Warning: Permanently added '[localhost]:34005' (ECDSA) to the list of known hosts. 2023/02/24 10:54:10 fuzzer started 2023/02/24 10:54:10 dialing manager at localhost:41417 syzkaller login: [ 43.755113] cgroup: Unknown subsys name 'net' [ 43.844128] cgroup: Unknown subsys name 'rlimit' 2023/02/24 10:54:25 syscalls: 2217 2023/02/24 10:54:25 code coverage: enabled 2023/02/24 10:54:25 comparison tracing: enabled 2023/02/24 10:54:25 extra coverage: enabled 2023/02/24 10:54:25 setuid sandbox: enabled 2023/02/24 10:54:25 namespace sandbox: enabled 2023/02/24 10:54:25 Android sandbox: enabled 2023/02/24 10:54:25 fault injection: enabled 2023/02/24 10:54:25 leak checking: enabled 2023/02/24 10:54:25 net packet injection: enabled 2023/02/24 10:54:25 net device setup: enabled 2023/02/24 10:54:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/02/24 10:54:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/02/24 10:54:25 USB emulation: enabled 2023/02/24 10:54:25 hci packet injection: enabled 2023/02/24 10:54:25 wifi device emulation: enabled 2023/02/24 10:54:25 802.15.4 emulation: enabled 2023/02/24 10:54:25 fetching corpus: 0, signal 0/2000 (executing program) 2023/02/24 10:54:25 fetching corpus: 30, signal 22447/25632 (executing program) 2023/02/24 10:54:25 fetching corpus: 60, signal 33076/37315 (executing program) 2023/02/24 10:54:25 fetching corpus: 74, signal 42077/47093 (executing program) 2023/02/24 10:54:25 fetching corpus: 102, signal 47311/53147 (executing program) 2023/02/24 10:54:26 fetching corpus: 152, signal 57134/63112 (executing program) 2023/02/24 10:54:26 fetching corpus: 202, signal 68798/74358 (executing program) 2023/02/24 10:54:26 fetching corpus: 251, signal 75625/81077 (executing program) 2023/02/24 10:54:26 fetching corpus: 299, signal 82357/87416 (executing program) 2023/02/24 10:54:26 fetching corpus: 349, signal 86385/91312 (executing program) 2023/02/24 10:54:27 fetching corpus: 399, signal 91779/96135 (executing program) 2023/02/24 10:54:27 fetching corpus: 449, signal 97550/101104 (executing program) 2023/02/24 10:54:27 fetching corpus: 498, signal 103277/105769 (executing program) 2023/02/24 10:54:27 fetching corpus: 548, signal 106698/108648 (executing program) 2023/02/24 10:54:28 fetching corpus: 598, signal 110018/111264 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111589/112475 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112556 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112604 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112656 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112710 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112760 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112823 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112879 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112941 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/112992 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/113028 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/113074 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111599/113131 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113182 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113237 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113307 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113374 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113433 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113499 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113555 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113620 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113683 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113731 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113783 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113859 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113920 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/113969 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114032 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114084 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114148 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114212 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114260 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111600/114314 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111601/114359 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111602/114415 (executing program) 2023/02/24 10:54:28 fetching corpus: 612, signal 111602/114480 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114638 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114682 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114728 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114788 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114825 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114875 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114898 (executing program) 2023/02/24 10:54:28 fetching corpus: 613, signal 111700/114898 (executing program) 2023/02/24 10:54:30 starting 8 fuzzer processes 10:54:30 executing program 0: sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x800) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb101, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) eventfd2(0x0, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x5) io_destroy(r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f00000014c0)='./file0\x00', 0x26e1, 0xe8) syncfs(r3) r4 = openat$incfs(r2, 0x0, 0x40000, 0x0) r5 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, r5, {0x4, 0x3}}, './file1\x00'}) ioctl$TIOCL_SELLOADLUT(r3, 0x541c, &(0x7f0000000080)={0x5, 0x6, 0xff, 0x40}) openat(r3, &(0x7f0000000180)='./file1\x00', 0x6a0003, 0x10) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000400)=ANY=[@ANYBLOB="0100000001", @ANYRES32=r0, @ANYRES64, @ANYRESDEC]) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000000200), 0x1) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) 10:54:30 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x12004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x10001, 0x0, 0xa, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x18d042, 0x1e6) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x18, r1, 0x301, 0x0, 0x0, {0x7}, [@ETHTOOL_A_PAUSE_HEADER={0x4}]}, 0x18}}, 0x0) 10:54:30 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x0, 0x0) getpid() r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0) 10:54:30 executing program 3: accept(0xffffffffffffffff, 0x0, 0x0) 10:54:30 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, 0x0, &(0x7f0000000040)) [ 63.511352] audit: type=1400 audit(1677236070.705:6): avc: denied { execmem } for pid=260 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:54:30 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) 10:54:30 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, @perf_bp={0x0}, 0x40210}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) openat(0xffffffffffffffff, &(0x7f0000001580)='./file0\x00', 0x30fc40, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000001c0)={@mcast1, 0x0, 0x2, 0x1, 0x3, 0x4, 0x7}, 0x20) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x0, 0x0, @empty}, 0x1c) connect$inet6(r1, 0x0, 0x0) sendmmsg$inet6(r1, &(0x7f0000008480), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000700)={0x0, 0x3, 0x4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) pidfd_open(0xffffffffffffffff, 0x0) sendto(0xffffffffffffffff, 0x0, 0x3e80, 0x0, 0x0, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x4e20}, 0x10) pwritev(r2, &(0x7f0000000040)=[{&(0x7f0000000140)="53f1a8a00ac617e8d2184ad96897d04f8d7224f3a8f3ede17f077ac90629929d6470a4a230aa688a45dacf8e8fb9c3169fb47a476b414ab780892f5eb359a3c9614e", 0x42}], 0x1, 0x0, 0xd2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000015c0)) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r3, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="240000000069160648ffffffffffff00f7fffffffffbffff9db2a419e29629c30095000c"], 0x24}], 0x1}, 0x0) 10:54:30 executing program 7: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x2bb6ffc506f42b59}, 0xc) [ 64.795840] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.797963] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.799837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.803698] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.805187] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.807599] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.808992] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.810267] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.811443] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.819567] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.820645] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.821738] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.836881] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.838767] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.840434] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.841632] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.844202] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 64.845811] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.846881] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 64.848404] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 64.849659] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.849753] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 64.856667] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 64.867531] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 64.871433] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 64.872621] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 64.874287] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 64.875595] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 64.876763] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 64.878474] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.880291] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.881477] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 64.882455] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.884071] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 64.885910] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 64.898134] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 64.899841] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 64.903637] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.934368] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 64.935846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 64.937926] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 64.939891] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 64.944192] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 64.945387] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 64.946978] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 64.948401] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 64.949779] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 64.951852] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.920585] Bluetooth: hci2: command 0x0409 tx timeout [ 66.920592] Bluetooth: hci3: command 0x0409 tx timeout [ 66.921836] Bluetooth: hci1: command 0x0409 tx timeout [ 66.922346] Bluetooth: hci4: command 0x0409 tx timeout [ 66.983188] Bluetooth: hci6: command 0x0409 tx timeout [ 66.984514] Bluetooth: hci5: command 0x0409 tx timeout [ 66.984625] Bluetooth: hci0: command 0x0409 tx timeout [ 67.048083] Bluetooth: hci7: command 0x0409 tx timeout [ 68.967184] Bluetooth: hci1: command 0x041b tx timeout [ 68.967206] Bluetooth: hci4: command 0x041b tx timeout [ 68.967598] Bluetooth: hci3: command 0x041b tx timeout [ 68.968059] Bluetooth: hci2: command 0x041b tx timeout [ 69.031220] Bluetooth: hci0: command 0x041b tx timeout [ 69.032200] Bluetooth: hci5: command 0x041b tx timeout [ 69.032215] Bluetooth: hci6: command 0x041b tx timeout [ 69.095102] Bluetooth: hci7: command 0x041b tx timeout [ 71.015200] Bluetooth: hci2: command 0x040f tx timeout [ 71.016222] Bluetooth: hci3: command 0x040f tx timeout [ 71.016242] Bluetooth: hci4: command 0x040f tx timeout [ 71.016590] Bluetooth: hci1: command 0x040f tx timeout [ 71.079109] Bluetooth: hci6: command 0x040f tx timeout [ 71.080219] Bluetooth: hci5: command 0x040f tx timeout [ 71.080242] Bluetooth: hci0: command 0x040f tx timeout [ 71.143083] Bluetooth: hci7: command 0x040f tx timeout [ 73.063111] Bluetooth: hci4: command 0x0419 tx timeout [ 73.063539] Bluetooth: hci1: command 0x0419 tx timeout [ 73.063917] Bluetooth: hci3: command 0x0419 tx timeout [ 73.064558] Bluetooth: hci2: command 0x0419 tx timeout [ 73.127156] Bluetooth: hci0: command 0x0419 tx timeout [ 73.127542] Bluetooth: hci5: command 0x0419 tx timeout [ 73.127909] Bluetooth: hci6: command 0x0419 tx timeout [ 73.191092] Bluetooth: hci7: command 0x0419 tx timeout [ 108.268772] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.269704] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.270841] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 108.388290] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.388893] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.390282] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 109.180444] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.181709] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.187122] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 109.373334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.373957] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.377322] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 109.808197] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.809335] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 109.811840] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 109.892752] audit: type=1400 audit(1677236117.087:7): avc: denied { open } for pid=3852 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 109.895791] audit: type=1400 audit(1677236117.087:8): avc: denied { kernel } for pid=3852 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 109.930241] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 109.931285] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) [ 109.972809] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) [ 110.046753] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.047751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.052442] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 110.087362] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.088249] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.095746] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) [ 110.146148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.147043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.149069] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) [ 110.265890] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.266735] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.268623] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 110.289457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.290601] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.292244] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) 10:55:17 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, 0x0, &(0x7f0000000040)) 10:55:17 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) request_key(&(0x7f0000000100)='id_legacy\x00', &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='\x00', 0xffffffffffffffff) [ 110.461205] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.461907] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:55:17 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, 0x0, &(0x7f0000000040)) [ 110.549214] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 110.585551] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.586216] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.588007] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 110.700571] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.701803] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.705727] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 110.917464] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 110.918676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 110.924132] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 110.986045] hrtimer: interrupt took 21901 ns [ 111.041262] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=3916 'syz-executor.2' [ 111.054287] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.055756] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.061984] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 111.695218] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26880 sclass=netlink_route_socket pid=3937 comm=syz-executor.5 [ 111.746705] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=26880 sclass=netlink_route_socket pid=3946 comm=syz-executor.5 [ 111.832749] [ 111.833017] ====================================================== [ 111.833763] WARNING: possible circular locking dependency detected [ 111.834497] 6.2.0-next-20230224 #1 Not tainted [ 111.835061] ------------------------------------------------------ [ 111.839200] syz-executor.5/273 is trying to acquire lock: [ 111.839880] ffff888018010880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80 [ 111.841181] [ 111.841181] but task is already holding lock: [ 111.841892] ffff888018010920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 111.843061] [ 111.843061] which lock already depends on the new lock. [ 111.843061] [ 111.844015] [ 111.844015] the existing dependency chain (in reverse order) is: [ 111.844908] [ 111.844908] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}: [ 111.845763] __mutex_lock+0x133/0x14a0 [ 111.846332] hci_cmd_sync_work+0x1e6/0x320 [ 111.846941] process_one_work+0xa0f/0x1790 [ 111.847548] worker_thread+0x63b/0x1260 [ 111.848133] kthread+0x2e9/0x3a0 [ 111.848622] ret_from_fork+0x2c/0x50 [ 111.849162] [ 111.849162] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}: [ 111.850176] __lock_acquire+0x2d56/0x6380 [ 111.850766] lock_acquire.part.0+0xea/0x320 [ 111.851391] __flush_work+0x109/0xd80 [ 111.851929] __cancel_work_timer+0x39c/0x4e0 [ 111.852529] hci_cmd_sync_clear+0x52/0x250 [ 111.853116] hci_unregister_dev+0xf9/0x410 [ 111.853703] vhci_release+0x80/0x100 [ 111.854239] __fput+0x263/0xa40 [ 111.854714] task_work_run+0x174/0x280 [ 111.855270] do_exit+0xad8/0x2800 [ 111.855765] do_group_exit+0xd4/0x2a0 [ 111.856292] __x64_sys_exit_group+0x3e/0x50 [ 111.856882] do_syscall_64+0x3f/0x90 [ 111.857408] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 111.858086] [ 111.858086] other info that might help us debug this: [ 111.858086] [ 111.859056] Possible unsafe locking scenario: [ 111.859056] [ 111.859804] CPU0 CPU1 [ 111.860388] ---- ---- [ 111.860963] lock(&hdev->cmd_sync_work_lock); [ 111.861532] lock((work_completion)(&hdev->cmd_sync_work)); [ 111.862524] lock(&hdev->cmd_sync_work_lock); [ 111.863375] lock((work_completion)(&hdev->cmd_sync_work)); [ 111.864079] [ 111.864079] *** DEADLOCK *** [ 111.864079] [ 111.864802] 1 lock held by syz-executor.5/273: [ 111.865364] #0: ffff888018010920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 111.866568] [ 111.866568] stack backtrace: [ 111.867110] CPU: 0 PID: 273 Comm: syz-executor.5 Not tainted 6.2.0-next-20230224 #1 [ 111.868024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 111.868999] Call Trace: [ 111.869313] [ 111.869597] dump_stack_lvl+0x91/0xf0 [ 111.870071] check_noncircular+0x263/0x2e0 [ 111.870609] ? __pfx_check_noncircular+0x10/0x10 [ 111.871212] ? save_trace+0x285/0xcb0 [ 111.871719] ? __pfx_register_lock_class+0x10/0x10 [ 111.872345] __lock_acquire+0x2d56/0x6380 [ 111.872881] ? __pfx___lock_acquire+0x10/0x10 [ 111.873454] ? __pfx___lock_acquire+0x10/0x10 [ 111.874021] ? __pfx___lock_acquire+0x10/0x10 [ 111.874595] lock_acquire.part.0+0xea/0x320 [ 111.875141] ? __flush_work+0xdd/0xd80 [ 111.875641] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 111.876265] ? __flush_work+0xdd/0xd80 [ 111.876760] ? rcu_read_lock_sched_held+0x42/0x80 [ 111.877359] ? trace_lock_acquire+0x170/0x1e0 [ 111.877925] ? __flush_work+0xdd/0xd80 [ 111.878428] ? lock_acquire+0x32/0xc0 [ 111.878918] ? __flush_work+0xdd/0xd80 [ 111.879427] __flush_work+0x109/0xd80 [ 111.879922] ? __flush_work+0xdd/0xd80 [ 111.880418] ? __pfx_mark_lock.part.0+0x10/0x10 [ 111.881008] ? __pfx___flush_work+0x10/0x10 [ 111.881555] ? lock_acquire.part.0+0xea/0x320 [ 111.882127] ? hci_cmd_sync_clear+0x45/0x250 [ 111.882679] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 111.883311] ? hci_cmd_sync_clear+0x45/0x250 [ 111.883863] ? rcu_read_lock_sched_held+0x42/0x80 [ 111.884459] ? trace_lock_acquire+0x170/0x1e0 [ 111.885031] ? lock_is_held_type+0x9f/0x120 [ 111.885578] ? mark_held_locks+0x9e/0xe0 [ 111.886097] __cancel_work_timer+0x39c/0x4e0 [ 111.886643] ? __pfx___cancel_work_timer+0x10/0x10 [ 111.887242] ? __cancel_work_timer+0x2aa/0x4e0 [ 111.887814] ? __pfx___cancel_work_timer+0x10/0x10 [ 111.888414] ? lock_release+0x1e3/0x710 [ 111.888923] ? __pfx_lock_release+0x10/0x10 [ 111.889466] ? do_raw_write_lock+0x11e/0x3b0 [ 111.890015] ? __pfx_vhci_release+0x10/0x10 [ 111.890553] hci_cmd_sync_clear+0x52/0x250 [ 111.891083] ? __pfx_vhci_release+0x10/0x10 [ 111.891644] hci_unregister_dev+0xf9/0x410 [ 111.892174] vhci_release+0x80/0x100 [ 111.892657] __fput+0x263/0xa40 [ 111.893084] task_work_run+0x174/0x280 [ 111.893575] ? __pfx_task_work_run+0x10/0x10 [ 111.894127] ? switch_task_namespaces+0xb1/0xd0 [ 111.894698] ? kmem_cache_free+0xff/0x510 [ 111.895215] do_exit+0xad8/0x2800 [ 111.895655] ? lock_release+0x1e3/0x710 [ 111.896169] ? __pfx_lock_release+0x10/0x10 [ 111.896708] ? do_raw_spin_lock+0x125/0x270 [ 111.897238] ? __pfx_do_exit+0x10/0x10 [ 111.897726] do_group_exit+0xd4/0x2a0 [ 111.898203] __x64_sys_exit_group+0x3e/0x50 [ 111.898728] do_syscall_64+0x3f/0x90 [ 111.899192] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 111.899834] RIP: 0033:0x7fbc42473b19 [ 111.900296] Code: Unable to access opcode bytes at 0x7fbc42473aef. [ 111.901027] RSP: 002b:00007fffcfaf5c48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 111.901925] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbc42473b19 [ 111.902772] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000043 [ 111.903631] RBP: 0000000000000000 R08: 0000000000000014 R09: 0000000000000003 [ 111.904471] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbc424ce0c3 [ 111.905315] R13: 0000000000000000 R14: 0000000000000014 R15: 00007fffcfaf5e30 [ 111.906163] [ 114.288600] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 114.290505] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 114.293120] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 114.295269] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 114.296528] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 114.297995] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 116.327081] Bluetooth: hci7: command 0x0409 tx timeout [ 118.375837] Bluetooth: hci7: command 0x041b tx timeout [ 120.423086] Bluetooth: hci7: command 0x040f tx timeout VM DIAGNOSIS: 10:55:19 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff88803746f190 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002d R11=0000000000000001 R12=000000000000002d R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850 RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe7035bdb000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe7035bd9000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005558e6c40f40 CR3=0000000016ee6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00524f52524500400000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff813a4f10 RBX=ffffffff813a4c60 RCX=ffff88803cdefab8 RDX=1ffff110079bdf4e RSI=ffff88803cdefab0 RDI=ffffffff813a4f10 RBP=ffff88803cdefab0 RSP=ffff88803cdefa18 R8 =0000000000000001 R9 =ffff88803cdefa58 R10=0000000000038001 R11=0000000000000001 R12=ffff88803cdefae0 R13=0000000000000000 R14=ffff888037461ac0 R15=ffff88803cdefe90 RIP=ffffffff810bd68d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff7098008c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0f50cf3000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0f50cf1000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff709c68590 CR3=000000003a98c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffff00ffffffffffff0000000000 XMM02=58e6c37bc00000000000006b636f6c62 XMM03=000000000f00000000000034706f6f6c XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=ffffffffffff00000000000000000000 XMM06=00000000000065616124242f6867632f XMM07=00000000000000000000000000000000 XMM08=75253a75252f73252f7665642f007261 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000