Warning: Permanently added '[localhost]:14723' (ECDSA) to the list of known hosts. 2022/09/14 12:07:22 fuzzer started 2022/09/14 12:07:23 dialing manager at localhost:33849 syzkaller login: [ 45.795918] cgroup: Unknown subsys name 'net' [ 45.917352] cgroup: Unknown subsys name 'rlimit' 2022/09/14 12:07:38 syscalls: 2215 2022/09/14 12:07:38 code coverage: enabled 2022/09/14 12:07:38 comparison tracing: enabled 2022/09/14 12:07:38 extra coverage: enabled 2022/09/14 12:07:38 setuid sandbox: enabled 2022/09/14 12:07:38 namespace sandbox: enabled 2022/09/14 12:07:38 Android sandbox: enabled 2022/09/14 12:07:38 fault injection: enabled 2022/09/14 12:07:38 leak checking: enabled 2022/09/14 12:07:38 net packet injection: enabled 2022/09/14 12:07:38 net device setup: enabled 2022/09/14 12:07:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/14 12:07:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/14 12:07:38 USB emulation: enabled 2022/09/14 12:07:38 hci packet injection: enabled 2022/09/14 12:07:38 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220914) 2022/09/14 12:07:38 802.15.4 emulation: enabled 2022/09/14 12:07:38 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/14 12:07:38 fetching corpus: 50, signal 28101/31547 (executing program) 2022/09/14 12:07:38 fetching corpus: 100, signal 44483/49129 (executing program) 2022/09/14 12:07:38 fetching corpus: 150, signal 51315/57173 (executing program) 2022/09/14 12:07:38 fetching corpus: 200, signal 57776/64765 (executing program) 2022/09/14 12:07:38 fetching corpus: 250, signal 63454/71466 (executing program) 2022/09/14 12:07:39 fetching corpus: 300, signal 68430/77495 (executing program) 2022/09/14 12:07:39 fetching corpus: 350, signal 73103/83118 (executing program) 2022/09/14 12:07:39 fetching corpus: 400, signal 82409/92863 (executing program) 2022/09/14 12:07:39 fetching corpus: 450, signal 87315/98374 (executing program) 2022/09/14 12:07:39 fetching corpus: 500, signal 92585/104190 (executing program) 2022/09/14 12:07:39 fetching corpus: 550, signal 97875/109841 (executing program) 2022/09/14 12:07:39 fetching corpus: 600, signal 100763/113356 (executing program) 2022/09/14 12:07:40 fetching corpus: 650, signal 103310/116523 (executing program) 2022/09/14 12:07:40 fetching corpus: 700, signal 105900/119585 (executing program) 2022/09/14 12:07:40 fetching corpus: 750, signal 108326/122448 (executing program) 2022/09/14 12:07:40 fetching corpus: 800, signal 110587/125099 (executing program) 2022/09/14 12:07:40 fetching corpus: 850, signal 112716/127716 (executing program) 2022/09/14 12:07:40 fetching corpus: 900, signal 116295/131427 (executing program) 2022/09/14 12:07:40 fetching corpus: 950, signal 119946/135132 (executing program) 2022/09/14 12:07:40 fetching corpus: 1000, signal 122147/137565 (executing program) 2022/09/14 12:07:41 fetching corpus: 1050, signal 125119/140554 (executing program) 2022/09/14 12:07:41 fetching corpus: 1100, signal 127914/143326 (executing program) 2022/09/14 12:07:41 fetching corpus: 1150, signal 129444/145131 (executing program) 2022/09/14 12:07:41 fetching corpus: 1200, signal 131422/147307 (executing program) 2022/09/14 12:07:41 fetching corpus: 1250, signal 133363/149439 (executing program) 2022/09/14 12:07:41 fetching corpus: 1300, signal 135150/151288 (executing program) 2022/09/14 12:07:41 fetching corpus: 1350, signal 136965/153158 (executing program) 2022/09/14 12:07:42 fetching corpus: 1400, signal 139911/155748 (executing program) 2022/09/14 12:07:42 fetching corpus: 1450, signal 141441/157302 (executing program) 2022/09/14 12:07:42 fetching corpus: 1500, signal 144094/159570 (executing program) 2022/09/14 12:07:42 fetching corpus: 1550, signal 145681/161154 (executing program) 2022/09/14 12:07:42 fetching corpus: 1600, signal 146764/162310 (executing program) 2022/09/14 12:07:42 fetching corpus: 1650, signal 148590/163985 (executing program) 2022/09/14 12:07:43 fetching corpus: 1700, signal 151832/166408 (executing program) 2022/09/14 12:07:43 fetching corpus: 1750, signal 153287/167699 (executing program) 2022/09/14 12:07:43 fetching corpus: 1800, signal 155363/169419 (executing program) 2022/09/14 12:07:43 fetching corpus: 1850, signal 156910/170722 (executing program) 2022/09/14 12:07:43 fetching corpus: 1900, signal 158086/171755 (executing program) 2022/09/14 12:07:43 fetching corpus: 1950, signal 159646/172977 (executing program) 2022/09/14 12:07:43 fetching corpus: 2000, signal 160701/173837 (executing program) 2022/09/14 12:07:44 fetching corpus: 2050, signal 161517/174589 (executing program) 2022/09/14 12:07:44 fetching corpus: 2100, signal 162748/175542 (executing program) 2022/09/14 12:07:44 fetching corpus: 2150, signal 164529/176738 (executing program) 2022/09/14 12:07:44 fetching corpus: 2200, signal 165901/177710 (executing program) 2022/09/14 12:07:44 fetching corpus: 2250, signal 167354/178685 (executing program) 2022/09/14 12:07:44 fetching corpus: 2300, signal 168637/179576 (executing program) 2022/09/14 12:07:44 fetching corpus: 2350, signal 169527/180228 (executing program) 2022/09/14 12:07:44 fetching corpus: 2400, signal 170335/180810 (executing program) 2022/09/14 12:07:45 fetching corpus: 2450, signal 171544/181586 (executing program) 2022/09/14 12:07:45 fetching corpus: 2500, signal 173044/182407 (executing program) 2022/09/14 12:07:45 fetching corpus: 2550, signal 173968/183102 (executing program) 2022/09/14 12:07:45 fetching corpus: 2600, signal 174950/183679 (executing program) 2022/09/14 12:07:45 fetching corpus: 2650, signal 175774/184229 (executing program) 2022/09/14 12:07:45 fetching corpus: 2700, signal 176560/184704 (executing program) 2022/09/14 12:07:45 fetching corpus: 2750, signal 177321/185109 (executing program) 2022/09/14 12:07:45 fetching corpus: 2800, signal 178496/185688 (executing program) 2022/09/14 12:07:46 fetching corpus: 2850, signal 179556/186193 (executing program) 2022/09/14 12:07:46 fetching corpus: 2900, signal 180233/186551 (executing program) 2022/09/14 12:07:46 fetching corpus: 2950, signal 181254/187012 (executing program) 2022/09/14 12:07:46 fetching corpus: 3000, signal 182444/187494 (executing program) 2022/09/14 12:07:46 fetching corpus: 3050, signal 183621/188087 (executing program) 2022/09/14 12:07:46 fetching corpus: 3100, signal 184262/188452 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188549 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188608 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188680 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188745 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188815 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188890 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/188952 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189012 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189074 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189139 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189198 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189270 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189346 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189414 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189473 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189529 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189593 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189658 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189726 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189802 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189871 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/189953 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/190039 (executing program) 2022/09/14 12:07:46 fetching corpus: 3110, signal 184400/190106 (executing program) 2022/09/14 12:07:47 fetching corpus: 3110, signal 184400/190107 (executing program) 2022/09/14 12:07:47 fetching corpus: 3110, signal 184400/190107 (executing program) 2022/09/14 12:07:49 starting 8 fuzzer processes 12:07:49 executing program 0: r0 = epoll_create(0x4) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)) r2 = epoll_create(0x4) r3 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000380)) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) 12:07:49 executing program 1: syz_io_uring_setup(0xfa7, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) clock_gettime(0x0, &(0x7f0000009f00)) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x100, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, 0x6, 0x1}, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000100)) clock_gettime(0x0, &(0x7f0000007b00)) clock_gettime(0x0, &(0x7f0000007b40)) close(r2) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000077c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000004980)=@abs, 0x6e, &(0x7f0000004b00)=[{0x0}], 0x1}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000007500)}}, {{0x0, 0x0, 0x0}}], 0x5, 0x0, 0x0) 12:07:49 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_REMOVE(r0, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) 12:07:49 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(r0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = dup2(r1, r1) r3 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, 0xffffffffffffffff, 0x0) r4 = epoll_create(0x80) r5 = openat2(r2, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)={0x18400, 0x88, 0x14}, 0x18) preadv(r5, &(0x7f0000000240)=[{&(0x7f0000000380)=""/216, 0xd8}], 0x1, 0x1f, 0x2) ioctl$AUTOFS_IOC_PROTOSUBVER(r4, 0x80049367, &(0x7f0000000100)) syz_io_uring_setup(0x28e4, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000880), &(0x7f00000008c0)) syz_io_uring_setup(0x2148, &(0x7f0000000300)={0x0, 0x3067, 0x4, 0x1, 0x206}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000180)) 12:07:49 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) io_submit(r0, 0x1, &(0x7f00000005c0)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f00000001c0)=')', 0x1}]) r2 = eventfd2(0x7, 0x0) sendfile(r1, r2, &(0x7f0000000340)=0x5, 0x400) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00') socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) close(r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r5, &(0x7f0000000080)="01", 0x41030) socket$nl_generic(0x10, 0x3, 0x10) preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000000)=""/20, 0x14}], 0x1, 0x0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(0xffffffffffffffff, 0x7, &(0x7f0000000180), 0x1) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) socket$packet(0x11, 0x3, 0x300) read$hiddev(r3, &(0x7f0000000040)=""/169, 0x200000e9) 12:07:49 executing program 5: syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg}}}}}, 0x0) syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x7c, 0x0, @wg=@data={0x4, 0x0, 0x0, '\x00'/100}}}}}}, 0x0) 12:07:49 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7969, &(0x7f00000001c0)={0x0, 0xfc32, 0x0, 0x3, 0x109}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), &(0x7f0000000240)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x8c) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r1 = getpgid(0xffffffffffffffff) perf_event_open(&(0x7f0000000380)={0x5, 0x80, 0xff, 0x0, 0x0, 0xda, 0x0, 0x6, 0x2020, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f00000017c0), 0xd}, 0x11c07, 0xc03, 0x7f, 0x6, 0x0, 0x8, 0x80, 0x0, 0x0, 0x0, 0x8001}, r1, 0x6, r0, 0x8) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_open_procfs(0x0, &(0x7f00000011c0)='mountinfo\x00') open(&(0x7f0000000000)='./file0\x00', 0x531081, 0x0) inotify_init1(0x0) 12:07:49 executing program 7: ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, 0x0) syz_open_procfs(0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0xf69}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) pread64(0xffffffffffffffff, &(0x7f0000000080)=""/39, 0x27, 0x0) ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10) [ 71.821500] audit: type=1400 audit(1663157269.435:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 73.180095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.181930] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.183355] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.186881] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.188737] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.190181] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.195014] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.254510] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.257456] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.259468] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.261461] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.263206] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.264388] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.265685] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.266995] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.268367] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.269915] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.272351] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.273848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.276240] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.277658] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.279874] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.280973] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.283015] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.284135] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.287190] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.287326] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.289273] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.291875] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.292639] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.294826] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.295282] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 73.296356] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.297864] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.298302] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.299966] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.303406] Bluetooth: hci6: HCI_REQ-0x0c1a [ 73.304832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.306384] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.307798] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.309671] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.317500] Bluetooth: hci3: HCI_REQ-0x0c1a [ 73.318500] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.319668] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 73.322235] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.322938] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 73.332434] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.333459] Bluetooth: hci7: HCI_REQ-0x0c1a [ 73.382313] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.254487] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 75.255687] Bluetooth: hci0: command 0x0409 tx timeout [ 75.317115] Bluetooth: hci6: command 0x0409 tx timeout [ 75.382136] Bluetooth: hci7: command 0x0409 tx timeout [ 75.382662] Bluetooth: hci5: command 0x0409 tx timeout [ 75.383504] Bluetooth: hci4: command 0x0409 tx timeout [ 75.384409] Bluetooth: hci3: command 0x0409 tx timeout [ 75.445095] Bluetooth: hci1: command 0x0409 tx timeout [ 77.301153] Bluetooth: hci0: command 0x041b tx timeout [ 77.366146] Bluetooth: hci6: command 0x041b tx timeout [ 77.429174] Bluetooth: hci3: command 0x041b tx timeout [ 77.430200] Bluetooth: hci4: command 0x041b tx timeout [ 77.430644] Bluetooth: hci5: command 0x041b tx timeout [ 77.431686] Bluetooth: hci7: command 0x041b tx timeout [ 77.493084] Bluetooth: hci1: command 0x041b tx timeout [ 79.349111] Bluetooth: hci0: command 0x040f tx timeout [ 79.413252] Bluetooth: hci6: command 0x040f tx timeout [ 79.477093] Bluetooth: hci7: command 0x040f tx timeout [ 79.477595] Bluetooth: hci5: command 0x040f tx timeout [ 79.478197] Bluetooth: hci4: command 0x040f tx timeout [ 79.478650] Bluetooth: hci3: command 0x040f tx timeout [ 79.541082] Bluetooth: hci1: command 0x040f tx timeout [ 80.117101] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 81.398141] Bluetooth: hci0: command 0x0419 tx timeout [ 81.462115] Bluetooth: hci6: command 0x0419 tx timeout [ 81.525102] Bluetooth: hci3: command 0x0419 tx timeout [ 81.525577] Bluetooth: hci4: command 0x0419 tx timeout [ 81.525965] Bluetooth: hci5: command 0x0419 tx timeout [ 81.526416] Bluetooth: hci7: command 0x0419 tx timeout [ 81.590089] Bluetooth: hci1: command 0x0419 tx timeout [ 82.752134] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.754161] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.754844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.756869] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.757762] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.758930] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.792831] Bluetooth: hci2: HCI_REQ-0x0c1a [ 84.853256] Bluetooth: hci2: command 0x0409 tx timeout [ 86.901130] Bluetooth: hci2: command 0x041b tx timeout [ 88.949093] Bluetooth: hci2: command 0x040f tx timeout [ 90.997089] Bluetooth: hci2: command 0x0419 tx timeout [ 131.525715] audit: type=1400 audit(1663157329.139:7): avc: denied { open } for pid=3695 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 131.527887] audit: type=1400 audit(1663157329.139:8): avc: denied { kernel } for pid=3695 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 131.547700] ------------[ cut here ]------------ [ 131.547720] [ 131.547722] ====================================================== [ 131.547726] WARNING: possible circular locking dependency detected [ 131.547730] 6.0.0-rc5-next-20220914 #1 Not tainted [ 131.547736] ------------------------------------------------------ [ 131.547739] syz-executor.6/3697 is trying to acquire lock: [ 131.547746] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 131.547784] [ 131.547784] but task is already holding lock: [ 131.547787] ffff88800ec03820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 131.547815] [ 131.547815] which lock already depends on the new lock. [ 131.547815] [ 131.547818] [ 131.547818] the existing dependency chain (in reverse order) is: [ 131.547821] [ 131.547821] -> #3 (&ctx->lock){....}-{2:2}: [ 131.547835] _raw_spin_lock+0x2a/0x40 [ 131.547852] __perf_event_task_sched_out+0x53b/0x18d0 [ 131.547864] __schedule+0xedd/0x2470 [ 131.547875] schedule+0xda/0x1b0 [ 131.547884] exit_to_user_mode_prepare+0x114/0x1a0 [ 131.547904] syscall_exit_to_user_mode+0x19/0x40 [ 131.547922] do_syscall_64+0x48/0x90 [ 131.547935] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.547953] [ 131.547953] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 131.547966] _raw_spin_lock_nested+0x30/0x40 [ 131.547981] raw_spin_rq_lock_nested+0x1e/0x30 [ 131.547994] task_fork_fair+0x63/0x4d0 [ 131.548011] sched_cgroup_fork+0x3d0/0x540 [ 131.548027] copy_process+0x4183/0x6e20 [ 131.548038] kernel_clone+0xe7/0x890 [ 131.548047] user_mode_thread+0xad/0xf0 [ 131.548057] rest_init+0x24/0x250 [ 131.548073] arch_call_rest_init+0xf/0x14 [ 131.548086] start_kernel+0x4c1/0x4e6 [ 131.548095] secondary_startup_64_no_verify+0xe0/0xeb [ 131.548110] [ 131.548110] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 131.548124] _raw_spin_lock_irqsave+0x39/0x60 [ 131.548138] try_to_wake_up+0xab/0x1920 [ 131.548151] up+0x75/0xb0 [ 131.548162] __up_console_sem+0x6e/0x80 [ 131.548178] console_unlock+0x46a/0x590 [ 131.548193] vt_ioctl+0x2822/0x2ca0 [ 131.548206] tty_ioctl+0x7c4/0x1700 [ 131.548217] __x64_sys_ioctl+0x19a/0x210 [ 131.548232] do_syscall_64+0x3b/0x90 [ 131.548245] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.548261] [ 131.548261] -> #0 ((console_sem).lock){....}-{2:2}: [ 131.548275] __lock_acquire+0x2a02/0x5e70 [ 131.548291] lock_acquire+0x1a2/0x530 [ 131.548306] _raw_spin_lock_irqsave+0x39/0x60 [ 131.548321] down_trylock+0xe/0x70 [ 131.548333] __down_trylock_console_sem+0x3b/0xd0 [ 131.548349] vprintk_emit+0x16b/0x560 [ 131.548365] vprintk+0x84/0xa0 [ 131.548380] _printk+0xba/0xf1 [ 131.548397] report_bug.cold+0x72/0xab [ 131.548410] handle_bug+0x3c/0x70 [ 131.548422] exc_invalid_op+0x14/0x50 [ 131.548435] asm_exc_invalid_op+0x16/0x20 [ 131.548450] group_sched_out.part.0+0x2c7/0x460 [ 131.548461] ctx_sched_out+0x8f1/0xc10 [ 131.548471] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.548483] __schedule+0xedd/0x2470 [ 131.548492] schedule+0xda/0x1b0 [ 131.548502] exit_to_user_mode_prepare+0x114/0x1a0 [ 131.548520] syscall_exit_to_user_mode+0x19/0x40 [ 131.548537] do_syscall_64+0x48/0x90 [ 131.548549] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.548566] [ 131.548566] other info that might help us debug this: [ 131.548566] [ 131.548569] Chain exists of: [ 131.548569] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 131.548569] [ 131.548583] Possible unsafe locking scenario: [ 131.548583] [ 131.548586] CPU0 CPU1 [ 131.548588] ---- ---- [ 131.548591] lock(&ctx->lock); [ 131.548596] lock(&rq->__lock); [ 131.548603] lock(&ctx->lock); [ 131.548609] lock((console_sem).lock); [ 131.548615] [ 131.548615] *** DEADLOCK *** [ 131.548615] [ 131.548617] 2 locks held by syz-executor.6/3697: [ 131.548624] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 131.548649] #1: ffff88800ec03820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 131.548677] [ 131.548677] stack backtrace: [ 131.548680] CPU: 1 PID: 3697 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220914 #1 [ 131.548693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 131.548701] Call Trace: [ 131.548704] [ 131.548708] dump_stack_lvl+0x8b/0xb3 [ 131.548723] check_noncircular+0x263/0x2e0 [ 131.548739] ? format_decode+0x26c/0xb50 [ 131.548754] ? print_circular_bug+0x450/0x450 [ 131.548771] ? enable_ptr_key_workfn+0x20/0x20 [ 131.548786] ? format_decode+0x26c/0xb50 [ 131.548801] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 131.548818] __lock_acquire+0x2a02/0x5e70 [ 131.548839] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 131.548862] lock_acquire+0x1a2/0x530 [ 131.548878] ? down_trylock+0xe/0x70 [ 131.548892] ? rcu_read_unlock+0x40/0x40 [ 131.548913] ? vprintk+0x84/0xa0 [ 131.548930] _raw_spin_lock_irqsave+0x39/0x60 [ 131.548945] ? down_trylock+0xe/0x70 [ 131.548959] down_trylock+0xe/0x70 [ 131.548972] ? vprintk+0x84/0xa0 [ 131.548988] __down_trylock_console_sem+0x3b/0xd0 [ 131.549005] vprintk_emit+0x16b/0x560 [ 131.549024] vprintk+0x84/0xa0 [ 131.549041] _printk+0xba/0xf1 [ 131.549075] ? record_print_text.cold+0x16/0x16 [ 131.549096] ? report_bug.cold+0x66/0xab [ 131.549110] ? group_sched_out.part.0+0x2c7/0x460 [ 131.549122] report_bug.cold+0x72/0xab [ 131.549137] handle_bug+0x3c/0x70 [ 131.549150] exc_invalid_op+0x14/0x50 [ 131.549164] asm_exc_invalid_op+0x16/0x20 [ 131.549181] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 131.549194] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 131.549205] RSP: 0018:ffff88800de9fc48 EFLAGS: 00010006 [ 131.549215] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 131.549222] RDX: ffff88801b165040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 131.549230] RBP: ffff88803f7c0000 R08: 0000000000000005 R09: 0000000000000001 [ 131.549237] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ec03800 [ 131.549245] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 131.549256] ? group_sched_out.part.0+0x2c7/0x460 [ 131.549269] ? group_sched_out.part.0+0x2c7/0x460 [ 131.549282] ctx_sched_out+0x8f1/0xc10 [ 131.549295] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.549310] ? lock_is_held_type+0xd7/0x130 [ 131.549328] ? __perf_cgroup_move+0x160/0x160 [ 131.549339] ? set_next_entity+0x304/0x550 [ 131.549357] ? update_curr+0x267/0x740 [ 131.549375] ? lock_is_held_type+0xd7/0x130 [ 131.549393] __schedule+0xedd/0x2470 [ 131.549406] ? io_schedule_timeout+0x150/0x150 [ 131.549419] ? rcu_read_lock_sched_held+0x3e/0x80 [ 131.549439] schedule+0xda/0x1b0 [ 131.549451] exit_to_user_mode_prepare+0x114/0x1a0 [ 131.549470] syscall_exit_to_user_mode+0x19/0x40 [ 131.549488] do_syscall_64+0x48/0x90 [ 131.549502] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.549519] RIP: 0033:0x7f9d027f3b19 [ 131.549528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 131.549539] RSP: 002b:00007f9cffd69218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 131.549550] RAX: 0000000000000001 RBX: 00007f9d02906f68 RCX: 00007f9d027f3b19 [ 131.549558] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9d02906f6c [ 131.549565] RBP: 00007f9d02906f60 R08: 000000000000000e R09: 0000000000000000 [ 131.549572] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f9d02906f6c [ 131.549580] R13: 00007ffef8f386bf R14: 00007f9cffd69300 R15: 0000000000022000 [ 131.549593] [ 131.604281] WARNING: CPU: 1 PID: 3697 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 131.604883] Modules linked in: [ 131.605119] CPU: 1 PID: 3697 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220914 #1 [ 131.605641] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 131.606369] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 131.606725] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 131.607902] RSP: 0018:ffff88800de9fc48 EFLAGS: 00010006 [ 131.608255] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 131.608718] RDX: ffff88801b165040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 131.609194] RBP: ffff88803f7c0000 R08: 0000000000000005 R09: 0000000000000001 [ 131.609658] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ec03800 [ 131.610121] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 131.610590] FS: 00007f9cffd69700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 131.611114] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 131.611499] CR2: 00007fa8bf95f620 CR3: 000000001870c000 CR4: 0000000000350ee0 [ 131.611962] Call Trace: [ 131.612136] [ 131.612292] ctx_sched_out+0x8f1/0xc10 [ 131.612555] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.612903] ? lock_is_held_type+0xd7/0x130 [ 131.613209] ? __perf_cgroup_move+0x160/0x160 [ 131.613509] ? set_next_entity+0x304/0x550 [ 131.613797] ? update_curr+0x267/0x740 [ 131.614069] ? lock_is_held_type+0xd7/0x130 [ 131.614364] __schedule+0xedd/0x2470 [ 131.614630] ? io_schedule_timeout+0x150/0x150 [ 131.614939] ? rcu_read_lock_sched_held+0x3e/0x80 [ 131.615269] schedule+0xda/0x1b0 [ 131.615501] exit_to_user_mode_prepare+0x114/0x1a0 [ 131.615836] syscall_exit_to_user_mode+0x19/0x40 [ 131.616161] do_syscall_64+0x48/0x90 [ 131.616419] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.616766] RIP: 0033:0x7f9d027f3b19 [ 131.617015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 131.618199] RSP: 002b:00007f9cffd69218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 131.618695] RAX: 0000000000000001 RBX: 00007f9d02906f68 RCX: 00007f9d027f3b19 [ 131.619162] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9d02906f6c [ 131.619628] RBP: 00007f9d02906f60 R08: 000000000000000e R09: 0000000000000000 [ 131.620091] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f9d02906f6c [ 131.620557] R13: 00007ffef8f386bf R14: 00007f9cffd69300 R15: 0000000000022000 [ 131.621027] [ 131.621193] irq event stamp: 608 [ 131.621417] hardirqs last enabled at (607): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 131.622034] hardirqs last disabled at (608): [] __schedule+0x1225/0x2470 [ 131.622569] softirqs last enabled at (364): [] __irq_exit_rcu+0x11b/0x180 [ 131.623130] softirqs last disabled at (359): [] __irq_exit_rcu+0x11b/0x180 [ 131.623688] ---[ end trace 0000000000000000 ]--- [ 135.576048] hrtimer: interrupt took 22812 ns [ 136.501212] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 136.501222] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 136.502315] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 136.565069] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 140.725211] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 140.789058] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 140.789066] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 140.853068] Bluetooth: hci7: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 12:08:49 Registers: info registers vcpu 0 RAX=fffffbfff0a84cb7 RBX=fffffbfff0a84cbd RCX=ffffffff81373c8d RDX=fffffbfff0a84cbd RSI=0000000000000038 RDI=ffffffff854265b0 RBP=fffffbfff0a84cb6 RSP=ffff88806ce09c58 R8 =0000000000000000 R9 =ffffffff854265e7 R10=fffffbfff0a84cbc R11=0000000000000001 R12=0000000000000038 R13=ffffffff854265e8 R14=1714b8c768a1ea00 R15=ffffffff8705b6a8 RIP=ffffffff81787f15 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f074cadf028 CR3=000000003f556000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 000000ff00000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b24f1 RDI=ffffffff87641b60 RBP=ffffffff87641b20 RSP=ffff88800de9f698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=ffffffff87641b20 R14=0000000000000010 R15=ffffffff822b24e0 RIP=ffffffff822b2549 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9cffd69700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa8bf95f620 CR3=000000001870c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f9d028da7c0 00007f9d028da7c8 YMM02=0000000000000000 0000000000000000 00007f9d028da7e0 00007f9d028da7c0 YMM03=0000000000000000 0000000000000000 00007f9d028da7c8 00007f9d028da7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000