Warning: Permanently added '[localhost]:9824' (ECDSA) to the list of known hosts.
2022/09/28 04:08:08 fuzzer started
2022/09/28 04:08:08 dialing manager at localhost:35827
syzkaller login: [   45.554399] cgroup: Unknown subsys name 'net'
[   45.662727] cgroup: Unknown subsys name 'rlimit'
2022/09/28 04:08:23 syscalls: 2215
2022/09/28 04:08:23 code coverage: enabled
2022/09/28 04:08:23 comparison tracing: enabled
2022/09/28 04:08:23 extra coverage: enabled
2022/09/28 04:08:23 setuid sandbox: enabled
2022/09/28 04:08:23 namespace sandbox: enabled
2022/09/28 04:08:23 Android sandbox: enabled
2022/09/28 04:08:23 fault injection: enabled
2022/09/28 04:08:23 leak checking: enabled
2022/09/28 04:08:23 net packet injection: enabled
2022/09/28 04:08:23 net device setup: enabled
2022/09/28 04:08:23 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/28 04:08:23 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/28 04:08:23 USB emulation: enabled
2022/09/28 04:08:23 hci packet injection: enabled
2022/09/28 04:08:23 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220927                                          )
2022/09/28 04:08:23 802.15.4 emulation: enabled
2022/09/28 04:08:23 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/28 04:08:23 fetching corpus: 30, signal 21711/25312 (executing program)
2022/09/28 04:08:23 fetching corpus: 80, signal 36059/41057 (executing program)
2022/09/28 04:08:23 fetching corpus: 130, signal 46969/53224 (executing program)
2022/09/28 04:08:23 fetching corpus: 180, signal 56245/63649 (executing program)
2022/09/28 04:08:23 fetching corpus: 230, signal 62549/71013 (executing program)
2022/09/28 04:08:24 fetching corpus: 280, signal 64986/74668 (executing program)
2022/09/28 04:08:24 fetching corpus: 330, signal 67872/78747 (executing program)
2022/09/28 04:08:24 fetching corpus: 380, signal 72983/84764 (executing program)
2022/09/28 04:08:24 fetching corpus: 430, signal 75873/88712 (executing program)
2022/09/28 04:08:24 fetching corpus: 480, signal 78655/92515 (executing program)
2022/09/28 04:08:24 fetching corpus: 530, signal 82099/96823 (executing program)
2022/09/28 04:08:24 fetching corpus: 580, signal 85534/101130 (executing program)
2022/09/28 04:08:24 fetching corpus: 630, signal 87504/104084 (executing program)
2022/09/28 04:08:24 fetching corpus: 680, signal 90722/108055 (executing program)
2022/09/28 04:08:25 fetching corpus: 730, signal 95105/112955 (executing program)
2022/09/28 04:08:25 fetching corpus: 780, signal 96832/115537 (executing program)
2022/09/28 04:08:25 fetching corpus: 830, signal 100085/119262 (executing program)
2022/09/28 04:08:25 fetching corpus: 880, signal 102957/122673 (executing program)
2022/09/28 04:08:25 fetching corpus: 930, signal 104764/125180 (executing program)
2022/09/28 04:08:25 fetching corpus: 980, signal 107439/128331 (executing program)
2022/09/28 04:08:25 fetching corpus: 1030, signal 110252/131558 (executing program)
2022/09/28 04:08:26 fetching corpus: 1080, signal 112255/134062 (executing program)
2022/09/28 04:08:26 fetching corpus: 1130, signal 113846/136192 (executing program)
2022/09/28 04:08:26 fetching corpus: 1180, signal 117118/139611 (executing program)
2022/09/28 04:08:26 fetching corpus: 1230, signal 118986/141908 (executing program)
2022/09/28 04:08:26 fetching corpus: 1280, signal 121769/144848 (executing program)
2022/09/28 04:08:26 fetching corpus: 1330, signal 123167/146715 (executing program)
2022/09/28 04:08:26 fetching corpus: 1380, signal 125046/148907 (executing program)
2022/09/28 04:08:26 fetching corpus: 1430, signal 126998/151137 (executing program)
2022/09/28 04:08:26 fetching corpus: 1480, signal 128785/153240 (executing program)
2022/09/28 04:08:27 fetching corpus: 1530, signal 130081/154907 (executing program)
2022/09/28 04:08:27 fetching corpus: 1580, signal 131486/156682 (executing program)
2022/09/28 04:08:27 fetching corpus: 1630, signal 133672/158888 (executing program)
2022/09/28 04:08:27 fetching corpus: 1680, signal 134879/160452 (executing program)
2022/09/28 04:08:27 fetching corpus: 1730, signal 136127/162032 (executing program)
2022/09/28 04:08:27 fetching corpus: 1780, signal 138279/164131 (executing program)
2022/09/28 04:08:27 fetching corpus: 1830, signal 139668/165755 (executing program)
2022/09/28 04:08:27 fetching corpus: 1880, signal 140602/167111 (executing program)
2022/09/28 04:08:27 fetching corpus: 1930, signal 141358/168253 (executing program)
2022/09/28 04:08:27 fetching corpus: 1980, signal 142521/169653 (executing program)
2022/09/28 04:08:28 fetching corpus: 2030, signal 143489/170945 (executing program)
2022/09/28 04:08:28 fetching corpus: 2080, signal 144119/171955 (executing program)
2022/09/28 04:08:28 fetching corpus: 2130, signal 146807/174249 (executing program)
2022/09/28 04:08:28 fetching corpus: 2180, signal 148414/175859 (executing program)
2022/09/28 04:08:28 fetching corpus: 2230, signal 149168/176966 (executing program)
2022/09/28 04:08:28 fetching corpus: 2280, signal 150447/178299 (executing program)
2022/09/28 04:08:28 fetching corpus: 2330, signal 151972/179703 (executing program)
2022/09/28 04:08:28 fetching corpus: 2380, signal 154455/181604 (executing program)
2022/09/28 04:08:28 fetching corpus: 2430, signal 155524/182802 (executing program)
2022/09/28 04:08:29 fetching corpus: 2479, signal 156671/184042 (executing program)
2022/09/28 04:08:29 fetching corpus: 2529, signal 157759/185176 (executing program)
2022/09/28 04:08:29 fetching corpus: 2579, signal 159365/186563 (executing program)
2022/09/28 04:08:29 fetching corpus: 2629, signal 160671/187748 (executing program)
2022/09/28 04:08:29 fetching corpus: 2678, signal 161304/188550 (executing program)
2022/09/28 04:08:29 fetching corpus: 2728, signal 162600/189651 (executing program)
2022/09/28 04:08:29 fetching corpus: 2778, signal 164200/190834 (executing program)
2022/09/28 04:08:29 fetching corpus: 2828, signal 165360/191848 (executing program)
2022/09/28 04:08:30 fetching corpus: 2878, signal 166863/192940 (executing program)
2022/09/28 04:08:30 fetching corpus: 2928, signal 167698/193756 (executing program)
2022/09/28 04:08:30 fetching corpus: 2978, signal 168394/194478 (executing program)
2022/09/28 04:08:30 fetching corpus: 3028, signal 169977/195592 (executing program)
2022/09/28 04:08:30 fetching corpus: 3078, signal 171255/196529 (executing program)
2022/09/28 04:08:30 fetching corpus: 3128, signal 172087/197250 (executing program)
2022/09/28 04:08:30 fetching corpus: 3178, signal 173050/198018 (executing program)
2022/09/28 04:08:31 fetching corpus: 3228, signal 173979/198754 (executing program)
2022/09/28 04:08:31 fetching corpus: 3278, signal 174658/199402 (executing program)
2022/09/28 04:08:31 fetching corpus: 3327, signal 175264/199986 (executing program)
2022/09/28 04:08:31 fetching corpus: 3377, signal 176857/200860 (executing program)
2022/09/28 04:08:31 fetching corpus: 3427, signal 177759/201510 (executing program)
2022/09/28 04:08:31 fetching corpus: 3477, signal 178394/202037 (executing program)
2022/09/28 04:08:31 fetching corpus: 3527, signal 179030/202567 (executing program)
2022/09/28 04:08:31 fetching corpus: 3577, signal 179599/203091 (executing program)
2022/09/28 04:08:31 fetching corpus: 3627, signal 180303/203659 (executing program)
2022/09/28 04:08:32 fetching corpus: 3676, signal 181369/204267 (executing program)
2022/09/28 04:08:32 fetching corpus: 3726, signal 182225/204790 (executing program)
2022/09/28 04:08:32 fetching corpus: 3776, signal 182882/205282 (executing program)
2022/09/28 04:08:32 fetching corpus: 3826, signal 184064/205892 (executing program)
2022/09/28 04:08:32 fetching corpus: 3876, signal 184839/206361 (executing program)
2022/09/28 04:08:32 fetching corpus: 3926, signal 185521/206779 (executing program)
2022/09/28 04:08:32 fetching corpus: 3976, signal 186895/207425 (executing program)
2022/09/28 04:08:32 fetching corpus: 4026, signal 187354/207785 (executing program)
2022/09/28 04:08:32 fetching corpus: 4076, signal 188213/208201 (executing program)
2022/09/28 04:08:33 fetching corpus: 4126, signal 189059/208613 (executing program)
2022/09/28 04:08:33 fetching corpus: 4176, signal 189547/208952 (executing program)
2022/09/28 04:08:33 fetching corpus: 4226, signal 191289/209488 (executing program)
2022/09/28 04:08:33 fetching corpus: 4276, signal 191734/209772 (executing program)
2022/09/28 04:08:33 fetching corpus: 4326, signal 192399/210105 (executing program)
2022/09/28 04:08:33 fetching corpus: 4376, signal 192929/210386 (executing program)
2022/09/28 04:08:33 fetching corpus: 4426, signal 193622/210705 (executing program)
2022/09/28 04:08:33 fetching corpus: 4476, signal 194108/210936 (executing program)
2022/09/28 04:08:34 fetching corpus: 4526, signal 194934/211227 (executing program)
2022/09/28 04:08:34 fetching corpus: 4576, signal 195924/211601 (executing program)
2022/09/28 04:08:34 fetching corpus: 4626, signal 196319/211814 (executing program)
2022/09/28 04:08:34 fetching corpus: 4676, signal 196735/212042 (executing program)
2022/09/28 04:08:34 fetching corpus: 4725, signal 197440/212246 (executing program)
2022/09/28 04:08:34 fetching corpus: 4775, signal 197692/212473 (executing program)
2022/09/28 04:08:34 fetching corpus: 4825, signal 198600/212720 (executing program)
2022/09/28 04:08:34 fetching corpus: 4874, signal 199456/212911 (executing program)
2022/09/28 04:08:34 fetching corpus: 4924, signal 200042/213061 (executing program)
2022/09/28 04:08:34 fetching corpus: 4974, signal 200323/213210 (executing program)
2022/09/28 04:08:35 fetching corpus: 5024, signal 200848/213348 (executing program)
2022/09/28 04:08:35 fetching corpus: 5074, signal 201405/213497 (executing program)
2022/09/28 04:08:35 fetching corpus: 5124, signal 202533/213616 (executing program)
2022/09/28 04:08:35 fetching corpus: 5174, signal 203031/213717 (executing program)
2022/09/28 04:08:35 fetching corpus: 5224, signal 203539/213717 (executing program)
2022/09/28 04:08:35 fetching corpus: 5274, signal 205295/213717 (executing program)
2022/09/28 04:08:35 fetching corpus: 5324, signal 205611/213717 (executing program)
2022/09/28 04:08:35 fetching corpus: 5374, signal 206131/213719 (executing program)
2022/09/28 04:08:36 fetching corpus: 5424, signal 206766/213725 (executing program)
2022/09/28 04:08:36 fetching corpus: 5474, signal 207312/213763 (executing program)
2022/09/28 04:08:36 fetching corpus: 5524, signal 207838/213763 (executing program)
2022/09/28 04:08:36 fetching corpus: 5526, signal 207843/213763 (executing program)
2022/09/28 04:08:36 fetching corpus: 5526, signal 207843/213763 (executing program)
2022/09/28 04:08:39 starting 8 fuzzer processes
04:08:39 executing program 0:
times(&(0x7f0000000000))

04:08:39 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d3, 0x0)

04:08:39 executing program 2:
waitid(0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x4, &(0x7f00000001c0))
waitid(0x0, 0x0, &(0x7f0000000280), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000300)={0x0, @private=0xa010102, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
io_uring_setup(0x20f0, &(0x7f0000000340)={0x0, 0xbad9, 0x8, 0x2, 0x3a7})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000003c0))
prctl$PR_SET_FP_MODE(0x2d, 0x2)
getrusage(0x0, &(0x7f0000000540))
syz_io_uring_setup(0x0, &(0x7f00000006c0)={0x0, 0xf6c9, 0x2, 0x3, 0x1f2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000740), &(0x7f0000000780))
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000800)={{0x2b, @loopback, 0x4e22, 0x2, 'wrr\x00', 0x2c, 0x2}, {@loopback, 0x0, 0x0, 0x8, 0x3, 0x8}}, 0x44)
shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x2000)

[   76.220014] audit: type=1400 audit(1664338119.279:6): avc:  denied  { execmem } for  pid=289 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
04:08:39 executing program 3:
r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, 0x0, 0x0)

04:08:39 executing program 4:
r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/block/sda', 0x0, 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0x0, 0x0)

04:08:39 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_int(r0, 0x11, 0x68, &(0x7f0000000000), 0x4)

04:08:39 executing program 6:
syz_usb_disconnect(0xffffffffffffffff)

04:08:39 executing program 7:
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
syz_mount_image$nfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x5, &(0x7f0000002900)=[{&(0x7f0000000740)="980a763591baf251dcebde3f665802794aa27dec9793a4020b0007cf0a29ef10e3ae31f95eb513d1f58851b07f13d904af3253663c15156dc7fc6af194fe747fd35af5a0eb4632ec42b60eeb0d1f3b81684c2a81ed802c79bfb1f50488efb1ee972eb564960473a3cf24d079b804169afac8fa25f8e6240bb73dff20ed29e9092f7b6c6095e8a4859c0c8dfae46abd5065fd5ce615bf1e41ab1b6e26913eb1a37bda622a17496fd1acaa60317f0436cbb0265b26ee4726f853def1b9c79d4e9554d595f69cdc1891967d978b12dda16adaaa75196955cc6e52152c36d21faec722d051c85e128df7d868888620d35ee1f37a31cc57d9c6f99610895c0f782e6d309bc52f891d11167ac5dbb159043c44f44d426816fbb27f2bf85f7f073446ef9781fca634709c8f849685016c869f4740b58bca98ddf2762d339510f2c4eb0290ef33cee218d746fb09bc3a05eb3c555e2c5aca7d94565a865da751b2f59853660b53902ca43f085255b4b316dea196fe7747693cec989d0bb3f65feeec8458ceeb39f5e0c45464a40312f10a30c760f83be2ea8c5d8c9a540ad8bd09df5ae2e799de3448e9d29902462eea9ae4bdd444d626a895811c2e9abc831f1480216b66444cc338f39ce1f36f63f12e9f1aff2c4d3fdf2200bfbf833288cc71ecf3134bd77413080b4fb3776eed4de147b7b62525ccf91984497bf56f941f2aff1d0c93f06f13a43e0dc4ada14a74b903edef30a1fb016d2e2b21e5085fd2613284e641142c658e2f377528dff4f7b3d64a2915a53f672f559e293b1e549dfe08bede1a00920972bf76ef7bf605ec3bedc9b170a85a1f4b04321398c85ddce5a8aed55fd562ec8570e53246659c0ea9b56ee3f6e4f8eb24d0a64b085924bedc06ef85453071a61e50bd8d255d637673c8f1348b2152750af5311b600ff4a6ef7fb09bbbeddccd30bf49cf5163f6e6dd4461c22f121bcbb57462924af74ab7da4bd25402f93abcad0925eb526b353c242a1b1c33616944aa5cff531ef28f501b17a94a7b98add4c8c6865ccb112d6c372f3c5810a7bd89d3274cfbcee5947f8c92ea32918750e3438855f52655a0132460cbce33ee175e5bca3660a39e5a1111079841c5c69898de85bfc29e7d9371b0029c5f90b72d96ba5b9d8a8a5516c617619e6dfa676e9e79bc4d7792c4a575705ceab2594bcdeae338b90d0005531465695af94d35d8e43d5d1aadd87379b6e021eca322a23d78e737f0112aa5e4a443f0a40664f38b2d5bc0602ae18e5b91457b4d2f3bd0fa0a8311c7eac1bb6d553a5eca8223beef348ee13c2c251c49fa922bd40ec815b75961871ad02cf9b4a8db7598c7ce83a3476ff57cb5e7ffaa60957be2d1cc496377a846a6309f48ca2428a883e9086c564a09fec0a45631e39a81e277a1855d833a325561da67a4ce364c911224f2eedc0573a6c04e41fdd02e634a662f08b830e5655fb6f0b1a975b49446cb32137fb24f52f7ab2ad0069089b12c07c58f05a6ba989e4443f4264a055da315e73605ca36a10a0f14f878a2f80ece18c393c7618723c33842e626e3d0748d697da3c85f7129f0fd66ae4b790c1752598b9b48374512687e00b53846dbe965072eb74f07cca81eac19f11e9d977b8e19baaca45aba82faea9c49352b5a9a035a6730cdda6dc9f90142e1c7a8a84304103b2b7ede3a38c1f5d4f582f92fa2400034e32a023cca47ba6035c9075e5d4a588fabc66ec7181640850e0cbd8667840027013df082c866d4cc8d02bf3dec1add0e0a5ae260403a1a21b34bd7d319317e338f612ab4fa7c25b23d5d8aab7aad5342370dba917ad5380b468bb4aa79369f69284374deee8b4b085be7e599dfaf63ff937cc45cab514bca1d6057aba05b76825e3dda6f801efa1055229281359afb268ff48f9d5eee06ddfa8df72f8af800aa4be4aba41078b95e9887390831405c9d6cba26ba3c5f51a005095c8b14b0941e5133e015cbd22a1c7e49a9f6dd85c498e5e5e5c22845a9376e07e5b4f819fb14211a43d477d0717c60efaa9bb784b5b3b3fdb8bda68206024735db0d119dfe5d7003621b98536ece486f39da508ee423d620a3e974ba58e505196d4b4e0251bd8236f4ca87784122136a9d0202b4b43bf7fc4773948f519687fb57f99cb79c01cdfa8f70427c673f3efd456affee40464947bb8c3b144c51abf2056621137522c5da542987f78a1f0bf0ec4a255c076bb38cbb1d2495bcea51260b0e4262986b6ceac7cd5b6cf5a2fb01fad88e18fcfce0e1780cc5e1f862b52458df1248bfed146bfa02431f3c47dbcabb5b79f12709627bca1004c6696a080d3ccd4efd726f1c1e0a78b1e78a22a795930eb71b752424f8ed78b30f161f42c84f0799f36dfb9eb01c87cc375aa1af11fff38211dc8fdb83a26697af1257a244c01f282101587c126fe1aea3e8b54dc141f3606a2899a5a7497583165324068f4a223f58bc9c72ddec4b0821d34904a2b1e8d968bcfd62ddf177c471148a583ec537065c1ce409d269116c95d2325d2fa39afdacf2c77fab35c73138515cc2372ce7abff2324704b8485d3f675821bb35063b17aa220e833a26d40c77d992bc87754cf268309a9a30e8383f8614aed1063f8281f71a2c64e4b0708758da9edd3d4140a0d4b8c5d0b957288ea9336bf3fcfd38c668af7fbcffd74d87c2b82d38f753591185a504dd759b99c50cfc452eea71b7cb1fc06ece17bb5cafcb2a882fe4133692e9ed361fe676d97ae206b41d54a85a29519fdef2d4e7a75d215542fa6408aec83bb27748628b2df510eabdfdc4cf15f85be6d13a2ccac410044eebfaa4c55a4f5897acc85bd1447ae32d26db08628a804f1a28158a01491b1584251e956aa01d57cde18a5b2684735ee747a02da7cbbbc10cfe2c18f0f9373981a67393db538fb0962cbe2c6cd1a9f079accfb117d768f23f9451434f8402cdb7a9c89fe9e6502382557ddfd29e581e99004c9cb7a0984617b05f116a313d58fe845450affafc5203e9c55bf8e836fb5cba6333dd3034b5395d31897d187d53c3f28c5a6f1e701884fd250f8846c629b3673c0da9b9299830ddd08f47e4e583b21ea5efde97e151d68f0b3afd622c09eada97dd7d04c662a7fb5d90a2c4f8f10d58f9ab45dcd62832e69e930929ab21af01fea01b97c148d1ea33e972d7948bc17b91baa9beed2f4db8c1d1b7e93cb22eb8452b804711a19ad72b9fe70245dcd759abdb81f1b15ff8f529edf6c4ceb53075351ddd9bbde645761bb0b4a185a8d90b83a22029dbd158ce252a23eb37c29e5dba92d9d206194af0a155749e36ec40d29171e51d5332b96d7325f3c191476df1d4d72d80621009a034854c29bfa0b41cfc901d1d625686b4d6f028338e507ec17e9e008aca28ca0e9d11df0c6d5cc7802d21ae8d3266fc4e0579d6bc7fd5757f37828576c8a22718374bd394ce9fcc7feeb14aac115a22db0ec8b7877afa229324e562509f0b7e3b73bbab74caf6a8c817e91e1dd98f2878a4a4c9316e3c6d0155f6e41c358597efd665e080ec535ee80952093d1d765daf5fcf7337d490c0e056036264cebd8e0bc07d3e67b4673a5e9c586213210ee7babd927951f44c90f4ae5425bb43512efbda019553f613f82ae93dcc95c7606d9dd8a6dea9b26056c6d052b82885c2b282faefee33ff76ae89027ffd193aadc6134c7299ff8164031beaf3fc655c6d5adee7747f1ee7256c7c973f774ad83001840b5b19bf7896f8644a945bd8de7f54b2cdc7e96f7d1ff6f25549e1904b6045882b09e3790cd6f9873144f9178f620b4d81450de97a277f3e0f1178e5aa4af7a4e819ea2ba367a0091ca651d2e2390a81ec78f9e4d0697e86e3d4e06eb2a2e543976c93e26027a10bfbe52952d302dc6a0221cd4695223ee96bb5055434ca82bcef6ebca6aaafba8ae5b30b22c55e442e3ea7b458bb96af76c024ab53b6a54c8936bdef5a71af31d22c095d3875d90a355b6067725301a58aaff4210bd38637bd9ed33b3075a525f6db04d58deea94a91775b7e732573dbe8717a01a557c37b8464a2d92af61e2ee3b482b71ecac574e1b33384efdc58bdbef76cf5adb5556284bcee493dc4179a919a74db25212da62d34bffc9f5841a28c067ace37aa373d79ecf1b311320b6da1952f2bf7a99650f6ddafa82a654db99af916525c4a48cf7e638516af20d82954153ca1db05a3fb3c2a3433a9dc67849c9929b3c43978edd17214ac78455f2afd14e45faa878ca182556679013f37a7de3daa725bb9cf50d1d3e8de3d1c1aa1667bf12bde065be2ca08b2f38b46772fa94c305f2c8cf82952e6e62f2f52ee29d46c32854a5f34e0b044e222ba411a6749bb4a2726b7ae51aeea14a1c5aeb012fb71840066817b661e237f541783c48d2f48e431e2f43c48aa60fa834313f65431ebe3ded052d5cf4c01931a8d82207ccb4c26a5e82da27032842c85793c6d5d6c031d18490ee4513c8652324f41bc3283df570aa2958ebb8ec41369af0fbf1872decea3440a6cba3869db25a297d0947021824856956fa9ad69779f298e7869a48ef57baec99517b6f2d293fdc48d54c0938c777a1b0727f68743e3bc30c4cbdf30f4f292339e2baba96b7419983c51804706749b0add04cc8c48ef85e838bed91336b201cdb51cd226e1c248649b58b087e4d6c618fe00dad3e2ee96e2e6703c4f9e133155877a15dbd0db0f88d1650da94c9137ed4478781cd8c492d1f216533ed49cfa39940853c0a76b46f7dda98ea086e835311438557ce0260eb74e5f72d244170741485a874215434ed9b37d245697379575af6f0609e0ed8c2cc40298c4a95f2bb127e7cba2ebaee88ad1e7fd503428fbcf4691e00fb182b7f477b31d88a4d4f94be02022da32969f12db9789ece063fb1785e11eeb32f62bc0b6c458f2d891032c0a515cd0ee576b723c37510184a330f42c29d4a54c0058156f2eef356eb19897b1246cb683d34c0de350d25a0f2cacd9710808ad5c7cb62505ede6af72fe2e216bc3d26c246344c391c3b7ff65830c4a9d3370674d80e3209def6ded29cfdc7a143a3b0f178cbb0e6783096603525caa4358ec3a8859206eb3ce79f208f718b48ec6cdde95da03ca79c0440db13046c98a65ec3caee477519944257fdc54ee9113de3108706b7c75e6f79ba3216093ff7aab417d7134a62d0397d956ebd196ca565fa3e83c9b3e96841dbdd2fbd006ca02c6c1e054b15da89dcd698160aaba673554c56f53d9168c8196fbf1ca97d925948a812d6d85aa95771d837dcbb0c6d0d6c1f2b1f5c0885c3d72107fa8b0bea5ac4ce589666783c8dfa84a7e29cda2155558a026d79b521457e2fe3640014727534fe8802022d30b16662f90fd43371983a971d3c30f1486c9760f68e7d9839dcb092d5a0b4de1cd3d4652bd7b144ca1624426530b4b5560756e72fa5493dae3920ab17ef2d3cd8fca46c40e68a585ead5ff0257bea1e15cb0341570769401e5b95b5316be1bb23c8952e38acfb2fdfbd66c9ccdfee75912aa59cc1a56a27deca1eeb223f7174e52e6133729c662c61b799077224880cd7792014125e813bedb42de7c8cbccf7d20bce74c826ff609aac25697794b9ba93b421c7de079a5dbceaf8ad1a595529054dbf4794008d1e911801bdc9670ac6f6e029b741ab56126664fecdbd39f71ed4c5ec646b9cec471d69d77ffd1284ef265a0ccf87ea7258ce8b7355861b99f8fd9c7657ba31b394d3747862a1b16bf45be92a0530004f85abcf", 0xffe, 0x6}, {&(0x7f0000001740), 0x0, 0x5}, {&(0x7f0000002740)="ec261f26b2593771058fd1", 0xb}, {&(0x7f0000002780)="f6c325718b19631798d02171138a7ed77af2c0b767b2561db38405a956ae983d86893ea548735d18c461457494ee0f7864b6adf7342a2511050afdaa8baa23a520e8ee54", 0x44, 0xffffffffffffffff}, {0x0, 0x0, 0xa379}], 0x1a08400, &(0x7f00000029c0)={[{'\xff\xff\xff\xff\xff\xff'}, {'\xff\xff\xff\xff\xff\xff'}], [{@obj_user={'obj_user', 0x3d, '!/+'}}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@subj_user={'subj_user', 0x3d, '\xff\xff\xff\xff\xff\xff'}}, {@subj_user={'subj_user', 0x3d, '               \x00'}}, {@measure}]})
accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000002e80), 0x0)
syz_open_dev$vcsa(&(0x7f0000002ec0), 0x0, 0x2)

[   77.550478] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.552336] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.553753] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.557470] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.559347] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.560684] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.566105] Bluetooth: hci0: HCI_REQ-0x0c1a
[   77.681114] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.685242] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.688347] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   77.690025] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.691536] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   77.695224] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.697698] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   77.698941] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   77.702347] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   77.704298] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.706778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   77.708950] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   77.711009] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.733374] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.734785] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.736818] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   77.738333] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   77.739965] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.741786] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.743153] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.744701] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   77.745829] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   77.747432] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.749406] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   77.753840] Bluetooth: hci2: HCI_REQ-0x0c1a
[   77.758496] Bluetooth: hci4: HCI_REQ-0x0c1a
[   77.759381] Bluetooth: hci5: HCI_REQ-0x0c1a
[   77.780048] Bluetooth: hci3: HCI_REQ-0x0c1a
[   77.820019] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   77.824550] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   77.829449] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   77.840560] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   77.846057] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   77.848071] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   77.857323] Bluetooth: hci7: HCI_REQ-0x0c1a
[   79.634577] Bluetooth: hci1: Opcode 0x c03 failed: -110
[   79.634601] Bluetooth: hci0: command 0x0409 tx timeout
[   79.762306] Bluetooth: hci6: Opcode 0x c03 failed: -110
[   79.826630] Bluetooth: hci3: command 0x0409 tx timeout
[   79.827066] Bluetooth: hci5: command 0x0409 tx timeout
[   79.827598] Bluetooth: hci4: command 0x0409 tx timeout
[   79.828049] Bluetooth: hci2: command 0x0409 tx timeout
[   79.890312] Bluetooth: hci7: command 0x0409 tx timeout
[   81.683767] Bluetooth: hci0: command 0x041b tx timeout
[   81.874269] Bluetooth: hci4: command 0x041b tx timeout
[   81.874320] Bluetooth: hci5: command 0x041b tx timeout
[   81.874714] Bluetooth: hci3: command 0x041b tx timeout
[   81.875596] Bluetooth: hci2: command 0x041b tx timeout
[   81.938234] Bluetooth: hci7: command 0x041b tx timeout
[   82.712159] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   82.713748] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   82.714775] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   82.716299] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   82.717330] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   82.718037] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   82.720861] Bluetooth: hci1: HCI_REQ-0x0c1a
[   82.993420] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   82.996357] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   83.004028] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   83.015744] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   83.022350] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   83.029005] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   83.047240] Bluetooth: hci6: HCI_REQ-0x0c1a
[   83.731253] Bluetooth: hci0: command 0x040f tx timeout
[   83.922256] Bluetooth: hci2: command 0x040f tx timeout
[   83.922283] Bluetooth: hci5: command 0x040f tx timeout
[   83.922716] Bluetooth: hci4: command 0x040f tx timeout
[   83.923625] Bluetooth: hci3: command 0x040f tx timeout
[   83.986258] Bluetooth: hci7: command 0x040f tx timeout
[   84.754267] Bluetooth: hci1: command 0x0409 tx timeout
[   85.074336] Bluetooth: hci6: command 0x0409 tx timeout
[   85.778248] Bluetooth: hci0: command 0x0419 tx timeout
[   85.970340] Bluetooth: hci3: command 0x0419 tx timeout
[   85.970377] Bluetooth: hci5: command 0x0419 tx timeout
[   85.970802] Bluetooth: hci2: command 0x0419 tx timeout
[   85.971563] Bluetooth: hci4: command 0x0419 tx timeout
[   86.034263] Bluetooth: hci7: command 0x0419 tx timeout
[   86.802366] Bluetooth: hci1: command 0x041b tx timeout
[   87.122276] Bluetooth: hci6: command 0x041b tx timeout
[   88.850280] Bluetooth: hci1: command 0x040f tx timeout
[   89.170344] Bluetooth: hci6: command 0x040f tx timeout
[   90.899249] Bluetooth: hci1: command 0x0419 tx timeout
[   91.219242] Bluetooth: hci6: command 0x0419 tx timeout
04:09:37 executing program 2:
waitid(0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x4, &(0x7f00000001c0))
waitid(0x0, 0x0, &(0x7f0000000280), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000300)={0x0, @private=0xa010102, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
io_uring_setup(0x20f0, &(0x7f0000000340)={0x0, 0xbad9, 0x8, 0x2, 0x3a7})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000003c0))
prctl$PR_SET_FP_MODE(0x2d, 0x2)
getrusage(0x0, &(0x7f0000000540))
syz_io_uring_setup(0x0, &(0x7f00000006c0)={0x0, 0xf6c9, 0x2, 0x3, 0x1f2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000740), &(0x7f0000000780))
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000800)={{0x2b, @loopback, 0x4e22, 0x2, 'wrr\x00', 0x2c, 0x2}, {@loopback, 0x0, 0x0, 0x8, 0x3, 0x8}}, 0x44)
shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x2000)

04:09:37 executing program 2:
waitid(0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x4, &(0x7f00000001c0))
waitid(0x0, 0x0, &(0x7f0000000280), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000300)={0x0, @private=0xa010102, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
io_uring_setup(0x20f0, &(0x7f0000000340)={0x0, 0xbad9, 0x8, 0x2, 0x3a7})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000003c0))
prctl$PR_SET_FP_MODE(0x2d, 0x2)
getrusage(0x0, &(0x7f0000000540))
syz_io_uring_setup(0x0, &(0x7f00000006c0)={0x0, 0xf6c9, 0x2, 0x3, 0x1f2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000740), &(0x7f0000000780))
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000800)={{0x2b, @loopback, 0x4e22, 0x2, 'wrr\x00', 0x2c, 0x2}, {@loopback, 0x0, 0x0, 0x8, 0x3, 0x8}}, 0x44)
shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x2000)

04:09:37 executing program 2:
waitid(0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x4, &(0x7f00000001c0))
waitid(0x0, 0x0, &(0x7f0000000280), 0x1, 0x0)
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000300)={0x0, @private=0xa010102, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
io_uring_setup(0x20f0, &(0x7f0000000340)={0x0, 0xbad9, 0x8, 0x2, 0x3a7})
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x13, 0xffffffffffffffff, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x8, &(0x7f00000003c0))
prctl$PR_SET_FP_MODE(0x2d, 0x2)
getrusage(0x0, &(0x7f0000000540))
syz_io_uring_setup(0x0, &(0x7f00000006c0)={0x0, 0xf6c9, 0x2, 0x3, 0x1f2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000740), &(0x7f0000000780))
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000800)={{0x2b, @loopback, 0x4e22, 0x2, 'wrr\x00', 0x2c, 0x2}, {@loopback, 0x0, 0x0, 0x8, 0x3, 0x8}}, 0x44)
shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x2000)

04:09:37 executing program 2:
syz_mount_image$iso9660(&(0x7f0000000540), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802", 0x1a, 0xb800}], 0x0, &(0x7f0000000680)=ANY=[])
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)

[  134.528907] loop2: detected capacity change from 0 to 184
04:09:37 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syslog(0x0, 0x0, 0x0)

04:09:37 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syslog(0x0, 0x0, 0x0)

04:09:37 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syslog(0x0, 0x0, 0x0)

04:09:38 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syslog(0x0, 0x0, 0x0)

[  138.838546] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  138.839777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  138.840778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  138.843056] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  138.844169] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  138.845016] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  138.847723] Bluetooth: hci3: HCI_REQ-0x0c1a
[  138.980015] audit: type=1400 audit(1664338182.039:7): avc:  denied  { open } for  pid=3917 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  138.981467] audit: type=1400 audit(1664338182.039:8): avc:  denied  { kernel } for  pid=3917 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  139.009915] ------------[ cut here ]------------
[  139.009953] 
[  139.009958] ======================================================
[  139.009966] WARNING: possible circular locking dependency detected
[  139.009974] 6.0.0-rc7-next-20220927 #1 Not tainted
[  139.009987] ------------------------------------------------------
[  139.009994] syz-executor.4/3918 is trying to acquire lock:
[  139.010008] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  139.010091] 
[  139.010091] but task is already holding lock:
[  139.010097] ffff88800e290820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  139.010158] 
[  139.010158] which lock already depends on the new lock.
[  139.010158] 
[  139.010164] 
[  139.010164] the existing dependency chain (in reverse order) is:
[  139.010171] 
[  139.010171] -> #3 (&ctx->lock){....}-{2:2}:
[  139.010207]        _raw_spin_lock+0x2a/0x40
[  139.010236]        __perf_event_task_sched_out+0x53b/0x18d0
[  139.010264]        __schedule+0xedd/0x2470
[  139.010299]        preempt_schedule_common+0x45/0xc0
[  139.010336]        __cond_resched+0x17/0x30
[  139.010370]        __mutex_lock+0xa3/0x14d0
[  139.010408]        __do_sys_perf_event_open+0x1eec/0x32c0
[  139.010437]        do_syscall_64+0x3b/0x90
[  139.010460]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  139.010492] 
[  139.010492] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  139.010522]        _raw_spin_lock_nested+0x30/0x40
[  139.010549]        raw_spin_rq_lock_nested+0x1e/0x30
[  139.010577]        task_fork_fair+0x63/0x4d0
[  139.010614]        sched_cgroup_fork+0x3d0/0x540
[  139.010645]        copy_process+0x4183/0x6e20
[  139.010668]        kernel_clone+0xe7/0x890
[  139.010689]        user_mode_thread+0xad/0xf0
[  139.010712]        rest_init+0x24/0x250
[  139.010742]        arch_call_rest_init+0xf/0x14
[  139.010771]        start_kernel+0x4c6/0x4eb
[  139.010797]        secondary_startup_64_no_verify+0xe0/0xeb
[  139.010827] 
[  139.010827] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  139.010857]        _raw_spin_lock_irqsave+0x39/0x60
[  139.010884]        try_to_wake_up+0xab/0x1930
[  139.010913]        up+0x75/0xb0
[  139.010948]        __up_console_sem+0x6e/0x80
[  139.010983]        console_unlock+0x46a/0x590
[  139.011017]        vt_ioctl+0x2822/0x2ca0
[  139.011046]        tty_ioctl+0x785/0x16b0
[  139.011073]        __x64_sys_ioctl+0x19a/0x210
[  139.011107]        do_syscall_64+0x3b/0x90
[  139.011130]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  139.011161] 
[  139.011161] -> #0 ((console_sem).lock){....}-{2:2}:
[  139.011192]        __lock_acquire+0x2a02/0x5e70
[  139.011229]        lock_acquire+0x1a2/0x530
[  139.011264]        _raw_spin_lock_irqsave+0x39/0x60
[  139.011291]        down_trylock+0xe/0x70
[  139.011327]        __down_trylock_console_sem+0x3b/0xd0
[  139.011363]        vprintk_emit+0x16b/0x560
[  139.011399]        vprintk+0x84/0xa0
[  139.011434]        _printk+0xba/0xf1
[  139.011462]        report_bug.cold+0x72/0xab
[  139.011484]        handle_bug+0x3c/0x70
[  139.011506]        exc_invalid_op+0x14/0x50
[  139.011529]        asm_exc_invalid_op+0x16/0x20
[  139.011559]        group_sched_out.part.0+0x2c7/0x460
[  139.011584]        ctx_sched_out+0x8f1/0xc10
[  139.011607]        __perf_event_task_sched_out+0x6d0/0x18d0
[  139.011635]        __schedule+0xedd/0x2470
[  139.011669]        preempt_schedule_common+0x45/0xc0
[  139.011705]        __cond_resched+0x17/0x30
[  139.011740]        __mutex_lock+0xa3/0x14d0
[  139.011776]        __do_sys_perf_event_open+0x1eec/0x32c0
[  139.011805]        do_syscall_64+0x3b/0x90
[  139.011828]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  139.011860] 
[  139.011860] other info that might help us debug this:
[  139.011860] 
[  139.011866] Chain exists of:
[  139.011866]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  139.011866] 
[  139.011899]  Possible unsafe locking scenario:
[  139.011899] 
[  139.011904]        CPU0                    CPU1
[  139.011909]        ----                    ----
[  139.011914]   lock(&ctx->lock);
[  139.011926]                                lock(&rq->__lock);
[  139.011940]                                lock(&ctx->lock);
[  139.011954]   lock((console_sem).lock);
[  139.011967] 
[  139.011967]  *** DEADLOCK ***
[  139.011967] 
[  139.011971] 2 locks held by syz-executor.4/3918:
[  139.011986]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  139.012055]  #1: ffff88800e290820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  139.012118] 
[  139.012118] stack backtrace:
[  139.012123] CPU: 0 PID: 3918 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220927 #1
[  139.012151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  139.012168] Call Trace:
[  139.012174]  <TASK>
[  139.012182]  dump_stack_lvl+0x8b/0xb3
[  139.012209]  check_noncircular+0x263/0x2e0
[  139.012246]  ? format_decode+0x26c/0xb50
[  139.012285]  ? print_circular_bug+0x450/0x450
[  139.012323]  ? enable_ptr_key_workfn+0x20/0x20
[  139.012363]  ? lock_release+0x547/0x750
[  139.012400]  ? format_decode+0x26c/0xb50
[  139.012440]  ? memcpy+0x39/0x60
[  139.012464]  ? vsnprintf+0x4ba/0x1600
[  139.012509]  __lock_acquire+0x2a02/0x5e70
[  139.012557]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  139.012608]  lock_acquire+0x1a2/0x530
[  139.012645]  ? down_trylock+0xe/0x70
[  139.012687]  ? lock_release+0x750/0x750
[  139.012733]  ? vprintk+0x84/0xa0
[  139.012773]  _raw_spin_lock_irqsave+0x39/0x60
[  139.012802]  ? down_trylock+0xe/0x70
[  139.012852]  down_trylock+0xe/0x70
[  139.012903]  ? vprintk+0x84/0xa0
[  139.012940]  __down_trylock_console_sem+0x3b/0xd0
[  139.012979]  vprintk_emit+0x16b/0x560
[  139.013021]  vprintk+0x84/0xa0
[  139.013060]  _printk+0xba/0xf1
[  139.013089]  ? record_print_text.cold+0x16/0x16
[  139.013126]  ? perf_event_update_userpage+0x4e8/0x7c0
[  139.013156]  ? report_bug.cold+0x66/0xab
[  139.013182]  ? group_sched_out.part.0+0x2c7/0x460
[  139.013209]  report_bug.cold+0x72/0xab
[  139.013273]  handle_bug+0x3c/0x70
[  139.013304]  exc_invalid_op+0x14/0x50
[  139.013330]  asm_exc_invalid_op+0x16/0x20
[  139.013362] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  139.013392] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  139.013417] RSP: 0018:ffff888036d47978 EFLAGS: 00010006
[  139.013438] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  139.013455] RDX: ffff88800ff5d040 RSI: ffffffff815666b7 RDI: 0000000000000005
[  139.013472] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  139.013489] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800e290800
[  139.013505] R13: ffff88806ce3f000 R14: ffffffff85238040 R15: 0000000000000002
[  139.013530]  ? group_sched_out.part.0+0x2c7/0x460
[  139.013561]  ? group_sched_out.part.0+0x2c7/0x460
[  139.013592]  ctx_sched_out+0x8f1/0xc10
[  139.013621]  __perf_event_task_sched_out+0x6d0/0x18d0
[  139.013657]  ? lock_is_held_type+0xd7/0x130
[  139.013691]  ? __perf_cgroup_move+0x160/0x160
[  139.013719]  ? set_next_entity+0x304/0x550
[  139.013758]  ? update_curr+0x188/0x740
[  139.013799]  ? lock_is_held_type+0xd7/0x130
[  139.013834]  __schedule+0xedd/0x2470
[  139.013876]  ? io_schedule_timeout+0x150/0x150
[  139.013913]  ? find_held_lock+0x2c/0x110
[  139.013959]  ? lock_is_held_type+0xd7/0x130
[  139.013992]  ? __cond_resched+0x17/0x30
[  139.014026]  preempt_schedule_common+0x45/0xc0
[  139.014053]  __cond_resched+0x17/0x30
[  139.014078]  __mutex_lock+0xa3/0x14d0
[  139.014105]  ? lock_is_held_type+0xd7/0x130
[  139.014126]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  139.014149]  ? mutex_lock_io_nested+0x1310/0x1310
[  139.014176]  ? lock_release+0x3b2/0x750
[  139.014202]  ? __up_read+0x192/0x730
[  139.014224]  ? up_write+0x520/0x520
[  139.014245]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  139.014269]  __do_sys_perf_event_open+0x1eec/0x32c0
[  139.014294]  ? __up_read+0x192/0x730
[  139.014315]  ? perf_compat_ioctl+0x130/0x130
[  139.014335]  ? up_write+0x520/0x520
[  139.014362]  ? syscall_enter_from_user_mode+0x1d/0x50
[  139.014385]  ? syscall_enter_from_user_mode+0x1d/0x50
[  139.014411]  do_syscall_64+0x3b/0x90
[  139.014428]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  139.014450] RIP: 0033:0x7f88efd5fb19
[  139.014462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  139.014479] RSP: 002b:00007f88ed2d5188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  139.014495] RAX: ffffffffffffffda RBX: 00007f88efe72f60 RCX: 00007f88efd5fb19
[  139.014506] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000280
[  139.014517] RBP: 00007f88efdb9f6d R08: 0000000000000000 R09: 0000000000000000
[  139.014528] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  139.014539] R13: 00007ffe7f8c209f R14: 00007f88ed2d5300 R15: 0000000000022000
[  139.014558]  </TASK>
[  139.074797] WARNING: CPU: 0 PID: 3918 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  139.075407] Modules linked in:
[  139.075629] CPU: 0 PID: 3918 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220927 #1
[  139.076163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  139.076894] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  139.077272] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  139.078460] RSP: 0018:ffff888036d47978 EFLAGS: 00010006
[  139.078816] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  139.079289] RDX: ffff88800ff5d040 RSI: ffffffff815666b7 RDI: 0000000000000005
[  139.079759] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  139.080228] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800e290800
[  139.080696] R13: ffff88806ce3f000 R14: ffffffff85238040 R15: 0000000000000002
[  139.081167] FS:  00007f88ed2d5700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  139.081705] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  139.082107] CR2: 00007ffca0041d78 CR3: 0000000036492000 CR4: 0000000000350ef0
[  139.082580] Call Trace:
[  139.082763]  <TASK>
[  139.082925]  ctx_sched_out+0x8f1/0xc10
[  139.083193]  __perf_event_task_sched_out+0x6d0/0x18d0
[  139.083548]  ? lock_is_held_type+0xd7/0x130
[  139.083844]  ? __perf_cgroup_move+0x160/0x160
[  139.084158]  ? set_next_entity+0x304/0x550
[  139.084450]  ? update_curr+0x188/0x740
[  139.084726]  ? lock_is_held_type+0xd7/0x130
[  139.085023]  __schedule+0xedd/0x2470
[  139.085297]  ? io_schedule_timeout+0x150/0x150
[  139.085613]  ? find_held_lock+0x2c/0x110
[  139.085900]  ? lock_is_held_type+0xd7/0x130
[  139.086203]  ? __cond_resched+0x17/0x30
[  139.086480]  preempt_schedule_common+0x45/0xc0
[  139.086800]  __cond_resched+0x17/0x30
[  139.087065]  __mutex_lock+0xa3/0x14d0
[  139.087334]  ? lock_is_held_type+0xd7/0x130
[  139.087627]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  139.087979]  ? mutex_lock_io_nested+0x1310/0x1310
[  139.088315]  ? lock_release+0x3b2/0x750
[  139.088593]  ? __up_read+0x192/0x730
[  139.088855]  ? up_write+0x520/0x520
[  139.089112]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  139.089473]  __do_sys_perf_event_open+0x1eec/0x32c0
[  139.089816]  ? __up_read+0x192/0x730
[  139.090080]  ? perf_compat_ioctl+0x130/0x130
[  139.090387]  ? up_write+0x520/0x520
[  139.090645]  ? syscall_enter_from_user_mode+0x1d/0x50
[  139.090993]  ? syscall_enter_from_user_mode+0x1d/0x50
[  139.091343]  do_syscall_64+0x3b/0x90
[  139.091599]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  139.091951] RIP: 0033:0x7f88efd5fb19
[  139.092204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  139.093407] RSP: 002b:00007f88ed2d5188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  139.093909] RAX: ffffffffffffffda RBX: 00007f88efe72f60 RCX: 00007f88efd5fb19
[  139.094384] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000280
[  139.094855] RBP: 00007f88efdb9f6d R08: 0000000000000000 R09: 0000000000000000
[  139.095329] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  139.095798] R13: 00007ffe7f8c209f R14: 00007f88ed2d5300 R15: 0000000000022000
[  139.096274]  </TASK>
[  139.096437] irq event stamp: 622
[  139.096667] hardirqs last  enabled at (621): [<ffffffff84270c38>] _raw_spin_unlock_irqrestore+0x28/0x60
[  139.097293] hardirqs last disabled at (622): [<ffffffff842598f5>] __schedule+0x1225/0x2470
[  139.097844] softirqs last  enabled at (212): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  139.098411] softirqs last disabled at (35): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  139.098967] ---[ end trace 0000000000000000 ]---
[  139.108703] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  139.109338] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  139.109969] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  139.110957] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  139.111716] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  139.112320] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  139.113877] Bluetooth: hci7: HCI_REQ-0x0c1a
[  140.882249] Bluetooth: hci3: command 0x0409 tx timeout
[  140.946233] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  141.138291] Bluetooth: hci7: command 0x0409 tx timeout
[  142.930233] Bluetooth: hci3: command 0x041b tx timeout
[  143.186211] Bluetooth: hci7: command 0x041b tx timeout
[  144.978253] Bluetooth: hci3: command 0x040f tx timeout
[  145.170214] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  145.234222] Bluetooth: hci7: command 0x040f tx timeout
[  147.026231] Bluetooth: hci3: command 0x0419 tx timeout
[  147.282225] Bluetooth: hci7: command 0x0419 tx timeout
[  147.629484] loop7: detected capacity change from 0 to 16383
[  147.631282] SELinux: security_context_str_to_sid (user_u) failed with errno=-22

VM DIAGNOSIS:
04:09:42  Registers:
info registers vcpu 0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff823ba02c RDI=ffffffff8765a980 RBP=ffffffff8765a940 RSP=ffff888036d47368
R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000010 R11=0000000000000001
R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ecb580 R15=dffffc0000000000
RIP=ffffffff823ba081 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f88ed2d5700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffca0041d78 CR3=0000000036492000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 696c61766e49002f
YMM01=0000000000000000 0000000000000000 0000000000000000 0000005f4e49002f
YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffff0f0e0d0c0b
YMM03=0000000000000000 0000000000000000 0000000000ff0000 000000ff00000000
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000200000005 0000557359c16570
YMM06=0000000000000000 0000000000000000 0000557359c485a0 0000000700000001
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000031 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=ffff88800fccd040 RBX=ffffc90004e45248 RCX=ffffffff811da3e7 RDX=1ffff110012734c0
RSI=0000000000000008 RDI=ffff88800939a600 RBP=dffffc0000000000 RSP=ffff88800ff57da8
R8 =0000000000000000 R9 =ffff88800939a607 R10=ffffed10012734c0 R11=0000000000000001
R12=ffffc90004e45ff9 R13=ffff88800fccd040 R14=0000000000000000 R15=0000000000000092
RIP=ffffffff817bdfa3 RFL=00000057 [---ZAPC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6b0863d6f4 CR3=000000000d948000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM02=0000000000000000 0000000000000000 0000000000000000 41218c9000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000028 000000000044b3bc
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 000000c002b61180 00000000004643c1
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000041 000000c00001a000
YMM14=0000000000000000 0000000000000000 000000000000000c 000000c000014050
YMM15=0000000000000000 0000000000000000 000000000000000d 000000c000014060