Warning: Permanently added '[localhost]:21961' (ECDSA) to the list of known hosts. 2023/02/24 11:40:48 fuzzer started 2023/02/24 11:40:49 dialing manager at localhost:41417 syzkaller login: [ 36.982576] cgroup: Unknown subsys name 'net' [ 37.044629] cgroup: Unknown subsys name 'rlimit' 2023/02/24 11:41:02 syscalls: 2217 2023/02/24 11:41:02 code coverage: enabled 2023/02/24 11:41:02 comparison tracing: enabled 2023/02/24 11:41:02 extra coverage: enabled 2023/02/24 11:41:02 setuid sandbox: enabled 2023/02/24 11:41:02 namespace sandbox: enabled 2023/02/24 11:41:02 Android sandbox: enabled 2023/02/24 11:41:02 fault injection: enabled 2023/02/24 11:41:02 leak checking: enabled 2023/02/24 11:41:02 net packet injection: enabled 2023/02/24 11:41:02 net device setup: enabled 2023/02/24 11:41:02 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/02/24 11:41:02 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/02/24 11:41:02 USB emulation: enabled 2023/02/24 11:41:02 hci packet injection: enabled 2023/02/24 11:41:02 wifi device emulation: enabled 2023/02/24 11:41:02 802.15.4 emulation: enabled 2023/02/24 11:41:02 fetching corpus: 0, signal 0/2000 (executing program) 2023/02/24 11:41:02 fetching corpus: 40, signal 28290/31888 (executing program) 2023/02/24 11:41:02 fetching corpus: 84, signal 45891/50953 (executing program) 2023/02/24 11:41:02 fetching corpus: 133, signal 59401/65731 (executing program) 2023/02/24 11:41:02 fetching corpus: 183, signal 66474/74143 (executing program) 2023/02/24 11:41:03 fetching corpus: 233, signal 71656/80629 (executing program) 2023/02/24 11:41:03 fetching corpus: 283, signal 80511/90531 (executing program) 2023/02/24 11:41:03 fetching corpus: 333, signal 87738/98776 (executing program) 2023/02/24 11:41:03 fetching corpus: 383, signal 92511/104620 (executing program) 2023/02/24 11:41:03 fetching corpus: 433, signal 97622/110678 (executing program) 2023/02/24 11:41:03 fetching corpus: 482, signal 100513/114687 (executing program) 2023/02/24 11:41:03 fetching corpus: 532, signal 105075/120184 (executing program) 2023/02/24 11:41:04 fetching corpus: 582, signal 109396/125361 (executing program) 2023/02/24 11:41:04 fetching corpus: 632, signal 112496/129407 (executing program) 2023/02/24 11:41:04 fetching corpus: 682, signal 116022/133787 (executing program) 2023/02/24 11:41:04 fetching corpus: 732, signal 119005/137617 (executing program) 2023/02/24 11:41:04 fetching corpus: 782, signal 122246/141660 (executing program) 2023/02/24 11:41:04 fetching corpus: 832, signal 125221/145421 (executing program) 2023/02/24 11:41:04 fetching corpus: 882, signal 127987/148953 (executing program) 2023/02/24 11:41:05 fetching corpus: 932, signal 130119/151928 (executing program) 2023/02/24 11:41:05 fetching corpus: 982, signal 131414/154125 (executing program) 2023/02/24 11:41:05 fetching corpus: 1032, signal 133662/157050 (executing program) 2023/02/24 11:41:05 fetching corpus: 1082, signal 135245/159435 (executing program) 2023/02/24 11:41:05 fetching corpus: 1132, signal 137566/162443 (executing program) 2023/02/24 11:41:05 fetching corpus: 1180, signal 139048/164674 (executing program) 2023/02/24 11:41:05 fetching corpus: 1230, signal 141312/167510 (executing program) 2023/02/24 11:41:05 fetching corpus: 1280, signal 143495/170312 (executing program) 2023/02/24 11:41:05 fetching corpus: 1330, signal 146051/173355 (executing program) 2023/02/24 11:41:06 fetching corpus: 1379, signal 147401/175396 (executing program) 2023/02/24 11:41:06 fetching corpus: 1429, signal 149439/177950 (executing program) 2023/02/24 11:41:06 fetching corpus: 1479, signal 150885/180067 (executing program) 2023/02/24 11:41:06 fetching corpus: 1529, signal 152522/182275 (executing program) 2023/02/24 11:41:06 fetching corpus: 1579, signal 154183/184485 (executing program) 2023/02/24 11:41:06 fetching corpus: 1629, signal 155711/186599 (executing program) 2023/02/24 11:41:06 fetching corpus: 1679, signal 157116/188608 (executing program) 2023/02/24 11:41:06 fetching corpus: 1729, signal 158807/190793 (executing program) 2023/02/24 11:41:07 fetching corpus: 1779, signal 160280/192786 (executing program) 2023/02/24 11:41:07 fetching corpus: 1829, signal 162078/195028 (executing program) 2023/02/24 11:41:07 fetching corpus: 1878, signal 163312/196800 (executing program) 2023/02/24 11:41:07 fetching corpus: 1928, signal 164428/198476 (executing program) 2023/02/24 11:41:07 fetching corpus: 1977, signal 165529/200096 (executing program) 2023/02/24 11:41:07 fetching corpus: 2026, signal 166940/201923 (executing program) 2023/02/24 11:41:07 fetching corpus: 2076, signal 168476/203812 (executing program) 2023/02/24 11:41:07 fetching corpus: 2126, signal 169670/205443 (executing program) 2023/02/24 11:41:07 fetching corpus: 2175, signal 171075/207227 (executing program) 2023/02/24 11:41:08 fetching corpus: 2225, signal 172329/208875 (executing program) 2023/02/24 11:41:08 fetching corpus: 2275, signal 173348/210338 (executing program) 2023/02/24 11:41:08 fetching corpus: 2325, signal 174190/211658 (executing program) 2023/02/24 11:41:08 fetching corpus: 2375, signal 176019/213622 (executing program) 2023/02/24 11:41:08 fetching corpus: 2424, signal 177111/215151 (executing program) 2023/02/24 11:41:08 fetching corpus: 2473, signal 178272/216703 (executing program) 2023/02/24 11:41:08 fetching corpus: 2523, signal 179438/218192 (executing program) 2023/02/24 11:41:08 fetching corpus: 2573, signal 180298/219529 (executing program) 2023/02/24 11:41:09 fetching corpus: 2623, signal 181259/220853 (executing program) 2023/02/24 11:41:09 fetching corpus: 2673, signal 182228/222221 (executing program) 2023/02/24 11:41:09 fetching corpus: 2723, signal 183172/223491 (executing program) 2023/02/24 11:41:09 fetching corpus: 2773, signal 184234/224823 (executing program) 2023/02/24 11:41:09 fetching corpus: 2822, signal 185124/226094 (executing program) 2023/02/24 11:41:09 fetching corpus: 2872, signal 185897/227254 (executing program) 2023/02/24 11:41:09 fetching corpus: 2922, signal 187170/228673 (executing program) 2023/02/24 11:41:10 fetching corpus: 2972, signal 188525/230126 (executing program) 2023/02/24 11:41:10 fetching corpus: 3022, signal 189715/231477 (executing program) 2023/02/24 11:41:10 fetching corpus: 3072, signal 190962/232886 (executing program) 2023/02/24 11:41:10 fetching corpus: 3122, signal 193615/234966 (executing program) 2023/02/24 11:41:10 fetching corpus: 3172, signal 194798/236242 (executing program) 2023/02/24 11:41:10 fetching corpus: 3222, signal 195479/237262 (executing program) 2023/02/24 11:41:10 fetching corpus: 3272, signal 196179/238245 (executing program) 2023/02/24 11:41:10 fetching corpus: 3321, signal 197388/239508 (executing program) 2023/02/24 11:41:10 fetching corpus: 3371, signal 198236/240541 (executing program) 2023/02/24 11:41:10 fetching corpus: 3421, signal 198964/241547 (executing program) 2023/02/24 11:41:11 fetching corpus: 3471, signal 199547/242458 (executing program) 2023/02/24 11:41:11 fetching corpus: 3520, signal 200540/243574 (executing program) 2023/02/24 11:41:11 fetching corpus: 3569, signal 201438/244599 (executing program) 2023/02/24 11:41:11 fetching corpus: 3618, signal 202883/245881 (executing program) 2023/02/24 11:41:11 fetching corpus: 3667, signal 203618/246814 (executing program) 2023/02/24 11:41:11 fetching corpus: 3717, signal 204475/247808 (executing program) 2023/02/24 11:41:11 fetching corpus: 3767, signal 204998/248643 (executing program) 2023/02/24 11:41:11 fetching corpus: 3817, signal 205964/249653 (executing program) 2023/02/24 11:41:12 fetching corpus: 3865, signal 206871/250627 (executing program) 2023/02/24 11:41:12 fetching corpus: 3915, signal 207556/251509 (executing program) 2023/02/24 11:41:12 fetching corpus: 3964, signal 208630/252521 (executing program) 2023/02/24 11:41:12 fetching corpus: 4014, signal 210002/253658 (executing program) 2023/02/24 11:41:12 fetching corpus: 4064, signal 210850/254554 (executing program) 2023/02/24 11:41:12 fetching corpus: 4113, signal 211692/255441 (executing program) 2023/02/24 11:41:12 fetching corpus: 4163, signal 212531/256304 (executing program) 2023/02/24 11:41:12 fetching corpus: 4213, signal 213223/257065 (executing program) 2023/02/24 11:41:13 fetching corpus: 4261, signal 214166/257980 (executing program) 2023/02/24 11:41:13 fetching corpus: 4311, signal 214649/258681 (executing program) 2023/02/24 11:41:13 fetching corpus: 4360, signal 215458/259475 (executing program) 2023/02/24 11:41:13 fetching corpus: 4409, signal 215796/260105 (executing program) 2023/02/24 11:41:13 fetching corpus: 4459, signal 216343/260774 (executing program) 2023/02/24 11:41:13 fetching corpus: 4509, signal 217148/261567 (executing program) 2023/02/24 11:41:13 fetching corpus: 4558, signal 218406/262523 (executing program) 2023/02/24 11:41:13 fetching corpus: 4608, signal 219035/263187 (executing program) 2023/02/24 11:41:14 fetching corpus: 4658, signal 219759/263888 (executing program) 2023/02/24 11:41:14 fetching corpus: 4708, signal 220435/264590 (executing program) 2023/02/24 11:41:14 fetching corpus: 4758, signal 221045/265231 (executing program) 2023/02/24 11:41:14 fetching corpus: 4807, signal 221629/265889 (executing program) 2023/02/24 11:41:14 fetching corpus: 4857, signal 222138/266512 (executing program) 2023/02/24 11:41:14 fetching corpus: 4906, signal 222447/267036 (executing program) 2023/02/24 11:41:14 fetching corpus: 4956, signal 223128/267648 (executing program) 2023/02/24 11:41:14 fetching corpus: 5006, signal 223773/268279 (executing program) 2023/02/24 11:41:15 fetching corpus: 5055, signal 224665/268952 (executing program) 2023/02/24 11:41:15 fetching corpus: 5105, signal 225232/269550 (executing program) 2023/02/24 11:41:15 fetching corpus: 5154, signal 225913/270201 (executing program) 2023/02/24 11:41:15 fetching corpus: 5204, signal 226426/270769 (executing program) 2023/02/24 11:41:15 fetching corpus: 5254, signal 227021/271370 (executing program) 2023/02/24 11:41:15 fetching corpus: 5304, signal 227599/271938 (executing program) 2023/02/24 11:41:15 fetching corpus: 5354, signal 228164/272474 (executing program) 2023/02/24 11:41:16 fetching corpus: 5404, signal 228727/273023 (executing program) 2023/02/24 11:41:16 fetching corpus: 5452, signal 229321/273558 (executing program) 2023/02/24 11:41:16 fetching corpus: 5502, signal 229880/274057 (executing program) 2023/02/24 11:41:16 fetching corpus: 5552, signal 230422/274545 (executing program) 2023/02/24 11:41:16 fetching corpus: 5602, signal 231031/275036 (executing program) 2023/02/24 11:41:16 fetching corpus: 5651, signal 231757/275539 (executing program) 2023/02/24 11:41:16 fetching corpus: 5701, signal 232195/275990 (executing program) 2023/02/24 11:41:17 fetching corpus: 5750, signal 232924/276481 (executing program) 2023/02/24 11:41:17 fetching corpus: 5800, signal 233581/276997 (executing program) 2023/02/24 11:41:17 fetching corpus: 5850, signal 233945/277409 (executing program) 2023/02/24 11:41:17 fetching corpus: 5900, signal 234707/277910 (executing program) 2023/02/24 11:41:17 fetching corpus: 5950, signal 235093/278351 (executing program) 2023/02/24 11:41:17 fetching corpus: 6000, signal 235732/278779 (executing program) 2023/02/24 11:41:17 fetching corpus: 6050, signal 236170/279204 (executing program) 2023/02/24 11:41:17 fetching corpus: 6100, signal 236570/279600 (executing program) 2023/02/24 11:41:17 fetching corpus: 6150, signal 237060/280011 (executing program) 2023/02/24 11:41:18 fetching corpus: 6200, signal 237488/280401 (executing program) 2023/02/24 11:41:18 fetching corpus: 6250, signal 237928/280815 (executing program) 2023/02/24 11:41:18 fetching corpus: 6300, signal 238451/281183 (executing program) 2023/02/24 11:41:18 fetching corpus: 6350, signal 238889/281586 (executing program) 2023/02/24 11:41:18 fetching corpus: 6398, signal 239526/281985 (executing program) 2023/02/24 11:41:18 fetching corpus: 6448, signal 240006/282354 (executing program) 2023/02/24 11:41:18 fetching corpus: 6498, signal 240430/282714 (executing program) 2023/02/24 11:41:19 fetching corpus: 6548, signal 241041/283076 (executing program) 2023/02/24 11:41:19 fetching corpus: 6597, signal 241420/283397 (executing program) 2023/02/24 11:41:19 fetching corpus: 6646, signal 242072/283719 (executing program) 2023/02/24 11:41:19 fetching corpus: 6695, signal 243683/284111 (executing program) 2023/02/24 11:41:19 fetching corpus: 6744, signal 244327/284453 (executing program) 2023/02/24 11:41:19 fetching corpus: 6792, signal 244862/284802 (executing program) 2023/02/24 11:41:19 fetching corpus: 6841, signal 245436/285098 (executing program) 2023/02/24 11:41:19 fetching corpus: 6889, signal 245878/285395 (executing program) 2023/02/24 11:41:19 fetching corpus: 6939, signal 246334/285675 (executing program) 2023/02/24 11:41:20 fetching corpus: 6989, signal 246685/285950 (executing program) 2023/02/24 11:41:20 fetching corpus: 7038, signal 247285/286241 (executing program) 2023/02/24 11:41:20 fetching corpus: 7087, signal 247855/286289 (executing program) 2023/02/24 11:41:20 fetching corpus: 7136, signal 248342/286289 (executing program) 2023/02/24 11:41:20 fetching corpus: 7182, signal 248834/286289 (executing program) 2023/02/24 11:41:20 fetching corpus: 7230, signal 249109/286289 (executing program) 2023/02/24 11:41:20 fetching corpus: 7279, signal 249606/286289 (executing program) 2023/02/24 11:41:20 fetching corpus: 7329, signal 249948/286289 (executing program) 2023/02/24 11:41:21 fetching corpus: 7379, signal 250361/286294 (executing program) 2023/02/24 11:41:21 fetching corpus: 7428, signal 250861/286294 (executing program) 2023/02/24 11:41:21 fetching corpus: 7477, signal 251320/286314 (executing program) 2023/02/24 11:41:21 fetching corpus: 7527, signal 251588/286314 (executing program) 2023/02/24 11:41:21 fetching corpus: 7576, signal 252035/286314 (executing program) 2023/02/24 11:41:21 fetching corpus: 7626, signal 252596/286314 (executing program) 2023/02/24 11:41:21 fetching corpus: 7676, signal 253122/286314 (executing program) 2023/02/24 11:41:22 fetching corpus: 7724, signal 253472/286314 (executing program) 2023/02/24 11:41:22 fetching corpus: 7773, signal 253961/286314 (executing program) 2023/02/24 11:41:22 fetching corpus: 7823, signal 254621/286318 (executing program) 2023/02/24 11:41:22 fetching corpus: 7872, signal 254953/286333 (executing program) 2023/02/24 11:41:22 fetching corpus: 7922, signal 255256/286333 (executing program) 2023/02/24 11:41:22 fetching corpus: 7971, signal 255871/286347 (executing program) 2023/02/24 11:41:22 fetching corpus: 8021, signal 256222/286347 (executing program) 2023/02/24 11:41:22 fetching corpus: 8070, signal 256616/286347 (executing program) 2023/02/24 11:41:23 fetching corpus: 8120, signal 257225/286347 (executing program) 2023/02/24 11:41:23 fetching corpus: 8169, signal 257552/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8219, signal 257946/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8268, signal 258569/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8318, signal 259104/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8368, signal 259524/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8417, signal 259858/286349 (executing program) 2023/02/24 11:41:23 fetching corpus: 8467, signal 260239/286349 (executing program) 2023/02/24 11:41:24 fetching corpus: 8516, signal 260625/286353 (executing program) 2023/02/24 11:41:24 fetching corpus: 8566, signal 261137/286353 (executing program) 2023/02/24 11:41:24 fetching corpus: 8615, signal 261447/286353 (executing program) 2023/02/24 11:41:24 fetching corpus: 8663, signal 261936/286358 (executing program) 2023/02/24 11:41:24 fetching corpus: 8713, signal 262319/286358 (executing program) 2023/02/24 11:41:24 fetching corpus: 8763, signal 262650/286358 (executing program) 2023/02/24 11:41:24 fetching corpus: 8812, signal 263147/286358 (executing program) 2023/02/24 11:41:26 fetching corpus: 8862, signal 263478/286364 (executing program) 2023/02/24 11:41:26 fetching corpus: 8905, signal 263833/286440 (executing program) 2023/02/24 11:41:26 fetching corpus: 8955, signal 264113/286440 (executing program) 2023/02/24 11:41:26 fetching corpus: 9005, signal 264644/286440 (executing program) 2023/02/24 11:41:26 fetching corpus: 9054, signal 264911/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9103, signal 265238/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9153, signal 265633/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9200, signal 265962/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9248, signal 266306/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9297, signal 266836/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9347, signal 267211/286440 (executing program) 2023/02/24 11:41:27 fetching corpus: 9396, signal 267552/286440 (executing program) 2023/02/24 11:41:28 fetching corpus: 9445, signal 268237/286440 (executing program) 2023/02/24 11:41:28 fetching corpus: 9494, signal 268641/286460 (executing program) 2023/02/24 11:41:28 fetching corpus: 9544, signal 268970/286460 (executing program) 2023/02/24 11:41:28 fetching corpus: 9593, signal 269407/286468 (executing program) 2023/02/24 11:41:28 fetching corpus: 9643, signal 269837/286468 (executing program) 2023/02/24 11:41:28 fetching corpus: 9692, signal 270177/286468 (executing program) 2023/02/24 11:41:28 fetching corpus: 9742, signal 270576/286468 (executing program) 2023/02/24 11:41:28 fetching corpus: 9792, signal 270950/286468 (executing program) 2023/02/24 11:41:29 fetching corpus: 9840, signal 271281/286468 (executing program) 2023/02/24 11:41:29 fetching corpus: 9886, signal 271497/286471 (executing program) 2023/02/24 11:41:29 fetching corpus: 9935, signal 271848/286471 (executing program) 2023/02/24 11:41:29 fetching corpus: 9984, signal 272069/286471 (executing program) 2023/02/24 11:41:29 fetching corpus: 10034, signal 272366/286471 (executing program) 2023/02/24 11:41:29 fetching corpus: 10084, signal 272747/286471 (executing program) 2023/02/24 11:41:29 fetching corpus: 10133, signal 273035/286471 (executing program) 2023/02/24 11:41:30 fetching corpus: 10181, signal 273445/286471 (executing program) 2023/02/24 11:41:30 fetching corpus: 10231, signal 273782/286476 (executing program) 2023/02/24 11:41:30 fetching corpus: 10280, signal 274136/286476 (executing program) 2023/02/24 11:41:30 fetching corpus: 10330, signal 274479/286476 (executing program) 2023/02/24 11:41:30 fetching corpus: 10380, signal 274826/286476 (executing program) 2023/02/24 11:41:30 fetching corpus: 10430, signal 275175/286476 (executing program) 2023/02/24 11:41:30 fetching corpus: 10479, signal 275597/286485 (executing program) 2023/02/24 11:41:30 fetching corpus: 10528, signal 276069/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10578, signal 276471/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10627, signal 276733/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10676, signal 277027/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10726, signal 277297/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10775, signal 277663/286485 (executing program) 2023/02/24 11:41:31 fetching corpus: 10823, signal 277911/286487 (executing program) 2023/02/24 11:41:31 fetching corpus: 10872, signal 278200/286487 (executing program) 2023/02/24 11:41:31 fetching corpus: 10921, signal 278420/286488 (executing program) 2023/02/24 11:41:31 fetching corpus: 10971, signal 278797/286488 (executing program) 2023/02/24 11:41:32 fetching corpus: 11019, signal 279144/286493 (executing program) 2023/02/24 11:41:32 fetching corpus: 11067, signal 279454/286493 (executing program) 2023/02/24 11:41:32 fetching corpus: 11117, signal 279717/286493 (executing program) 2023/02/24 11:41:32 fetching corpus: 11164, signal 279988/286493 (executing program) 2023/02/24 11:41:32 fetching corpus: 11213, signal 280212/286496 (executing program) 2023/02/24 11:41:32 fetching corpus: 11261, signal 280395/286496 (executing program) 2023/02/24 11:41:32 fetching corpus: 11308, signal 280633/286524 (executing program) 2023/02/24 11:41:32 fetching corpus: 11357, signal 281001/286524 (executing program) 2023/02/24 11:41:33 fetching corpus: 11407, signal 281355/286524 (executing program) 2023/02/24 11:41:33 fetching corpus: 11456, signal 281650/286524 (executing program) 2023/02/24 11:41:33 fetching corpus: 11506, signal 281896/286524 (executing program) 2023/02/24 11:41:33 fetching corpus: 11554, signal 282239/286524 (executing program) 2023/02/24 11:41:33 fetching corpus: 11603, signal 282586/286528 (executing program) 2023/02/24 11:41:33 fetching corpus: 11652, signal 282941/286535 (executing program) 2023/02/24 11:41:33 fetching corpus: 11686, signal 283115/286538 (executing program) 2023/02/24 11:41:33 fetching corpus: 11687, signal 283116/286539 (executing program) 2023/02/24 11:41:33 fetching corpus: 11687, signal 283116/286539 (executing program) 2023/02/24 11:41:36 starting 8 fuzzer processes 11:41:36 executing program 0: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000680), 0xa00, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x6, 0x0) 11:41:36 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$inet(r0, &(0x7f0000002640)={&(0x7f0000002400)={0x2, 0x0, @empty}, 0x10, &(0x7f0000002600)=[{&(0x7f0000002440)="0589", 0x2}], 0x1}, 0x48804) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @broadcast}}}], 0x20}, 0x0) 11:41:36 executing program 2: r0 = openat$random(0xffffffffffffff9c, &(0x7f00000092c0), 0x0, 0x0) ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000009600)={0x0, 0x1, "99"}) 11:41:36 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='attr\x00') getdents64(r0, &(0x7f0000000440)=""/147, 0x93) [ 84.235989] audit: type=1400 audit(1677238896.503:6): avc: denied { execmem } for pid=259 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:41:36 executing program 4: pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) keyctl$get_security(0x11, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$fscrypt_v1(&(0x7f00000001c0), &(0x7f0000000200)={'fscrypt:', @desc3}, 0x0, 0x0, 0x0) perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f00000005c0), 0x0, 0x0, 0x0, r0) r1 = add_key$user(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)="8b", 0x1, r0) keyctl$KEYCTL_MOVE(0x1e, r1, r0, 0xfffffffffffffffe, 0x0) ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000340)) 11:41:36 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_int(r0, 0x0, 0x33, 0x0, &(0x7f0000000080)) 11:41:36 executing program 6: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup3(r1, r0, 0x0) 11:41:36 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lsetxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x0, 0x0) [ 85.564439] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.566482] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.568624] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.572467] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.574607] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.576535] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.615423] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.617298] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.619338] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.621598] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.623741] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.631636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.633384] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.634701] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.636103] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.641585] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.643625] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.644957] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.656745] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.681093] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.698436] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 85.699463] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 85.700024] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 85.701670] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.702735] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.703249] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.704951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.710101] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 85.714092] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 85.717606] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 85.723777] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 85.725051] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 85.732330] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 85.733948] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.735100] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 85.739740] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 85.741261] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 85.764690] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 85.766775] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 85.769658] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 85.771531] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 85.773006] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.645486] Bluetooth: hci0: command 0x0409 tx timeout [ 87.707879] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 87.709098] Bluetooth: hci3: command 0x0409 tx timeout [ 87.710118] [ 87.710276] ====================================================== [ 87.710792] WARNING: possible circular locking dependency detected [ 87.711246] 6.2.0-next-20230224 #1 Not tainted [ 87.711620] ------------------------------------------------------ [ 87.712290] syz-executor.7/275 is trying to acquire lock: [ 87.716096] ffff888016e00880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80 [ 87.717128] [ 87.717128] but task is already holding lock: [ 87.717717] ffff888016e00920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 87.718659] [ 87.718659] which lock already depends on the new lock. [ 87.718659] [ 87.719439] [ 87.719439] the existing dependency chain (in reverse order) is: [ 87.720136] [ 87.720136] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}: [ 87.720815] __mutex_lock+0x133/0x14a0 [ 87.721268] hci_cmd_sync_work+0x1e6/0x320 [ 87.721738] process_one_work+0xa0f/0x1790 [ 87.722223] worker_thread+0x63b/0x1260 [ 87.722681] kthread+0x2e9/0x3a0 [ 87.723073] ret_from_fork+0x2c/0x50 [ 87.723492] [ 87.723492] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}: [ 87.724280] __lock_acquire+0x2d56/0x6380 [ 87.724752] lock_acquire.part.0+0xea/0x320 [ 87.725237] __flush_work+0x109/0xd80 [ 87.725673] __cancel_work_timer+0x39c/0x4e0 [ 87.726156] hci_cmd_sync_clear+0x52/0x250 [ 87.726654] hci_unregister_dev+0xf9/0x410 [ 87.727123] vhci_release+0x80/0x100 [ 87.727511] __fput+0x263/0xa40 [ 87.727838] task_work_run+0x174/0x280 [ 87.728217] do_exit+0xad8/0x2800 [ 87.728551] do_group_exit+0xd4/0x2a0 [ 87.728915] __x64_sys_exit_group+0x3e/0x50 [ 87.729319] do_syscall_64+0x3f/0x90 [ 87.729670] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 87.730141] [ 87.730141] other info that might help us debug this: [ 87.730141] [ 87.730797] Possible unsafe locking scenario: [ 87.730797] [ 87.731278] CPU0 CPU1 [ 87.731653] ---- ---- [ 87.732024] lock(&hdev->cmd_sync_work_lock); [ 87.732406] lock((work_completion)(&hdev->cmd_sync_work)); [ 87.733073] lock(&hdev->cmd_sync_work_lock); [ 87.733641] lock((work_completion)(&hdev->cmd_sync_work)); [ 87.734108] [ 87.734108] *** DEADLOCK *** [ 87.734108] [ 87.734607] 1 lock held by syz-executor.7/275: [ 87.734988] #0: ffff888016e00920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 87.735818] [ 87.735818] stack backtrace: [ 87.736180] CPU: 1 PID: 275 Comm: syz-executor.7 Not tainted 6.2.0-next-20230224 #1 [ 87.736794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 87.737466] Call Trace: [ 87.737680] [ 87.737874] dump_stack_lvl+0x91/0xf0 [ 87.738221] check_noncircular+0x263/0x2e0 [ 87.738586] ? __pfx_check_noncircular+0x10/0x10 [ 87.738985] ? __pfx_mark_lock.part.0+0x10/0x10 [ 87.739405] __lock_acquire+0x2d56/0x6380 [ 87.739767] ? __pfx___lock_acquire+0x10/0x10 [ 87.740155] ? __pfx_register_lock_class+0x10/0x10 [ 87.740577] lock_acquire.part.0+0xea/0x320 [ 87.740944] ? __flush_work+0xdd/0xd80 [ 87.741286] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 87.741699] ? __flush_work+0xdd/0xd80 [ 87.742031] ? rcu_read_lock_sched_held+0x42/0x80 [ 87.742437] ? trace_lock_acquire+0x170/0x1e0 [ 87.742824] ? __flush_work+0xdd/0xd80 [ 87.743157] ? lock_acquire+0x32/0xc0 [ 87.743489] ? __flush_work+0xdd/0xd80 [ 87.743826] __flush_work+0x109/0xd80 [ 87.744154] ? __flush_work+0xdd/0xd80 [ 87.744485] ? __pfx_mark_lock.part.0+0x10/0x10 [ 87.744887] ? __pfx___flush_work+0x10/0x10 [ 87.745246] ? lock_acquire.part.0+0xea/0x320 [ 87.745631] ? hci_cmd_sync_clear+0x45/0x250 [ 87.746006] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 87.746447] ? hci_cmd_sync_clear+0x45/0x250 [ 87.746809] ? rcu_read_lock_sched_held+0x42/0x80 [ 87.747207] ? trace_lock_acquire+0x170/0x1e0 [ 87.747583] ? lock_is_held_type+0x9f/0x120 [ 87.747949] ? mark_held_locks+0x9e/0xe0 [ 87.748295] __cancel_work_timer+0x39c/0x4e0 [ 87.748662] ? __pfx___cancel_work_timer+0x10/0x10 [ 87.749072] ? __cancel_work_timer+0x2aa/0x4e0 [ 87.749448] ? __pfx___cancel_work_timer+0x10/0x10 [ 87.749848] ? lock_release+0x1e3/0x710 [ 87.750199] ? __pfx_lock_release+0x10/0x10 [ 87.750562] ? do_raw_write_lock+0x11e/0x3b0 [ 87.750937] ? __pfx_vhci_release+0x10/0x10 [ 87.751293] hci_cmd_sync_clear+0x52/0x250 [ 87.751652] ? __pfx_vhci_release+0x10/0x10 [ 87.752013] hci_unregister_dev+0xf9/0x410 [ 87.752368] vhci_release+0x80/0x100 [ 87.752691] __fput+0x263/0xa40 [ 87.752984] task_work_run+0x174/0x280 [ 87.753312] ? __pfx_task_work_run+0x10/0x10 [ 87.753677] ? do_raw_spin_unlock+0x53/0x220 [ 87.754046] do_exit+0xad8/0x2800 [ 87.754360] ? lock_release+0x1e3/0x710 [ 87.754704] ? __pfx_lock_release+0x10/0x10 [ 87.755072] ? do_raw_spin_lock+0x125/0x270 [ 87.755410] ? __pfx_do_exit+0x10/0x10 [ 87.755727] do_group_exit+0xd4/0x2a0 [ 87.756038] __x64_sys_exit_group+0x3e/0x50 [ 87.756381] do_syscall_64+0x3f/0x90 [ 87.756696] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 87.757099] RIP: 0033:0x7f77f85c5b19 [ 87.757402] Code: Unable to access opcode bytes at 0x7f77f85c5aef. [ 87.757869] RSP: 002b:00007ffcd8c79db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 87.758461] RAX: ffffffffffffffda RBX: 00007ffcd8c7a598 RCX: 00007f77f85c5b19 [ 87.759003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043 [ 87.759548] RBP: 0000000000000000 R08: 0000000000000026 R09: 00007ffcd8c7a598 [ 87.760088] R10: 0000000000000020 R11: 0000000000000246 R12: 00007f77f861f233 [ 87.760625] R13: 0000000000000002 R14: 0000000000000000 R15: 00000000000000f8 [ 87.761170] [ 87.771857] Bluetooth: hci4: command 0x0409 tx timeout [ 87.772301] Bluetooth: hci6: command 0x0409 tx timeout [ 87.772707] Bluetooth: hci1: command 0x0409 tx timeout [ 87.773491] Bluetooth: hci2: command 0x0409 tx timeout [ 87.836824] Bluetooth: hci7: command 0x0409 tx timeout [ 89.691917] Bluetooth: hci0: command 0x041b tx timeout [ 89.755927] Bluetooth: hci3: command 0x041b tx timeout [ 89.819871] Bluetooth: hci2: command 0x041b tx timeout [ 89.820387] Bluetooth: hci1: command 0x041b tx timeout [ 89.820899] Bluetooth: hci6: command 0x041b tx timeout [ 89.821393] Bluetooth: hci4: command 0x041b tx timeout [ 89.883909] Bluetooth: hci7: command 0x041b tx timeout [ 91.739827] Bluetooth: hci0: command 0x040f tx timeout [ 91.803858] Bluetooth: hci3: command 0x040f tx timeout [ 91.867842] Bluetooth: hci4: command 0x040f tx timeout [ 91.868365] Bluetooth: hci6: command 0x040f tx timeout [ 91.868867] Bluetooth: hci1: command 0x040f tx timeout [ 91.869342] Bluetooth: hci2: command 0x040f tx timeout [ 91.931860] Bluetooth: hci7: command 0x040f tx timeout [ 92.956817] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 93.787956] Bluetooth: hci0: command 0x0419 tx timeout [ 93.851859] Bluetooth: hci3: command 0x0419 tx timeout [ 93.916843] Bluetooth: hci2: command 0x0419 tx timeout [ 93.917271] Bluetooth: hci1: command 0x0419 tx timeout [ 93.917620] Bluetooth: hci6: command 0x0419 tx timeout [ 93.918025] Bluetooth: hci4: command 0x0419 tx timeout [ 93.979843] Bluetooth: hci7: command 0x0419 tx timeout VM DIAGNOSIS: 11:41:40 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff888008db7c98 RCX=0000000000000000 RDX=ffff888008da1ac0 RSI=ffffffff813b07c2 RDI=0000000000000007 RBP=ffff88806ce29340 RSP=ffff888008db7b08 R8 =0000000000000007 R9 =0000000000000000 R10=ffffffffffffff4a R11=0000000000000001 R12=ffffffffffffff4a R13=ffff888008db7cb8 R14=00000000fffcc1ca R15=000000000000000a RIP=ffffffff814b75eb RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0815740000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe081573e000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd1169794a1 CR3=000000004185c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000ff0000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=65006463682d69636865203a65727020 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff88801945f190 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000037 R11=0000000000000001 R12=0000000000000037 R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850 RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe3f34996000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe3f34994000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fdceaca16f4 CR3=0000000016074000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00ffffffffffff0000000000000000 XMM01=0100010001000000ffffffffffffffff XMM02=0500050005000000455441564952505f XMM03=0000000000000000000000564952505f XMM04=00030005000500050005000000455441 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000