Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:53295' (ECDSA) to the list of known hosts. 2022/09/12 13:11:43 fuzzer started 2022/09/12 13:11:43 dialing manager at localhost:38027 syzkaller login: [ 36.803053] cgroup: Unknown subsys name 'net' [ 36.905882] cgroup: Unknown subsys name 'rlimit' 2022/09/12 13:12:00 syscalls: 2215 2022/09/12 13:12:00 code coverage: enabled 2022/09/12 13:12:00 comparison tracing: enabled 2022/09/12 13:12:00 extra coverage: enabled 2022/09/12 13:12:00 setuid sandbox: enabled 2022/09/12 13:12:00 namespace sandbox: enabled 2022/09/12 13:12:00 Android sandbox: enabled 2022/09/12 13:12:00 fault injection: enabled 2022/09/12 13:12:00 leak checking: enabled 2022/09/12 13:12:00 net packet injection: enabled 2022/09/12 13:12:00 net device setup: enabled 2022/09/12 13:12:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 13:12:00 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 13:12:00 USB emulation: enabled 2022/09/12 13:12:00 hci packet injection: enabled 2022/09/12 13:12:00 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 13:12:00 802.15.4 emulation: enabled 2022/09/12 13:12:00 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 13:12:00 fetching corpus: 50, signal 36876/39226 (executing program) 2022/09/12 13:12:00 fetching corpus: 100, signal 51632/54120 (executing program) 2022/09/12 13:12:00 fetching corpus: 150, signal 59371/61998 (executing program) 2022/09/12 13:12:01 fetching corpus: 200, signal 68715/70994 (executing program) 2022/09/12 13:12:01 fetching corpus: 250, signal 75765/77631 (executing program) 2022/09/12 13:12:01 fetching corpus: 300, signal 78827/80560 (executing program) 2022/09/12 13:12:01 fetching corpus: 350, signal 82963/84224 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/85963 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86086 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86209 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86317 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86438 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86563 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86693 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86817 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/86931 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87058 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87179 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87290 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87422 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87551 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87663 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87806 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/87908 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/88025 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/88152 (executing program) 2022/09/12 13:12:01 fetching corpus: 379, signal 84901/88276 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/88395 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/88520 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/88652 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/88776 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/88893 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89012 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89124 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89237 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89379 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89493 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89627 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89750 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89866 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/89976 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/90085 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/90209 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/90272 (executing program) 2022/09/12 13:12:02 fetching corpus: 379, signal 84901/90272 (executing program) 2022/09/12 13:12:04 starting 8 fuzzer processes 13:12:04 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r0) 13:12:04 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2880, 0x10e) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000000)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = inotify_init() inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0xc1000100) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000300)={0x0, ""/256, 0x0, 0x0}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r5 = socket$inet6_udp(0xa, 0x2, 0x0) r6 = dup(r5) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c) setsockopt$inet6_opts(r6, 0x29, 0x3b, &(0x7f00000001c0)=ANY=[], 0x8) sendmmsg$inet6(r6, &(0x7f0000002880), 0x4000101, 0x0) getsockname$packet(r6, &(0x7f0000003ac0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000003b00)=0x14) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f00000001c0)={{}, 0x9, 0x100000000, 0x100000001}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000500)={r4, r3, "a647c3385df427d810a7a711c5e1f07e303509e0c18ef63b029850bbcfcb16c53b32b31387a176f5ee46a4b1d511e9ac78bec033b1ad0765edb308efb6b6229b069f7477ac50b9fae9c43dd4cc1b295ced16f27f0c151ba40c1bbdc8774b659e5d240f693f62e77f7f23b30adf4e56a7a2b48b0ac945aa21824b63e0aa2ea8b3b249906261646b975f1bb2093f50370a5c67f97564fff2140eeff98e69156a84d90d4b49d1ed3f46f8f7d3318350ee0e84a949b889d2ef9a215efc9385aafc2512c8498ca2315204203706de79cbfefded00f6209007674175e4c140b92b193a35012ebf9cdd5483406192a7baf64e18fd2410f22920d8d4295f788a95f0d6d1", "5d656dda7975ba9824c6719dbce5a7a0a7a3737580b2d8f82bc938b7bb32438a18ef47951e3d20f0bcb38a2c33dfffbb5406b4305170765885e06dd4530e28f9fa065defe11e1f66255f96cbcdf344b249c055f2fca83b88756ad2a225aa49862ce5809c5974c6f2d9238d7bae351036b86b62e008a7b48ca2f7c7d7bf7213686c0df39252dfb004bbbdeee9515e476f652d381a09542adcfd9b381ef20aea26756afdd99ea24efb6c4402ab61afa88a2db89cfec3e10566014d9ed0bb7ac4de5fb580cc9ba4cabf69fdf6f90f53b46445546436a982f7a9f728ce278dbc2462440a2842c122adfe56704a5cde0e4838046a0b73abf4a57d92301c30fe72461386abd0b2f24fd813c4efca38891f926b4247d1826636a4b4e9210f8f5c98e015c5bc6ae7db66a78dd9cef6e128f9812628145347433a13d7d3e497c8f380bdbeb9a4801084e0d77a438bc316e1e13af520585ae7c841aaf3d6a8550c7114b67c103ee72e02a3504c4e575a51d35bb32a47badbbb9ff1c481c2a43a52b7e0e923bd59e258ce4e4c6561b3e1744f7d32461a1a15598006e7a0bb72df8af0f1d2be1bb6e73203cd92fea819c4950b08fc69338a86a2e6ba5f1772b7aaa10885bf11c98f9f1c7de6950f454fa446736f05cfa8a55fa14fe608ab6a97a6a9ab59e316c5aac0fb96c43400e94760d984f5b699c744fd3c50b01c3c676cdbcf36ec5a910af1aa516ca3c7d701e31e2ab4a8bbff9c599b6bd4514c6c986eecef4b51681f0e7499d6a39e3c832db41f0c7c5d8e01a6cc23ab5dc027e74604e73117292841c20569d687a5cdbb92c933afc51891afe8d97c5539e458620f336195bcd6b9975b8e33d45d83d9cfb9484612f219b55e2083b368e0db9b7b15860e168316e5cc1a8f50faf9bfe180344cd16d31b69c3e2a718a34c944a6d146cf88348277772d4c7709f6779f6c0dff513dad7d34a31c7f71a8e4db3f5608687bbbea40548f284eb326df16acac383bff3358d619bc777d2c6fa7c4327237070c2664b886d772dd9b38b18100ebc4685881f708f2c84944fdc4c950c0a1329c216552e36e1c2b04c41e9bde9fac88816a173d7ede778749a7ef6d337209c924a0b4d9a579861ab41d26360f9e11b56a8e68fb43ffb5ae7372ab42599a4834acfcdcadc9a1bfd20cce0ee4cd0abf7e589161c6405f622cacce7915cb2d2360ecaffa32210c2b175ab98b6fa411f71d51da6ceab44f42fcde2d11990a0237c2f0c9d7a2aad32f7b1a8a6a8fce886875490c683610053d0de16ed693350d97b565cb14c4eeee7455e2ab810f14a0beea5d0ae56915bc6d9885a75fd137229243b5555eaec234b1b45a66a0aa882b8ca45fc3cd8e45f47fd6e32a6fc5d0db2e6edd7551ea38c03d79d15f843ef61098d4eae88176e2ebcdf18cf2f5b8b769a0a73648e271e8dbb1e4ff2c30c897e2bf494b61b7705bdfd84fb68a6705553eb61e3f2b0b1fc23eef4017e9c36d54c8824f19c8e62749ab482ebf14bf761d18497b4d1038135527167a58336e41078e9b317c0cd560a27f3a8717090a5e95ea4627ea336097b29af16d1e561fe6b8920424430adaaedadc0cc870f6245fc0f07e908c3dcab83c1d6e50717803b4384786657710d6540038d5d5473d36c750f670ae79313d80603947ff134a455e3902c8297f987bdadc7f9e5d2e5f00bbf36d02ce1dbe9fa240cf54c827b87cbd5411f14c8bfc6751c87893d1370ecf818624a6a22b6eda50a52bc0996633256884b25c63baaee383a0d5fe67eb5b934d839de2dea3731c03ee59181a6996e96d572476a0f973f560a68cf73056a7100b07eeeb28c5074bf7c5ea082702dc697db20177f21d7384e2387eb56d6d8691879fc7ff895c402d9fae201e26caf8c6417609dcb2d3ce0840061d705b781dfdbe02a9c03753e25fb9cfbfab3e4b35a4e9fe4172c8910170df7529213b140dc45358c15b29c5f8e4802861f7c0e5962c34fed2a6e81ff4390db7f1cbe2c31cbb5c4f807c326253bd9ff6bf0be1a4562203d20f74c840dbf77ee0c366f3ce8c5f108c5c62b5d979cb9ce70897f917bacea4cceb8a54a88aa953f182cc32f5385287c08cd4e216639e1125f7f3ad5ca29d9d0aee99efae94a5eb56e238a1073dc75a761c67c12fcf73d172152ae1126d6aa7ee42873fe889dd32c05bf19dc1c868218fea672cf55822b89457405297f752993693924beb929591ec44c1eb5271a23a59e07055676f5dbda275f887ccf2c58898379cea71ddb60f8a7b12ab18c0b07daa16b012fab640f01bb7026f87a8e594a1c1f20c980b53bb98a70e61c9b33afa28b460b2f39d21331d656a3825d87b181bda1074f2ab202e2b7190b7d5a50c4a4c484df4f957078e34ce6c2415315ec2ebeab1f83e38b4601f304722eaafb5b8ee19365efca072aa18d1308449ed7218a29181a6bfb327a579f3d007ef3b198f954b7c16927242e5705fd33daaf8ed8ace46f24bf2ecb89e4afacd3aeb9269ed937a9d1321ec1406259de24cec4d9b005d3f45e65aaaa950511072594013285e14f110a5fe882b1d01152318563d86bd328137f3285da9ea30272978606678d8bddc35beb9c6e23bbcacde281e77da27ecb5432a044af3fd92a1dde3e2603f48257a15405d8de1a469a2957c41022d08a220b6a985f016e67d12e8591798b3ed828ce9b813e40218a6a0cf103e3230ecfca0a67e2577805ab2d3d2d7bfb6601ae01b636cb41f4bce4f49975baf9be6835328fa21c301970eaca429e44213ef606bab2205da9ef1831fcb6f92588f99b3fa60e1c8606d80e7d43a0d45920d40cbd9feba469ea434500770b3b69e1b6f18613c349b0acc7ffad73c41965a65553c0b4a78549fb08cae5e56dc71910e963cfd0842ddee186af5c98b90b0d84c5d285cc0f41f5f25469058e80989130eb8f5499e45b930a7dc1da0ce471851a9c4464a07634d56c66fcee223d5851afe0382c756cbe4525fb2391df54ee665e6d25143547672fa771c6513bd82f0504d082e8aacbafeca3bbfa2ff5a405745aa23bcf2094cac01a7a9aa3dbe657f506a31ea8115d7d54aa975ee5d678b2182e16c89cd6cf50eed823423d0ab5a9fc9853ef8517c06d54a6b2ed54a62f4b01b5f19909a043af5d703f2b2c6af14b18d28a790225eb7bb102d598a2b2d2d38469289c1685a12d56681a09e4c3e73321e0d265ca5ea72acf2bed25fc19728895bab65bc60af302df2125ab4c8436157c8b8284027bc43b78d5311abdfa579c62046c6845533663f7e60c383c7fa10da9e4b64ffb9de66b4d387cbc08428f0f9c52d9e4e40c6b5d72b738d4c7c730bf2113f34938c3c5256390f65bac8af5ec01784eb97fd646aecd16765d7d6ff413a3301e63090893ad11da3c86d768516c30379ab1c1f9b52b886f658c1b723739695cb67563e29fc7409ab92d9d26636c5e5c942efc6b7d4919c2de4329b3c90aa995d09593f1196f958e180c7c4ad8f3cff09cd647267bc64622b0f9778e0de36b24868bbb151adc0e6edea6fc5ae082c4941152a1c0c17cb9f1246ff2bfa3e6b6b767f86620fd8384de6db53711f1632e97e270677095727cc3d8d22a958f3d724412fb9e45ad0f42e8a200758f228a36ab71994ec4ac11d557ed631774e38d156b9fac0e537fcc7acff4897bdd440a2e7df173efd7424055907d7d23138de8f143545008a7461bfa4ab6d6489be0a6558677b3fde0591f106c5bdc410a420efcfaec0e9a03f4258053c5d2f6366b01a87902943f084a99af664342056800f2ad1bc6ef5bb645482606213f98fff3bc53f5a12b15da276533b787974fda7ec50c3e94c0a45929b26f04e660127e923f5906bae4dadb584917174469384479edf8a083858112c65869f22cd0ff2b83823e0d6055bc5fdfdaf678f98272e2a2d59967b2b9640f4e161741501a367b71cc14dd8004df2571dc6ba8109abffcbbfe0b8287779827edea193fb13d7849e090e373dd2c9bd1f50a8f7213de7b66da3b5cb12483bf3a405d24aaf08025fa4877e64e07b621bf80c62484d9d95d630075fb00e3bbd29702117c42c67996a59c13a3b7af1a5afbba254d2ff5f36a7ea16d21e81a8a3fc21bc1e4517719c6a8a6b41369532161c067ec0b8c8bf242a73404e66eb90e32157387c21c124b9494779d557700aaebb703c7ff5edaf8f6d9bf14d0473ee9fedb0f8b062a13242235b6804d5af81496eb07f6d8e55263c01692456f6779c3fd6e886a13439e2bd199b0aa259362457f363e5ec7cf8e48432664fcdef472d4484c272075afa686a8e64f01222d96af14d14857e8f58479de0f761b51e56313f5e895176a73b49ce598e08beea858ce9e03fe241cda2938bb862d4bc579ff9831a6bdf3696e1900395bf99ecf7e03d65470a6fa5e490af33fc9d10f2f5e466dd72f430594924a10eb4ed63f0ddd814b3c68098ed54524e10f25d30e57b6a34d60080afd1def306b728d08d818a371694eebe3f129c1c48e9eba35cc2fa3056184d19cd2bbf005f7df96b16282d7d2a8e57465c9284f99455f128d68e0a9d7094231d30e02a6351394e77014ab580b3cca47fa2fe76206643e7444b37b295982189b00884a9eb8589a3b184abe720bb8cc380837d05695a393e29c5dc5ec72ce0bc47e5454f8ff174836e2c8f2801f98be6fb15ae80d46e65127bb5b4fc6ee3b083e93b75ccf55a6f8703edf221cda3dff5e21ac2ebeecece15f76e92c622dd9d1646c682649ab28544f086b5925dfabe81171a47c52e09be2dc2182f6722777d59296ce3bae63417ea185e5dcaf63159348fbaebdb52cfa0d973cd1b1954519732a5222be86829d2affb6b67234e33f1f55128a7f21cdabd25cc865993d3720a39f3908ac1a51ea78d7322c1a275937210597c16785c9636ad00cac736693b53fe795d21beeb92feaeb2621209fc431f50c67103df8a99f924644a20cc5d24afee609de716e8bdd0cd538581cde5abb5280871c14d6910affde3ffea977804dce3fcfca53f2922a480b8fe1d4c6876e851f8c7da32ff1f5e1075bc300316a0e73cdeac784fb21792c17a7f8a637db852600256c9cbf3325bd8ab5ae469bd0c7ac87c834ffcceace7691f99c7c9eb7ad101fc32427a481ee5ec93be76fdc0a17f80f31f75412e9998231ed53a08d214c491dfa7fb3c0284140e4cce7db4fc368fe2850662262420292ee232b8a1a63e32d714e7efce7bf4e23583b7c3071cd14e5cd487bf89831f6f7cbeb87d39d138ba14a899751b70d91b459d6517a50952056640b2c53a196b4a2311f1a79f4b1d02d49766b2730cfc845bdf97de7c3dd244a0009750f6e642c2cab2e5d557e2f2126d2d7239035fd1a974291680b123fdf8cff63331c2ade6091a130c2d"}) 13:12:04 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x40000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366ee578400080820000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610500000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f7366ee578400080820000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="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", 0x120, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100057ea70325132510000ea7032510300000000002e2e202020202020202020100057ea70325132510000ea70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200057ea70325132510000ea70325104001a040000", 0x80, 0x15000}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x19000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0x1d000}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x25000}], 0x0, &(0x7f0000011000)) 13:12:04 executing program 2: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_mode_change={{0x14, 0x6}, {0x0, 0xc9}}}, 0x9) 13:12:04 executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) 13:12:04 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x4b, &(0x7f00000000c0)={@remote}, 0x20) 13:12:04 executing program 5: mkdir(&(0x7f0000000540)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', &(0x7f0000000880), 0x0) 13:12:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0x0) keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, 0x0, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f0000000040)=@keyring) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) request_key(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz', 0x0}, &(0x7f00000003c0)='syz', 0x0) [ 57.272848] audit: type=1400 audit(1662988324.635:6): avc: denied { execmem } for pid=286 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 58.421207] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 58.424385] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 58.426639] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 58.429990] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 58.432335] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 58.433602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 58.438292] Bluetooth: hci0: HCI_REQ-0x0c1a [ 58.563706] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 58.566876] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 58.568529] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 58.569768] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 58.571982] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 58.573129] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 58.574650] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 58.575737] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 58.579743] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 58.580943] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 58.583105] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 58.584548] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 58.585674] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 58.586956] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 58.594302] Bluetooth: hci3: HCI_REQ-0x0c1a [ 58.595112] Bluetooth: hci4: HCI_REQ-0x0c1a [ 58.629550] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 58.631731] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 58.636511] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 58.638537] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 58.641729] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 58.643428] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 58.644891] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 58.647395] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 58.649108] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 58.651352] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 58.654529] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 58.656004] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 58.656009] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 58.661920] Bluetooth: hci1: HCI_REQ-0x0c1a [ 58.668949] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 58.671051] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 58.673435] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 58.674691] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 58.677268] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 58.678552] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 58.684934] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 58.686980] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 58.688649] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 58.690297] Bluetooth: hci5: HCI_REQ-0x0c1a [ 58.701912] Bluetooth: hci6: HCI_REQ-0x0c1a [ 58.726320] Bluetooth: hci7: HCI_REQ-0x0c1a [ 60.507846] Bluetooth: hci0: command 0x0409 tx timeout [ 60.571350] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 60.635353] Bluetooth: hci4: command 0x0409 tx timeout [ 60.636998] Bluetooth: hci3: command 0x0409 tx timeout [ 60.699389] Bluetooth: hci5: command 0x0409 tx timeout [ 60.699993] Bluetooth: hci1: command 0x0409 tx timeout [ 60.763290] Bluetooth: hci6: command 0x0409 tx timeout [ 60.828282] Bluetooth: hci7: command 0x0409 tx timeout [ 62.555536] Bluetooth: hci0: command 0x041b tx timeout [ 62.683344] Bluetooth: hci3: command 0x041b tx timeout [ 62.684009] Bluetooth: hci4: command 0x041b tx timeout [ 62.747353] Bluetooth: hci1: command 0x041b tx timeout [ 62.747836] Bluetooth: hci5: command 0x041b tx timeout [ 62.811490] Bluetooth: hci6: command 0x041b tx timeout [ 62.875343] Bluetooth: hci7: command 0x041b tx timeout [ 63.463616] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 63.465930] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 63.467300] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 63.474513] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 63.477431] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 63.479203] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 63.521971] Bluetooth: hci2: HCI_REQ-0x0c1a [ 64.603324] Bluetooth: hci0: command 0x040f tx timeout [ 64.731355] Bluetooth: hci4: command 0x040f tx timeout [ 64.731879] Bluetooth: hci3: command 0x040f tx timeout [ 64.795281] Bluetooth: hci5: command 0x040f tx timeout [ 64.795823] Bluetooth: hci1: command 0x040f tx timeout [ 64.859297] Bluetooth: hci6: command 0x040f tx timeout [ 64.923285] Bluetooth: hci7: command 0x040f tx timeout [ 65.563305] Bluetooth: hci2: command 0x0409 tx timeout [ 66.651291] Bluetooth: hci0: command 0x0419 tx timeout [ 66.779342] Bluetooth: hci3: command 0x0419 tx timeout [ 66.779817] Bluetooth: hci4: command 0x0419 tx timeout [ 66.843388] Bluetooth: hci1: command 0x0419 tx timeout [ 66.843875] Bluetooth: hci5: command 0x0419 tx timeout [ 66.907294] Bluetooth: hci6: command 0x0419 tx timeout [ 66.971612] Bluetooth: hci7: command 0x0419 tx timeout [ 67.611276] Bluetooth: hci2: command 0x041b tx timeout [ 69.659278] Bluetooth: hci2: command 0x040f tx timeout [ 71.707293] Bluetooth: hci2: command 0x0419 tx timeout [ 114.629062] audit: type=1400 audit(1662988381.991:7): avc: denied { open } for pid=3687 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.630820] audit: type=1400 audit(1662988381.991:8): avc: denied { kernel } for pid=3687 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.648102] ------------[ cut here ]------------ [ 114.648124] [ 114.648128] ====================================================== [ 114.648131] WARNING: possible circular locking dependency detected [ 114.648136] 6.0.0-rc5-next-20220912 #1 Not tainted [ 114.648143] ------------------------------------------------------ [ 114.648146] syz-executor.0/3688 is trying to acquire lock: [ 114.648152] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 114.648187] [ 114.648187] but task is already holding lock: [ 114.648190] ffff88800f3c5c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 114.648217] [ 114.648217] which lock already depends on the new lock. [ 114.648217] [ 114.648222] [ 114.648222] the existing dependency chain (in reverse order) is: [ 114.648225] [ 114.648225] -> #3 (&ctx->lock){....}-{2:2}: [ 114.648239] _raw_spin_lock+0x2a/0x40 [ 114.648256] __perf_event_task_sched_out+0x53b/0x18d0 [ 114.648268] __schedule+0xedd/0x2470 [ 114.648277] schedule+0xda/0x1b0 [ 114.648286] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.648307] syscall_exit_to_user_mode+0x19/0x40 [ 114.648324] do_syscall_64+0x48/0x90 [ 114.648337] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.648354] [ 114.648354] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 114.648368] _raw_spin_lock_nested+0x30/0x40 [ 114.648382] raw_spin_rq_lock_nested+0x1e/0x30 [ 114.648395] task_fork_fair+0x63/0x4d0 [ 114.648412] sched_cgroup_fork+0x3d0/0x540 [ 114.648427] copy_process+0x3f9e/0x6df0 [ 114.648437] kernel_clone+0xe7/0x890 [ 114.648446] user_mode_thread+0xad/0xf0 [ 114.648457] rest_init+0x24/0x250 [ 114.648473] arch_call_rest_init+0xf/0x14 [ 114.648492] start_kernel+0x4c1/0x4e6 [ 114.648508] secondary_startup_64_no_verify+0xe0/0xeb [ 114.648522] [ 114.648522] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 114.648536] _raw_spin_lock_irqsave+0x39/0x60 [ 114.648551] try_to_wake_up+0xab/0x1920 [ 114.648564] up+0x75/0xb0 [ 114.648575] __up_console_sem+0x6e/0x80 [ 114.648591] console_unlock+0x46a/0x590 [ 114.648608] vprintk_emit+0x1bd/0x560 [ 114.648624] vprintk+0x84/0xa0 [ 114.648641] _printk+0xba/0xf1 [ 114.648658] kauditd_hold_skb.cold+0x3f/0x4e [ 114.648672] kauditd_send_queue+0x233/0x290 [ 114.648687] kauditd_thread+0x5da/0x9a0 [ 114.648701] kthread+0x2ed/0x3a0 [ 114.648715] ret_from_fork+0x22/0x30 [ 114.648728] [ 114.648728] -> #0 ((console_sem).lock){....}-{2:2}: [ 114.648741] __lock_acquire+0x2a02/0x5e70 [ 114.648758] lock_acquire+0x1a2/0x530 [ 114.648774] _raw_spin_lock_irqsave+0x39/0x60 [ 114.648789] down_trylock+0xe/0x70 [ 114.648801] __down_trylock_console_sem+0x3b/0xd0 [ 114.648818] vprintk_emit+0x16b/0x560 [ 114.648834] vprintk+0x84/0xa0 [ 114.648851] _printk+0xba/0xf1 [ 114.648867] report_bug.cold+0x72/0xab [ 114.648879] handle_bug+0x3c/0x70 [ 114.648892] exc_invalid_op+0x14/0x50 [ 114.648905] asm_exc_invalid_op+0x16/0x20 [ 114.648921] group_sched_out.part.0+0x2c7/0x460 [ 114.648931] ctx_sched_out+0x8f1/0xc10 [ 114.648941] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.648953] __schedule+0xedd/0x2470 [ 114.648963] schedule+0xda/0x1b0 [ 114.648971] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.648991] syscall_exit_to_user_mode+0x19/0x40 [ 114.649008] do_syscall_64+0x48/0x90 [ 114.649020] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.649037] [ 114.649037] other info that might help us debug this: [ 114.649037] [ 114.649040] Chain exists of: [ 114.649040] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 114.649040] [ 114.649054] Possible unsafe locking scenario: [ 114.649054] [ 114.649057] CPU0 CPU1 [ 114.649059] ---- ---- [ 114.649061] lock(&ctx->lock); [ 114.649067] lock(&rq->__lock); [ 114.649073] lock(&ctx->lock); [ 114.649079] lock((console_sem).lock); [ 114.649085] [ 114.649085] *** DEADLOCK *** [ 114.649085] [ 114.649087] 2 locks held by syz-executor.0/3688: [ 114.649093] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 114.649118] #1: ffff88800f3c5c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 114.649146] [ 114.649146] stack backtrace: [ 114.649149] CPU: 0 PID: 3688 Comm: syz-executor.0 Not tainted 6.0.0-rc5-next-20220912 #1 [ 114.649162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 114.649170] Call Trace: [ 114.649173] [ 114.649177] dump_stack_lvl+0x8b/0xb3 [ 114.649191] check_noncircular+0x263/0x2e0 [ 114.649208] ? format_decode+0x26c/0xb50 [ 114.649223] ? print_circular_bug+0x450/0x450 [ 114.649241] ? enable_ptr_key_workfn+0x20/0x20 [ 114.649256] ? format_decode+0x26c/0xb50 [ 114.649272] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 114.649291] __lock_acquire+0x2a02/0x5e70 [ 114.649314] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 114.649333] ? __mutex_add_waiter+0x120/0x120 [ 114.649352] lock_acquire+0x1a2/0x530 [ 114.649370] ? down_trylock+0xe/0x70 [ 114.649385] ? rcu_read_unlock+0x40/0x40 [ 114.649407] ? vprintk+0x84/0xa0 [ 114.649426] _raw_spin_lock_irqsave+0x39/0x60 [ 114.649442] ? down_trylock+0xe/0x70 [ 114.649455] down_trylock+0xe/0x70 [ 114.649469] ? vprintk+0x84/0xa0 [ 114.649486] __down_trylock_console_sem+0x3b/0xd0 [ 114.649504] vprintk_emit+0x16b/0x560 [ 114.649524] vprintk+0x84/0xa0 [ 114.649543] _printk+0xba/0xf1 [ 114.649560] ? record_print_text.cold+0x16/0x16 [ 114.649584] ? report_bug.cold+0x66/0xab [ 114.649598] ? group_sched_out.part.0+0x2c7/0x460 [ 114.649610] report_bug.cold+0x72/0xab [ 114.649625] handle_bug+0x3c/0x70 [ 114.649639] exc_invalid_op+0x14/0x50 [ 114.649653] asm_exc_invalid_op+0x16/0x20 [ 114.649671] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 114.649684] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 114.649695] RSP: 0018:ffff88801705fc48 EFLAGS: 00010006 [ 114.649704] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 114.649712] RDX: ffff88801d70d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 114.649720] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 114.649727] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800f3c5c00 [ 114.649735] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 114.649747] ? group_sched_out.part.0+0x2c7/0x460 [ 114.649760] ? group_sched_out.part.0+0x2c7/0x460 [ 114.649774] ctx_sched_out+0x8f1/0xc10 [ 114.649787] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.649804] ? lock_is_held_type+0xd7/0x130 [ 114.649826] ? __perf_cgroup_move+0x160/0x160 [ 114.649839] ? set_next_entity+0x304/0x550 [ 114.649857] ? update_curr+0x267/0x740 [ 114.649877] ? lock_is_held_type+0xd7/0x130 [ 114.649896] __schedule+0xedd/0x2470 [ 114.649909] ? io_schedule_timeout+0x150/0x150 [ 114.649922] ? __x64_sys_futex_time32+0x480/0x480 [ 114.649936] schedule+0xda/0x1b0 [ 114.649947] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.649969] syscall_exit_to_user_mode+0x19/0x40 [ 114.649987] do_syscall_64+0x48/0x90 [ 114.650001] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.650018] RIP: 0033:0x7fca59cf9b19 [ 114.650027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.650038] RSP: 002b:00007fca5726f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.650048] RAX: 0000000000000001 RBX: 00007fca59e0cf68 RCX: 00007fca59cf9b19 [ 114.650056] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fca59e0cf6c [ 114.650064] RBP: 00007fca59e0cf60 R08: 000000000000000e R09: 0000000000000000 [ 114.650071] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fca59e0cf6c [ 114.650078] R13: 00007ffd163b289f R14: 00007fca5726f300 R15: 0000000000022000 [ 114.650093] [ 114.706658] WARNING: CPU: 0 PID: 3688 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 114.707340] Modules linked in: [ 114.707580] CPU: 0 PID: 3688 Comm: syz-executor.0 Not tainted 6.0.0-rc5-next-20220912 #1 [ 114.708173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 114.708992] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 114.709390] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 114.710715] RSP: 0018:ffff88801705fc48 EFLAGS: 00010006 [ 114.711118] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 114.711636] RDX: ffff88801d70d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 114.712172] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 114.712696] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88800f3c5c00 [ 114.713234] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 114.713759] FS: 00007fca5726f700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 114.714360] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.714798] CR2: 00007f40ed278810 CR3: 000000003d994000 CR4: 0000000000350ef0 [ 114.715330] Call Trace: [ 114.715528] [ 114.715701] ctx_sched_out+0x8f1/0xc10 [ 114.716001] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.716392] ? lock_is_held_type+0xd7/0x130 [ 114.716721] ? __perf_cgroup_move+0x160/0x160 [ 114.717057] ? set_next_entity+0x304/0x550 [ 114.717384] ? update_curr+0x267/0x740 [ 114.717687] ? lock_is_held_type+0xd7/0x130 [ 114.718017] __schedule+0xedd/0x2470 [ 114.718302] ? io_schedule_timeout+0x150/0x150 [ 114.718653] ? __x64_sys_futex_time32+0x480/0x480 [ 114.719030] schedule+0xda/0x1b0 [ 114.719285] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.719665] syscall_exit_to_user_mode+0x19/0x40 [ 114.720030] do_syscall_64+0x48/0x90 [ 114.720319] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.720707] RIP: 0033:0x7fca59cf9b19 [ 114.720991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.722333] RSP: 002b:00007fca5726f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.722904] RAX: 0000000000000001 RBX: 00007fca59e0cf68 RCX: 00007fca59cf9b19 [ 114.723428] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fca59e0cf6c [ 114.723944] RBP: 00007fca59e0cf60 R08: 000000000000000e R09: 0000000000000000 [ 114.724466] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fca59e0cf6c [ 114.724994] R13: 00007ffd163b289f R14: 00007fca5726f300 R15: 0000000000022000 [ 114.725521] [ 114.725696] irq event stamp: 1036 [ 114.725950] hardirqs last enabled at (1035): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 114.726646] hardirqs last disabled at (1036): [] __schedule+0x1225/0x2470 [ 114.727254] softirqs last enabled at (816): [] __irq_exit_rcu+0x11b/0x180 [ 114.727885] softirqs last disabled at (791): [] __irq_exit_rcu+0x11b/0x180 [ 114.728524] ---[ end trace 0000000000000000 ]--- [ 115.804015] loop6: detected capacity change from 0 to 592 [ 121.563438] Bluetooth: hci4: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 13:13:02 Registers: info registers vcpu 0 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff88801705f698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006f R11=0000000000000001 R12=000000000000006f R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fca5726f700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f40ed278810 CR3=000000003d994000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fca59de07c0 00007fca59de07c8 YMM02=0000000000000000 0000000000000000 00007fca59de07e0 00007fca59de07c0 YMM03=0000000000000000 0000000000000000 00007fca59de07c8 00007fca59de07c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000007 RBX=ffff88800f8ed040 RCX=ffffffff811da58c RDX=0000000000000000 RSI=0000000000200000 RDI=0000000000000000 RBP=0000000000200000 RSP=ffff88800ff37d88 R8 =0000000000000000 R9 =ffff88800948f207 R10=ffffed1001291e40 R11=0000000000000001 R12=ffff88807ee4cff9 R13=ffff88800f8ed040 R14=0000000000000000 R15=0000000000000092 RIP=ffffffff814613f4 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2fa2d921f0 CR3=000000002bb74000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000