup(0x3ff, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7)
io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}])
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r1, @ANYBLOB])
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={<r5=>0xffffffffffffffff})
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpgid(0xffffffffffffffff)
r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2)
dup2(r4, r5)

19:59:27 executing program 6:
clock_gettime(0x0, 0xfffffffffffffffc)

[  156.394265] Bluetooth: hci0: command 0x0409 tx timeout
[  156.778234] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  156.842254] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  156.842784] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  156.843246] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  157.034238] Bluetooth: hci2: command 0x0409 tx timeout
[  157.034256] Bluetooth: hci7: command 0x0409 tx timeout
[  158.442234] Bluetooth: hci0: command 0x041b tx timeout
[  158.698261] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  158.698890] Bluetooth: hci3: Injecting HCI hardware error event
[  158.699417] Bluetooth: hci3: hardware error 0x00
[  159.082224] Bluetooth: hci7: command 0x041b tx timeout
[  159.082320] Bluetooth: hci2: command 0x041b tx timeout
[  160.490234] Bluetooth: hci0: command 0x040f tx timeout
[  160.746246] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  161.130257] Bluetooth: hci7: command 0x040f tx timeout
[  161.131262] Bluetooth: hci2: command 0x040f tx timeout
[  161.194276] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  161.450224] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  161.450224] Bluetooth: hci5: Opcode 0x c03 failed: -110
[  161.451137] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  162.538229] Bluetooth: hci0: command 0x0419 tx timeout
[  163.178310] Bluetooth: hci2: command 0x0419 tx timeout
[  163.178777] Bluetooth: hci7: command 0x0419 tx timeout
[  164.077213] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  164.078567] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  164.081035] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  164.083157] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  164.084937] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  164.086284] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  164.089602] Bluetooth: hci5: HCI_REQ-0x0c1a

VM DIAGNOSIS:
19:59:26  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=0000000000033b60 RCX=0000000000000000 RDX=ffff88803dc28000
RSI=4000000000000002 RDI=0000000000000000 RBP=ffff88806ce33b60 RSP=ffff88803dc4f550
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=4000000000000002 R13=ffff8880155a7de8 R14=0000000000000000 R15=ffff888007c41280
RIP=ffffffff8423ecb0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007ff8843a78c0 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000563f84870080 CR3=0000000042806000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffff00 ffffffffff000000
YMM02=0000000000000000 0000000000000000 0000000000000041 0000000000346963
YMM03=0000000000000000 0000000000000000 7269762f73656369 7665642f7379732f
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 7269762f73656369 7665642f7379732f
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff88803dcef698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000061 R11=0000000000000001
R12=0000000000000061 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30
RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f6396493700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbc6ebfb894 CR3=000000001d4b2000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f63990047c0 00007f63990047c8
YMM02=0000000000000000 0000000000000000 00007f63990047e0 00007f63990047c0
YMM03=0000000000000000 0000000000000000 00007f63990047c8 00007f63990047c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000