syzkaller login: [ 43.980175] sshd (250) used greatest stack depth: 24768 bytes left Warning: Permanently added '[localhost]:48162' (ECDSA) to the list of known hosts. 2022/09/13 17:02:48 fuzzer started 2022/09/13 17:02:48 dialing manager at localhost:36597 [ 46.810573] cgroup: Unknown subsys name 'net' [ 46.909916] cgroup: Unknown subsys name 'rlimit' 2022/09/13 17:03:03 syscalls: 2215 2022/09/13 17:03:03 code coverage: enabled 2022/09/13 17:03:03 comparison tracing: enabled 2022/09/13 17:03:03 extra coverage: enabled 2022/09/13 17:03:03 setuid sandbox: enabled 2022/09/13 17:03:03 namespace sandbox: enabled 2022/09/13 17:03:03 Android sandbox: enabled 2022/09/13 17:03:03 fault injection: enabled 2022/09/13 17:03:03 leak checking: enabled 2022/09/13 17:03:03 net packet injection: enabled 2022/09/13 17:03:03 net device setup: enabled 2022/09/13 17:03:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/13 17:03:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/13 17:03:03 USB emulation: enabled 2022/09/13 17:03:03 hci packet injection: enabled 2022/09/13 17:03:03 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220913) 2022/09/13 17:03:03 802.15.4 emulation: enabled 2022/09/13 17:03:03 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/13 17:03:03 fetching corpus: 50, signal 34545/37988 (executing program) 2022/09/13 17:03:03 fetching corpus: 100, signal 46854/51770 (executing program) 2022/09/13 17:03:03 fetching corpus: 150, signal 60302/66458 (executing program) 2022/09/13 17:03:03 fetching corpus: 200, signal 66114/73610 (executing program) 2022/09/13 17:03:03 fetching corpus: 250, signal 73047/81709 (executing program) 2022/09/13 17:03:04 fetching corpus: 300, signal 78305/88110 (executing program) 2022/09/13 17:03:04 fetching corpus: 350, signal 83505/94432 (executing program) 2022/09/13 17:03:04 fetching corpus: 400, signal 87508/99535 (executing program) 2022/09/13 17:03:04 fetching corpus: 450, signal 91760/104826 (executing program) 2022/09/13 17:03:04 fetching corpus: 500, signal 94900/109009 (executing program) 2022/09/13 17:03:04 fetching corpus: 550, signal 97409/112586 (executing program) 2022/09/13 17:03:04 fetching corpus: 600, signal 100572/116702 (executing program) 2022/09/13 17:03:04 fetching corpus: 650, signal 104163/121168 (executing program) 2022/09/13 17:03:05 fetching corpus: 700, signal 106799/124710 (executing program) 2022/09/13 17:03:05 fetching corpus: 750, signal 108928/127805 (executing program) 2022/09/13 17:03:05 fetching corpus: 800, signal 112731/132303 (executing program) 2022/09/13 17:03:05 fetching corpus: 850, signal 115659/135993 (executing program) 2022/09/13 17:03:05 fetching corpus: 900, signal 119702/140550 (executing program) 2022/09/13 17:03:05 fetching corpus: 950, signal 121791/143412 (executing program) 2022/09/13 17:03:05 fetching corpus: 1000, signal 123887/146244 (executing program) 2022/09/13 17:03:06 fetching corpus: 1050, signal 125594/148738 (executing program) 2022/09/13 17:03:06 fetching corpus: 1100, signal 128022/151819 (executing program) 2022/09/13 17:03:06 fetching corpus: 1150, signal 131060/155291 (executing program) 2022/09/13 17:03:06 fetching corpus: 1200, signal 132967/157835 (executing program) 2022/09/13 17:03:06 fetching corpus: 1250, signal 134592/160129 (executing program) 2022/09/13 17:03:06 fetching corpus: 1300, signal 136682/162812 (executing program) 2022/09/13 17:03:06 fetching corpus: 1350, signal 138762/165389 (executing program) 2022/09/13 17:03:06 fetching corpus: 1400, signal 140445/167589 (executing program) 2022/09/13 17:03:07 fetching corpus: 1450, signal 141395/169256 (executing program) 2022/09/13 17:03:07 fetching corpus: 1500, signal 142685/171198 (executing program) 2022/09/13 17:03:07 fetching corpus: 1550, signal 145104/173965 (executing program) 2022/09/13 17:03:07 fetching corpus: 1600, signal 147147/176386 (executing program) 2022/09/13 17:03:07 fetching corpus: 1650, signal 148492/178269 (executing program) 2022/09/13 17:03:07 fetching corpus: 1700, signal 150904/180938 (executing program) 2022/09/13 17:03:07 fetching corpus: 1750, signal 152901/183304 (executing program) 2022/09/13 17:03:08 fetching corpus: 1800, signal 154531/185322 (executing program) 2022/09/13 17:03:08 fetching corpus: 1850, signal 157280/188113 (executing program) 2022/09/13 17:03:08 fetching corpus: 1900, signal 158618/189887 (executing program) 2022/09/13 17:03:08 fetching corpus: 1950, signal 161017/192377 (executing program) 2022/09/13 17:03:08 fetching corpus: 2000, signal 162263/194024 (executing program) 2022/09/13 17:03:08 fetching corpus: 2050, signal 163571/195679 (executing program) 2022/09/13 17:03:08 fetching corpus: 2100, signal 165228/197558 (executing program) 2022/09/13 17:03:09 fetching corpus: 2150, signal 166706/199297 (executing program) 2022/09/13 17:03:09 fetching corpus: 2200, signal 168268/201080 (executing program) 2022/09/13 17:03:09 fetching corpus: 2250, signal 170048/202966 (executing program) 2022/09/13 17:03:09 fetching corpus: 2300, signal 170918/204278 (executing program) 2022/09/13 17:03:09 fetching corpus: 2350, signal 172482/206011 (executing program) 2022/09/13 17:03:09 fetching corpus: 2400, signal 173877/207593 (executing program) 2022/09/13 17:03:09 fetching corpus: 2450, signal 175927/209550 (executing program) 2022/09/13 17:03:09 fetching corpus: 2500, signal 177916/211426 (executing program) 2022/09/13 17:03:10 fetching corpus: 2550, signal 179116/212834 (executing program) 2022/09/13 17:03:10 fetching corpus: 2600, signal 180422/214261 (executing program) 2022/09/13 17:03:10 fetching corpus: 2650, signal 181911/215819 (executing program) 2022/09/13 17:03:10 fetching corpus: 2700, signal 183411/217378 (executing program) 2022/09/13 17:03:10 fetching corpus: 2750, signal 183993/218333 (executing program) 2022/09/13 17:03:10 fetching corpus: 2800, signal 185061/219633 (executing program) 2022/09/13 17:03:10 fetching corpus: 2850, signal 185828/220662 (executing program) 2022/09/13 17:03:11 fetching corpus: 2900, signal 187060/221963 (executing program) 2022/09/13 17:03:11 fetching corpus: 2950, signal 187888/223015 (executing program) 2022/09/13 17:03:11 fetching corpus: 3000, signal 189113/224253 (executing program) 2022/09/13 17:03:11 fetching corpus: 3050, signal 190657/225631 (executing program) 2022/09/13 17:03:11 fetching corpus: 3100, signal 192325/227085 (executing program) 2022/09/13 17:03:11 fetching corpus: 3150, signal 194052/228508 (executing program) 2022/09/13 17:03:11 fetching corpus: 3200, signal 195088/229546 (executing program) 2022/09/13 17:03:12 fetching corpus: 3250, signal 196566/230885 (executing program) 2022/09/13 17:03:12 fetching corpus: 3300, signal 197651/231905 (executing program) 2022/09/13 17:03:12 fetching corpus: 3350, signal 198615/232889 (executing program) 2022/09/13 17:03:12 fetching corpus: 3400, signal 199319/233719 (executing program) 2022/09/13 17:03:12 fetching corpus: 3450, signal 200123/234649 (executing program) 2022/09/13 17:03:12 fetching corpus: 3500, signal 200815/235510 (executing program) 2022/09/13 17:03:13 fetching corpus: 3550, signal 202718/236874 (executing program) 2022/09/13 17:03:13 fetching corpus: 3600, signal 204228/238005 (executing program) 2022/09/13 17:03:13 fetching corpus: 3650, signal 204905/238761 (executing program) 2022/09/13 17:03:13 fetching corpus: 3700, signal 206077/239712 (executing program) 2022/09/13 17:03:13 fetching corpus: 3750, signal 207044/240578 (executing program) 2022/09/13 17:03:13 fetching corpus: 3800, signal 207513/241225 (executing program) 2022/09/13 17:03:13 fetching corpus: 3850, signal 208029/241911 (executing program) 2022/09/13 17:03:14 fetching corpus: 3900, signal 209222/242800 (executing program) 2022/09/13 17:03:14 fetching corpus: 3950, signal 210763/243823 (executing program) 2022/09/13 17:03:14 fetching corpus: 4000, signal 211322/244455 (executing program) 2022/09/13 17:03:14 fetching corpus: 4050, signal 212632/245334 (executing program) 2022/09/13 17:03:14 fetching corpus: 4100, signal 213460/246066 (executing program) 2022/09/13 17:03:14 fetching corpus: 4150, signal 214029/246645 (executing program) 2022/09/13 17:03:14 fetching corpus: 4200, signal 214579/247224 (executing program) 2022/09/13 17:03:15 fetching corpus: 4250, signal 215401/247902 (executing program) 2022/09/13 17:03:15 fetching corpus: 4300, signal 216561/248679 (executing program) 2022/09/13 17:03:15 fetching corpus: 4350, signal 217241/249229 (executing program) 2022/09/13 17:03:15 fetching corpus: 4400, signal 217937/249797 (executing program) 2022/09/13 17:03:15 fetching corpus: 4450, signal 218632/250386 (executing program) 2022/09/13 17:03:15 fetching corpus: 4500, signal 219621/251086 (executing program) 2022/09/13 17:03:15 fetching corpus: 4550, signal 220339/251661 (executing program) 2022/09/13 17:03:16 fetching corpus: 4600, signal 221275/252286 (executing program) 2022/09/13 17:03:16 fetching corpus: 4650, signal 221935/252846 (executing program) 2022/09/13 17:03:16 fetching corpus: 4700, signal 222473/253311 (executing program) 2022/09/13 17:03:16 fetching corpus: 4750, signal 223230/253820 (executing program) 2022/09/13 17:03:16 fetching corpus: 4800, signal 223559/254225 (executing program) 2022/09/13 17:03:16 fetching corpus: 4850, signal 224405/254728 (executing program) 2022/09/13 17:03:16 fetching corpus: 4900, signal 224938/255201 (executing program) 2022/09/13 17:03:16 fetching corpus: 4950, signal 225755/255679 (executing program) 2022/09/13 17:03:17 fetching corpus: 5000, signal 226260/256122 (executing program) 2022/09/13 17:03:17 fetching corpus: 5050, signal 226930/256594 (executing program) 2022/09/13 17:03:17 fetching corpus: 5100, signal 227369/256987 (executing program) 2022/09/13 17:03:17 fetching corpus: 5150, signal 227891/257400 (executing program) 2022/09/13 17:03:17 fetching corpus: 5200, signal 228615/257846 (executing program) 2022/09/13 17:03:17 fetching corpus: 5250, signal 229333/258271 (executing program) 2022/09/13 17:03:17 fetching corpus: 5300, signal 230038/258693 (executing program) 2022/09/13 17:03:18 fetching corpus: 5350, signal 230479/259085 (executing program) 2022/09/13 17:03:18 fetching corpus: 5400, signal 231103/259455 (executing program) 2022/09/13 17:03:18 fetching corpus: 5450, signal 231483/259803 (executing program) 2022/09/13 17:03:18 fetching corpus: 5500, signal 232071/260181 (executing program) 2022/09/13 17:03:18 fetching corpus: 5550, signal 232701/260540 (executing program) 2022/09/13 17:03:18 fetching corpus: 5600, signal 233121/260848 (executing program) 2022/09/13 17:03:18 fetching corpus: 5650, signal 233804/261206 (executing program) 2022/09/13 17:03:18 fetching corpus: 5700, signal 234260/261500 (executing program) 2022/09/13 17:03:19 fetching corpus: 5750, signal 235283/261869 (executing program) 2022/09/13 17:03:19 fetching corpus: 5800, signal 236040/262202 (executing program) 2022/09/13 17:03:19 fetching corpus: 5850, signal 236757/262522 (executing program) 2022/09/13 17:03:19 fetching corpus: 5900, signal 237612/262849 (executing program) 2022/09/13 17:03:19 fetching corpus: 5950, signal 238220/263104 (executing program) 2022/09/13 17:03:19 fetching corpus: 6000, signal 238820/263369 (executing program) 2022/09/13 17:03:20 fetching corpus: 6050, signal 239582/263603 (executing program) 2022/09/13 17:03:20 fetching corpus: 6100, signal 240248/263810 (executing program) 2022/09/13 17:03:20 fetching corpus: 6150, signal 240761/264004 (executing program) 2022/09/13 17:03:20 fetching corpus: 6200, signal 241260/264223 (executing program) 2022/09/13 17:03:20 fetching corpus: 6250, signal 241838/264487 (executing program) 2022/09/13 17:03:20 fetching corpus: 6300, signal 242491/264679 (executing program) 2022/09/13 17:03:21 fetching corpus: 6350, signal 243379/264907 (executing program) 2022/09/13 17:03:21 fetching corpus: 6400, signal 243692/265078 (executing program) 2022/09/13 17:03:21 fetching corpus: 6450, signal 244532/265121 (executing program) 2022/09/13 17:03:21 fetching corpus: 6500, signal 245058/265123 (executing program) 2022/09/13 17:03:21 fetching corpus: 6550, signal 245747/265136 (executing program) 2022/09/13 17:03:21 fetching corpus: 6600, signal 246154/265138 (executing program) 2022/09/13 17:03:22 fetching corpus: 6650, signal 247005/265145 (executing program) 2022/09/13 17:03:22 fetching corpus: 6700, signal 247499/265155 (executing program) 2022/09/13 17:03:22 fetching corpus: 6750, signal 248673/265163 (executing program) 2022/09/13 17:03:22 fetching corpus: 6800, signal 249163/265166 (executing program) 2022/09/13 17:03:22 fetching corpus: 6850, signal 249816/265198 (executing program) 2022/09/13 17:03:22 fetching corpus: 6900, signal 250349/265211 (executing program) 2022/09/13 17:03:22 fetching corpus: 6950, signal 250876/265212 (executing program) 2022/09/13 17:03:23 fetching corpus: 7000, signal 251483/265214 (executing program) 2022/09/13 17:03:23 fetching corpus: 7050, signal 251880/265248 (executing program) 2022/09/13 17:03:23 fetching corpus: 7100, signal 252407/265248 (executing program) 2022/09/13 17:03:23 fetching corpus: 7150, signal 252789/265251 (executing program) 2022/09/13 17:03:23 fetching corpus: 7200, signal 253410/265311 (executing program) 2022/09/13 17:03:23 fetching corpus: 7250, signal 253651/265345 (executing program) 2022/09/13 17:03:23 fetching corpus: 7300, signal 253893/265348 (executing program) 2022/09/13 17:03:23 fetching corpus: 7350, signal 254427/265370 (executing program) 2022/09/13 17:03:24 fetching corpus: 7400, signal 254720/265397 (executing program) 2022/09/13 17:03:24 fetching corpus: 7450, signal 255055/265446 (executing program) 2022/09/13 17:03:24 fetching corpus: 7500, signal 255586/265450 (executing program) 2022/09/13 17:03:24 fetching corpus: 7550, signal 255859/265453 (executing program) 2022/09/13 17:03:24 fetching corpus: 7600, signal 256265/265457 (executing program) 2022/09/13 17:03:24 fetching corpus: 7604, signal 256295/265457 (executing program) 2022/09/13 17:03:24 fetching corpus: 7604, signal 256295/265457 (executing program) 2022/09/13 17:03:27 starting 8 fuzzer processes 17:03:27 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000340)=0x40) 17:03:27 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x5}, 0x14) 17:03:27 executing program 5: syz_emit_ethernet(0xc2, &(0x7f0000000300)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @rand_addr=0x64010100, {[@rr={0x7, 0x2}]}}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "9a9d3ea024eda0bce77faf76c7e49bb391e48d9cbeef7a253704a4691ee7e6fe", "0c184a37a61703d8175d34d07ec567437534446cfafdba5a2b3b52a27c3196465df7adb5f93d80c8ccf8bfe0f4da7657", "57948902d76044d579f5ac2653f518a9beb9f8f9ddc38c537038d734", {"b776339e7af87f71d2bc85b7193f727a", "bd7cb8937b109bfc000000000000c14c"}}}}}}}, 0x0) 17:03:27 executing program 3: r0 = socket$unix(0x1, 0x1, 0x0) fcntl$getflags(r0, 0x40a) 17:03:27 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x10, &(0x7f0000000000), 0xc) [ 85.282953] audit: type=1400 audit(1663088607.108:6): avc: denied { execmem } for pid=287 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:03:27 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setresuid(0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3, 0x18, 0x0) write(r0, &(0x7f0000000080)="01", 0x1) 17:03:27 executing program 7: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r0, &(0x7f0000001540)=[{0x0}, {&(0x7f0000000440)=""/137, 0x89}], 0x2, 0x0, 0x0) 17:03:27 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') [ 86.556997] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.559949] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.562133] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.564507] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.565862] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.581764] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.589008] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.591202] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.592407] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 86.593836] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.595133] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 86.596758] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.601702] Bluetooth: hci1: HCI_REQ-0x0c1a [ 86.612826] Bluetooth: hci2: HCI_REQ-0x0c1a [ 86.617816] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.619588] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.629874] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.646824] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.648201] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.652856] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 86.654102] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.656177] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.660489] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.671911] Bluetooth: hci3: HCI_REQ-0x0c1a [ 86.680330] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.685532] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 86.687923] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.693155] Bluetooth: hci4: HCI_REQ-0x0c1a [ 86.743063] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 86.745969] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 86.751687] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 86.762212] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 86.766221] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 86.768637] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.777391] Bluetooth: hci7: HCI_REQ-0x0c1a [ 88.522440] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 88.649759] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 88.650670] Bluetooth: hci1: command 0x0409 tx timeout [ 88.650972] Bluetooth: hci2: command 0x0409 tx timeout [ 88.713556] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 88.714406] Bluetooth: hci4: command 0x0409 tx timeout [ 88.714833] Bluetooth: hci3: command 0x0409 tx timeout [ 88.841355] Bluetooth: hci7: command 0x0409 tx timeout [ 90.697365] Bluetooth: hci2: command 0x041b tx timeout [ 90.697365] Bluetooth: hci1: command 0x041b tx timeout [ 90.761370] Bluetooth: hci3: command 0x041b tx timeout [ 90.761881] Bluetooth: hci4: command 0x041b tx timeout [ 90.889396] Bluetooth: hci7: command 0x041b tx timeout [ 91.475705] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.476744] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.477466] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.479140] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.480066] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.480865] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.483404] Bluetooth: hci0: HCI_REQ-0x0c1a [ 92.745366] Bluetooth: hci2: command 0x040f tx timeout [ 92.745848] Bluetooth: hci1: command 0x040f tx timeout [ 92.809401] Bluetooth: hci4: command 0x040f tx timeout [ 92.809836] Bluetooth: hci3: command 0x040f tx timeout [ 92.937361] Bluetooth: hci7: command 0x040f tx timeout [ 93.513415] Bluetooth: hci0: command 0x0409 tx timeout [ 93.641434] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 93.897382] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 94.793408] Bluetooth: hci1: command 0x0419 tx timeout [ 94.793900] Bluetooth: hci2: command 0x0419 tx timeout [ 94.858379] Bluetooth: hci3: command 0x0419 tx timeout [ 94.858848] Bluetooth: hci4: command 0x0419 tx timeout [ 94.985363] Bluetooth: hci7: command 0x0419 tx timeout [ 95.562372] Bluetooth: hci0: command 0x041b tx timeout [ 96.436749] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 96.437874] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 96.439912] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 96.444758] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 96.445995] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 96.446639] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.449196] Bluetooth: hci5: HCI_REQ-0x0c1a [ 97.609610] Bluetooth: hci0: command 0x040f tx timeout [ 98.505365] Bluetooth: hci5: command 0x0409 tx timeout [ 98.761398] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 99.657390] Bluetooth: hci0: command 0x0419 tx timeout [ 100.553404] Bluetooth: hci5: command 0x041b tx timeout [ 101.502896] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 101.512114] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 101.514141] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 101.517103] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 101.520965] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 101.521645] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 101.524693] Bluetooth: hci6: HCI_REQ-0x0c1a [ 102.601397] Bluetooth: hci5: command 0x040f tx timeout [ 103.561365] Bluetooth: hci6: command 0x0409 tx timeout [ 104.649858] Bluetooth: hci5: command 0x0419 tx timeout [ 105.609410] Bluetooth: hci6: command 0x041b tx timeout [ 107.657359] Bluetooth: hci6: command 0x040f tx timeout [ 109.705355] Bluetooth: hci6: command 0x0419 tx timeout 17:04:12 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 130.800958] loop5: detected capacity change from 0 to 16 [ 130.823169] FAT-fs (loop5): Directory bread(block 5) failed [ 130.838242] FAT-fs (loop5): Directory bread(block 5) failed [ 130.850555] FAT-fs (loop5): Directory bread(block 5) failed [ 130.851154] FAT-fs (loop5): Directory bread(block 5) failed [ 130.866645] FAT-fs (loop5): Directory bread(block 5) failed [ 130.868431] FAT-fs (loop5): Directory bread(block 5) failed [ 130.868998] FAT-fs (loop5): Directory bread(block 5) failed [ 130.869475] FAT-fs (loop5): Directory bread(block 5) failed 17:04:12 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') 17:04:12 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 131.025987] loop5: detected capacity change from 0 to 16 17:04:12 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') [ 131.054126] FAT-fs (loop5): Directory bread(block 5) failed [ 131.062116] FAT-fs (loop5): Directory bread(block 5) failed 17:04:12 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 131.075403] FAT-fs (loop5): Directory bread(block 5) failed [ 131.075857] FAT-fs (loop5): Directory bread(block 5) failed [ 131.103721] loop7: detected capacity change from 0 to 16 [ 131.115684] FAT-fs (loop7): Directory bread(block 5) failed [ 131.133626] FAT-fs (loop7): Directory bread(block 5) failed [ 131.137868] FAT-fs (loop7): Directory bread(block 5) failed [ 131.141249] FAT-fs (loop7): Directory bread(block 5) failed 17:04:12 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 17:04:13 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') 17:04:13 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 131.242610] loop5: detected capacity change from 0 to 16 [ 131.251940] FAT-fs (loop5): Directory bread(block 5) failed [ 131.255133] FAT-fs (loop5): Directory bread(block 5) failed [ 131.263664] FAT-fs (loop5): Directory bread(block 5) failed [ 131.264076] FAT-fs (loop5): Directory bread(block 5) failed [ 131.288490] loop7: detected capacity change from 0 to 16 [ 131.291300] FAT-fs (loop7): Directory bread(block 5) failed [ 131.297412] FAT-fs (loop7): Directory bread(block 5) failed [ 131.297848] FAT-fs (loop7): Directory bread(block 5) failed [ 131.298245] FAT-fs (loop7): Directory bread(block 5) failed 17:04:20 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000340)=0x40) 17:04:20 executing program 3: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={&(0x7f0000000240), 0x4}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=0x0) clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r1, 0x0, r1], 0x3}, 0x58) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000004c0)) r4 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)={0x30000004}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) epoll_pwait(0xffffffffffffffff, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x4, &(0x7f0000000340)={[0x7fffffff]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560c, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="1400001a3e00000071a40a00006b00000000000000"], 0x14}], 0x1}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r6, &(0x7f0000000180)='E', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={r6, r7, 0x1}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:04:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 17:04:20 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x10, &(0x7f0000000000), 0xc) 17:04:20 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r0) 17:04:20 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') 17:04:20 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 17:04:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setresuid(0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3, 0x18, 0x0) write(r0, &(0x7f0000000080)="01", 0x1) [ 138.356281] loop7: detected capacity change from 0 to 16 [ 138.363892] loop5: detected capacity change from 0 to 16 [ 138.368987] audit: type=1400 audit(1663088660.194:7): avc: denied { open } for pid=3982 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 138.371733] audit: type=1400 audit(1663088660.194:8): avc: denied { kernel } for pid=3982 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 138.388356] FAT-fs (loop7): Directory bread(block 5) failed [ 138.391151] FAT-fs (loop5): Directory bread(block 5) failed [ 138.403758] ------------[ cut here ]------------ [ 138.403808] [ 138.403814] ====================================================== [ 138.403823] WARNING: possible circular locking dependency detected [ 138.403833] 6.0.0-rc5-next-20220913 #1 Not tainted [ 138.403851] ------------------------------------------------------ [ 138.403859] syz-executor.3/3991 is trying to acquire lock: [ 138.403876] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 138.403958] [ 138.403958] but task is already holding lock: [ 138.403965] ffff88800e9a1420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 138.404031] [ 138.404031] which lock already depends on the new lock. [ 138.404031] [ 138.404039] [ 138.404039] the existing dependency chain (in reverse order) is: [ 138.404047] [ 138.404047] -> #3 (&ctx->lock){....}-{2:2}: [ 138.404082] _raw_spin_lock+0x2a/0x40 [ 138.404121] __perf_event_task_sched_out+0x53b/0x18d0 [ 138.404154] __schedule+0xedd/0x2470 [ 138.404179] schedule+0xda/0x1b0 [ 138.404203] exit_to_user_mode_prepare+0x114/0x1a0 [ 138.404253] syscall_exit_to_user_mode+0x19/0x40 [ 138.404300] do_syscall_64+0x48/0x90 [ 138.404335] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.404380] [ 138.404380] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 138.404414] _raw_spin_lock_nested+0x30/0x40 [ 138.404464] raw_spin_rq_lock_nested+0x1e/0x30 [ 138.404495] task_fork_fair+0x63/0x4d0 [ 138.404528] sched_cgroup_fork+0x3d0/0x540 [ 138.404553] copy_process+0x3f9e/0x6df0 [ 138.404571] kernel_clone+0xe7/0x890 [ 138.404589] user_mode_thread+0xad/0xf0 [ 138.404607] rest_init+0x24/0x250 [ 138.404638] arch_call_rest_init+0xf/0x14 [ 138.404671] start_kernel+0x4c1/0x4e6 [ 138.404703] secondary_startup_64_no_verify+0xe0/0xeb [ 138.404728] [ 138.404728] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 138.404753] _raw_spin_lock_irqsave+0x39/0x60 [ 138.404781] try_to_wake_up+0xab/0x1920 [ 138.404806] up+0x75/0xb0 [ 138.404827] __up_console_sem+0x6e/0x80 [ 138.404856] console_unlock+0x46a/0x590 [ 138.404885] do_con_write+0xc05/0x1d50 [ 138.404905] con_write+0x21/0x40 [ 138.404922] n_tty_write+0x4d4/0xfe0 [ 138.404944] file_tty_write.constprop.0+0x49c/0x8f0 [ 138.404966] vfs_write+0x9c3/0xd90 [ 138.404998] ksys_write+0x127/0x250 [ 138.405029] do_syscall_64+0x3b/0x90 [ 138.405053] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.405085] [ 138.405085] -> #0 ((console_sem).lock){....}-{2:2}: [ 138.405111] __lock_acquire+0x2a02/0x5e70 [ 138.405141] lock_acquire+0x1a2/0x530 [ 138.405171] _raw_spin_lock_irqsave+0x39/0x60 [ 138.405199] down_trylock+0xe/0x70 [ 138.405222] __down_trylock_console_sem+0x3b/0xd0 [ 138.405262] vprintk_emit+0x16b/0x560 [ 138.405305] vprintk+0x84/0xa0 [ 138.405335] _printk+0xba/0xf1 [ 138.405366] report_bug.cold+0x72/0xab [ 138.405389] handle_bug+0x3c/0x70 [ 138.405412] exc_invalid_op+0x14/0x50 [ 138.405437] asm_exc_invalid_op+0x16/0x20 [ 138.405467] group_sched_out.part.0+0x2c7/0x460 [ 138.405486] ctx_sched_out+0x8f1/0xc10 [ 138.405504] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.405527] __schedule+0xedd/0x2470 [ 138.405544] schedule+0xda/0x1b0 [ 138.405562] exit_to_user_mode_prepare+0x114/0x1a0 [ 138.405598] syscall_exit_to_user_mode+0x19/0x40 [ 138.405629] do_syscall_64+0x48/0x90 [ 138.405653] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.405685] [ 138.405685] other info that might help us debug this: [ 138.405685] [ 138.405690] Chain exists of: [ 138.405690] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 138.405690] [ 138.405718] Possible unsafe locking scenario: [ 138.405718] [ 138.405723] CPU0 CPU1 [ 138.405727] ---- ---- [ 138.405731] lock(&ctx->lock); [ 138.405742] lock(&rq->__lock); [ 138.405754] lock(&ctx->lock); [ 138.405766] lock((console_sem).lock); [ 138.405777] [ 138.405777] *** DEADLOCK *** [ 138.405777] [ 138.405781] 2 locks held by syz-executor.3/3991: [ 138.405793] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 138.405841] #1: ffff88800e9a1420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 138.405893] [ 138.405893] stack backtrace: [ 138.405898] CPU: 1 PID: 3991 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220913 #1 [ 138.405922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 138.405938] Call Trace: [ 138.405945] [ 138.405953] dump_stack_lvl+0x8b/0xb3 [ 138.405979] check_noncircular+0x263/0x2e0 [ 138.406011] ? format_decode+0x26c/0xb50 [ 138.406037] ? print_circular_bug+0x450/0x450 [ 138.406069] ? enable_ptr_key_workfn+0x20/0x20 [ 138.406097] ? format_decode+0x26c/0xb50 [ 138.406125] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 138.406159] __lock_acquire+0x2a02/0x5e70 [ 138.406199] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 138.406246] lock_acquire+0x1a2/0x530 [ 138.406289] ? down_trylock+0xe/0x70 [ 138.406317] ? rcu_read_unlock+0x40/0x40 [ 138.406356] ? vprintk+0x84/0xa0 [ 138.406390] _raw_spin_lock_irqsave+0x39/0x60 [ 138.406419] ? down_trylock+0xe/0x70 [ 138.406444] down_trylock+0xe/0x70 [ 138.406469] ? vprintk+0x84/0xa0 [ 138.406501] __down_trylock_console_sem+0x3b/0xd0 [ 138.406534] vprintk_emit+0x16b/0x560 [ 138.406570] vprintk+0x84/0xa0 [ 138.406603] _printk+0xba/0xf1 [ 138.406636] ? record_print_text.cold+0x16/0x16 [ 138.406677] ? report_bug.cold+0x66/0xab [ 138.406704] ? group_sched_out.part.0+0x2c7/0x460 [ 138.406725] report_bug.cold+0x72/0xab [ 138.406752] handle_bug+0x3c/0x70 [ 138.406778] exc_invalid_op+0x14/0x50 [ 138.406805] asm_exc_invalid_op+0x16/0x20 [ 138.406837] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 138.406861] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 138.406882] RSP: 0018:ffff8880421e7c48 EFLAGS: 00010006 [ 138.406899] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 138.406913] RDX: ffff8880429e0000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 138.406928] RBP: ffff888042398000 R08: 0000000000000005 R09: 0000000000000001 [ 138.406941] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88800e9a1400 [ 138.406955] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 138.406976] ? group_sched_out.part.0+0x2c7/0x460 [ 138.407000] ? group_sched_out.part.0+0x2c7/0x460 [ 138.407023] ctx_sched_out+0x8f1/0xc10 [ 138.407046] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.407179] ? lock_is_held_type+0xd7/0x130 [ 138.407214] ? __perf_cgroup_move+0x160/0x160 [ 138.407237] ? set_next_entity+0x304/0x550 [ 138.407286] ? update_curr+0x267/0x740 [ 138.407339] ? lock_is_held_type+0xd7/0x130 [ 138.407378] __schedule+0xedd/0x2470 [ 138.407402] ? io_schedule_timeout+0x150/0x150 [ 138.407425] ? rcu_read_lock_sched_held+0x3e/0x80 [ 138.407463] schedule+0xda/0x1b0 [ 138.407483] exit_to_user_mode_prepare+0x114/0x1a0 [ 138.407522] syscall_exit_to_user_mode+0x19/0x40 [ 138.407556] do_syscall_64+0x48/0x90 [ 138.407582] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.407616] RIP: 0033:0x7f1ec8e6eb19 [ 138.407632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 138.407652] RSP: 002b:00007f1ec63e4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 138.407673] RAX: 0000000000000001 RBX: 00007f1ec8f81f68 RCX: 00007f1ec8e6eb19 [ 138.407687] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1ec8f81f6c [ 138.407701] RBP: 00007f1ec8f81f60 R08: 000000000000000e R09: 0000000000000000 [ 138.407715] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f1ec8f81f6c [ 138.407729] R13: 00007fffae220fef R14: 00007f1ec63e4300 R15: 0000000000022000 [ 138.407752] [ 138.410193] FAT-fs (loop7): Directory bread(block 5) failed [ 138.410362] WARNING: CPU: 1 PID: 3991 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 138.411155] FAT-fs (loop7): Directory bread(block 5) failed [ 138.412100] Modules linked in: [ 138.412112] CPU: 1 PID: 3991 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220913 #1 [ 138.416679] FAT-fs (loop5): Directory bread(block 5) failed [ 138.416823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 138.418018] FAT-fs (loop5): Directory bread(block 5) failed [ 138.418980] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 138.419014] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 138.428369] FAT-fs (loop7): Directory bread(block 5) failed [ 138.428700] RSP: 0018:ffff8880421e7c48 EFLAGS: 00010006 [ 138.431357] FAT-fs (loop5): Directory bread(block 5) failed [ 138.431567] [ 138.431573] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 138.524479] RDX: ffff8880429e0000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 138.525428] RBP: ffff888042398000 R08: 0000000000000005 R09: 0000000000000001 [ 138.526390] R10: 0000000000000000 R11: ffffffff865aa05b R12: ffff88800e9a1400 [ 138.527332] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 138.528298] FS: 00007f1ec63e4700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 138.529372] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 138.530132] CR2: 0000001b2e029000 CR3: 00000000182a4000 CR4: 0000000000350ee0 [ 138.531100] Call Trace: [ 138.531473] [ 138.531784] ctx_sched_out+0x8f1/0xc10 [ 138.532329] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.533029] ? lock_is_held_type+0xd7/0x130 [ 138.533623] ? __perf_cgroup_move+0x160/0x160 [ 138.534231] ? set_next_entity+0x304/0x550 [ 138.534815] ? update_curr+0x267/0x740 [ 138.535394] ? lock_is_held_type+0xd7/0x130 [ 138.536155] __schedule+0xedd/0x2470 [ 138.536677] ? io_schedule_timeout+0x150/0x150 [ 138.537312] ? rcu_read_lock_sched_held+0x3e/0x80 [ 138.537988] schedule+0xda/0x1b0 [ 138.538471] exit_to_user_mode_prepare+0x114/0x1a0 [ 138.539148] syscall_exit_to_user_mode+0x19/0x40 [ 138.539804] do_syscall_64+0x48/0x90 [ 138.540315] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.541025] RIP: 0033:0x7f1ec8e6eb19 [ 138.541533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 138.543837] RSP: 002b:00007f1ec63e4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 138.544862] RAX: 0000000000000001 RBX: 00007f1ec8f81f68 RCX: 00007f1ec8e6eb19 [ 138.545805] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1ec8f81f6c [ 138.546767] RBP: 00007f1ec8f81f60 R08: 000000000000000e R09: 0000000000000000 [ 138.547939] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f1ec8f81f6c [ 138.548914] R13: 00007fffae220fef R14: 00007f1ec63e4300 R15: 0000000000022000 [ 138.549871] [ 138.550189] irq event stamp: 734 [ 138.550640] hardirqs last enabled at (733): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 138.551877] hardirqs last disabled at (734): [] __schedule+0x1225/0x2470 [ 138.552993] softirqs last enabled at (570): [] __irq_exit_rcu+0x11b/0x180 [ 138.554176] softirqs last disabled at (565): [] __irq_exit_rcu+0x11b/0x180 [ 138.555294] ---[ end trace 0000000000000000 ]--- 17:04:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setresuid(0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3, 0x18, 0x0) write(r0, &(0x7f0000000080)="01", 0x1) 17:04:20 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x10, &(0x7f0000000000), 0xc) 17:04:20 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002940), 0xffffffffffffffff) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x24}}, 0x0) [ 138.735072] audit: type=1400 audit(1663088660.560:9): avc: denied { block_suspend } for pid=3982 comm="syz-executor.3" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 138.753328] hrtimer: interrupt took 19115 ns 17:04:21 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000340)=0x40) 17:04:21 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r0) 17:04:21 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') 17:04:21 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x10, &(0x7f0000000000), 0xc) 17:04:21 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002940), 0xffffffffffffffff) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x24}}, 0x0) 17:04:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setresuid(0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3, 0x18, 0x0) write(r0, &(0x7f0000000080)="01", 0x1) 17:04:21 executing program 3: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={&(0x7f0000000240), 0x4}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=0x0) clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r1, 0x0, r1], 0x3}, 0x58) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000004c0)) r4 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)={0x30000004}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) epoll_pwait(0xffffffffffffffff, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x4, &(0x7f0000000340)={[0x7fffffff]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560c, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="1400001a3e00000071a40a00006b00000000000000"], 0x14}], 0x1}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r6, &(0x7f0000000180)='E', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={r6, r7, 0x1}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:04:21 executing program 7: syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @broadcast}}}], 0x20}, 0x0) 17:04:21 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r0) 17:04:22 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000340)=0x40) 17:04:22 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4) unlink(&(0x7f0000000200)='./file0/file0\x00') 17:04:22 executing program 4: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={&(0x7f0000000240), 0x4}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=0x0) clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r1, 0x0, r1], 0x3}, 0x58) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000004c0)) r4 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)={0x30000004}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) epoll_pwait(0xffffffffffffffff, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x4, &(0x7f0000000340)={[0x7fffffff]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560c, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="1400001a3e00000071a40a00006b00000000000000"], 0x14}], 0x1}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r6, &(0x7f0000000180)='E', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={r6, r7, 0x1}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:04:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002940), 0xffffffffffffffff) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x24}}, 0x0) 17:04:22 executing program 6: syz_io_uring_setup(0x6b70, &(0x7f0000000200)={0x0, 0xbde7}, &(0x7f0000ff0000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb) 17:04:22 executing program 0: set_mempolicy(0x3, &(0x7f0000000080)=0x7fff, 0x6fb1) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{}]}) 17:04:22 executing program 2: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(r0) 17:04:22 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) r1 = shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) r2 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x0) shmat(r2, &(0x7f0000ff6000/0x4000)=nil, 0x7000) shmdt(r1) 17:04:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002940), 0xffffffffffffffff) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f0000000080)={0x24, r1, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_STRSET_STRINGSETS={0x4}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x24}}, 0x0) 17:04:22 executing program 0: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNAPSHOT_FREE(r0, 0x80083313) 17:04:22 executing program 4: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={&(0x7f0000000240), 0x4}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=0x0) clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r1, 0x0, r1], 0x3}, 0x58) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000004c0)) r4 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)={0x30000004}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) epoll_pwait(0xffffffffffffffff, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x4, &(0x7f0000000340)={[0x7fffffff]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560c, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="1400001a3e00000071a40a00006b00000000000000"], 0x14}], 0x1}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r6, &(0x7f0000000180)='E', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={r6, r7, 0x1}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:04:22 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x23}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000180), 0x4) r2 = dup2(r1, r1) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000040)=0x3, 0x4) r3 = dup(r0) bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="15"], 0x6) 17:04:22 executing program 7: syz_genetlink_get_family_id$ieee802154(&(0x7f00000000c0), 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @broadcast}}}], 0x20}, 0x0) 17:04:22 executing program 3: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={&(0x7f0000000240), 0x4}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=0x0) clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r1, 0x0, r1], 0x3}, 0x58) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f00000004c0)) r4 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000200)={0x30000004}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) epoll_pwait(0xffffffffffffffff, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x4, &(0x7f0000000340)={[0x7fffffff]}, 0x8) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560c, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="1400001a3e00000071a40a00006b00000000000000"], 0x14}], 0x1}, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r6, &(0x7f0000000180)='E', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) kcmp$KCMP_EPOLL_TFD(0x0, r2, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={r6, r7, 0x1}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 141.088470] random: crng reseeded on system resumption [ 141.096401] random: crng reseeded on system resumption [ 141.106910] Bluetooth: MGMT ver 1.22 17:04:22 executing program 1: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x2, &(0x7f0000000780)=[{&(0x7f0000000340)="7f", 0x1}, {0x0, 0x0, 0x100000000}], 0x0, 0x0) accept$packet(0xffffffffffffffff, 0x0, 0x0) [ 141.146617] loop1: detected capacity change from 0 to 264192 17:04:23 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) r1 = shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000) r2 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x0) shmat(r2, &(0x7f0000ff6000/0x4000)=nil, 0x7000) shmdt(r1) 17:04:23 executing program 0: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) unlink(&(0x7f00000001c0)='./file1\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) 17:04:23 executing program 1: keyctl$update(0x2, 0x0, 0x0, 0x0) [ 141.212783] loop0: detected capacity change from 0 to 40 17:04:23 executing program 5: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x800448d4, 0x0) 17:04:23 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x23}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000180), 0x4) r2 = dup2(r1, r1) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000040)=0x3, 0x4) r3 = dup(r0) bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="15"], 0x6) [ 145.801473] Bluetooth: hci0: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 17:04:20 Registers: info registers vcpu 0 RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b25c1 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff88801ad66e50 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000039 R11=0000000000000001 R12=0000000000000039 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b25b0 RIP=ffffffff822b2619 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fbc31d71700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2df29000 CR3=0000000033b3e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b25c1 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff8880421e75e8 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006d R11=0000000000000001 R12=000000000000006d R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b25b0 RIP=ffffffff822b2619 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1ec63e4700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2e029000 CR3=00000000182a4000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f1ec8f557c0 00007f1ec8f557c8 YMM02=0000000000000000 0000000000000000 00007f1ec8f557e0 00007f1ec8f557c0 YMM03=0000000000000000 0000000000000000 00007f1ec8f557c8 00007f1ec8f557c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000