
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:41580' (ECDSA) to the list of known hosts.
2022/09/01 11:53:37 fuzzer started
2022/09/01 11:53:37 dialing manager at localhost:41991
syzkaller login: [   39.222811] cgroup: Unknown subsys name 'net'
[   39.301823] cgroup: Unknown subsys name 'rlimit'
2022/09/01 11:53:54 syscalls: 2215
2022/09/01 11:53:54 code coverage: enabled
2022/09/01 11:53:54 comparison tracing: enabled
2022/09/01 11:53:54 extra coverage: enabled
2022/09/01 11:53:54 setuid sandbox: enabled
2022/09/01 11:53:54 namespace sandbox: enabled
2022/09/01 11:53:54 Android sandbox: enabled
2022/09/01 11:53:54 fault injection: enabled
2022/09/01 11:53:54 leak checking: enabled
2022/09/01 11:53:54 net packet injection: enabled
2022/09/01 11:53:54 net device setup: enabled
2022/09/01 11:53:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/01 11:53:54 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/01 11:53:54 USB emulation: enabled
2022/09/01 11:53:54 hci packet injection: enabled
2022/09/01 11:53:54 wifi device emulation: failed to parse kernel version (6.0.0-rc3-next-20220829                                          )
2022/09/01 11:53:54 802.15.4 emulation: enabled
2022/09/01 11:53:54 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/01 11:53:54 fetching corpus: 31, signal 25978/29630 (executing program)
2022/09/01 11:53:54 fetching corpus: 64, signal 38392/43663 (executing program)
2022/09/01 11:53:54 fetching corpus: 114, signal 54907/61517 (executing program)
2022/09/01 11:53:54 fetching corpus: 164, signal 64063/72053 (executing program)
2022/09/01 11:53:54 fetching corpus: 214, signal 75536/84681 (executing program)
2022/09/01 11:53:54 fetching corpus: 263, signal 83453/93773 (executing program)
2022/09/01 11:53:55 fetching corpus: 313, signal 89259/100752 (executing program)
2022/09/01 11:53:55 fetching corpus: 363, signal 93961/106611 (executing program)
2022/09/01 11:53:55 fetching corpus: 413, signal 97313/111179 (executing program)
2022/09/01 11:53:55 fetching corpus: 462, signal 101517/116467 (executing program)
2022/09/01 11:53:55 fetching corpus: 512, signal 104713/120785 (executing program)
2022/09/01 11:53:55 fetching corpus: 561, signal 109167/126222 (executing program)
2022/09/01 11:53:55 fetching corpus: 609, signal 112422/130499 (executing program)
2022/09/01 11:53:55 fetching corpus: 659, signal 115299/134368 (executing program)
2022/09/01 11:53:56 fetching corpus: 709, signal 118281/138356 (executing program)
2022/09/01 11:53:56 fetching corpus: 759, signal 121225/142246 (executing program)
2022/09/01 11:53:56 fetching corpus: 808, signal 125062/146879 (executing program)
2022/09/01 11:53:56 fetching corpus: 857, signal 127705/150404 (executing program)
2022/09/01 11:53:56 fetching corpus: 906, signal 130307/153850 (executing program)
2022/09/01 11:53:56 fetching corpus: 956, signal 132915/157281 (executing program)
2022/09/01 11:53:56 fetching corpus: 1004, signal 136166/161273 (executing program)
2022/09/01 11:53:57 fetching corpus: 1053, signal 139981/165716 (executing program)
2022/09/01 11:53:57 fetching corpus: 1103, signal 142768/169212 (executing program)
2022/09/01 11:53:57 fetching corpus: 1153, signal 144739/171983 (executing program)
2022/09/01 11:53:57 fetching corpus: 1203, signal 146500/174561 (executing program)
2022/09/01 11:53:57 fetching corpus: 1253, signal 148721/177445 (executing program)
2022/09/01 11:53:57 fetching corpus: 1302, signal 150241/179714 (executing program)
2022/09/01 11:53:57 fetching corpus: 1352, signal 151592/181870 (executing program)
2022/09/01 11:53:57 fetching corpus: 1402, signal 152843/183901 (executing program)
2022/09/01 11:53:57 fetching corpus: 1451, signal 154911/186586 (executing program)
2022/09/01 11:53:58 fetching corpus: 1501, signal 157248/189479 (executing program)
2022/09/01 11:53:58 fetching corpus: 1551, signal 160392/192995 (executing program)
2022/09/01 11:53:58 fetching corpus: 1601, signal 162426/195648 (executing program)
2022/09/01 11:53:58 fetching corpus: 1648, signal 163856/197751 (executing program)
2022/09/01 11:53:58 fetching corpus: 1698, signal 165600/200069 (executing program)
2022/09/01 11:53:58 fetching corpus: 1748, signal 166915/202065 (executing program)
2022/09/01 11:53:59 fetching corpus: 1798, signal 169096/204685 (executing program)
2022/09/01 11:53:59 fetching corpus: 1847, signal 170845/206995 (executing program)
2022/09/01 11:53:59 fetching corpus: 1897, signal 172071/208824 (executing program)
2022/09/01 11:53:59 fetching corpus: 1945, signal 173374/210723 (executing program)
2022/09/01 11:53:59 fetching corpus: 1995, signal 174857/212779 (executing program)
2022/09/01 11:53:59 fetching corpus: 2045, signal 176295/214773 (executing program)
2022/09/01 11:53:59 fetching corpus: 2094, signal 177937/216857 (executing program)
2022/09/01 11:54:00 fetching corpus: 2144, signal 179411/218794 (executing program)
2022/09/01 11:54:00 fetching corpus: 2193, signal 180832/220676 (executing program)
2022/09/01 11:54:00 fetching corpus: 2243, signal 182668/222861 (executing program)
2022/09/01 11:54:00 fetching corpus: 2290, signal 184566/225029 (executing program)
2022/09/01 11:54:00 fetching corpus: 2339, signal 185768/226722 (executing program)
2022/09/01 11:54:00 fetching corpus: 2389, signal 187966/229017 (executing program)
2022/09/01 11:54:01 fetching corpus: 2439, signal 189243/230715 (executing program)
2022/09/01 11:54:01 fetching corpus: 2489, signal 190798/232570 (executing program)
2022/09/01 11:54:01 fetching corpus: 2538, signal 192091/234219 (executing program)
2022/09/01 11:54:01 fetching corpus: 2588, signal 193079/235642 (executing program)
2022/09/01 11:54:01 fetching corpus: 2637, signal 194511/237321 (executing program)
2022/09/01 11:54:01 fetching corpus: 2687, signal 196313/239317 (executing program)
2022/09/01 11:54:02 fetching corpus: 2736, signal 197636/240876 (executing program)
2022/09/01 11:54:02 fetching corpus: 2785, signal 199014/242519 (executing program)
2022/09/01 11:54:02 fetching corpus: 2835, signal 200197/244034 (executing program)
2022/09/01 11:54:02 fetching corpus: 2885, signal 201437/245537 (executing program)
2022/09/01 11:54:02 fetching corpus: 2935, signal 202271/246786 (executing program)
2022/09/01 11:54:02 fetching corpus: 2985, signal 203228/248072 (executing program)
2022/09/01 11:54:02 fetching corpus: 3035, signal 204396/249501 (executing program)
2022/09/01 11:54:03 fetching corpus: 3083, signal 205237/250706 (executing program)
2022/09/01 11:54:03 fetching corpus: 3133, signal 206339/252059 (executing program)
2022/09/01 11:54:03 fetching corpus: 3183, signal 207535/253435 (executing program)
2022/09/01 11:54:03 fetching corpus: 3233, signal 209296/255146 (executing program)
2022/09/01 11:54:03 fetching corpus: 3283, signal 210410/256436 (executing program)
2022/09/01 11:54:03 fetching corpus: 3332, signal 211215/257520 (executing program)
2022/09/01 11:54:03 fetching corpus: 3381, signal 211777/258488 (executing program)
2022/09/01 11:54:04 fetching corpus: 3430, signal 212394/259502 (executing program)
2022/09/01 11:54:04 fetching corpus: 3479, signal 213298/260636 (executing program)
2022/09/01 11:54:04 fetching corpus: 3527, signal 214705/262065 (executing program)
2022/09/01 11:54:04 fetching corpus: 3577, signal 216030/263409 (executing program)
2022/09/01 11:54:04 fetching corpus: 3625, signal 217215/264666 (executing program)
2022/09/01 11:54:04 fetching corpus: 3674, signal 218219/265864 (executing program)
2022/09/01 11:54:05 fetching corpus: 3724, signal 219138/266976 (executing program)
2022/09/01 11:54:05 fetching corpus: 3773, signal 220228/268128 (executing program)
2022/09/01 11:54:05 fetching corpus: 3823, signal 221019/269141 (executing program)
2022/09/01 11:54:05 fetching corpus: 3872, signal 221968/270246 (executing program)
2022/09/01 11:54:05 fetching corpus: 3920, signal 222797/271299 (executing program)
2022/09/01 11:54:05 fetching corpus: 3969, signal 223654/272304 (executing program)
2022/09/01 11:54:05 fetching corpus: 4019, signal 224404/273307 (executing program)
2022/09/01 11:54:06 fetching corpus: 4068, signal 225341/274339 (executing program)
2022/09/01 11:54:06 fetching corpus: 4117, signal 226124/275297 (executing program)
2022/09/01 11:54:06 fetching corpus: 4167, signal 227225/276368 (executing program)
2022/09/01 11:54:06 fetching corpus: 4217, signal 228434/277484 (executing program)
2022/09/01 11:54:06 fetching corpus: 4266, signal 229175/278362 (executing program)
2022/09/01 11:54:06 fetching corpus: 4316, signal 229806/279229 (executing program)
2022/09/01 11:54:06 fetching corpus: 4366, signal 230951/280285 (executing program)
2022/09/01 11:54:07 fetching corpus: 4415, signal 231741/281187 (executing program)
2022/09/01 11:54:07 fetching corpus: 4465, signal 232743/282154 (executing program)
2022/09/01 11:54:07 fetching corpus: 4514, signal 233574/283069 (executing program)
2022/09/01 11:54:07 fetching corpus: 4564, signal 234223/283832 (executing program)
2022/09/01 11:54:07 fetching corpus: 4613, signal 235012/284691 (executing program)
2022/09/01 11:54:07 fetching corpus: 4663, signal 235957/285569 (executing program)
2022/09/01 11:54:08 fetching corpus: 4712, signal 236568/286324 (executing program)
2022/09/01 11:54:08 fetching corpus: 4760, signal 237316/287134 (executing program)
2022/09/01 11:54:08 fetching corpus: 4809, signal 238115/287945 (executing program)
2022/09/01 11:54:08 fetching corpus: 4859, signal 238786/288689 (executing program)
2022/09/01 11:54:08 fetching corpus: 4909, signal 239537/289460 (executing program)
2022/09/01 11:54:08 fetching corpus: 4959, signal 240293/290238 (executing program)
2022/09/01 11:54:09 fetching corpus: 5009, signal 241103/291002 (executing program)
2022/09/01 11:54:09 fetching corpus: 5058, signal 242074/291794 (executing program)
2022/09/01 11:54:09 fetching corpus: 5108, signal 242516/292437 (executing program)
2022/09/01 11:54:09 fetching corpus: 5157, signal 243645/293302 (executing program)
2022/09/01 11:54:09 fetching corpus: 5207, signal 244263/293947 (executing program)
2022/09/01 11:54:09 fetching corpus: 5256, signal 244924/294612 (executing program)
2022/09/01 11:54:09 fetching corpus: 5305, signal 245406/295228 (executing program)
2022/09/01 11:54:10 fetching corpus: 5355, signal 245880/295878 (executing program)
2022/09/01 11:54:10 fetching corpus: 5405, signal 246269/296431 (executing program)
2022/09/01 11:54:10 fetching corpus: 5455, signal 246756/297061 (executing program)
2022/09/01 11:54:10 fetching corpus: 5505, signal 247447/297705 (executing program)
2022/09/01 11:54:10 fetching corpus: 5555, signal 248106/298344 (executing program)
2022/09/01 11:54:10 fetching corpus: 5605, signal 248943/299019 (executing program)
2022/09/01 11:54:10 fetching corpus: 5654, signal 249757/299682 (executing program)
2022/09/01 11:54:11 fetching corpus: 5703, signal 250344/300297 (executing program)
2022/09/01 11:54:11 fetching corpus: 5751, signal 251269/300941 (executing program)
2022/09/01 11:54:11 fetching corpus: 5801, signal 252126/301555 (executing program)
2022/09/01 11:54:11 fetching corpus: 5849, signal 252590/302124 (executing program)
2022/09/01 11:54:11 fetching corpus: 5897, signal 253317/302728 (executing program)
2022/09/01 11:54:11 fetching corpus: 5947, signal 253976/303327 (executing program)
2022/09/01 11:54:12 fetching corpus: 5997, signal 254692/303866 (executing program)
2022/09/01 11:54:12 fetching corpus: 6047, signal 255329/304388 (executing program)
2022/09/01 11:54:12 fetching corpus: 6096, signal 256079/304976 (executing program)
2022/09/01 11:54:12 fetching corpus: 6144, signal 256671/305482 (executing program)
2022/09/01 11:54:12 fetching corpus: 6193, signal 257093/305986 (executing program)
2022/09/01 11:54:12 fetching corpus: 6242, signal 257727/306549 (executing program)
2022/09/01 11:54:13 fetching corpus: 6290, signal 258285/307018 (executing program)
2022/09/01 11:54:13 fetching corpus: 6339, signal 258792/307480 (executing program)
2022/09/01 11:54:13 fetching corpus: 6388, signal 259291/307942 (executing program)
2022/09/01 11:54:13 fetching corpus: 6437, signal 259656/308389 (executing program)
2022/09/01 11:54:13 fetching corpus: 6487, signal 260184/308874 (executing program)
2022/09/01 11:54:13 fetching corpus: 6536, signal 260637/309318 (executing program)
2022/09/01 11:54:13 fetching corpus: 6586, signal 261163/309747 (executing program)
2022/09/01 11:54:14 fetching corpus: 6636, signal 261791/310242 (executing program)
2022/09/01 11:54:14 fetching corpus: 6686, signal 262356/310643 (executing program)
2022/09/01 11:54:14 fetching corpus: 6736, signal 262686/311046 (executing program)
2022/09/01 11:54:14 fetching corpus: 6786, signal 263223/311446 (executing program)
2022/09/01 11:54:14 fetching corpus: 6835, signal 263687/311854 (executing program)
2022/09/01 11:54:14 fetching corpus: 6885, signal 264208/312265 (executing program)
2022/09/01 11:54:14 fetching corpus: 6935, signal 265093/312703 (executing program)
2022/09/01 11:54:14 fetching corpus: 6984, signal 265682/313103 (executing program)
2022/09/01 11:54:15 fetching corpus: 7033, signal 266244/313497 (executing program)
2022/09/01 11:54:15 fetching corpus: 7082, signal 266834/313886 (executing program)
2022/09/01 11:54:15 fetching corpus: 7130, signal 267775/314258 (executing program)
2022/09/01 11:54:15 fetching corpus: 7180, signal 268120/314617 (executing program)
2022/09/01 11:54:15 fetching corpus: 7227, signal 268566/314987 (executing program)
2022/09/01 11:54:15 fetching corpus: 7275, signal 269009/315313 (executing program)
2022/09/01 11:54:15 fetching corpus: 7322, signal 269377/315644 (executing program)
2022/09/01 11:54:16 fetching corpus: 7371, signal 269775/315969 (executing program)
2022/09/01 11:54:16 fetching corpus: 7421, signal 270122/316283 (executing program)
2022/09/01 11:54:16 fetching corpus: 7471, signal 270595/316628 (executing program)
2022/09/01 11:54:16 fetching corpus: 7520, signal 270927/316959 (executing program)
2022/09/01 11:54:16 fetching corpus: 7569, signal 271694/317305 (executing program)
2022/09/01 11:54:16 fetching corpus: 7619, signal 272134/317612 (executing program)
2022/09/01 11:54:17 fetching corpus: 7668, signal 272674/317884 (executing program)
2022/09/01 11:54:17 fetching corpus: 7717, signal 273125/318172 (executing program)
2022/09/01 11:54:17 fetching corpus: 7765, signal 273622/318417 (executing program)
2022/09/01 11:54:17 fetching corpus: 7815, signal 274069/318504 (executing program)
2022/09/01 11:54:17 fetching corpus: 7865, signal 274530/318504 (executing program)
2022/09/01 11:54:17 fetching corpus: 7915, signal 274942/318504 (executing program)
2022/09/01 11:54:17 fetching corpus: 7965, signal 275415/318505 (executing program)
2022/09/01 11:54:18 fetching corpus: 8015, signal 275809/318505 (executing program)
2022/09/01 11:54:18 fetching corpus: 8062, signal 276396/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8110, signal 276749/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8157, signal 277320/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8207, signal 277971/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8256, signal 278694/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8305, signal 278992/318547 (executing program)
2022/09/01 11:54:18 fetching corpus: 8354, signal 279265/318559 (executing program)
2022/09/01 11:54:19 fetching corpus: 8404, signal 279835/318559 (executing program)
2022/09/01 11:54:19 fetching corpus: 8454, signal 280268/318559 (executing program)
2022/09/01 11:54:19 fetching corpus: 8504, signal 280530/318560 (executing program)
2022/09/01 11:54:19 fetching corpus: 8554, signal 281001/318560 (executing program)
2022/09/01 11:54:19 fetching corpus: 8603, signal 281722/318560 (executing program)
2022/09/01 11:54:19 fetching corpus: 8652, signal 282247/318667 (executing program)
2022/09/01 11:54:20 fetching corpus: 8701, signal 282679/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 8751, signal 283029/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 8801, signal 283419/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 8851, signal 283824/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 8901, signal 284169/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 8951, signal 284580/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 9000, signal 284966/318690 (executing program)
2022/09/01 11:54:20 fetching corpus: 9050, signal 285437/318695 (executing program)
2022/09/01 11:54:21 fetching corpus: 9099, signal 285689/318697 (executing program)
2022/09/01 11:54:21 fetching corpus: 9147, signal 286061/318697 (executing program)
2022/09/01 11:54:21 fetching corpus: 9197, signal 286436/318697 (executing program)
2022/09/01 11:54:21 fetching corpus: 9245, signal 287276/318700 (executing program)
2022/09/01 11:54:21 fetching corpus: 9293, signal 287654/318700 (executing program)
2022/09/01 11:54:21 fetching corpus: 9343, signal 287943/318700 (executing program)
2022/09/01 11:54:21 fetching corpus: 9392, signal 288292/318700 (executing program)
2022/09/01 11:54:22 fetching corpus: 9441, signal 289001/318700 (executing program)
2022/09/01 11:54:22 fetching corpus: 9491, signal 289343/318726 (executing program)
2022/09/01 11:54:22 fetching corpus: 9538, signal 289815/318726 (executing program)
2022/09/01 11:54:22 fetching corpus: 9588, signal 290228/318726 (executing program)
2022/09/01 11:54:22 fetching corpus: 9637, signal 290571/318728 (executing program)
2022/09/01 11:54:22 fetching corpus: 9686, signal 290912/318728 (executing program)
2022/09/01 11:54:22 fetching corpus: 9736, signal 291244/318728 (executing program)
2022/09/01 11:54:22 fetching corpus: 9786, signal 291750/318757 (executing program)
2022/09/01 11:54:23 fetching corpus: 9836, signal 292198/318757 (executing program)
2022/09/01 11:54:23 fetching corpus: 9884, signal 292726/318784 (executing program)
2022/09/01 11:54:23 fetching corpus: 9933, signal 293303/318784 (executing program)
2022/09/01 11:54:23 fetching corpus: 9981, signal 293578/318784 (executing program)
2022/09/01 11:54:23 fetching corpus: 10029, signal 293915/318791 (executing program)
2022/09/01 11:54:23 fetching corpus: 10077, signal 294360/318791 (executing program)
2022/09/01 11:54:23 fetching corpus: 10127, signal 294989/318791 (executing program)
2022/09/01 11:54:24 fetching corpus: 10177, signal 295483/318791 (executing program)
2022/09/01 11:54:24 fetching corpus: 10226, signal 295845/318793 (executing program)
2022/09/01 11:54:24 fetching corpus: 10276, signal 296111/318812 (executing program)
2022/09/01 11:54:24 fetching corpus: 10325, signal 296508/318815 (executing program)
2022/09/01 11:54:24 fetching corpus: 10375, signal 296848/318815 (executing program)
2022/09/01 11:54:24 fetching corpus: 10424, signal 297227/318815 (executing program)
2022/09/01 11:54:24 fetching corpus: 10474, signal 297618/318826 (executing program)
2022/09/01 11:54:24 fetching corpus: 10524, signal 297977/318844 (executing program)
2022/09/01 11:54:25 fetching corpus: 10572, signal 298357/318844 (executing program)
2022/09/01 11:54:25 fetching corpus: 10622, signal 298678/318844 (executing program)
2022/09/01 11:54:25 fetching corpus: 10671, signal 299171/318844 (executing program)
2022/09/01 11:54:25 fetching corpus: 10720, signal 299555/318850 (executing program)
2022/09/01 11:54:25 fetching corpus: 10770, signal 299788/318850 (executing program)
2022/09/01 11:54:25 fetching corpus: 10818, signal 300233/318854 (executing program)
2022/09/01 11:54:25 fetching corpus: 10867, signal 300466/318854 (executing program)
2022/09/01 11:54:26 fetching corpus: 10913, signal 300785/318854 (executing program)
2022/09/01 11:54:26 fetching corpus: 10962, signal 301101/318855 (executing program)
2022/09/01 11:54:26 fetching corpus: 11011, signal 301442/318855 (executing program)
2022/09/01 11:54:26 fetching corpus: 11061, signal 301872/318897 (executing program)
2022/09/01 11:54:26 fetching corpus: 11111, signal 302214/318898 (executing program)
2022/09/01 11:54:26 fetching corpus: 11160, signal 302485/318919 (executing program)
2022/09/01 11:54:26 fetching corpus: 11210, signal 302711/318919 (executing program)
2022/09/01 11:54:27 fetching corpus: 11260, signal 302946/318919 (executing program)
2022/09/01 11:54:27 fetching corpus: 11310, signal 303272/318919 (executing program)
2022/09/01 11:54:27 fetching corpus: 11359, signal 303689/318921 (executing program)
2022/09/01 11:54:27 fetching corpus: 11407, signal 303965/318938 (executing program)
2022/09/01 11:54:27 fetching corpus: 11457, signal 304284/318938 (executing program)
2022/09/01 11:54:27 fetching corpus: 11507, signal 304599/318938 (executing program)
2022/09/01 11:54:27 fetching corpus: 11556, signal 305012/318939 (executing program)
2022/09/01 11:54:27 fetching corpus: 11605, signal 305512/318939 (executing program)
2022/09/01 11:54:28 fetching corpus: 11655, signal 305793/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11705, signal 306236/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11752, signal 306700/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11801, signal 306948/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11851, signal 307184/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11899, signal 307559/318947 (executing program)
2022/09/01 11:54:28 fetching corpus: 11948, signal 307814/318947 (executing program)
2022/09/01 11:54:29 fetching corpus: 11995, signal 308048/318947 (executing program)
2022/09/01 11:54:29 fetching corpus: 12045, signal 308346/318947 (executing program)
2022/09/01 11:54:29 fetching corpus: 12094, signal 308603/318948 (executing program)
2022/09/01 11:54:29 fetching corpus: 12144, signal 308888/318948 (executing program)
2022/09/01 11:54:29 fetching corpus: 12194, signal 309262/318948 (executing program)
2022/09/01 11:54:29 fetching corpus: 12244, signal 309506/318992 (executing program)
2022/09/01 11:54:29 fetching corpus: 12290, signal 310334/318992 (executing program)
2022/09/01 11:54:30 fetching corpus: 12338, signal 310794/319018 (executing program)
2022/09/01 11:54:30 fetching corpus: 12388, signal 311170/319018 (executing program)
2022/09/01 11:54:30 fetching corpus: 12436, signal 311629/319028 (executing program)
2022/09/01 11:54:30 fetching corpus: 12485, signal 312001/319030 (executing program)
2022/09/01 11:54:30 fetching corpus: 12535, signal 312195/319030 (executing program)
2022/09/01 11:54:30 fetching corpus: 12585, signal 312416/319030 (executing program)
2022/09/01 11:54:31 fetching corpus: 12634, signal 312784/319030 (executing program)
2022/09/01 11:54:31 fetching corpus: 12683, signal 313058/319030 (executing program)
2022/09/01 11:54:31 fetching corpus: 12728, signal 313384/319031 (executing program)
2022/09/01 11:54:31 fetching corpus: 12776, signal 313656/319031 (executing program)
2022/09/01 11:54:31 fetching corpus: 12825, signal 314004/319032 (executing program)
2022/09/01 11:54:31 fetching corpus: 12825, signal 314008/319032 (executing program)
2022/09/01 11:54:31 fetching corpus: 12825, signal 314008/319032 (executing program)
2022/09/01 11:54:34 starting 8 fuzzer processes
11:54:34 executing program 0:
prctl$PR_SET_DUMPABLE(0x29, 0x2)

11:54:34 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r1=>0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/protocols\x00')
dup2(r2, r0)
io_submit(r1, 0x1, &(0x7f0000001a00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])

11:54:34 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{0x0, 0x800, 0x20, 0x0, 0x0, 0x0, 0x8bd}], "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x858)

11:54:34 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
syz_io_uring_setup(0x56ad, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
getpid()
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x58df, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000a00)={0xef, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}], 0x3, "bab97af00e388b"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001a00)={r2, 0x0, "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", "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"})
syz_io_uring_setup(0x2037bc, &(0x7f0000000400)={0x0, 0x82bc, 0x20, 0x1, 0x1f}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f0000000040))
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0)
syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380))
io_uring_enter(r3, 0x28a7, 0x1bc9, 0x2, &(0x7f0000000180)={[0x46f66fd7]}, 0x8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000800))
syz_open_dev$vcsa(&(0x7f0000000780), 0x5, 0x200101)

[   93.359854] audit: type=1400 audit(1662033274.801:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:54:34 executing program 4:
mlock2(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x11, 0xc1, 0x9, 0x0, 0x40000000, 0x6, 0xd5, 0x0, 0x80000001, 0x0, 0x9}, 0x0, 0xf, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
r2 = getpid()
pidfd_open(r2, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x80, 0x1, 0x3f, 0x0, 0x3, 0x3, 0x2, 0x3e, 0x38, 0xd8, 0x5, 0x3, 0x20, 0x2, 0x450, 0x40, 0xf7}, [{0x6474e551, 0x3, 0x3, 0x2, 0x200, 0x3f, 0x6, 0x6}], "f2c1c009c435a4e88e4836cc00bdb9183cd7577fe32679e95228425d48985dc09cf7bb4aea502e85e6df2e8e9d52b25921aa71927200a3c9e7ee8b8e15376ac40100d7ceed8c6791932efc2faeb10114313bdc35e387f4f017735bda2f08e54a9061b65c18cffd2c01e70546224989de202ea266ad2142bc460debde7d99f3880689ea39c04c74e0495b3bbdc48bec11ba5ba1e64a2078846f0d889e543d6eb98d6c29b9d49626b9e849e3afe50a3d735c1e7d188ac9fc66201afd2a5c42271f0f47a2f3f2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x91d)

11:54:34 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000100)="f5", 0x1}], 0x1}}], 0x1, 0x0)

11:54:34 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:54:34 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x8)
sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0)

[   94.704758] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   94.706578] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.709486] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   94.710994] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.711588] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   94.715470] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   94.715580] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.718642] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   94.720112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   94.725284] Bluetooth: hci1: HCI_REQ-0x0c1a
[   94.760171] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.774226] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   94.780526] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   94.781594] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   94.783557] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   94.785081] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   94.786170] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   94.788601] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   94.791408] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   94.792082] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   94.794147] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   94.794263] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   94.796615] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   94.798119] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   94.803532] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.805615] Bluetooth: hci7: HCI_REQ-0x0c1a
[   94.811644] Bluetooth: hci0: HCI_REQ-0x0c1a
[   94.812542] Bluetooth: hci6: HCI_REQ-0x0c1a
[   94.831117] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   94.831589] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   94.836428] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   94.837968] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   94.841224] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   94.842632] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   94.842662] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   94.845187] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   94.846599] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   94.852031] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   94.852202] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   94.855731] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   94.857280] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   94.859124] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   94.861138] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   94.862651] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   94.866956] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   94.867006] Bluetooth: hci3: HCI_REQ-0x0c1a
[   94.868322] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   94.885896] Bluetooth: hci4: HCI_REQ-0x0c1a
[   94.908336] Bluetooth: hci5: HCI_REQ-0x0c1a
[   96.783858] Bluetooth: hci2: Opcode 0x c03 failed: -110
[   96.785473] Bluetooth: hci1: command 0x0409 tx timeout
[   96.846993] Bluetooth: hci7: command 0x0409 tx timeout
[   96.848094] Bluetooth: hci6: command 0x0409 tx timeout
[   96.848896] Bluetooth: hci0: command 0x0409 tx timeout
[   96.910987] Bluetooth: hci3: command 0x0409 tx timeout
[   96.911052] Bluetooth: hci4: command 0x0409 tx timeout
[   96.975007] Bluetooth: hci5: command 0x0409 tx timeout
[   98.830987] Bluetooth: hci1: command 0x041b tx timeout
[   98.895051] Bluetooth: hci0: command 0x041b tx timeout
[   98.895566] Bluetooth: hci6: command 0x041b tx timeout
[   98.896070] Bluetooth: hci7: command 0x041b tx timeout
[   98.958976] Bluetooth: hci4: command 0x041b tx timeout
[   98.959456] Bluetooth: hci3: command 0x041b tx timeout
[   99.022957] Bluetooth: hci5: command 0x041b tx timeout
[  100.562455] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  100.563667] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  100.568008] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  100.570486] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  100.571503] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  100.572287] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  100.575013] Bluetooth: hci2: HCI_REQ-0x0c1a
[  100.878956] Bluetooth: hci1: command 0x040f tx timeout
[  100.943007] Bluetooth: hci7: command 0x040f tx timeout
[  100.943830] Bluetooth: hci6: command 0x040f tx timeout
[  100.945451] Bluetooth: hci0: command 0x040f tx timeout
[  101.007007] Bluetooth: hci3: command 0x040f tx timeout
[  101.007636] Bluetooth: hci4: command 0x040f tx timeout
[  101.071440] Bluetooth: hci5: command 0x040f tx timeout
[  102.607023] Bluetooth: hci2: command 0x0409 tx timeout
[  102.927040] Bluetooth: hci1: command 0x0419 tx timeout
[  102.991044] Bluetooth: hci0: command 0x0419 tx timeout
[  102.991841] Bluetooth: hci6: command 0x0419 tx timeout
[  102.994658] Bluetooth: hci7: command 0x0419 tx timeout
[  103.055009] Bluetooth: hci4: command 0x0419 tx timeout
[  103.055816] Bluetooth: hci3: command 0x0419 tx timeout
[  103.119041] Bluetooth: hci5: command 0x0419 tx timeout
[  104.655026] Bluetooth: hci2: command 0x041b tx timeout
[  106.702968] Bluetooth: hci2: command 0x040f tx timeout
[  108.750959] Bluetooth: hci2: command 0x0419 tx timeout
[  153.344811] audit: type=1400 audit(1662033334.786:7): avc:  denied  { open } for  pid=3877 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  153.346383] audit: type=1400 audit(1662033334.786:8): avc:  denied  { kernel } for  pid=3877 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  153.378391] hrtimer: interrupt took 26229 ns
[  153.444019] random: crng reseeded on system resumption
[  153.553104] random: crng reseeded on system resumption
[  153.560357] Restarting kernel threads ... done.
[  156.117134] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  156.122419] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  156.123764] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  156.128522] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  156.131517] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  156.134420] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  156.138760] Bluetooth: hci4: HCI_REQ-0x0c1a
[  156.316677] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  156.324870] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  156.328512] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  156.332003] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  156.334851] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  156.336528] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  156.342546] Bluetooth: hci7: HCI_REQ-0x0c1a
[  158.159979] Bluetooth: hci4: command 0x0409 tx timeout
[  158.350982] Bluetooth: hci7: command 0x0409 tx timeout
[  160.207168] Bluetooth: hci4: command 0x041b tx timeout
[  160.399051] Bluetooth: hci7: command 0x041b tx timeout
[  162.255101] Bluetooth: hci4: command 0x040f tx timeout
[  162.447039] Bluetooth: hci7: command 0x040f tx timeout
[  164.303201] Bluetooth: hci4: command 0x0419 tx timeout
[  164.494996] Bluetooth: hci7: command 0x0419 tx timeout
[  171.592882] audit: type=1400 audit(1662033353.032:9): avc:  denied  { write } for  pid=4797 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  171.720937] audit: type=1400 audit(1662033353.162:10): avc:  denied  { read } for  pid=4797 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
11:55:55 executing program 0:
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
fcntl$lock(r0, 0x6, &(0x7f0000000240)={0x1, 0x1, 0x1, 0x8})
pwritev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000000)="f7", 0x1}], 0x1, 0x0, 0x0)

11:55:55 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x8)
sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0)

11:55:55 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = gettid()
r2 = gettid()
r3 = socket$packet(0x11, 0x2, 0x300)
kcmp(r1, r2, 0x0, r0, r3)

11:55:55 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x4}]}, 0x1c}}, 0x0)

11:55:55 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:55 executing program 4:
mlock2(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x11, 0xc1, 0x9, 0x0, 0x40000000, 0x6, 0xd5, 0x0, 0x80000001, 0x0, 0x9}, 0x0, 0xf, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
r2 = getpid()
pidfd_open(r2, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x80, 0x1, 0x3f, 0x0, 0x3, 0x3, 0x2, 0x3e, 0x38, 0xd8, 0x5, 0x3, 0x20, 0x2, 0x450, 0x40, 0xf7}, [{0x6474e551, 0x3, 0x3, 0x2, 0x200, 0x3f, 0x6, 0x6}], "f2c1c009c435a4e88e4836cc00bdb9183cd7577fe32679e95228425d48985dc09cf7bb4aea502e85e6df2e8e9d52b25921aa71927200a3c9e7ee8b8e15376ac40100d7ceed8c6791932efc2faeb10114313bdc35e387f4f017735bda2f08e54a9061b65c18cffd2c01e70546224989de202ea266ad2142bc460debde7d99f3880689ea39c04c74e0495b3bbdc48bec11ba5ba1e64a2078846f0d889e543d6eb98d6c29b9d49626b9e849e3afe50a3d735c1e7d188ac9fc66201afd2a5c42271f0f47a2f3f2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x91d)

11:55:55 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:55 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
syz_io_uring_setup(0x56ad, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
getpid()
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x58df, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000a00)={0xef, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}], 0x3, "bab97af00e388b"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001a00)={r2, 0x0, "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", "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"})
syz_io_uring_setup(0x2037bc, &(0x7f0000000400)={0x0, 0x82bc, 0x20, 0x1, 0x1f}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f0000000040))
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0)
syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380))
io_uring_enter(r3, 0x28a7, 0x1bc9, 0x2, &(0x7f0000000180)={[0x46f66fd7]}, 0x8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000800))
syz_open_dev$vcsa(&(0x7f0000000780), 0x5, 0x200101)

11:55:55 executing program 2:
rt_sigtimedwait(&(0x7f00000004c0), 0x0, &(0x7f0000000540), 0x8)

[  174.377955] random: crng reseeded on system resumption
11:55:55 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = gettid()
r2 = gettid()
r3 = socket$packet(0x11, 0x2, 0x300)
kcmp(r1, r2, 0x0, r0, r3)

11:55:55 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:55 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_SCRNMAP(r0, 0x4b49, &(0x7f0000000000)=""/136)

11:55:56 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:56 executing program 5:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:56 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = gettid()
r2 = gettid()
r3 = socket$packet(0x11, 0x2, 0x300)
kcmp(r1, r2, 0x0, r0, r3)

11:55:56 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_SCRNMAP(r0, 0x4b49, &(0x7f0000000000)=""/136)

11:55:56 executing program 4:
mlock2(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x11, 0xc1, 0x9, 0x0, 0x40000000, 0x6, 0xd5, 0x0, 0x80000001, 0x0, 0x9}, 0x0, 0xf, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
r2 = getpid()
pidfd_open(r2, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x80, 0x1, 0x3f, 0x0, 0x3, 0x3, 0x2, 0x3e, 0x38, 0xd8, 0x5, 0x3, 0x20, 0x2, 0x450, 0x40, 0xf7}, [{0x6474e551, 0x3, 0x3, 0x2, 0x200, 0x3f, 0x6, 0x6}], "f2c1c009c435a4e88e4836cc00bdb9183cd7577fe32679e95228425d48985dc09cf7bb4aea502e85e6df2e8e9d52b25921aa71927200a3c9e7ee8b8e15376ac40100d7ceed8c6791932efc2faeb10114313bdc35e387f4f017735bda2f08e54a9061b65c18cffd2c01e70546224989de202ea266ad2142bc460debde7d99f3880689ea39c04c74e0495b3bbdc48bec11ba5ba1e64a2078846f0d889e543d6eb98d6c29b9d49626b9e849e3afe50a3d735c1e7d188ac9fc66201afd2a5c42271f0f47a2f3f2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x91d)

11:55:56 executing program 6:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0x8000000)
r0 = syz_io_uring_setup(0x6dcb, &(0x7f0000000080)={0x0, 0xbc68, 0x2, 0x0, 0x3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000002c0)=""/30, 0x1e}, {&(0x7f0000000300)=""/250, 0xfa}], 0x3)
syz_io_uring_setup(0x31db, &(0x7f0000000440)={0x0, 0x1fb, 0x1, 0x0, 0x3bd}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000004c0), &(0x7f0000000500))
munmap(&(0x7f0000400000/0xc00000)=nil, 0xc00000)
r1 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f000075a000/0x3000)=nil, 0x0)
shmget$private(0x0, 0x1000, 0x800, &(0x7f000090c000/0x1000)=nil)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

11:55:56 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
syz_io_uring_setup(0x56ad, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
getpid()
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x58df, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000a00)={0xef, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}], 0x3, "bab97af00e388b"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001a00)={r2, 0x0, "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", "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"})
syz_io_uring_setup(0x2037bc, &(0x7f0000000400)={0x0, 0x82bc, 0x20, 0x1, 0x1f}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f0000000040))
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0)
syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380))
io_uring_enter(r3, 0x28a7, 0x1bc9, 0x2, &(0x7f0000000180)={[0x46f66fd7]}, 0x8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000800))
syz_open_dev$vcsa(&(0x7f0000000780), 0x5, 0x200101)

11:55:56 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x8)
sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0)

11:55:56 executing program 2:
rt_sigtimedwait(&(0x7f00000004c0), 0x0, &(0x7f0000000540), 0x8)

[  175.239860] random: crng reseeded on system resumption
11:55:56 executing program 2:
rt_sigtimedwait(&(0x7f00000004c0), 0x0, &(0x7f0000000540), 0x8)

11:55:56 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_SCRNMAP(r0, 0x4b49, &(0x7f0000000000)=""/136)

11:55:56 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = gettid()
r2 = gettid()
r3 = socket$packet(0x11, 0x2, 0x300)
kcmp(r1, r2, 0x0, r0, r3)

11:55:56 executing program 2:
rt_sigtimedwait(&(0x7f00000004c0), 0x0, &(0x7f0000000540), 0x8)

11:55:56 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_SCRNMAP(r0, 0x4b49, &(0x7f0000000000)=""/136)

[  175.625764] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  175.627169] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  175.627840] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  175.628728] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00
[  175.629515] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2
[  175.635616] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  175.636216] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  175.636936] Buffer I/O error on dev sr0, logical block 0, async page read
[  175.691315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  175.692002] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  175.692687] Buffer I/O error on dev sr0, logical block 1, async page read
[  175.710151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  175.710606] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 5 prio class 2
[  175.711304] Buffer I/O error on dev sr0, logical block 2, async page read
[  175.711824] Buffer I/O error on dev sr0, logical block 3, async page read
[  175.712380] Buffer I/O error on dev sr0, logical block 4, async page read
[  175.712878] Buffer I/O error on dev sr0, logical block 5, async page read
[  175.713407] Buffer I/O error on dev sr0, logical block 6, async page read
[  175.714279] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  175.714694] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  175.715362] Buffer I/O error on dev sr0, logical block 7, async page read
11:55:57 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0)
syz_io_uring_setup(0x56ad, 0x0, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000300))
getpid()
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x58df, 0x0, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000a00)={0xef, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r2=>0x0}], 0x3, "bab97af00e388b"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000001a00)={r2, 0x0, "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", "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"})
syz_io_uring_setup(0x2037bc, &(0x7f0000000400)={0x0, 0x82bc, 0x20, 0x1, 0x1f}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f0000000040))
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0)
syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380))
io_uring_enter(r3, 0x28a7, 0x1bc9, 0x2, &(0x7f0000000180)={[0x46f66fd7]}, 0x8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000800))
syz_open_dev$vcsa(&(0x7f0000000780), 0x5, 0x200101)

11:55:57 executing program 0:
r0 = syz_io_uring_setup(0x525c, &(0x7f0000000200), &(0x7f0000000000/0x3000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000380))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x14, 0x0, 0x0)

11:55:57 executing program 5:
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000001c0)={0x0, 0x200, 0x3, 0x0, 0x2, [0x7ff, 0x80000001, 0x5, 0x7]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000200))
getrlimit(0x8, &(0x7f0000000480))
ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f00000004c0)=0x1)
setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000500)=@gcm_256={{0x304}, "2175aeaea695c4c6", "f33d5a3e880d79a2078c51fbec12ea38806916ce5d2e1961cc5282b95750bab3", "e7d5083c", "fcbde1fc11aa8526"}, 0x38)
eventfd(0x7fffffff)
socketpair(0xa, 0x5, 0x6, &(0x7f0000000540)={<r0=>0xffffffffffffffff})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000580), &(0x7f00000005c0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = eventfd(0xfffffff6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000680)={&(0x7f0000400000/0xc00000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f000069d000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000443000/0x3000)=nil, &(0x7f0000f74000/0x4000)=nil, &(0x7f0000460000/0x3000)=nil, &(0x7f0000f15000/0x2000)=nil, &(0x7f00004af000/0x2000)=nil, &(0x7f00009a1000/0x2000)=nil, &(0x7f0000a82000/0x4000)=nil, &(0x7f0000000640)="84498386c34e752171fabb1ce53961932148b308fdfcd6e3d99f", 0x1a, r2}, 0x68)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000007c0)={0x1, &(0x7f0000000780)=[{0x2, 0x1, 0x1, 0x4}]})

11:55:57 executing program 6:
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x44032, 0xffffffffffffffff, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000040), 0x8)

11:55:57 executing program 2:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$sock_int(r0, 0x1, 0x3c, 0x0, &(0x7f0000000040))

11:55:57 executing program 4:
mlock2(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, 0x0)
finit_module(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x11, 0xc1, 0x9, 0x0, 0x40000000, 0x6, 0xd5, 0x0, 0x80000001, 0x0, 0x9}, 0x0, 0xf, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
r2 = getpid()
pidfd_open(r2, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x80, 0x1, 0x3f, 0x0, 0x3, 0x3, 0x2, 0x3e, 0x38, 0xd8, 0x5, 0x3, 0x20, 0x2, 0x450, 0x40, 0xf7}, [{0x6474e551, 0x3, 0x3, 0x2, 0x200, 0x3f, 0x6, 0x6}], "f2c1c009c435a4e88e4836cc00bdb9183cd7577fe32679e95228425d48985dc09cf7bb4aea502e85e6df2e8e9d52b25921aa71927200a3c9e7ee8b8e15376ac40100d7ceed8c6791932efc2faeb10114313bdc35e387f4f017735bda2f08e54a9061b65c18cffd2c01e70546224989de202ea266ad2142bc460debde7d99f3880689ea39c04c74e0495b3bbdc48bec11ba5ba1e64a2078846f0d889e543d6eb98d6c29b9d49626b9e849e3afe50a3d735c1e7d188ac9fc66201afd2a5c42271f0f47a2f3f2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x91d)

11:55:57 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00)
mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00'])

11:55:57 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x8)
sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0)

[  175.854475] random: crng reseeded on system resumption
11:55:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x200, 0xb1)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0xfffffdef)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000500)=0xc00000000000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="ca1207c1b50000002e2f66696c653000"])

[  175.938816] 9pnet_virtio: no channels available for device 127.0.0.1
11:55:57 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
write(r0, &(0x7f0000000040)="9388", 0x2)

11:55:57 executing program 6:
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x44032, 0xffffffffffffffff, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000040), 0x8)

[  175.990523] 9pnet_virtio: no channels available for device 127.0.0.1
[  176.030343] loop2: detected capacity change from 0 to 40
11:55:57 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00)
mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00'])

11:55:57 executing program 6:
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x44032, 0xffffffffffffffff, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000040), 0x8)

11:55:57 executing program 0:
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000580))
clock_adjtime(0x0, &(0x7f0000000100)={0x8003})

11:55:57 executing program 4:
syz_emit_ethernet(0xfe, &(0x7f0000000100)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0xc8, 0x3a, 0xff, @local, @local, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x1, 0x16, "f3ee2f95a1639903e0e4b3284b70b92bda2ba69452b7e345cc6763ba2e15e9eb55d9339722b99de9524fcfe8473137f0aa725dc6faf492e282acff85b837f2b736741d500720410be87b430791b02a43bc6cc9acd0cd771ca56e4643e01db2e01fa2cb667920e9e38e77e190f488807ddf8e6ceb6c792ecc1b6572f3a122476c12b237cbc531c683d1d203a3eac79406a662c617774ccaa28fc57da5c1d1af52481db6076ac2421d14aea9385d3b"}, {0x1, 0x1, "bab165646f81"}]}}}}}}, 0x0)

[  176.144762] 9pnet_virtio: no channels available for device 127.0.0.1
[  176.299880] syz-executor.2: attempt to access beyond end of device
[  176.299880] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  176.301449] Buffer I/O error on dev loop2, logical block 10, lost async page write
[  176.327421] syz-executor.2 (4954) used greatest stack depth: 24472 bytes left
11:55:57 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000080), 0x0, 0x8)

11:55:57 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00)
mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00'])

11:55:57 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x200, 0xb1)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0xfffffdef)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000500)=0xc00000000000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="ca1207c1b50000002e2f66696c653000"])

11:55:57 executing program 5:
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000001c0)={0x0, 0x200, 0x3, 0x0, 0x2, [0x7ff, 0x80000001, 0x5, 0x7]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000200))
getrlimit(0x8, &(0x7f0000000480))
ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f00000004c0)=0x1)
setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000500)=@gcm_256={{0x304}, "2175aeaea695c4c6", "f33d5a3e880d79a2078c51fbec12ea38806916ce5d2e1961cc5282b95750bab3", "e7d5083c", "fcbde1fc11aa8526"}, 0x38)
eventfd(0x7fffffff)
socketpair(0xa, 0x5, 0x6, &(0x7f0000000540)={<r0=>0xffffffffffffffff})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000580), &(0x7f00000005c0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = eventfd(0xfffffff6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000680)={&(0x7f0000400000/0xc00000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f000069d000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000443000/0x3000)=nil, &(0x7f0000f74000/0x4000)=nil, &(0x7f0000460000/0x3000)=nil, &(0x7f0000f15000/0x2000)=nil, &(0x7f00004af000/0x2000)=nil, &(0x7f00009a1000/0x2000)=nil, &(0x7f0000a82000/0x4000)=nil, &(0x7f0000000640)="84498386c34e752171fabb1ce53961932148b308fdfcd6e3d99f", 0x1a, r2}, 0x68)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000007c0)={0x1, &(0x7f0000000780)=[{0x2, 0x1, 0x1, 0x4}]})

11:55:57 executing program 6:
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x44032, 0xffffffffffffffff, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000040), 0x8)

11:55:57 executing program 3:
r0 = syz_io_uring_setup(0x46ac, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000080)=@IORING_OP_REMOVE_BUFFERS, 0x0)
io_uring_enter(r0, 0x7fd6, 0x0, 0x0, 0x0, 0x0)

11:55:57 executing program 0:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
r1 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140))

[  176.412681] loop2: detected capacity change from 0 to 40
[  176.425292] 9pnet_virtio: no channels available for device 127.0.0.1
11:55:57 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101242, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = io_uring_setup(0x454c, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0xfffffffffffffd2c)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x10}, 0x10}], 0x1}, 0x0)

[  176.460474] =======================================================
[  176.460474] WARNING: The mand mount option has been deprecated and
[  176.460474]          and is ignored by this kernel. Remove the mand
[  176.460474]          option from the mount to silence this warning.
[  176.460474] =======================================================
11:55:57 executing program 6:
membarrier(0x2, 0x0)

[  176.488970] loop7: detected capacity change from 0 to 4097
11:55:57 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getgid()

11:55:57 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000025c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=n'])
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x80000006)

11:55:57 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00)
mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00'])

[  176.534284] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4988 comm=syz-executor.7
11:55:57 executing program 3:
syz_mount_image$ext4(&(0x7f0000000400)='ext3\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)={[{@commit}, {@sb}]})

[  176.579158] 9p: Unknown Cache mode n
11:55:58 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r1, &(0x7f0000000140)='./file1\x00', 0x83, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000600)=""/148, 0x94)
r5 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00')
read$hiddev(r5, &(0x7f0000000040)=""/169, 0x200000e9)
r6 = memfd_secret(0x80000)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r7=>r4}, './file1\x00'})
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAW(r8, 0x5407, &(0x7f0000000000)={0x1000, 0x0, 0x0, 0x0, 0x10, "ddab93e1adcbd470"})
ioctl$VT_DISALLOCATE(r8, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r9=>0xffffffffffffffff, @out_args}, './file0\x00'})
io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x3, r9, &(0x7f0000000180)="666fd6fb7c4c8e8bf4059397e83e5ca7e7a13e2dbc305703a2c6a90bba95bb649867b6deabc9", 0x26, 0x4, 0x0, 0x3, r7}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x1000, 0xffffffffffffffff, &(0x7f0000000400)="bcf3b4f072b97e9c8e5e4369e898ea7d3b9aaf8d0633f79e97d0826da4635d97340e117a758d18b9fe61c37ab2832aa388c707228965f582216544e3d9b9e1d50f2085b8b532a2d6b3c64fef32086daf609dede175371d47064c088a9ccda4c9", 0x60, 0x1, 0x0, 0x1, r0}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x3, r8, &(0x7f00000004c0)="457e9ecce6f0e6267ca821ea89e945294a9d2c204cfc7e6ab54c199887166c29b9dd581d3b99a5afd0", 0x29, 0xffff, 0x0, 0x1, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="caab5ab60cec2af461a1c275cab0df2622d311b22d15515e3c4d26fe7dddedecf8b1d9938e233d24e9941337524c7aaaa1ee7e747d80fbc3cca3eeec", 0x3c, 0xffffffffffffffff, 0x0, 0x1, r3}])
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220)

[  176.596310] 9pnet_virtio: no channels available for device 127.0.0.1
[  176.622270] No source specified
[  176.623205] No source specified
[  176.629168] 9p: Unknown Cache mode n
11:55:58 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2287, 0x0)

11:55:58 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101242, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = io_uring_setup(0x454c, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0xfffffffffffffd2c)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x10}, 0x10}], 0x1}, 0x0)

11:55:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)=0xda60, 0x8, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x401, &(0x7f0000000280)=ANY=[@ANYBLOB="6d656d6f72795f72656375727369766570726f742c6d656d6f72795f72656375727369766570726f742c626c6b696f2c6e7364656c65676174652c6d656d6f72795f72656375727369766570726f742c6370752c646576696365732c646576696365732c6e7364656c65676174652c6f626a5f757365f23d646576707473002c5875626a5f726f6c653d646576707473002c00"])
clone3(&(0x7f0000000640)={0x133363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt(r0, 0xff, 0x1, 0x0, 0x4000000)
r1 = syz_open_dev$vcsn(&(0x7f0000001700), 0x1, 0x440000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>r0, {0x3}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0xc9, &(0x7f0000000340)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@mmap}], [{@fsname={'fsname', 0x3d, 'cpu'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@dont_appraise}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, 'obj_user'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ',&])|#'}}, {@permit_directio}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '&\xbb'}}]}})
rmdir(&(0x7f00000005c0)='./file0\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x40000, 0x0)

11:55:58 executing program 5:
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000001c0)={0x0, 0x200, 0x3, 0x0, 0x2, [0x7ff, 0x80000001, 0x5, 0x7]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000200))
getrlimit(0x8, &(0x7f0000000480))
ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f00000004c0)=0x1)
setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000500)=@gcm_256={{0x304}, "2175aeaea695c4c6", "f33d5a3e880d79a2078c51fbec12ea38806916ce5d2e1961cc5282b95750bab3", "e7d5083c", "fcbde1fc11aa8526"}, 0x38)
eventfd(0x7fffffff)
socketpair(0xa, 0x5, 0x6, &(0x7f0000000540)={<r0=>0xffffffffffffffff})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000580), &(0x7f00000005c0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = eventfd(0xfffffff6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000680)={&(0x7f0000400000/0xc00000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f000069d000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000443000/0x3000)=nil, &(0x7f0000f74000/0x4000)=nil, &(0x7f0000460000/0x3000)=nil, &(0x7f0000f15000/0x2000)=nil, &(0x7f00004af000/0x2000)=nil, &(0x7f00009a1000/0x2000)=nil, &(0x7f0000a82000/0x4000)=nil, &(0x7f0000000640)="84498386c34e752171fabb1ce53961932148b308fdfcd6e3d99f", 0x1a, r2}, 0x68)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000007c0)={0x1, &(0x7f0000000780)=[{0x2, 0x1, 0x1, 0x4}]})

[  176.751120] cgroup2: Unknown parameter 'blkio'
[  176.760219] loop7: detected capacity change from 0 to 4097
[  176.775046] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  176.791357] cgroup2: Unknown parameter 'blkio'
[  176.807742] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  176.812570] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5015 comm=syz-executor.7
[  176.859613] syz-executor.2: attempt to access beyond end of device
[  176.859613] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  176.859720] Buffer I/O error on dev loop2, logical block 10, lost async page write
11:55:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000025c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=n'])
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x80000006)

11:55:58 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r1, &(0x7f0000000140)='./file1\x00', 0x83, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000600)=""/148, 0x94)
r5 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00')
read$hiddev(r5, &(0x7f0000000040)=""/169, 0x200000e9)
r6 = memfd_secret(0x80000)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r7=>r4}, './file1\x00'})
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAW(r8, 0x5407, &(0x7f0000000000)={0x1000, 0x0, 0x0, 0x0, 0x10, "ddab93e1adcbd470"})
ioctl$VT_DISALLOCATE(r8, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r9=>0xffffffffffffffff, @out_args}, './file0\x00'})
io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x3, r9, &(0x7f0000000180)="666fd6fb7c4c8e8bf4059397e83e5ca7e7a13e2dbc305703a2c6a90bba95bb649867b6deabc9", 0x26, 0x4, 0x0, 0x3, r7}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x1000, 0xffffffffffffffff, &(0x7f0000000400)="bcf3b4f072b97e9c8e5e4369e898ea7d3b9aaf8d0633f79e97d0826da4635d97340e117a758d18b9fe61c37ab2832aa388c707228965f582216544e3d9b9e1d50f2085b8b532a2d6b3c64fef32086daf609dede175371d47064c088a9ccda4c9", 0x60, 0x1, 0x0, 0x1, r0}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x3, r8, &(0x7f00000004c0)="457e9ecce6f0e6267ca821ea89e945294a9d2c204cfc7e6ab54c199887166c29b9dd581d3b99a5afd0", 0x29, 0xffff, 0x0, 0x1, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="caab5ab60cec2af461a1c275cab0df2622d311b22d15515e3c4d26fe7dddedecf8b1d9938e233d24e9941337524c7aaaa1ee7e747d80fbc3cca3eeec", 0x3c, 0xffffffffffffffff, 0x0, 0x1, r3}])
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220)

11:55:58 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101242, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = io_uring_setup(0x454c, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0xfffffffffffffd2c)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x10}, 0x10}], 0x1}, 0x0)

11:55:58 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x200, 0xb1)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0xfffffdef)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000500)=0xc00000000000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="ca1207c1b50000002e2f66696c653000"])

11:55:58 executing program 5:
ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000001c0)={0x0, 0x200, 0x3, 0x0, 0x2, [0x7ff, 0x80000001, 0x5, 0x7]})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000200))
getrlimit(0x8, &(0x7f0000000480))
ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f00000004c0)=0x1)
setsockopt$inet6_tcp_TLS_RX(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000500)=@gcm_256={{0x304}, "2175aeaea695c4c6", "f33d5a3e880d79a2078c51fbec12ea38806916ce5d2e1961cc5282b95750bab3", "e7d5083c", "fcbde1fc11aa8526"}, 0x38)
eventfd(0x7fffffff)
socketpair(0xa, 0x5, 0x6, &(0x7f0000000540)={<r0=>0xffffffffffffffff})
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000580), &(0x7f00000005c0)=0x14)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
r2 = eventfd(0xfffffff6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000680)={&(0x7f0000400000/0xc00000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f000069d000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000443000/0x3000)=nil, &(0x7f0000f74000/0x4000)=nil, &(0x7f0000460000/0x3000)=nil, &(0x7f0000f15000/0x2000)=nil, &(0x7f00004af000/0x2000)=nil, &(0x7f00009a1000/0x2000)=nil, &(0x7f0000a82000/0x4000)=nil, &(0x7f0000000640)="84498386c34e752171fabb1ce53961932148b308fdfcd6e3d99f", 0x1a, r2}, 0x68)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000700))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000007c0)={0x1, &(0x7f0000000780)=[{0x2, 0x1, 0x1, 0x4}]})

11:55:58 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2287, 0x0)

11:55:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)=0xda60, 0x8, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x401, &(0x7f0000000280)=ANY=[@ANYBLOB="6d656d6f72795f72656375727369766570726f742c6d656d6f72795f72656375727369766570726f742c626c6b696f2c6e7364656c65676174652c6d656d6f72795f72656375727369766570726f742c6370752c646576696365732c646576696365732c6e7364656c65676174652c6f626a5f757365f23d646576707473002c5875626a5f726f6c653d646576707473002c00"])
clone3(&(0x7f0000000640)={0x133363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt(r0, 0xff, 0x1, 0x0, 0x4000000)
r1 = syz_open_dev$vcsn(&(0x7f0000001700), 0x1, 0x440000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>r0, {0x3}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0xc9, &(0x7f0000000340)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@mmap}], [{@fsname={'fsname', 0x3d, 'cpu'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@dont_appraise}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, 'obj_user'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ',&])|#'}}, {@permit_directio}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '&\xbb'}}]}})
rmdir(&(0x7f00000005c0)='./file0\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x40000, 0x0)

11:55:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000025c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=n'])
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x80000006)

[  177.038854] loop2: detected capacity change from 0 to 40
[  177.041624] loop7: detected capacity change from 0 to 4097
[  177.048698] cgroup2: Unknown parameter 'blkio'
[  177.061451] 9p: Unknown Cache mode n
[  177.068878] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  177.071834] ==================================================================
[  177.072338] BUG: KASAN: use-after-free in __kernfs_remove+0x9dd/0xb30
[  177.073015] Read of size 2 at addr ffff888044a71b78 by task syz-executor.1/5038
[  177.073660] 
[  177.073812] CPU: 1 PID: 5038 Comm: syz-executor.1 Not tainted 6.0.0-rc3-next-20220829 #1
[  177.074763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  177.076557] Call Trace:
[  177.076767]  <TASK>
[  177.076950]  dump_stack_lvl+0x8b/0xb3
[  177.077261]  print_report.cold+0x5e/0x5e5
[  177.077588]  ? __kernfs_remove+0x9dd/0xb30
[  177.077945]  kasan_report+0xb1/0x1c0
[  177.078252]  ? __kernfs_remove+0x9dd/0xb30
[  177.078594]  __kernfs_remove+0x9dd/0xb30
[  177.078931]  ? lock_is_held_type+0xd7/0x130
[  177.079281]  ? kernfs_next_descendant_post+0x300/0x300
[  177.079711]  ? kernfs_name_hash+0xe7/0x110
[  177.080048]  kernfs_remove_by_name_ns+0xa8/0x110
[  177.080432]  sysfs_slab_add+0x142/0x1f0
[  177.080752]  __kmem_cache_create+0x49d/0x600
[  177.081092]  kmem_cache_create_usercopy+0x1fd/0x2e0
[  177.081480]  p9_client_create+0xc85/0x1050
[  177.081809]  ? p9_client_rpc+0xad0/0xad0
[  177.082138]  ? lock_is_held_type+0xd7/0x130
[  177.082476]  ? lockdep_init_map_type+0x21a/0x7e0
[  177.082853]  ? __raw_spin_lock_init+0x36/0x110
[  177.083217]  v9fs_session_init+0x1dd/0x1670
[  177.083563]  ? lock_release+0x3b2/0x750
[  177.083869]  ? __kmem_cache_alloc_node+0x224/0x3c0
[  177.084243]  ? lock_downgrade+0x6d0/0x6d0
[  177.084575]  ? v9fs_show_options+0x690/0x690
[  177.084920]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  177.085322]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  177.085732]  ? lock_is_held_type+0xd7/0x130
[  177.086068]  v9fs_mount+0xb9/0xbd0
[  177.086348]  ? v9fs_statfs+0x4d0/0x4d0
[  177.086672]  ? cap_capable+0x1eb/0x250
[  177.086988]  ? v9fs_statfs+0x4d0/0x4d0
[  177.087284]  legacy_get_tree+0x105/0x220
[  177.087604]  vfs_get_tree+0x8e/0x300
[  177.087901]  path_mount+0x1310/0x1e20
[  177.088200]  ? kasan_quarantine_put+0x8b/0x1f0
[  177.088560]  ? finish_automount+0x8d0/0x8d0
[  177.088899]  ? putname+0xfe/0x140
[  177.089195]  __x64_sys_mount+0x282/0x300
[  177.089546]  ? path_mount+0x1e20/0x1e20
[  177.089900]  ? syscall_enter_from_user_mode+0x1d/0x50
[  177.090326]  do_syscall_64+0x3b/0x90
[  177.090637]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  177.091047] RIP: 0033:0x7f4ae40a8b19
[  177.091337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  177.092709] RSP: 002b:00007f4ae161e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  177.093310] RAX: ffffffffffffffda RBX: 00007f4ae41bbf60 RCX: 00007f4ae40a8b19
[  177.093895] RDX: 00000000200025c0 RSI: 0000000020000240 RDI: 0000000000000000
[  177.094441] RBP: 00007f4ae4102f6d R08: 0000000020000000 R09: 0000000000000000
[  177.094975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.095512] R13: 00007ffd17bf93cf R14: 00007f4ae161e300 R15: 0000000000022000
[  177.096128]  </TASK>
[  177.096330] 
[  177.096467] Allocated by task 5039:
[  177.096758]  kasan_save_stack+0x1e/0x40
[  177.097098]  __kasan_slab_alloc+0x66/0x80
[  177.097505]  kmem_cache_alloc+0x1b1/0x3e0
[  177.097838]  __kernfs_new_node+0xd4/0x8c0
[  177.098158]  kernfs_create_dir_ns+0x9c/0x230
[  177.098504]  sysfs_create_dir_ns+0x127/0x290
[  177.098892]  kobject_add_internal+0x24c/0x8e0
[  177.099295]  kobject_init_and_add+0x101/0x160
[  177.099644]  sysfs_slab_add+0x165/0x1f0
[  177.099960]  __kmem_cache_create+0x49d/0x600
[  177.100343]  kmem_cache_create_usercopy+0x1fd/0x2e0
[  177.100751]  p9_client_create+0xc85/0x1050
[  177.101088]  v9fs_session_init+0x1dd/0x1670
[  177.101435]  v9fs_mount+0xb9/0xbd0
[  177.101734]  legacy_get_tree+0x105/0x220
[  177.102067]  vfs_get_tree+0x8e/0x300
[  177.102373]  path_mount+0x1310/0x1e20
[  177.102679]  __x64_sys_mount+0x282/0x300
[  177.102992]  do_syscall_64+0x3b/0x90
[  177.103290]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  177.103689] 
[  177.103819] Freed by task 5038:
[  177.104067]  kasan_save_stack+0x1e/0x40
[  177.104375]  kasan_set_track+0x21/0x30
[  177.104679]  kasan_set_free_info+0x20/0x40
[  177.105014]  __kasan_slab_free+0x108/0x190
[  177.105348]  kmem_cache_free+0xf7/0x610
[  177.105674]  kernfs_put.part.0+0x2c7/0x540
[  177.106010]  kernfs_put+0x42/0x50
[  177.106294]  __kernfs_remove+0x7d4/0xb30
[  177.106619]  kernfs_remove_by_name_ns+0xa8/0x110
[  177.106999]  sysfs_slab_add+0x142/0x1f0
[  177.107314]  __kmem_cache_create+0x49d/0x600
[  177.107659]  kmem_cache_create_usercopy+0x1fd/0x2e0
[  177.108041]  p9_client_create+0xc85/0x1050
[  177.108361]  v9fs_session_init+0x1dd/0x1670
[  177.108706]  v9fs_mount+0xb9/0xbd0
[  177.108983]  legacy_get_tree+0x105/0x220
[  177.109303]  vfs_get_tree+0x8e/0x300
[  177.109604]  path_mount+0x1310/0x1e20
[  177.109917]  __x64_sys_mount+0x282/0x300
[  177.110251]  do_syscall_64+0x3b/0x90
[  177.110542]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  177.110894] 
[  177.111016] The buggy address belongs to the object at ffff888044a71ae0
[  177.111016]  which belongs to the cache kernfs_node_cache of size 168
[  177.111907] The buggy address is located 152 bytes inside of
[  177.111907]  168-byte region [ffff888044a71ae0, ffff888044a71b88)
[  177.112765] 
[  177.112892] The buggy address belongs to the physical page:
[  177.113285] page:00000000c762c616 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x44a71
[  177.113970] flags: 0x100000000000200(slab|node=0|zone=1)
[  177.114341] raw: 0100000000000200 0000000000000000 dead000000000122 ffff88800847b8c0
[  177.114852] raw: 0000000000000000 0000000000110011 00000001ffffffff 0000000000000000
[  177.115354] page dumped because: kasan: bad access detected
[  177.115721] 
[  177.115839] Memory state around the buggy address:
[  177.116163]  ffff888044a71a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  177.116636]  ffff888044a71a80: 00 00 00 00 fc fc fc fc fc fc fc fc fa fb fb fb
[  177.117120] >ffff888044a71b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  177.117595]                                                                 ^
[  177.118070]  ffff888044a71b80: fb fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb
[  177.118541]  ffff888044a71c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc
[  177.119015] ==================================================================
[  177.119640] Disabling lock debugging due to kernel taint
11:55:58 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2287, 0x0)

11:55:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)=0xda60, 0x8, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x401, &(0x7f0000000280)=ANY=[@ANYBLOB="6d656d6f72795f72656375727369766570726f742c6d656d6f72795f72656375727369766570726f742c626c6b696f2c6e7364656c65676174652c6d656d6f72795f72656375727369766570726f742c6370752c646576696365732c646576696365732c6e7364656c65676174652c6f626a5f757365f23d646576707473002c5875626a5f726f6c653d646576707473002c00"])
clone3(&(0x7f0000000640)={0x133363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt(r0, 0xff, 0x1, 0x0, 0x4000000)
r1 = syz_open_dev$vcsn(&(0x7f0000001700), 0x1, 0x440000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>r0, {0x3}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0xc9, &(0x7f0000000340)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@mmap}], [{@fsname={'fsname', 0x3d, 'cpu'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@dont_appraise}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, 'obj_user'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ',&])|#'}}, {@permit_directio}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '&\xbb'}}]}})
rmdir(&(0x7f00000005c0)='./file0\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x40000, 0x0)

11:55:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f00000025c0), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=n'])
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x80000006)

11:55:58 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2287, 0x0)

11:55:58 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101242, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = io_uring_setup(0x454c, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0xfffffffffffffd2c)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r2, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x10}, 0x10}], 0x1}, 0x0)

11:55:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)=0xda60, 0x8, 0x0)
mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x401, &(0x7f0000000280)=ANY=[@ANYBLOB="6d656d6f72795f72656375727369766570726f742c6d656d6f72795f72656375727369766570726f742c626c6b696f2c6e7364656c65676174652c6d656d6f72795f72656375727369766570726f742c6370752c646576696365732c646576696365732c6e7364656c65676174652c6f626a5f757365f23d646576707473002c5875626a5f726f6c653d646576707473002c00"])
clone3(&(0x7f0000000640)={0x133363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt(r0, 0xff, 0x1, 0x0, 0x4000000)
r1 = syz_open_dev$vcsn(&(0x7f0000001700), 0x1, 0x440000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>r0, {0x3}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0xc9, &(0x7f0000000340)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@mmap}], [{@fsname={'fsname', 0x3d, 'cpu'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@dont_appraise}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@fsname={'fsname', 0x3d, 'obj_user'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ',&])|#'}}, {@permit_directio}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '&\xbb'}}]}})
rmdir(&(0x7f00000005c0)='./file0\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x40000, 0x0)

[  177.154302] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5031 comm=syz-executor.7
[  177.182881] syz-executor.2: attempt to access beyond end of device
[  177.182881] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  177.194548] cgroup2: Unknown parameter 'blkio'
[  177.212154] SELinux: security_context_str_to_sid (root) failed with errno=-22
11:55:58 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r1, &(0x7f0000000140)='./file1\x00', 0x83, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000600)=""/148, 0x94)
r5 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00')
read$hiddev(r5, &(0x7f0000000040)=""/169, 0x200000e9)
r6 = memfd_secret(0x80000)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r7=>r4}, './file1\x00'})
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAW(r8, 0x5407, &(0x7f0000000000)={0x1000, 0x0, 0x0, 0x0, 0x10, "ddab93e1adcbd470"})
ioctl$VT_DISALLOCATE(r8, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r9=>0xffffffffffffffff, @out_args}, './file0\x00'})
io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x3, r9, &(0x7f0000000180)="666fd6fb7c4c8e8bf4059397e83e5ca7e7a13e2dbc305703a2c6a90bba95bb649867b6deabc9", 0x26, 0x4, 0x0, 0x3, r7}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x1000, 0xffffffffffffffff, &(0x7f0000000400)="bcf3b4f072b97e9c8e5e4369e898ea7d3b9aaf8d0633f79e97d0826da4635d97340e117a758d18b9fe61c37ab2832aa388c707228965f582216544e3d9b9e1d50f2085b8b532a2d6b3c64fef32086daf609dede175371d47064c088a9ccda4c9", 0x60, 0x1, 0x0, 0x1, r0}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x3, r8, &(0x7f00000004c0)="457e9ecce6f0e6267ca821ea89e945294a9d2c204cfc7e6ab54c199887166c29b9dd581d3b99a5afd0", 0x29, 0xffff, 0x0, 0x1, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="caab5ab60cec2af461a1c275cab0df2622d311b22d15515e3c4d26fe7dddedecf8b1d9938e233d24e9941337524c7aaaa1ee7e747d80fbc3cca3eeec", 0x3c, 0xffffffffffffffff, 0x0, 0x1, r3}])
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220)

11:55:58 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
openat(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', 0x200, 0xb1)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r0, 0x0, 0xfffffdef)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000500)=0xc00000000000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="ca1207c1b50000002e2f66696c653000"])

[  177.271017] cgroup2: Unknown parameter 'blkio'
[  177.278749] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  177.295534] loop7: detected capacity change from 0 to 4097
[  177.301666] loop2: detected capacity change from 0 to 40
[  177.342293] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5070 comm=syz-executor.7
[  177.357596] syz-executor.2: attempt to access beyond end of device
[  177.357596] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  177.803819] general protection fault, probably for non-canonical address 0x2bbebdc22011708: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  177.804603] CPU: 1 PID: 5077 Comm: systemd-udevd Tainted: G    B              6.0.0-rc3-next-20220829 #1
[  177.805543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  177.806675] RIP: 0010:qlist_free_all+0xaf/0x1a0
[  177.807162] Code: 80 4c 01 c2 0f 82 f8 00 00 00 48 c7 c0 00 00 00 80 48 2b 05 f3 3c 9b 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 d1 3c 9b 03 <48> 8b 48 08 48 89 c2 f6 c1 01 0f 85 ba 00 00 00 0f 1f 44 00 00 48
[  177.808973] RSP: 0018:ffff8880453b7c70 EFLAGS: 00010207
[  177.809506] RAX: 02bbebdc22011700 RBX: aeffff888045c055 RCX: 0000000000070003
[  177.810223] RDX: aeffff890045c055 RSI: ffffea0000240000 RDI: 0000000040000000
[  177.810930] RBP: 0000000000000000 R08: aeffff888045c055 R09: 0000000000070003
[  177.811644] R10: ffffea0000240000 R11: 0000000000000000 R12: dffffc0000000000
[  177.812356] R13: ffff8880453b7cb0 R14: 0000000000000000 R15: ffff888009002201
[  177.813065] FS:  00007fef0bc3a8c0(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  177.813877] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  177.814453] CR2: 0000561ebb9560e0 CR3: 00000000175dc000 CR4: 0000000000350ee0
[  177.815159] Call Trace:
[  177.815421]  <TASK>
[  177.815650]  ? trace_hardirqs_on+0x2d/0x110
[  177.816094]  kasan_quarantine_reduce+0x184/0x210
[  177.816581]  __kasan_slab_alloc+0x7c/0x80
[  177.817000]  kmem_cache_alloc+0x1b1/0x3e0
[  177.817418]  getname_flags.part.0+0x50/0x4f0
[  177.817895]  getname+0x8e/0xd0
[  177.818241]  do_sys_openat2+0xf9/0x4c0
[  177.818639]  ? build_open_flags+0x6f0/0x6f0
[  177.819077]  ? seccomp_notify_ioctl+0xeb0/0xeb0
[  177.819555]  __x64_sys_openat+0x13f/0x1f0
[  177.819976]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  177.820463]  ? __secure_computing+0x199/0x2f0
[  177.820922]  do_syscall_64+0x3b/0x90
[  177.821312]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  177.821842] RIP: 0033:0x7fef0c0e9d62
[  177.822215] Code: c0 f6 c2 40 75 52 89 d0 45 31 d2 25 00 00 41 00 3d 00 00 41 00 74 41 64 8b 04 25 18 00 00 00 85 c0 75 65 b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 a2 00 00 00 48 8b 4c 24 38 64 48 2b 0c 25
[  177.824022] RSP: 002b:00007fff92a1e7a0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  177.824775] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fef0c0e9d62
[  177.825485] RDX: 00000000002a0000 RSI: 0000561ebb9800d1 RDI: 0000000000000010
[  177.826203] RBP: 0000561ebb9800d0 R08: 0000561eba9878f0 R09: 0000000000000000
[  177.826911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000561ebb975684
[  177.827621] R13: 0000000000000010 R14: 0000000000000004 R15: 0000561ebb9800d1
[  177.828338]  </TASK>
[  177.828576] Modules linked in:
[  177.828992] ---[ end trace 0000000000000000 ]---
[  177.829470] RIP: 0010:qlist_free_all+0xaf/0x1a0
[  177.829980] Code: 80 4c 01 c2 0f 82 f8 00 00 00 48 c7 c0 00 00 00 80 48 2b 05 f3 3c 9b 03 48 01 d0 48 c1 e8 0c 48 c1 e0 06 48 03 05 d1 3c 9b 03 <48> 8b 48 08 48 89 c2 f6 c1 01 0f 85 ba 00 00 00 0f 1f 44 00 00 48
[  177.831809] RSP: 0018:ffff8880453b7c70 EFLAGS: 00010207
[  177.832360] RAX: 02bbebdc22011700 RBX: aeffff888045c055 RCX: 0000000000070003
[  177.833086] RDX: aeffff890045c055 RSI: ffffea0000240000 RDI: 0000000040000000
[  177.833805] RBP: 0000000000000000 R08: aeffff888045c055 R09: 0000000000070003
[  177.834532] R10: ffffea0000240000 R11: 0000000000000000 R12: dffffc0000000000
[  177.835253] R13: ffff8880453b7cb0 R14: 0000000000000000 R15: ffff888009002201
[  177.835981] FS:  00007fef0bc3a8c0(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  177.836785] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  177.837384] CR2: 0000561ebb9560e0 CR3: 00000000175dc000 CR4: 0000000000350ee0

VM DIAGNOSIS:
11:55:58  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff8880448ce0b0 RCX=ffffffff815e94a9 RDX=ffff8880440a1ac0
RSI=0000000000000008 RDI=ffff8880448ce268 RBP=ffffea0001114d00 RSP=ffff8880440b74e8
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88804438e000 R13=ffff88806ce33c00 R14=0000000000000001 R15=ffff8880448ce268
RIP=ffffffff8178d404 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b31a32000 CR3=00000000406b6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff824487a1 RDI=ffffffff8763bc20 RBP=ffffffff8763bbe0 RSP=ffff88803ecff1d0
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000032 R11=0000000000000001
R12=0000000000000032 R13=ffffffff8763bbe0 R14=0000000000000010 R15=ffffffff82448790
RIP=ffffffff824487f9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f4ae161e700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2df2e000 CR3=0000000044ebe000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000