Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:18635' (ECDSA) to the list of known hosts. 2022/10/05 12:14:35 fuzzer started 2022/10/05 12:14:36 dialing manager at localhost:37193 syzkaller login: [ 35.790619] cgroup: Unknown subsys name 'net' [ 35.896698] cgroup: Unknown subsys name 'rlimit' 2022/10/05 12:14:51 syscalls: 2215 2022/10/05 12:14:51 code coverage: enabled 2022/10/05 12:14:51 comparison tracing: enabled 2022/10/05 12:14:51 extra coverage: enabled 2022/10/05 12:14:51 setuid sandbox: enabled 2022/10/05 12:14:51 namespace sandbox: enabled 2022/10/05 12:14:51 Android sandbox: enabled 2022/10/05 12:14:51 fault injection: enabled 2022/10/05 12:14:51 leak checking: enabled 2022/10/05 12:14:51 net packet injection: enabled 2022/10/05 12:14:51 net device setup: enabled 2022/10/05 12:14:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/05 12:14:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/05 12:14:51 USB emulation: enabled 2022/10/05 12:14:51 hci packet injection: enabled 2022/10/05 12:14:51 wifi device emulation: failed to parse kernel version (6.0.0-next-20221005) 2022/10/05 12:14:51 802.15.4 emulation: enabled 2022/10/05 12:14:51 fetching corpus: 0, signal 0/2000 (executing program) 2022/10/05 12:14:51 fetching corpus: 50, signal 28624/32016 (executing program) 2022/10/05 12:14:51 fetching corpus: 100, signal 41251/45891 (executing program) 2022/10/05 12:14:51 fetching corpus: 150, signal 46934/52898 (executing program) 2022/10/05 12:14:51 fetching corpus: 200, signal 51852/59043 (executing program) 2022/10/05 12:14:51 fetching corpus: 250, signal 59819/67941 (executing program) 2022/10/05 12:14:51 fetching corpus: 300, signal 64762/73827 (executing program) 2022/10/05 12:14:52 fetching corpus: 350, signal 68155/78245 (executing program) 2022/10/05 12:14:52 fetching corpus: 400, signal 71741/82748 (executing program) 2022/10/05 12:14:52 fetching corpus: 450, signal 74236/86220 (executing program) 2022/10/05 12:14:52 fetching corpus: 500, signal 75733/88754 (executing program) 2022/10/05 12:14:52 fetching corpus: 550, signal 80865/94489 (executing program) 2022/10/05 12:14:52 fetching corpus: 600, signal 83196/97610 (executing program) 2022/10/05 12:14:52 fetching corpus: 650, signal 84905/100212 (executing program) 2022/10/05 12:14:52 fetching corpus: 700, signal 89391/105093 (executing program) 2022/10/05 12:14:52 fetching corpus: 750, signal 95480/111129 (executing program) 2022/10/05 12:14:53 fetching corpus: 800, signal 97079/113465 (executing program) 2022/10/05 12:14:53 fetching corpus: 850, signal 99118/116086 (executing program) 2022/10/05 12:14:53 fetching corpus: 900, signal 101462/118903 (executing program) 2022/10/05 12:14:53 fetching corpus: 950, signal 103054/121079 (executing program) 2022/10/05 12:14:53 fetching corpus: 1000, signal 104493/123095 (executing program) 2022/10/05 12:14:53 fetching corpus: 1050, signal 106165/125284 (executing program) 2022/10/05 12:14:53 fetching corpus: 1100, signal 107487/127171 (executing program) 2022/10/05 12:14:53 fetching corpus: 1150, signal 109354/129381 (executing program) 2022/10/05 12:14:53 fetching corpus: 1200, signal 111116/131539 (executing program) 2022/10/05 12:14:54 fetching corpus: 1250, signal 113625/134189 (executing program) 2022/10/05 12:14:54 fetching corpus: 1300, signal 116085/136757 (executing program) 2022/10/05 12:14:54 fetching corpus: 1350, signal 118027/138915 (executing program) 2022/10/05 12:14:54 fetching corpus: 1400, signal 121045/141777 (executing program) 2022/10/05 12:14:54 fetching corpus: 1450, signal 123038/143849 (executing program) 2022/10/05 12:14:54 fetching corpus: 1500, signal 124767/145702 (executing program) 2022/10/05 12:14:54 fetching corpus: 1550, signal 125755/147034 (executing program) 2022/10/05 12:14:54 fetching corpus: 1600, signal 127053/148488 (executing program) 2022/10/05 12:14:54 fetching corpus: 1650, signal 129021/150331 (executing program) 2022/10/05 12:14:55 fetching corpus: 1700, signal 130395/151831 (executing program) 2022/10/05 12:14:55 fetching corpus: 1750, signal 131519/153177 (executing program) 2022/10/05 12:14:55 fetching corpus: 1800, signal 133146/154747 (executing program) 2022/10/05 12:14:55 fetching corpus: 1850, signal 134905/156373 (executing program) 2022/10/05 12:14:55 fetching corpus: 1900, signal 136064/157620 (executing program) 2022/10/05 12:14:55 fetching corpus: 1950, signal 137174/158805 (executing program) 2022/10/05 12:14:55 fetching corpus: 2000, signal 138210/159969 (executing program) 2022/10/05 12:14:55 fetching corpus: 2050, signal 138992/160887 (executing program) 2022/10/05 12:14:55 fetching corpus: 2100, signal 140174/162074 (executing program) 2022/10/05 12:14:55 fetching corpus: 2150, signal 140968/162997 (executing program) 2022/10/05 12:14:56 fetching corpus: 2200, signal 141825/163929 (executing program) 2022/10/05 12:14:56 fetching corpus: 2250, signal 142697/164921 (executing program) 2022/10/05 12:14:56 fetching corpus: 2300, signal 143911/166027 (executing program) 2022/10/05 12:14:56 fetching corpus: 2350, signal 145298/167193 (executing program) 2022/10/05 12:14:56 fetching corpus: 2400, signal 146856/168391 (executing program) 2022/10/05 12:14:56 fetching corpus: 2450, signal 148120/169415 (executing program) 2022/10/05 12:14:56 fetching corpus: 2500, signal 149944/170681 (executing program) 2022/10/05 12:14:56 fetching corpus: 2550, signal 151188/171620 (executing program) 2022/10/05 12:14:56 fetching corpus: 2600, signal 152448/172550 (executing program) 2022/10/05 12:14:57 fetching corpus: 2650, signal 153860/173541 (executing program) 2022/10/05 12:14:57 fetching corpus: 2700, signal 154996/174373 (executing program) 2022/10/05 12:14:57 fetching corpus: 2750, signal 156188/175226 (executing program) 2022/10/05 12:14:57 fetching corpus: 2800, signal 157283/176005 (executing program) 2022/10/05 12:14:57 fetching corpus: 2850, signal 157894/176566 (executing program) 2022/10/05 12:14:57 fetching corpus: 2900, signal 159145/177385 (executing program) 2022/10/05 12:14:57 fetching corpus: 2950, signal 160246/178025 (executing program) 2022/10/05 12:14:57 fetching corpus: 3000, signal 162363/179079 (executing program) 2022/10/05 12:14:57 fetching corpus: 3050, signal 163351/179657 (executing program) 2022/10/05 12:14:58 fetching corpus: 3100, signal 164175/180212 (executing program) 2022/10/05 12:14:58 fetching corpus: 3150, signal 165047/180782 (executing program) 2022/10/05 12:14:58 fetching corpus: 3200, signal 165828/181301 (executing program) 2022/10/05 12:14:58 fetching corpus: 3250, signal 166742/181817 (executing program) 2022/10/05 12:14:58 fetching corpus: 3300, signal 167471/182251 (executing program) 2022/10/05 12:14:58 fetching corpus: 3350, signal 168555/182773 (executing program) 2022/10/05 12:14:58 fetching corpus: 3400, signal 169311/183192 (executing program) 2022/10/05 12:14:58 fetching corpus: 3450, signal 169833/183532 (executing program) 2022/10/05 12:14:58 fetching corpus: 3500, signal 170179/183817 (executing program) 2022/10/05 12:14:58 fetching corpus: 3550, signal 170987/184210 (executing program) 2022/10/05 12:14:59 fetching corpus: 3600, signal 171550/184519 (executing program) 2022/10/05 12:14:59 fetching corpus: 3650, signal 172385/184875 (executing program) 2022/10/05 12:14:59 fetching corpus: 3700, signal 172637/185102 (executing program) 2022/10/05 12:14:59 fetching corpus: 3750, signal 173739/185481 (executing program) 2022/10/05 12:14:59 fetching corpus: 3800, signal 174171/185739 (executing program) 2022/10/05 12:14:59 fetching corpus: 3850, signal 174696/185976 (executing program) 2022/10/05 12:14:59 fetching corpus: 3900, signal 175857/186292 (executing program) 2022/10/05 12:14:59 fetching corpus: 3950, signal 176875/186662 (executing program) 2022/10/05 12:14:59 fetching corpus: 4000, signal 177377/186854 (executing program) 2022/10/05 12:15:00 fetching corpus: 4050, signal 177874/187039 (executing program) 2022/10/05 12:15:00 fetching corpus: 4100, signal 178760/187268 (executing program) 2022/10/05 12:15:00 fetching corpus: 4150, signal 179491/187449 (executing program) 2022/10/05 12:15:00 fetching corpus: 4200, signal 179992/187586 (executing program) 2022/10/05 12:15:00 fetching corpus: 4250, signal 180314/187706 (executing program) 2022/10/05 12:15:00 fetching corpus: 4300, signal 181554/187876 (executing program) 2022/10/05 12:15:00 fetching corpus: 4350, signal 182103/187985 (executing program) 2022/10/05 12:15:00 fetching corpus: 4400, signal 182400/188060 (executing program) 2022/10/05 12:15:00 fetching corpus: 4450, signal 183022/188147 (executing program) 2022/10/05 12:15:01 fetching corpus: 4500, signal 183694/188232 (executing program) 2022/10/05 12:15:01 fetching corpus: 4550, signal 184193/188317 (executing program) 2022/10/05 12:15:01 fetching corpus: 4553, signal 184231/188360 (executing program) 2022/10/05 12:15:01 fetching corpus: 4553, signal 184231/188378 (executing program) 2022/10/05 12:15:01 fetching corpus: 4553, signal 184231/188378 (executing program) 2022/10/05 12:15:03 starting 8 fuzzer processes 12:15:03 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$nbd(r0, &(0x7f0000000040)={0x67446698, 0x0, 0x0, 0x0, 0x0, "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"}, 0x1001) 12:15:03 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000580)) 12:15:03 executing program 2: sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x70, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x33}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast1}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @private2}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @remote}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x70}, 0x1, 0x0, 0x0, 0x24004851}, 0x20000000) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@GTPA_O_TEI={0x8}, @GTPA_O_TEI={0x8, 0x9, 0x3}, @GTPA_PEER_ADDRESS={0x8, 0x4, @initdev={0xac, 0x1e, 0x0, 0x0}}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast1}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x240008c4) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x48, 0x0, 0x0, 0x70bd2d, 0x25dfdbfc, {}, [@FOU_ATTR_TYPE={0x5}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @broadcast}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @empty}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @rand_addr=0x64010101}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r0) sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_MGMT_A_FAMILY={0x6}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4010}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000500)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000540)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_io_uring_setup(0x22c, &(0x7f0000000580)={0x0, 0xd89d, 0x10, 0x3, 0xcc}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000600)=0x0, &(0x7f0000000640)) syz_io_uring_submit(r3, 0x0, &(0x7f0000000680), 0x10000) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) sendmsg$NL80211_CMD_ASSOCIATE(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000700), 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x30, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x1}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x0, {0x8, 0x0, 0x7}}}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x400c0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000900)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000800)="36f3d4a4b9ccdb0c65f0b6d40bc3be74074134cc80f995059d9cdd68d6a2c0933c85c7edf447401d4d6b38f301b5ab8b5e890b0ce364b70c1f4e3a72084dd972cf38445880e6334ac34e7fdb132d68ed3f62d1ce1461b892ac07274bf1e2fa2de4a27145362bd074bdb1a92e8057b226497a4268940277953468da9b7463f8395d33b520ac1790fddf5059f288c391ebaf8886ac3376007288b1fd6a477e74cf08e58808e305421a860a0229db7bbeabcbf60c17abbe504fbe0d765e6cfe4562b2a273302b71b530f481e702a1c8b792c85b00bae6aed5a6481a", 0xda, r2}, 0x68) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000980)) r5 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000a00), 0x80000, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f00000009c0), r5) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f0000000a40)) ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) syz_genetlink_get_family_id$nl80211(0x0, r4) 12:15:03 executing program 3: io_setup(0x8001, &(0x7f00000000c0)) 12:15:03 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r0, &(0x7f00000000c0)='9', 0x1, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x4000) [ 63.322735] audit: type=1400 audit(1664972103.921:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:15:03 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) close_range(r0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0) dup3(r0, r1, 0x0) 12:15:03 executing program 6: syz_emit_ethernet(0x32, &(0x7f0000000040)={@local, @random="7700c24d06a7", @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "b50bbe", 0x0, "1b2813"}}}}}}, 0x0) 12:15:03 executing program 7: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x4f) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/41, &(0x7f00000000c0)=0x29) [ 64.716476] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.718810] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.720508] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.722371] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.725466] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.727450] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.728819] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.728907] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.731239] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.733063] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.734494] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.737699] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.739434] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 64.754955] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.756478] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 64.756885] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.759616] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.761684] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.763134] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.766825] Bluetooth: hci1: HCI_REQ-0x0c1a [ 64.776529] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.779958] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 64.782897] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 64.784362] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 64.784802] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.790137] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 64.790329] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.794734] Bluetooth: hci5: HCI_REQ-0x0c1a [ 64.797309] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 64.798478] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.799521] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 64.804842] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 64.806841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 64.807339] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 64.809804] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 64.809959] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 64.812710] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 64.814400] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.821111] Bluetooth: hci4: HCI_REQ-0x0c1a [ 64.822200] Bluetooth: hci2: HCI_REQ-0x0c1a [ 64.827643] Bluetooth: hci3: HCI_REQ-0x0c1a [ 64.846949] Bluetooth: hci0: HCI_REQ-0x0c1a [ 64.966386] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 64.994424] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 64.994602] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 64.997316] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 65.002840] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 65.005340] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 65.009313] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 65.012512] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 65.020501] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 65.021789] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 65.028270] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 65.029526] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 65.035984] Bluetooth: hci6: HCI_REQ-0x0c1a [ 65.044409] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.783859] Bluetooth: hci1: command 0x0409 tx timeout [ 66.846149] Bluetooth: hci2: command 0x0409 tx timeout [ 66.846189] Bluetooth: hci5: command 0x0409 tx timeout [ 66.910195] Bluetooth: hci4: command 0x0409 tx timeout [ 66.911171] Bluetooth: hci0: command 0x0409 tx timeout [ 66.912039] Bluetooth: hci3: command 0x0409 tx timeout [ 67.102185] Bluetooth: hci6: command 0x0409 tx timeout [ 67.103280] Bluetooth: hci7: command 0x0409 tx timeout [ 68.831064] Bluetooth: hci1: command 0x041b tx timeout [ 68.894274] Bluetooth: hci5: command 0x041b tx timeout [ 68.895074] Bluetooth: hci2: command 0x041b tx timeout [ 68.958874] Bluetooth: hci3: command 0x041b tx timeout [ 68.959846] Bluetooth: hci0: command 0x041b tx timeout [ 68.960584] Bluetooth: hci4: command 0x041b tx timeout [ 69.150187] Bluetooth: hci7: command 0x041b tx timeout [ 69.150916] Bluetooth: hci6: command 0x041b tx timeout [ 70.878051] Bluetooth: hci1: command 0x040f tx timeout [ 70.942056] Bluetooth: hci2: command 0x040f tx timeout [ 70.942448] Bluetooth: hci5: command 0x040f tx timeout [ 71.006128] Bluetooth: hci4: command 0x040f tx timeout [ 71.006509] Bluetooth: hci0: command 0x040f tx timeout [ 71.006859] Bluetooth: hci3: command 0x040f tx timeout [ 71.198101] Bluetooth: hci6: command 0x040f tx timeout [ 71.198535] Bluetooth: hci7: command 0x040f tx timeout [ 72.926102] Bluetooth: hci1: command 0x0419 tx timeout [ 72.990112] Bluetooth: hci5: command 0x0419 tx timeout [ 72.990783] Bluetooth: hci2: command 0x0419 tx timeout [ 73.054846] Bluetooth: hci3: command 0x0419 tx timeout [ 73.055588] Bluetooth: hci0: command 0x0419 tx timeout [ 73.056316] Bluetooth: hci4: command 0x0419 tx timeout [ 73.246135] Bluetooth: hci7: command 0x0419 tx timeout [ 73.246858] Bluetooth: hci6: command 0x0419 tx timeout 12:15:59 executing program 6: prctl$PR_SET_PDEATHSIG(0x1, 0x41) 12:15:59 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=ANY=[]) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000140)='./file0\x00', r1, 0x0) setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000003440)={{}, {}, [], {}, [], {0x10, 0x7}}, 0x24, 0x0) openat$incfs(r0, &(0x7f0000000240)='.log\x00', 0x8c0, 0x0) 12:15:59 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x45, &(0x7f00000000c0), 0x4) 12:15:59 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x45, &(0x7f00000000c0), 0x4) 12:15:59 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x45, &(0x7f00000000c0), 0x4) 12:15:59 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x45, &(0x7f00000000c0), 0x4) 12:15:59 executing program 6: clock_nanosleep(0x6, 0x0, 0x0, 0x0) 12:15:59 executing program 6: syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001a40)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e7d, 0x31ce, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) [ 119.433339] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 119.442154] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 119.944732] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 119.945879] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 126.053176] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 126.057185] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 126.058970] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 126.069858] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 126.073268] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 126.074805] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 126.078619] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 126.081258] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 126.083093] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 126.084599] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 126.089307] Bluetooth: hci0: HCI_REQ-0x0c1a [ 126.098592] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 126.099845] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 126.106600] Bluetooth: hci7: HCI_REQ-0x0c1a [ 128.094115] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 128.159104] Bluetooth: hci7: command 0x0409 tx timeout [ 128.159125] Bluetooth: hci0: command 0x0409 tx timeout [ 130.206083] Bluetooth: hci7: command 0x041b tx timeout [ 130.207041] Bluetooth: hci0: command 0x041b tx timeout [ 130.360674] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 130.363394] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 130.365210] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 130.367308] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 130.368911] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 130.369793] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 130.375568] Bluetooth: hci1: HCI_REQ-0x0c1a [ 132.254070] Bluetooth: hci0: command 0x040f tx timeout [ 132.254175] Bluetooth: hci7: command 0x040f tx timeout [ 132.382113] Bluetooth: hci1: command 0x0409 tx timeout [ 134.302043] Bluetooth: hci7: command 0x0419 tx timeout [ 134.302468] Bluetooth: hci0: command 0x0419 tx timeout [ 134.431043] Bluetooth: hci1: command 0x041b tx timeout [ 136.478038] Bluetooth: hci1: command 0x040f tx timeout [ 138.527078] Bluetooth: hci1: command 0x0419 tx timeout [ 143.475363] audit: type=1400 audit(1664972184.074:7): avc: denied { open } for pid=5141 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.476738] audit: type=1400 audit(1664972184.074:8): avc: denied { kernel } for pid=5141 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.482451] ------------[ cut here ]------------ [ 143.482471] [ 143.482475] ====================================================== [ 143.482478] WARNING: possible circular locking dependency detected [ 143.482482] 6.0.0-next-20221005 #1 Not tainted [ 143.482488] ------------------------------------------------------ [ 143.482491] syz-executor.7/5143 is trying to acquire lock: [ 143.482497] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 143.482540] [ 143.482540] but task is already holding lock: [ 143.482542] ffff888035584820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.482569] [ 143.482569] which lock already depends on the new lock. [ 143.482569] [ 143.482572] [ 143.482572] the existing dependency chain (in reverse order) is: [ 143.482576] [ 143.482576] -> #3 (&ctx->lock){....}-{2:2}: [ 143.482589] _raw_spin_lock+0x2a/0x40 [ 143.482601] __perf_event_task_sched_out+0x53b/0x18d0 [ 143.482613] __schedule+0xedd/0x2470 [ 143.482627] schedule+0xda/0x1b0 [ 143.482641] futex_wait_queue+0xf5/0x1e0 [ 143.482654] futex_wait+0x28e/0x690 [ 143.482665] do_futex+0x2ff/0x380 [ 143.482674] __x64_sys_futex+0x1c6/0x4d0 [ 143.482684] do_syscall_64+0x3b/0x90 [ 143.482694] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.482707] [ 143.482707] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 143.482720] _raw_spin_lock_nested+0x30/0x40 [ 143.482732] raw_spin_rq_lock_nested+0x1e/0x30 [ 143.482745] task_fork_fair+0x63/0x4d0 [ 143.482762] sched_cgroup_fork+0x3d0/0x540 [ 143.482776] copy_process+0x4183/0x6e20 [ 143.482787] kernel_clone+0xe7/0x890 [ 143.482797] user_mode_thread+0xad/0xf0 [ 143.482807] rest_init+0x24/0x250 [ 143.482819] arch_call_rest_init+0xf/0x14 [ 143.482839] start_kernel+0x4c6/0x4eb [ 143.482856] secondary_startup_64_no_verify+0xe0/0xeb [ 143.482870] [ 143.482870] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 143.482883] _raw_spin_lock_irqsave+0x39/0x60 [ 143.482895] try_to_wake_up+0xab/0x1930 [ 143.482908] up+0x75/0xb0 [ 143.482922] __up_console_sem+0x6e/0x80 [ 143.482938] console_unlock+0x46a/0x590 [ 143.482954] vprintk_emit+0x1bd/0x560 [ 143.482970] vprintk+0x84/0xa0 [ 143.482986] _printk+0xba/0xf1 [ 143.482998] kauditd_hold_skb.cold+0x3f/0x4e [ 143.483016] kauditd_send_queue+0x233/0x290 [ 143.483031] kauditd_thread+0x5f9/0x9c0 [ 143.483045] kthread+0x2ed/0x3a0 [ 143.483062] ret_from_fork+0x22/0x30 [ 143.483075] [ 143.483075] -> #0 ((console_sem).lock){....}-{2:2}: [ 143.483090] __lock_acquire+0x2a02/0x5e70 [ 143.483107] lock_acquire+0x1a2/0x530 [ 143.483123] _raw_spin_lock_irqsave+0x39/0x60 [ 143.483134] down_trylock+0xe/0x70 [ 143.483150] __down_trylock_console_sem+0x3b/0xd0 [ 143.483166] vprintk_emit+0x16b/0x560 [ 143.483182] vprintk+0x84/0xa0 [ 143.483197] _printk+0xba/0xf1 [ 143.483208] report_bug.cold+0x72/0xab [ 143.483225] handle_bug+0x3c/0x70 [ 143.483234] exc_invalid_op+0x14/0x50 [ 143.483244] asm_exc_invalid_op+0x16/0x20 [ 143.483257] group_sched_out.part.0+0x2c7/0x460 [ 143.483275] ctx_sched_out+0x8f1/0xc10 [ 143.483291] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.483302] __schedule+0xedd/0x2470 [ 143.483316] schedule+0xda/0x1b0 [ 143.483330] futex_wait_queue+0xf5/0x1e0 [ 143.483341] futex_wait+0x28e/0x690 [ 143.483351] do_futex+0x2ff/0x380 [ 143.483360] __x64_sys_futex+0x1c6/0x4d0 [ 143.483370] do_syscall_64+0x3b/0x90 [ 143.483380] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.483393] [ 143.483393] other info that might help us debug this: [ 143.483393] [ 143.483395] Chain exists of: [ 143.483395] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 143.483395] [ 143.483410] Possible unsafe locking scenario: [ 143.483410] [ 143.483412] CPU0 CPU1 [ 143.483415] ---- ---- [ 143.483417] lock(&ctx->lock); [ 143.483422] lock(&rq->__lock); [ 143.483429] lock(&ctx->lock); [ 143.483435] lock((console_sem).lock); [ 143.483440] [ 143.483440] *** DEADLOCK *** [ 143.483440] [ 143.483442] 2 locks held by syz-executor.7/5143: [ 143.483449] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 143.483479] #1: ffff888035584820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.483506] [ 143.483506] stack backtrace: [ 143.483508] CPU: 0 PID: 5143 Comm: syz-executor.7 Not tainted 6.0.0-next-20221005 #1 [ 143.483521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 143.483527] Call Trace: [ 143.483531] [ 143.483534] dump_stack_lvl+0x8b/0xb3 [ 143.483554] check_noncircular+0x263/0x2e0 [ 143.483571] ? format_decode+0x26c/0xb50 [ 143.483588] ? print_circular_bug+0x450/0x450 [ 143.483606] ? simple_strtoul+0x30/0x30 [ 143.483621] ? __lockdep_reset_lock+0x180/0x180 [ 143.483639] ? format_decode+0x26c/0xb50 [ 143.483657] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 143.483675] __lock_acquire+0x2a02/0x5e70 [ 143.483697] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 143.483720] lock_acquire+0x1a2/0x530 [ 143.483737] ? down_trylock+0xe/0x70 [ 143.483755] ? lock_release+0x750/0x750 [ 143.483774] ? find_held_lock+0x2c/0x110 [ 143.483791] ? vprintk+0x84/0xa0 [ 143.483809] _raw_spin_lock_irqsave+0x39/0x60 [ 143.483821] ? down_trylock+0xe/0x70 [ 143.483838] down_trylock+0xe/0x70 [ 143.483855] ? vprintk+0x84/0xa0 [ 143.483872] __down_trylock_console_sem+0x3b/0xd0 [ 143.483890] vprintk_emit+0x16b/0x560 [ 143.483909] vprintk+0x84/0xa0 [ 143.483927] _printk+0xba/0xf1 [ 143.483939] ? record_print_text.cold+0x16/0x16 [ 143.483954] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 143.483969] ? lock_downgrade+0x6d0/0x6d0 [ 143.483987] ? report_bug.cold+0x66/0xab [ 143.484006] ? group_sched_out.part.0+0x2c7/0x460 [ 143.484025] report_bug.cold+0x72/0xab [ 143.484045] handle_bug+0x3c/0x70 [ 143.484055] exc_invalid_op+0x14/0x50 [ 143.484065] asm_exc_invalid_op+0x16/0x20 [ 143.484079] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 143.484100] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 143.484111] RSP: 0018:ffff8880309d78f8 EFLAGS: 00010006 [ 143.484120] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 143.484128] RDX: ffff88803e3c8000 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 143.484135] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 143.484143] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888035584800 [ 143.484150] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 143.484161] ? group_sched_out.part.0+0x2c7/0x460 [ 143.484181] ? group_sched_out.part.0+0x2c7/0x460 [ 143.484201] ctx_sched_out+0x8f1/0xc10 [ 143.484220] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.484234] ? lock_is_held_type+0xd7/0x130 [ 143.484249] ? __perf_cgroup_move+0x160/0x160 [ 143.484259] ? set_next_entity+0x304/0x550 [ 143.484279] ? lock_is_held_type+0xd7/0x130 [ 143.484294] __schedule+0xedd/0x2470 [ 143.484311] ? io_schedule_timeout+0x150/0x150 [ 143.484328] ? futex_wait_setup+0x166/0x230 [ 143.484342] schedule+0xda/0x1b0 [ 143.484358] futex_wait_queue+0xf5/0x1e0 [ 143.484370] futex_wait+0x28e/0x690 [ 143.484383] ? futex_wait_setup+0x230/0x230 [ 143.484396] ? wake_up_q+0x8b/0xf0 [ 143.484409] ? do_raw_spin_unlock+0x4f/0x220 [ 143.484428] ? futex_wake+0x158/0x490 [ 143.484443] ? lock_downgrade+0x6d0/0x6d0 [ 143.484460] ? lock_is_held_type+0xd7/0x130 [ 143.484475] do_futex+0x2ff/0x380 [ 143.484487] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 143.484499] ? ktime_get+0x153/0x1f0 [ 143.484516] __x64_sys_futex+0x1c6/0x4d0 [ 143.484528] ? hrtimer_interrupt+0x5b0/0x770 [ 143.484541] ? __x64_sys_futex_time32+0x480/0x480 [ 143.484554] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.484569] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.484585] do_syscall_64+0x3b/0x90 [ 143.484596] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.484610] RIP: 0033:0x7f4e5b314b19 [ 143.484618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 143.484629] RSP: 002b:00007f4e5888a218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 143.484639] RAX: ffffffffffffffda RBX: 00007f4e5b427f68 RCX: 00007f4e5b314b19 [ 143.484647] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4e5b427f68 [ 143.484654] RBP: 00007f4e5b427f60 R08: 0000000000000000 R09: 0000000000000000 [ 143.484661] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4e5b427f6c [ 143.484669] R13: 00007fffc9a7400f R14: 00007f4e5888a300 R15: 0000000000022000 [ 143.484681] [ 143.546343] WARNING: CPU: 0 PID: 5143 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 143.546984] Modules linked in: [ 143.547210] CPU: 0 PID: 5143 Comm: syz-executor.7 Not tainted 6.0.0-next-20221005 #1 [ 143.547742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 143.548297] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 143.548673] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 143.549896] RSP: 0018:ffff8880309d78f8 EFLAGS: 00010006 [ 143.550257] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 143.550754] RDX: ffff88803e3c8000 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 143.551240] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 143.551732] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888035584800 [ 143.552212] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 143.552698] FS: 00007f4e5888a700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 143.553243] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 143.553636] CR2: 00007fb89a3873c8 CR3: 000000001e2f8000 CR4: 0000000000350ef0 [ 143.554126] Call Trace: [ 143.554307] [ 143.554472] ctx_sched_out+0x8f1/0xc10 [ 143.554750] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.555106] ? lock_is_held_type+0xd7/0x130 [ 143.555410] ? __perf_cgroup_move+0x160/0x160 [ 143.555718] ? set_next_entity+0x304/0x550 [ 143.556018] ? lock_is_held_type+0xd7/0x130 [ 143.556322] __schedule+0xedd/0x2470 [ 143.556588] ? io_schedule_timeout+0x150/0x150 [ 143.556910] ? futex_wait_setup+0x166/0x230 [ 143.557213] schedule+0xda/0x1b0 [ 143.557459] futex_wait_queue+0xf5/0x1e0 [ 143.557746] futex_wait+0x28e/0x690 [ 143.558009] ? futex_wait_setup+0x230/0x230 [ 143.558314] ? wake_up_q+0x8b/0xf0 [ 143.558588] ? do_raw_spin_unlock+0x4f/0x220 [ 143.558901] ? futex_wake+0x158/0x490 [ 143.559179] ? lock_downgrade+0x6d0/0x6d0 [ 143.559477] ? lock_is_held_type+0xd7/0x130 [ 143.559782] do_futex+0x2ff/0x380 [ 143.560031] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 143.560431] ? ktime_get+0x153/0x1f0 [ 143.560704] __x64_sys_futex+0x1c6/0x4d0 [ 143.560985] ? hrtimer_interrupt+0x5b0/0x770 [ 143.561299] ? __x64_sys_futex_time32+0x480/0x480 [ 143.561632] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.561995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.562352] do_syscall_64+0x3b/0x90 [ 143.562621] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.562988] RIP: 0033:0x7f4e5b314b19 [ 143.563247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 143.564469] RSP: 002b:00007f4e5888a218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 143.564987] RAX: ffffffffffffffda RBX: 00007f4e5b427f68 RCX: 00007f4e5b314b19 [ 143.565474] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4e5b427f68 [ 143.565967] RBP: 00007f4e5b427f60 R08: 0000000000000000 R09: 0000000000000000 [ 143.566455] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4e5b427f6c [ 143.566938] R13: 00007fffc9a7400f R14: 00007f4e5888a300 R15: 0000000000022000 [ 143.567428] [ 143.567595] irq event stamp: 1016 [ 143.567831] hardirqs last enabled at (1015): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 143.568510] hardirqs last disabled at (1016): [] __schedule+0x1225/0x2470 [ 143.569081] softirqs last enabled at (630): [] __irq_exit_rcu+0x11b/0x180 [ 143.569672] softirqs last disabled at (37): [] __irq_exit_rcu+0x11b/0x180 [ 143.570251] ---[ end trace 0000000000000000 ]--- VM DIAGNOSIS: 12:16:24 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bda91 RDI=ffffffff8765c9a0 RBP=ffffffff8765c960 RSP=ffff8880309d7340 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8765c960 R14=0000000000000010 R15=ffffffff823bda80 RIP=ffffffff823bdae9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4e5888a700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb89a3873c8 CR3=000000001e2f8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4e5b3fb7c000007f4e5b3fb7c8 XMM02=00007f4e5b3fb7e000007f4e5b3fb7c0 XMM03=00007f4e5b3fb7c800007f4e5b3fb7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ce3f080 RCX=0000000000000000 RDX=ffff888020a5d040 RSI=ffffffff813bcaa7 RDI=0000000000000005 RBP=0000000000000000 RSP=ffff88801d52f958 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9c7e11 R14=ffff88806ce3f088 R15=0000000000000001 RIP=ffffffff813bcaa9 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555556e6400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4e5b420ddc CR3=000000001e2f8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4e5b3fb7c000007f4e5b3fb7c8 XMM02=00007f4e5b3fb7e000007f4e5b3fb7c0 XMM03=00007f4e5b3fb7c800007f4e5b3fb7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000