Warning: Permanently added '[localhost]:6032' (ECDSA) to the list of known hosts. 2022/09/12 14:00:19 fuzzer started 2022/09/12 14:00:19 dialing manager at localhost:38027 syzkaller login: [ 36.577939] cgroup: Unknown subsys name 'net' [ 36.682046] cgroup: Unknown subsys name 'rlimit' 2022/09/12 14:00:33 syscalls: 2215 2022/09/12 14:00:33 code coverage: enabled 2022/09/12 14:00:33 comparison tracing: enabled 2022/09/12 14:00:33 extra coverage: enabled 2022/09/12 14:00:33 setuid sandbox: enabled 2022/09/12 14:00:33 namespace sandbox: enabled 2022/09/12 14:00:33 Android sandbox: enabled 2022/09/12 14:00:33 fault injection: enabled 2022/09/12 14:00:33 leak checking: enabled 2022/09/12 14:00:33 net packet injection: enabled 2022/09/12 14:00:33 net device setup: enabled 2022/09/12 14:00:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 14:00:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 14:00:33 USB emulation: enabled 2022/09/12 14:00:33 hci packet injection: enabled 2022/09/12 14:00:33 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 14:00:33 802.15.4 emulation: enabled 2022/09/12 14:00:33 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 14:00:33 fetching corpus: 50, signal 28453/31738 (executing program) 2022/09/12 14:00:33 fetching corpus: 100, signal 41394/45852 (executing program) 2022/09/12 14:00:33 fetching corpus: 150, signal 52551/57966 (executing program) 2022/09/12 14:00:33 fetching corpus: 200, signal 60029/66386 (executing program) 2022/09/12 14:00:33 fetching corpus: 250, signal 66633/73812 (executing program) 2022/09/12 14:00:34 fetching corpus: 300, signal 75387/82972 (executing program) 2022/09/12 14:00:34 fetching corpus: 350, signal 79704/87932 (executing program) 2022/09/12 14:00:34 fetching corpus: 400, signal 82648/91579 (executing program) 2022/09/12 14:00:34 fetching corpus: 450, signal 87728/97069 (executing program) 2022/09/12 14:00:34 fetching corpus: 500, signal 94447/103854 (executing program) 2022/09/12 14:00:35 fetching corpus: 550, signal 97736/107551 (executing program) 2022/09/12 14:00:35 fetching corpus: 600, signal 100415/110615 (executing program) 2022/09/12 14:00:35 fetching corpus: 650, signal 105044/115346 (executing program) 2022/09/12 14:00:35 fetching corpus: 700, signal 107902/118410 (executing program) 2022/09/12 14:00:35 fetching corpus: 750, signal 110039/120878 (executing program) 2022/09/12 14:00:35 fetching corpus: 800, signal 113010/123957 (executing program) 2022/09/12 14:00:36 fetching corpus: 850, signal 115404/126458 (executing program) 2022/09/12 14:00:36 fetching corpus: 900, signal 117500/128726 (executing program) 2022/09/12 14:00:36 fetching corpus: 950, signal 119101/130551 (executing program) 2022/09/12 14:00:36 fetching corpus: 1000, signal 120930/132556 (executing program) 2022/09/12 14:00:36 fetching corpus: 1050, signal 123241/134883 (executing program) 2022/09/12 14:00:36 fetching corpus: 1100, signal 124948/136669 (executing program) 2022/09/12 14:00:37 fetching corpus: 1150, signal 127191/138877 (executing program) 2022/09/12 14:00:37 fetching corpus: 1200, signal 129039/140637 (executing program) 2022/09/12 14:00:37 fetching corpus: 1250, signal 130462/142092 (executing program) 2022/09/12 14:00:37 fetching corpus: 1300, signal 132205/143779 (executing program) 2022/09/12 14:00:37 fetching corpus: 1350, signal 134023/145414 (executing program) 2022/09/12 14:00:38 fetching corpus: 1400, signal 136227/147270 (executing program) 2022/09/12 14:00:38 fetching corpus: 1450, signal 137664/148581 (executing program) 2022/09/12 14:00:38 fetching corpus: 1500, signal 139340/150097 (executing program) 2022/09/12 14:00:38 fetching corpus: 1550, signal 141370/151734 (executing program) 2022/09/12 14:00:38 fetching corpus: 1600, signal 143098/153096 (executing program) 2022/09/12 14:00:38 fetching corpus: 1650, signal 144863/154485 (executing program) 2022/09/12 14:00:38 fetching corpus: 1700, signal 146150/155544 (executing program) 2022/09/12 14:00:39 fetching corpus: 1750, signal 147648/156650 (executing program) 2022/09/12 14:00:39 fetching corpus: 1800, signal 149202/157782 (executing program) 2022/09/12 14:00:39 fetching corpus: 1850, signal 150544/158719 (executing program) 2022/09/12 14:00:39 fetching corpus: 1900, signal 151365/159359 (executing program) 2022/09/12 14:00:39 fetching corpus: 1950, signal 152677/160267 (executing program) 2022/09/12 14:00:39 fetching corpus: 2000, signal 154180/161223 (executing program) 2022/09/12 14:00:39 fetching corpus: 2050, signal 155189/161894 (executing program) 2022/09/12 14:00:40 fetching corpus: 2100, signal 156531/162758 (executing program) 2022/09/12 14:00:40 fetching corpus: 2150, signal 158130/163651 (executing program) 2022/09/12 14:00:40 fetching corpus: 2200, signal 159515/164362 (executing program) 2022/09/12 14:00:40 fetching corpus: 2250, signal 160591/164972 (executing program) 2022/09/12 14:00:40 fetching corpus: 2300, signal 161478/165579 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/165773 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/165863 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/165963 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166044 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166124 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166208 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166281 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166376 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166471 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166551 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166633 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166736 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166817 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/166909 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167012 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167105 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167214 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167296 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167376 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167467 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167556 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167632 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167727 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167819 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167894 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/167982 (executing program) 2022/09/12 14:00:40 fetching corpus: 2313, signal 161744/168071 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168147 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168244 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168335 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168412 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168495 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168588 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168667 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168745 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168761 (executing program) 2022/09/12 14:00:41 fetching corpus: 2313, signal 161744/168761 (executing program) 2022/09/12 14:00:43 starting 8 fuzzer processes 14:00:43 executing program 0: io_setup(0x6, &(0x7f0000000040)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00', 0x2, 0x0) io_submit(r0, 0x1, &(0x7f0000000540)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r1, 0x0, 0x2}]) 14:00:43 executing program 1: r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x3, 0x4) keyctl$update(0x2, 0x0, 0x0, 0x0) getpid() [ 59.935976] audit: type=1400 audit(1662991243.397:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:00:43 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:00:43 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0x0, 0x0, 0x0) 14:00:43 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCETHTOOL(r0, 0x8922, &(0x7f0000000040)={'syz_tun\x00'}) 14:00:43 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x2, 0x0) 14:00:43 executing program 6: mlock2(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) finit_module(0xffffffffffffffff, 0x0, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r2 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x200, 0x21, 0x1b}, 0x18) r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) shmget(0x0, 0x3000, 0x78000000, &(0x7f0000ffb000/0x3000)=nil) ioctl$SNAPSHOT_FREE(0xffffffffffffffff, 0x3305) signalfd(r0, &(0x7f0000000000)={[0x8]}, 0x8) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2) 14:00:43 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000200)) fsetxattr(r0, &(0x7f0000000140)=@known='security.apparmor\x00', &(0x7f0000000180)='lo\x00', 0x3, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000005c0)={0x0, 0x0}) r2 = open(&(0x7f0000000640)='./file0\x00', 0x40, 0x1c2) perf_event_open(&(0x7f0000000540)={0x0, 0x80, 0x0, 0x40, 0xff, 0x3, 0x0, 0x0, 0x8004, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x3f, 0xd59d}, 0x100, 0x0, 0x5, 0x0, 0x5, 0x0, 0x3, 0x0, 0x1, 0x0, 0x8000}, r1, 0x4, r2, 0xa) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000000)={'lo\x00'}) r4 = socket$packet(0x11, 0x3, 0x300) getsockopt$sock_timeval(r4, 0x1, 0x15, 0x0, &(0x7f0000000100)=0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000340)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r5 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r5, 0x0, 0x480, &(0x7f0000000240), &(0x7f0000000300)=0x40) [ 61.158748] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.160541] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.162972] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.166819] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.168382] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.169596] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.174193] Bluetooth: hci0: HCI_REQ-0x0c1a [ 61.222490] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 61.224103] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 61.226291] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 61.227885] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 61.229305] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 61.230554] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 61.231801] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 61.233151] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 61.234912] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 61.236769] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 61.239292] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 61.242013] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 61.243286] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 61.247942] Bluetooth: hci2: HCI_REQ-0x0c1a [ 61.249173] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 61.266958] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 61.287822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 61.294474] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 61.299950] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 61.301386] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 61.305742] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 61.315822] Bluetooth: hci3: HCI_REQ-0x0c1a [ 61.318120] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 61.330258] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 61.332704] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 61.334581] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 61.337591] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 61.339845] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 61.341178] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 61.349737] Bluetooth: hci6: HCI_REQ-0x0c1a [ 61.352442] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 61.354911] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 61.356281] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 61.365017] Bluetooth: hci4: HCI_REQ-0x0c1a [ 61.368925] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 61.370450] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 61.378750] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 61.381122] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 61.383373] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 61.384755] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 61.391907] Bluetooth: hci7: HCI_REQ-0x0c1a [ 61.445817] Bluetooth: hci1: HCI_REQ-0x0c1a [ 63.184275] Bluetooth: hci0: command 0x0409 tx timeout [ 63.311697] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 63.313151] Bluetooth: hci2: command 0x0409 tx timeout [ 63.375671] Bluetooth: hci6: command 0x0409 tx timeout [ 63.375777] Bluetooth: hci3: command 0x0409 tx timeout [ 63.439735] Bluetooth: hci7: command 0x0409 tx timeout [ 63.440484] Bluetooth: hci4: command 0x0409 tx timeout [ 63.503690] Bluetooth: hci1: command 0x0409 tx timeout [ 65.232051] Bluetooth: hci0: command 0x041b tx timeout [ 65.359830] Bluetooth: hci2: command 0x041b tx timeout [ 65.423661] Bluetooth: hci3: command 0x041b tx timeout [ 65.424163] Bluetooth: hci6: command 0x041b tx timeout [ 65.487716] Bluetooth: hci4: command 0x041b tx timeout [ 65.488182] Bluetooth: hci7: command 0x041b tx timeout [ 65.551765] Bluetooth: hci1: command 0x041b tx timeout [ 66.132893] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.135982] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.137260] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.140374] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.142302] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.143504] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.147021] Bluetooth: hci5: HCI_REQ-0x0c1a [ 67.279708] Bluetooth: hci0: command 0x040f tx timeout [ 67.407702] Bluetooth: hci2: command 0x040f tx timeout [ 67.471665] Bluetooth: hci6: command 0x040f tx timeout [ 67.472127] Bluetooth: hci3: command 0x040f tx timeout [ 67.536235] Bluetooth: hci7: command 0x040f tx timeout [ 67.536762] Bluetooth: hci4: command 0x040f tx timeout [ 67.599749] Bluetooth: hci1: command 0x040f tx timeout [ 68.175795] Bluetooth: hci5: command 0x0409 tx timeout [ 69.327686] Bluetooth: hci0: command 0x0419 tx timeout [ 69.455668] Bluetooth: hci2: command 0x0419 tx timeout [ 69.519717] Bluetooth: hci3: command 0x0419 tx timeout [ 69.520585] Bluetooth: hci6: command 0x0419 tx timeout [ 69.583714] Bluetooth: hci4: command 0x0419 tx timeout [ 69.584175] Bluetooth: hci7: command 0x0419 tx timeout [ 69.647727] Bluetooth: hci1: command 0x0419 tx timeout [ 70.223736] Bluetooth: hci5: command 0x041b tx timeout [ 72.272578] Bluetooth: hci5: command 0x040f tx timeout [ 74.319755] Bluetooth: hci5: command 0x0419 tx timeout 14:01:40 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:40 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:40 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:40 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:41 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:41 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)="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"}) 14:01:41 executing program 2: perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 118.045013] audit: type=1400 audit(1662991301.505:7): avc: denied { open } for pid=3790 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.046592] audit: type=1400 audit(1662991301.505:8): avc: denied { kernel } for pid=3790 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 118.055960] ------------[ cut here ]------------ [ 118.055980] [ 118.055983] ====================================================== [ 118.055987] WARNING: possible circular locking dependency detected [ 118.055991] 6.0.0-rc5-next-20220912 #1 Not tainted [ 118.055998] ------------------------------------------------------ [ 118.056001] syz-executor.2/3791 is trying to acquire lock: [ 118.056007] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 118.056044] [ 118.056044] but task is already holding lock: [ 118.056047] ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 118.056073] [ 118.056073] which lock already depends on the new lock. [ 118.056073] [ 118.056076] [ 118.056076] the existing dependency chain (in reverse order) is: [ 118.056079] [ 118.056079] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 118.056093] _raw_spin_lock_nested+0x30/0x40 [ 118.056109] raw_spin_rq_lock_nested+0x1e/0x30 [ 118.056123] task_fork_fair+0x63/0x4d0 [ 118.056141] sched_cgroup_fork+0x3d0/0x540 [ 118.056156] copy_process+0x3f9e/0x6df0 [ 118.056166] kernel_clone+0xe7/0x890 [ 118.056175] user_mode_thread+0xad/0xf0 [ 118.056186] rest_init+0x24/0x250 [ 118.056203] arch_call_rest_init+0xf/0x14 [ 118.056223] start_kernel+0x4c1/0x4e6 [ 118.056240] secondary_startup_64_no_verify+0xe0/0xeb [ 118.056255] [ 118.056255] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 118.056268] _raw_spin_lock_irqsave+0x39/0x60 [ 118.056283] try_to_wake_up+0xab/0x1920 [ 118.056297] up+0x75/0xb0 [ 118.056308] __up_console_sem+0x6e/0x80 [ 118.056325] console_unlock+0x46a/0x590 [ 118.056341] vt_ioctl+0x2822/0x2ca0 [ 118.056353] tty_ioctl+0x7c4/0x1700 [ 118.056365] __x64_sys_ioctl+0x19a/0x210 [ 118.056380] do_syscall_64+0x3b/0x90 [ 118.056394] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.056411] [ 118.056411] -> #0 ((console_sem).lock){....}-{2:2}: [ 118.056425] __lock_acquire+0x2a02/0x5e70 [ 118.056441] lock_acquire+0x1a2/0x530 [ 118.056457] _raw_spin_lock_irqsave+0x39/0x60 [ 118.056472] down_trylock+0xe/0x70 [ 118.056485] __down_trylock_console_sem+0x3b/0xd0 [ 118.056501] vprintk_emit+0x16b/0x560 [ 118.056518] vprintk+0x84/0xa0 [ 118.056534] _printk+0xba/0xf1 [ 118.056552] report_bug.cold+0x72/0xab [ 118.056564] handle_bug+0x3c/0x70 [ 118.056577] exc_invalid_op+0x14/0x50 [ 118.056590] asm_exc_invalid_op+0x16/0x20 [ 118.056606] perf_iterate_sb+0x5d8/0xb30 [ 118.056628] __perf_event_task_sched_out+0x2f6/0x18d0 [ 118.056640] __schedule+0xedd/0x2470 [ 118.056650] schedule+0xda/0x1b0 [ 118.056659] exit_to_user_mode_prepare+0x114/0x1a0 [ 118.056680] syscall_exit_to_user_mode+0x19/0x40 [ 118.056697] do_syscall_64+0x48/0x90 [ 118.056709] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.056726] [ 118.056726] other info that might help us debug this: [ 118.056726] [ 118.056729] Chain exists of: [ 118.056729] (console_sem).lock --> &p->pi_lock --> &rq->__lock [ 118.056729] [ 118.056744] Possible unsafe locking scenario: [ 118.056744] [ 118.056746] CPU0 CPU1 [ 118.056749] ---- ---- [ 118.056751] lock(&rq->__lock); [ 118.056757] lock(&p->pi_lock); [ 118.056763] lock(&rq->__lock); [ 118.056769] lock((console_sem).lock); [ 118.056775] [ 118.056775] *** DEADLOCK *** [ 118.056775] [ 118.056777] 2 locks held by syz-executor.2/3791: [ 118.056784] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 118.056809] #1: ffffffff85406fa0 (rcu_read_lock){....}-{1:2}, at: perf_iterate_sb+0x0/0xb30 [ 118.056843] [ 118.056843] stack backtrace: [ 118.056845] CPU: 0 PID: 3791 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220912 #1 [ 118.056858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 118.056867] Call Trace: [ 118.056870] [ 118.056874] dump_stack_lvl+0x8b/0xb3 [ 118.056888] check_noncircular+0x263/0x2e0 [ 118.056905] ? format_decode+0x26c/0xb50 [ 118.056920] ? print_circular_bug+0x450/0x450 [ 118.056937] ? enable_ptr_key_workfn+0x20/0x20 [ 118.056951] ? perf_event_update_userpage+0x4c6/0x7c0 [ 118.056964] ? format_decode+0x26c/0xb50 [ 118.056979] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 118.056997] __lock_acquire+0x2a02/0x5e70 [ 118.057019] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 118.057042] lock_acquire+0x1a2/0x530 [ 118.057059] ? down_trylock+0xe/0x70 [ 118.057074] ? rcu_read_unlock+0x40/0x40 [ 118.057092] ? __lock_acquire+0x164d/0x5e70 [ 118.057112] ? vprintk+0x84/0xa0 [ 118.057130] _raw_spin_lock_irqsave+0x39/0x60 [ 118.057146] ? down_trylock+0xe/0x70 [ 118.057159] down_trylock+0xe/0x70 [ 118.057173] ? vprintk+0x84/0xa0 [ 118.057190] __down_trylock_console_sem+0x3b/0xd0 [ 118.057208] vprintk_emit+0x16b/0x560 [ 118.057227] vprintk+0x84/0xa0 [ 118.057245] _printk+0xba/0xf1 [ 118.057263] ? record_print_text.cold+0x16/0x16 [ 118.057282] ? try_to_wake_up+0x54c/0x1920 [ 118.057297] ? lock_downgrade+0x6d0/0x6d0 [ 118.057314] ? lock_downgrade+0x6d0/0x6d0 [ 118.057332] ? report_bug.cold+0x66/0xab [ 118.057346] ? perf_iterate_sb+0x5d8/0xb30 [ 118.057365] report_bug.cold+0x72/0xab [ 118.057379] handle_bug+0x3c/0x70 [ 118.057393] exc_invalid_op+0x14/0x50 [ 118.057407] asm_exc_invalid_op+0x16/0x20 [ 118.057424] RIP: 0010:perf_iterate_sb+0x5d8/0xb30 [ 118.057445] Code: e8 1d 36 f0 ff 65 8b 05 92 94 ac 7e 31 ff 89 c6 89 44 24 08 e8 b9 32 f0 ff 8b 44 24 08 85 c0 0f 84 fd 02 00 00 e8 f8 35 f0 ff <0f> 0b e8 f1 35 f0 ff 48 8d bb 90 00 00 00 48 89 f8 48 c1 e8 03 80 [ 118.057456] RSP: 0018:ffff888015effc70 EFLAGS: 00010006 [ 118.057465] RAX: 0000000040000002 RBX: ffff888008660000 RCX: 0000000000000000 [ 118.057473] RDX: ffff888019e65040 RSI: ffffffff8155e148 RDI: 0000000000000005 [ 118.057481] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000001 [ 118.057489] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 118.057496] R13: 000000000003d100 R14: ffff888015effd70 R15: ffff88806ce33860 [ 118.057507] ? perf_iterate_sb+0x5d8/0xb30 [ 118.057528] ? perf_trace_run_bpf_submit+0x1d0/0x1d0 [ 118.057551] __perf_event_task_sched_out+0x2f6/0x18d0 [ 118.057565] ? update_load_avg+0x15f/0x1df0 [ 118.057584] ? lock_is_held_type+0xd7/0x130 [ 118.057603] ? __perf_cgroup_move+0x160/0x160 [ 118.057614] ? set_next_entity+0x304/0x550 [ 118.057635] ? lock_is_held_type+0xd7/0x130 [ 118.057653] __schedule+0xedd/0x2470 [ 118.057666] ? io_schedule_timeout+0x150/0x150 [ 118.057678] ? __x64_sys_futex_time32+0x480/0x480 [ 118.057692] schedule+0xda/0x1b0 [ 118.057703] exit_to_user_mode_prepare+0x114/0x1a0 [ 118.057724] syscall_exit_to_user_mode+0x19/0x40 [ 118.057742] do_syscall_64+0x48/0x90 [ 118.057756] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.057773] RIP: 0033:0x7efcd30ebb19 [ 118.057782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.057792] RSP: 002b:00007efcd0661218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.057803] RAX: 0000000000000001 RBX: 00007efcd31fef68 RCX: 00007efcd30ebb19 [ 118.057811] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efcd31fef6c [ 118.057818] RBP: 00007efcd31fef60 R08: 000000000000000e R09: 0000000000000000 [ 118.057826] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efcd31fef6c [ 118.057833] R13: 00007ffc6db1596f R14: 00007efcd0661300 R15: 0000000000022000 [ 118.057846] [ 118.110671] WARNING: CPU: 0 PID: 3791 at kernel/events/core.c:2233 perf_iterate_sb+0x5d8/0xb30 [ 118.111329] Modules linked in: [ 118.111573] CPU: 0 PID: 3791 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220912 #1 [ 118.112167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 118.112984] RIP: 0010:perf_iterate_sb+0x5d8/0xb30 [ 118.113354] Code: e8 1d 36 f0 ff 65 8b 05 92 94 ac 7e 31 ff 89 c6 89 44 24 08 e8 b9 32 f0 ff 8b 44 24 08 85 c0 0f 84 fd 02 00 00 e8 f8 35 f0 ff <0f> 0b e8 f1 35 f0 ff 48 8d bb 90 00 00 00 48 89 f8 48 c1 e8 03 80 [ 118.114664] RSP: 0018:ffff888015effc70 EFLAGS: 00010006 [ 118.115068] RAX: 0000000040000002 RBX: ffff888008660000 RCX: 0000000000000000 [ 118.115593] RDX: ffff888019e65040 RSI: ffffffff8155e148 RDI: 0000000000000005 [ 118.116118] RBP: dffffc0000000000 R08: 0000000000000005 R09: 0000000000000001 [ 118.116645] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 118.117159] R13: 000000000003d100 R14: ffff888015effd70 R15: ffff88806ce33860 [ 118.117702] FS: 00007efcd0661700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 118.118293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 118.118721] CR2: 00007f015b32b438 CR3: 000000000dbdc000 CR4: 0000000000350ef0 [ 118.119263] Call Trace: [ 118.119456] [ 118.119627] ? perf_trace_run_bpf_submit+0x1d0/0x1d0 [ 118.120009] __perf_event_task_sched_out+0x2f6/0x18d0 [ 118.120402] ? update_load_avg+0x15f/0x1df0 [ 118.120726] ? lock_is_held_type+0xd7/0x130 [ 118.121059] ? __perf_cgroup_move+0x160/0x160 [ 118.121392] ? set_next_entity+0x304/0x550 [ 118.121716] ? lock_is_held_type+0xd7/0x130 [ 118.122039] __schedule+0xedd/0x2470 [ 118.122320] ? io_schedule_timeout+0x150/0x150 [ 118.122668] ? __x64_sys_futex_time32+0x480/0x480 [ 118.123041] schedule+0xda/0x1b0 [ 118.123301] exit_to_user_mode_prepare+0x114/0x1a0 [ 118.123687] syscall_exit_to_user_mode+0x19/0x40 [ 118.124036] do_syscall_64+0x48/0x90 [ 118.124308] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 118.124677] RIP: 0033:0x7efcd30ebb19 [ 118.124940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 118.126188] RSP: 002b:00007efcd0661218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 118.126716] RAX: 0000000000000001 RBX: 00007efcd31fef68 RCX: 00007efcd30ebb19 [ 118.127217] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efcd31fef6c [ 118.127743] RBP: 00007efcd31fef60 R08: 000000000000000e R09: 0000000000000000 [ 118.128268] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efcd31fef6c [ 118.128792] R13: 00007ffc6db1596f R14: 00007efcd0661300 R15: 0000000000022000 [ 118.129320] [ 118.129502] irq event stamp: 758 [ 118.129758] hardirqs last enabled at (757): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 118.130459] hardirqs last disabled at (758): [] __schedule+0x1225/0x2470 [ 118.131095] softirqs last enabled at (640): [] __irq_exit_rcu+0x11b/0x180 [ 118.131742] softirqs last disabled at (631): [] __irq_exit_rcu+0x11b/0x180 [ 118.132369] ---[ end trace 0000000000000000 ]--- 14:01:41 executing program 2: perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 120.119199] syz-executor.4 (298) used greatest stack depth: 24496 bytes left [ 124.303752] Bluetooth: hci7: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 14:01:41 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff888015eff6c8 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007efcd0661700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f015b32b438 CR3=000000000dbdc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007efcd31d27c0 00007efcd31d27c8 YMM02=0000000000000000 0000000000000000 00007efcd31d27e0 00007efcd31d27c0 YMM03=0000000000000000 0000000000000000 00007efcd31d27c8 00007efcd31d27c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000007 RBX=ffff888033618400 RCX=1ffffffff0b6173f RDX=0000000000000000 RSI=0000000000000100 RDI=ffff888033618400 RBP=ffff88803f817950 RSP=ffff88803f817908 R8 =0000000000000000 R9 =0000000000000000 R10=fffffbfff0b603e2 R11=0000000000000001 R12=ffffea0000cd8600 R13=ffffffff840f57fd R14=dffffc0000000000 R15=ffff888007c75000 RIP=ffffffff812976e2 RFL=00000292 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fbdf3599540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbdf366a710 CR3=000000001b4f0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00ffffffffffff 0000000000000000 YMM01=0000000000000000 0000000000000000 0100010001000000 ffffffffffffffff YMM02=0000000000000000 0000000000000000 0500050005000000 455441564952505f YMM03=0000000000000000 0000000000000000 0000000000000000 000000564952505f YMM04=0000000000000000 0000000000000000 0003000500050005 0005000000455441 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000