Warning: Permanently added '[localhost]:26410' (ECDSA) to the list of known hosts. 2022/09/15 13:13:45 fuzzer started 2022/09/15 13:13:45 dialing manager at localhost:36559 syzkaller login: [ 46.062604] cgroup: Unknown subsys name 'net' [ 46.140462] cgroup: Unknown subsys name 'rlimit' 2022/09/15 13:14:01 syscalls: 2215 2022/09/15 13:14:01 code coverage: enabled 2022/09/15 13:14:01 comparison tracing: enabled 2022/09/15 13:14:01 extra coverage: enabled 2022/09/15 13:14:01 setuid sandbox: enabled 2022/09/15 13:14:01 namespace sandbox: enabled 2022/09/15 13:14:01 Android sandbox: enabled 2022/09/15 13:14:01 fault injection: enabled 2022/09/15 13:14:01 leak checking: enabled 2022/09/15 13:14:01 net packet injection: enabled 2022/09/15 13:14:01 net device setup: enabled 2022/09/15 13:14:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/15 13:14:01 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/15 13:14:01 USB emulation: enabled 2022/09/15 13:14:01 hci packet injection: enabled 2022/09/15 13:14:01 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220915) 2022/09/15 13:14:01 802.15.4 emulation: enabled 2022/09/15 13:14:01 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/15 13:14:02 fetching corpus: 50, signal 23525/27091 (executing program) 2022/09/15 13:14:02 fetching corpus: 100, signal 36054/41110 (executing program) 2022/09/15 13:14:02 fetching corpus: 150, signal 50364/56629 (executing program) 2022/09/15 13:14:02 fetching corpus: 200, signal 62859/70112 (executing program) 2022/09/15 13:14:02 fetching corpus: 250, signal 68110/76508 (executing program) 2022/09/15 13:14:02 fetching corpus: 300, signal 74923/84276 (executing program) 2022/09/15 13:14:02 fetching corpus: 350, signal 79509/89926 (executing program) 2022/09/15 13:14:03 fetching corpus: 400, signal 83621/94996 (executing program) 2022/09/15 13:14:03 fetching corpus: 450, signal 90300/102395 (executing program) 2022/09/15 13:14:03 fetching corpus: 500, signal 93315/106325 (executing program) 2022/09/15 13:14:03 fetching corpus: 550, signal 95498/109488 (executing program) 2022/09/15 13:14:03 fetching corpus: 600, signal 99448/114154 (executing program) 2022/09/15 13:14:03 fetching corpus: 650, signal 102029/117565 (executing program) 2022/09/15 13:14:03 fetching corpus: 700, signal 105204/121462 (executing program) 2022/09/15 13:14:04 fetching corpus: 750, signal 107782/124733 (executing program) 2022/09/15 13:14:04 fetching corpus: 800, signal 109829/127570 (executing program) 2022/09/15 13:14:04 fetching corpus: 850, signal 112331/130720 (executing program) 2022/09/15 13:14:04 fetching corpus: 900, signal 115076/134040 (executing program) 2022/09/15 13:14:04 fetching corpus: 950, signal 118761/138135 (executing program) 2022/09/15 13:14:04 fetching corpus: 1000, signal 121782/141535 (executing program) 2022/09/15 13:14:04 fetching corpus: 1050, signal 123771/144043 (executing program) 2022/09/15 13:14:05 fetching corpus: 1100, signal 125670/146506 (executing program) 2022/09/15 13:14:05 fetching corpus: 1150, signal 127528/148892 (executing program) 2022/09/15 13:14:05 fetching corpus: 1200, signal 130098/151710 (executing program) 2022/09/15 13:14:05 fetching corpus: 1250, signal 131411/153597 (executing program) 2022/09/15 13:14:05 fetching corpus: 1300, signal 134445/156892 (executing program) 2022/09/15 13:14:05 fetching corpus: 1350, signal 136427/159232 (executing program) 2022/09/15 13:14:05 fetching corpus: 1400, signal 138449/161567 (executing program) 2022/09/15 13:14:06 fetching corpus: 1450, signal 139915/163435 (executing program) 2022/09/15 13:14:06 fetching corpus: 1500, signal 142066/165714 (executing program) 2022/09/15 13:14:06 fetching corpus: 1550, signal 143592/167563 (executing program) 2022/09/15 13:14:06 fetching corpus: 1600, signal 145052/169374 (executing program) 2022/09/15 13:14:06 fetching corpus: 1650, signal 146687/171314 (executing program) 2022/09/15 13:14:06 fetching corpus: 1700, signal 148341/173256 (executing program) 2022/09/15 13:14:06 fetching corpus: 1750, signal 150390/175354 (executing program) 2022/09/15 13:14:06 fetching corpus: 1800, signal 152306/177339 (executing program) 2022/09/15 13:14:07 fetching corpus: 1850, signal 153846/179075 (executing program) 2022/09/15 13:14:07 fetching corpus: 1900, signal 154748/180300 (executing program) 2022/09/15 13:14:07 fetching corpus: 1950, signal 156233/181940 (executing program) 2022/09/15 13:14:07 fetching corpus: 2000, signal 157020/183092 (executing program) 2022/09/15 13:14:07 fetching corpus: 2050, signal 158738/184831 (executing program) 2022/09/15 13:14:07 fetching corpus: 2100, signal 159918/186234 (executing program) 2022/09/15 13:14:07 fetching corpus: 2150, signal 161366/187753 (executing program) 2022/09/15 13:14:08 fetching corpus: 2200, signal 162228/188842 (executing program) 2022/09/15 13:14:08 fetching corpus: 2250, signal 163586/190251 (executing program) 2022/09/15 13:14:08 fetching corpus: 2300, signal 164437/191305 (executing program) 2022/09/15 13:14:08 fetching corpus: 2350, signal 165345/192430 (executing program) 2022/09/15 13:14:08 fetching corpus: 2400, signal 167352/194228 (executing program) 2022/09/15 13:14:08 fetching corpus: 2450, signal 168585/195512 (executing program) 2022/09/15 13:14:08 fetching corpus: 2500, signal 169294/196441 (executing program) 2022/09/15 13:14:08 fetching corpus: 2550, signal 170183/197424 (executing program) 2022/09/15 13:14:09 fetching corpus: 2600, signal 171810/198829 (executing program) 2022/09/15 13:14:09 fetching corpus: 2650, signal 173095/200046 (executing program) 2022/09/15 13:14:09 fetching corpus: 2700, signal 173854/200929 (executing program) 2022/09/15 13:14:09 fetching corpus: 2750, signal 174543/201768 (executing program) 2022/09/15 13:14:09 fetching corpus: 2800, signal 176057/203030 (executing program) 2022/09/15 13:14:09 fetching corpus: 2850, signal 177574/204256 (executing program) 2022/09/15 13:14:10 fetching corpus: 2900, signal 178541/205215 (executing program) 2022/09/15 13:14:10 fetching corpus: 2950, signal 179038/205831 (executing program) 2022/09/15 13:14:10 fetching corpus: 3000, signal 179925/206708 (executing program) 2022/09/15 13:14:10 fetching corpus: 3050, signal 180907/207637 (executing program) 2022/09/15 13:14:10 fetching corpus: 3100, signal 181469/208343 (executing program) 2022/09/15 13:14:10 fetching corpus: 3150, signal 182156/209078 (executing program) 2022/09/15 13:14:10 fetching corpus: 3200, signal 183281/209956 (executing program) 2022/09/15 13:14:10 fetching corpus: 3250, signal 183796/210581 (executing program) 2022/09/15 13:14:11 fetching corpus: 3300, signal 184702/211487 (executing program) 2022/09/15 13:14:11 fetching corpus: 3350, signal 185520/212225 (executing program) 2022/09/15 13:14:11 fetching corpus: 3400, signal 186866/213095 (executing program) 2022/09/15 13:14:11 fetching corpus: 3450, signal 187734/213817 (executing program) 2022/09/15 13:14:11 fetching corpus: 3500, signal 188688/214516 (executing program) 2022/09/15 13:14:11 fetching corpus: 3550, signal 189353/215135 (executing program) 2022/09/15 13:14:11 fetching corpus: 3600, signal 190661/215970 (executing program) 2022/09/15 13:14:11 fetching corpus: 3650, signal 191393/216593 (executing program) 2022/09/15 13:14:12 fetching corpus: 3700, signal 192781/217416 (executing program) 2022/09/15 13:14:12 fetching corpus: 3750, signal 193579/218008 (executing program) 2022/09/15 13:14:12 fetching corpus: 3800, signal 194056/218492 (executing program) 2022/09/15 13:14:12 fetching corpus: 3850, signal 194511/218931 (executing program) 2022/09/15 13:14:12 fetching corpus: 3900, signal 195627/219580 (executing program) 2022/09/15 13:14:12 fetching corpus: 3950, signal 196522/220136 (executing program) 2022/09/15 13:14:12 fetching corpus: 4000, signal 197504/220839 (executing program) 2022/09/15 13:14:12 fetching corpus: 4050, signal 198080/221282 (executing program) 2022/09/15 13:14:13 fetching corpus: 4100, signal 198622/221687 (executing program) 2022/09/15 13:14:13 fetching corpus: 4150, signal 199300/222095 (executing program) 2022/09/15 13:14:13 fetching corpus: 4200, signal 200412/222622 (executing program) 2022/09/15 13:14:13 fetching corpus: 4250, signal 201460/223125 (executing program) 2022/09/15 13:14:13 fetching corpus: 4300, signal 201999/223512 (executing program) 2022/09/15 13:14:13 fetching corpus: 4350, signal 202799/223918 (executing program) 2022/09/15 13:14:13 fetching corpus: 4399, signal 203118/224235 (executing program) 2022/09/15 13:14:14 fetching corpus: 4449, signal 204144/224704 (executing program) 2022/09/15 13:14:14 fetching corpus: 4499, signal 204794/225053 (executing program) 2022/09/15 13:14:14 fetching corpus: 4549, signal 206000/225524 (executing program) 2022/09/15 13:14:14 fetching corpus: 4599, signal 206476/225781 (executing program) 2022/09/15 13:14:14 fetching corpus: 4649, signal 207289/226202 (executing program) 2022/09/15 13:14:14 fetching corpus: 4699, signal 207834/226488 (executing program) 2022/09/15 13:14:14 fetching corpus: 4749, signal 208358/226769 (executing program) 2022/09/15 13:14:15 fetching corpus: 4799, signal 208729/227024 (executing program) 2022/09/15 13:14:15 fetching corpus: 4849, signal 209937/227561 (executing program) 2022/09/15 13:14:15 fetching corpus: 4899, signal 210732/227903 (executing program) 2022/09/15 13:14:15 fetching corpus: 4949, signal 211805/228186 (executing program) 2022/09/15 13:14:15 fetching corpus: 4999, signal 212853/228458 (executing program) 2022/09/15 13:14:15 fetching corpus: 5049, signal 213427/228688 (executing program) 2022/09/15 13:14:15 fetching corpus: 5099, signal 213977/228896 (executing program) 2022/09/15 13:14:15 fetching corpus: 5149, signal 214614/229089 (executing program) 2022/09/15 13:14:16 fetching corpus: 5199, signal 215173/229303 (executing program) 2022/09/15 13:14:16 fetching corpus: 5249, signal 215979/229473 (executing program) 2022/09/15 13:14:16 fetching corpus: 5299, signal 216639/229643 (executing program) 2022/09/15 13:14:16 fetching corpus: 5349, signal 217405/229902 (executing program) 2022/09/15 13:14:16 fetching corpus: 5399, signal 218244/230092 (executing program) 2022/09/15 13:14:16 fetching corpus: 5449, signal 219007/230206 (executing program) 2022/09/15 13:14:17 fetching corpus: 5499, signal 219756/230261 (executing program) 2022/09/15 13:14:17 fetching corpus: 5549, signal 220559/230280 (executing program) 2022/09/15 13:14:17 fetching corpus: 5599, signal 221287/230294 (executing program) 2022/09/15 13:14:17 fetching corpus: 5649, signal 221945/230381 (executing program) 2022/09/15 13:14:17 fetching corpus: 5699, signal 223017/230398 (executing program) 2022/09/15 13:14:17 fetching corpus: 5744, signal 223546/230401 (executing program) 2022/09/15 13:14:17 fetching corpus: 5744, signal 223546/230401 (executing program) 2022/09/15 13:14:20 starting 8 fuzzer processes 13:14:20 executing program 0: r0 = epoll_create(0x1) epoll_pwait(r0, &(0x7f0000000000)=[{}], 0x1, 0x7fffffff, 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0x60000017}) 13:14:20 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', 0x0, 0x1030060, &(0x7f0000004f80)={[], [{@seclabel, 0x22}]}) 13:14:20 executing program 2: syslog(0x3, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5f, 0x4, 0x40, 0x7, 0x0, 0x910e, 0x509, 0xe, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xdb5d, 0x0, @perf_bp={&(0x7f0000000100)}, 0x18884, 0x4, 0x87, 0x6, 0xe94a, 0x401, 0x8, 0x0, 0x2, 0x0, 0x400}, 0x0, 0x1, r1, 0xb) sendfile(r1, r2, 0x0, 0x10000027f) openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REQ_SET_REG(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000", @ANYRES16, @ANYBLOB], 0x1c}}, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x20000000, 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000005c0)) 13:14:20 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000080)) 13:14:20 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001d0001c7e20000000000000006"], 0x14}}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x60, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x44, 0x33, @action={@with_ht={{{}, {}, @device_b}}, @sp_mp_confirm={0xf, 0x2, {0x0, @default, {}, @void, @val={0x2d, 0x1a}}}}}]}, 0x60}}, 0x0) recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 13:14:20 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f000000c340)={0x0, 0x0, &(0x7f000000c280)=[{&(0x7f0000001340)={0x121c, 0x15, 0x1, 0x0, 0x0, "", [@nested={0x120a, 0x0, 0x0, 0x1, [@generic="58f4db24ff596a629b0dc8a7e568fe2b0f23f18e2f6d4200b3bdabe512e9c9a79d7b673561a300cc1f5694f4e0e817c3d70a9cedd8fa1829bea57f735eaabf87d23701a0c5d56732c4c3de5887f348e70e191fe2f34ac416912f79e7c5329c9702be9412211b0ebcbcde9e9a595a67b11894c0f50e34dfe57cd7c969d110d4bedb65cca183e4dc9b68f69212be0afbee3499f56f57d3dc094fbf58ef1b5f6313a9fe4d0d17dc2b0c06648590788b2a6747b5b9d61fd60b4cf93bd59896ba", @typed={0x8, 0x0, 0x0, 0x0, @uid}, @generic="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", @generic="bd69778dd1c571fe6ecf85bb9705e43914a8ee4b8a7faa160aba7fd1e95110a40ae634b58684db6415e92ebad8855488863b6fced6790f6a152af75263298345def1f033d18d4d487b7f90235cd348ba63d9c23c8be9ff302606aae9eebd384c2ba47776df267853575741a351a630469713726381c2c4836c0f89b81ede55a6b0530a73e6572a1939b5d972a9558590ca38cdb612ef661a4d6e16d8f5c79ceded401e9475400900"/183, @generic="20e2b181b728117cc90470696bd97fd4653d63bb909a507245d82ccf61cb47ec836b92c4ef59020fbf547f1ad2f602d6ca3eafcc6cb15a17fc8a048797d08353747958d8a223c8a971efab3b1942276a59a4b0650c807c8147cf15c40e590c88ef67aee10a", @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}]}]}, 0x121c}], 0x1}, 0x0) [ 78.860254] audit: type=1400 audit(1663247660.413:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:14:20 executing program 6: pipe2$9p(0x0, 0x80000) 13:14:20 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, "37a3ecb0f87377fee9761bd20503114547b490"}) [ 80.235034] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.238216] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.242254] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.246237] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.249207] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 80.269437] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.276633] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.278456] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 80.286529] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 80.288589] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.289694] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 80.292097] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.295063] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 80.296225] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.298727] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 80.299105] Bluetooth: hci1: HCI_REQ-0x0c1a [ 80.300117] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.302957] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 80.303114] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.308980] Bluetooth: hci5: HCI_REQ-0x0c1a [ 80.325559] Bluetooth: hci3: HCI_REQ-0x0c1a [ 80.348081] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.348525] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 80.351067] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.351554] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 80.354349] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.355471] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 80.358411] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 80.360933] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 80.362522] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.363541] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.365317] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 80.366573] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 80.368504] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 80.369570] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.371342] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 80.373778] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 80.375156] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 80.376706] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 80.381299] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.383036] Bluetooth: hci7: HCI_REQ-0x0c1a [ 80.383288] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.384968] Bluetooth: hci6: HCI_REQ-0x0c1a [ 80.385527] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.388223] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.389107] Bluetooth: hci4: HCI_REQ-0x0c1a [ 80.389721] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 80.395174] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.399973] Bluetooth: hci2: HCI_REQ-0x0c1a [ 80.400184] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.402976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.404358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.412093] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.433308] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.435414] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.440301] Bluetooth: hci0: HCI_REQ-0x0c1a [ 82.363407] Bluetooth: hci1: command 0x0409 tx timeout [ 82.363408] Bluetooth: hci3: command 0x0409 tx timeout [ 82.364491] Bluetooth: hci5: command 0x0409 tx timeout [ 82.426948] Bluetooth: hci2: command 0x0409 tx timeout [ 82.427349] Bluetooth: hci4: command 0x0409 tx timeout [ 82.427711] Bluetooth: hci7: command 0x0409 tx timeout [ 82.427881] Bluetooth: hci6: command 0x0409 tx timeout [ 82.491871] Bluetooth: hci0: command 0x0409 tx timeout [ 84.410894] Bluetooth: hci5: command 0x041b tx timeout [ 84.411393] Bluetooth: hci1: command 0x041b tx timeout [ 84.411795] Bluetooth: hci3: command 0x041b tx timeout [ 84.474955] Bluetooth: hci6: command 0x041b tx timeout [ 84.475905] Bluetooth: hci7: command 0x041b tx timeout [ 84.476325] Bluetooth: hci4: command 0x041b tx timeout [ 84.476721] Bluetooth: hci2: command 0x041b tx timeout [ 84.538967] Bluetooth: hci0: command 0x041b tx timeout [ 86.458962] Bluetooth: hci3: command 0x040f tx timeout [ 86.459735] Bluetooth: hci1: command 0x040f tx timeout [ 86.462174] Bluetooth: hci5: command 0x040f tx timeout [ 86.523002] Bluetooth: hci2: command 0x040f tx timeout [ 86.525103] Bluetooth: hci4: command 0x040f tx timeout [ 86.527080] Bluetooth: hci7: command 0x040f tx timeout [ 86.528756] Bluetooth: hci6: command 0x040f tx timeout [ 86.586889] Bluetooth: hci0: command 0x040f tx timeout [ 88.507049] Bluetooth: hci5: command 0x0419 tx timeout [ 88.510307] Bluetooth: hci1: command 0x0419 tx timeout [ 88.511091] Bluetooth: hci3: command 0x0419 tx timeout [ 88.570988] Bluetooth: hci6: command 0x0419 tx timeout [ 88.571744] Bluetooth: hci7: command 0x0419 tx timeout [ 88.572907] Bluetooth: hci4: command 0x0419 tx timeout [ 88.575345] Bluetooth: hci2: command 0x0419 tx timeout [ 88.634931] Bluetooth: hci0: command 0x0419 tx timeout 13:15:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00) mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00']) [ 135.742767] audit: type=1400 audit(1663247717.295:7): avc: denied { open } for pid=3677 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 135.744293] audit: type=1400 audit(1663247717.295:8): avc: denied { kernel } for pid=3677 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 135.768445] ------------[ cut here ]------------ [ 135.768466] [ 135.768469] ====================================================== [ 135.768473] WARNING: possible circular locking dependency detected [ 135.768477] 6.0.0-rc5-next-20220915 #1 Not tainted [ 135.768484] ------------------------------------------------------ [ 135.768487] syz-executor.7/3678 is trying to acquire lock: [ 135.768494] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 135.768533] [ 135.768533] but task is already holding lock: [ 135.768536] ffff888018beac20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 135.768564] [ 135.768564] which lock already depends on the new lock. [ 135.768564] [ 135.768567] [ 135.768567] the existing dependency chain (in reverse order) is: [ 135.768571] [ 135.768571] -> #3 (&ctx->lock){....}-{2:2}: [ 135.768585] _raw_spin_lock+0x2a/0x40 [ 135.768602] __perf_event_task_sched_out+0x53b/0x18d0 [ 135.768615] __schedule+0xedd/0x2470 [ 135.768625] schedule+0xda/0x1b0 [ 135.768636] exit_to_user_mode_prepare+0x114/0x1a0 [ 135.768656] syscall_exit_to_user_mode+0x19/0x40 [ 135.768676] do_syscall_64+0x48/0x90 [ 135.768690] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 135.768708] [ 135.768708] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 135.768722] _raw_spin_lock_nested+0x30/0x40 [ 135.768737] raw_spin_rq_lock_nested+0x1e/0x30 [ 135.768750] task_fork_fair+0x63/0x4d0 [ 135.768768] sched_cgroup_fork+0x3d0/0x540 [ 135.768782] copy_process+0x4183/0x6e20 [ 135.768793] kernel_clone+0xe7/0x890 [ 135.768802] user_mode_thread+0xad/0xf0 [ 135.768812] rest_init+0x24/0x250 [ 135.768832] arch_call_rest_init+0xf/0x14 [ 135.768845] start_kernel+0x4c1/0x4e6 [ 135.768855] secondary_startup_64_no_verify+0xe0/0xeb [ 135.768869] [ 135.768869] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 135.768883] _raw_spin_lock_irqsave+0x39/0x60 [ 135.768898] try_to_wake_up+0xab/0x1920 [ 135.768912] up+0x75/0xb0 [ 135.768923] __up_console_sem+0x6e/0x80 [ 135.768940] console_unlock+0x46a/0x590 [ 135.768956] vt_ioctl+0x2822/0x2ca0 [ 135.768969] tty_ioctl+0x7c4/0x1700 [ 135.768981] __x64_sys_ioctl+0x19a/0x210 [ 135.768997] do_syscall_64+0x3b/0x90 [ 135.769011] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 135.769028] [ 135.769028] -> #0 ((console_sem).lock){....}-{2:2}: [ 135.769042] __lock_acquire+0x2a02/0x5e70 [ 135.769059] lock_acquire+0x1a2/0x530 [ 135.769075] _raw_spin_lock_irqsave+0x39/0x60 [ 135.769090] down_trylock+0xe/0x70 [ 135.769102] __down_trylock_console_sem+0x3b/0xd0 [ 135.769119] vprintk_emit+0x16b/0x560 [ 135.769136] vprintk+0x84/0xa0 [ 135.769152] _printk+0xba/0xf1 [ 135.769171] report_bug.cold+0x72/0xab [ 135.769184] handle_bug+0x3c/0x70 [ 135.769197] exc_invalid_op+0x14/0x50 [ 135.769211] asm_exc_invalid_op+0x16/0x20 [ 135.769228] group_sched_out.part.0+0x2c7/0x460 [ 135.769239] ctx_sched_out+0x8f1/0xc10 [ 135.769248] __perf_event_task_sched_out+0x6d0/0x18d0 [ 135.769260] __schedule+0xedd/0x2470 [ 135.769270] schedule+0xda/0x1b0 [ 135.769280] exit_to_user_mode_prepare+0x114/0x1a0 [ 135.769300] syscall_exit_to_user_mode+0x19/0x40 [ 135.769317] do_syscall_64+0x48/0x90 [ 135.769331] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 135.769348] [ 135.769348] other info that might help us debug this: [ 135.769348] [ 135.769351] Chain exists of: [ 135.769351] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 135.769351] [ 135.769366] Possible unsafe locking scenario: [ 135.769366] [ 135.769368] CPU0 CPU1 [ 135.769371] ---- ---- [ 135.769373] lock(&ctx->lock); [ 135.769378] lock(&rq->__lock); [ 135.769385] lock(&ctx->lock); [ 135.769391] lock((console_sem).lock); [ 135.769397] [ 135.769397] *** DEADLOCK *** [ 135.769397] [ 135.769399] 2 locks held by syz-executor.7/3678: [ 135.769406] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 135.769431] #1: ffff888018beac20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 135.769458] [ 135.769458] stack backtrace: [ 135.769461] CPU: 1 PID: 3678 Comm: syz-executor.7 Not tainted 6.0.0-rc5-next-20220915 #1 [ 135.769474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 135.769499] Call Trace: [ 135.769504] [ 135.769508] dump_stack_lvl+0x8b/0xb3 [ 135.769524] check_noncircular+0x263/0x2e0 [ 135.769541] ? format_decode+0x26c/0xb50 [ 135.769557] ? print_circular_bug+0x450/0x450 [ 135.769574] ? enable_ptr_key_workfn+0x20/0x20 [ 135.769589] ? format_decode+0x26c/0xb50 [ 135.769605] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 135.769623] __lock_acquire+0x2a02/0x5e70 [ 135.769645] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 135.769668] lock_acquire+0x1a2/0x530 [ 135.769685] ? down_trylock+0xe/0x70 [ 135.769700] ? rcu_read_unlock+0x40/0x40 [ 135.769721] ? vprintk+0x84/0xa0 [ 135.769739] _raw_spin_lock_irqsave+0x39/0x60 [ 135.769755] ? down_trylock+0xe/0x70 [ 135.769769] down_trylock+0xe/0x70 [ 135.769782] ? vprintk+0x84/0xa0 [ 135.769800] __down_trylock_console_sem+0x3b/0xd0 [ 135.769817] vprintk_emit+0x16b/0x560 [ 135.769837] vprintk+0x84/0xa0 [ 135.769855] _printk+0xba/0xf1 [ 135.769873] ? record_print_text.cold+0x16/0x16 [ 135.769896] ? report_bug.cold+0x66/0xab [ 135.769913] ? group_sched_out.part.0+0x2c7/0x460 [ 135.769926] report_bug.cold+0x72/0xab [ 135.769943] handle_bug+0x3c/0x70 [ 135.769957] exc_invalid_op+0x14/0x50 [ 135.769972] asm_exc_invalid_op+0x16/0x20 [ 135.769990] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 135.770004] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 135.770016] RSP: 0018:ffff8880090dfc48 EFLAGS: 00010006 [ 135.770025] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 135.770032] RDX: ffff888010521ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 135.770040] RBP: ffff88801f308000 R08: 0000000000000005 R09: 0000000000000001 [ 135.770047] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff888018beac00 [ 135.770055] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 135.770066] ? group_sched_out.part.0+0x2c7/0x460 [ 135.770080] ? group_sched_out.part.0+0x2c7/0x460 [ 135.770092] ctx_sched_out+0x8f1/0xc10 [ 135.770105] __perf_event_task_sched_out+0x6d0/0x18d0 [ 135.770120] ? lock_is_held_type+0xd7/0x130 [ 135.770140] ? __perf_cgroup_move+0x160/0x160 [ 135.770152] ? set_next_entity+0x304/0x550 [ 135.770170] ? update_curr+0x267/0x740 [ 135.770188] ? lock_is_held_type+0xd7/0x130 [ 135.770208] __schedule+0xedd/0x2470 [ 135.770221] ? io_schedule_timeout+0x150/0x150 [ 135.770234] ? rcu_read_lock_sched_held+0x3e/0x80 [ 135.770255] schedule+0xda/0x1b0 [ 135.770267] exit_to_user_mode_prepare+0x114/0x1a0 [ 135.770288] syscall_exit_to_user_mode+0x19/0x40 [ 135.770307] do_syscall_64+0x48/0x90 [ 135.770321] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 135.770340] RIP: 0033:0x7fe36c39fb19 [ 135.770348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 135.770359] RSP: 002b:00007fe369915218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 135.770370] RAX: 0000000000000001 RBX: 00007fe36c4b2f68 RCX: 00007fe36c39fb19 [ 135.770377] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe36c4b2f6c [ 135.770384] RBP: 00007fe36c4b2f60 R08: 000000000000000e R09: 0000000000000000 [ 135.770392] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe36c4b2f6c [ 135.770399] R13: 00007fff9513caef R14: 00007fe369915300 R15: 0000000000022000 [ 135.770412] [ 135.825740] WARNING: CPU: 1 PID: 3678 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 135.826433] Modules linked in: [ 135.826676] CPU: 1 PID: 3678 Comm: syz-executor.7 Not tainted 6.0.0-rc5-next-20220915 #1 [ 135.827278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 135.828078] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 135.828472] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 135.829771] RSP: 0018:ffff8880090dfc48 EFLAGS: 00010006 [ 135.830169] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 135.830677] RDX: ffff888010521ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 135.831189] RBP: ffff88801f308000 R08: 0000000000000005 R09: 0000000000000001 [ 135.831695] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff888018beac00 [ 135.832212] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 135.832730] FS: 00007fe369915700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 135.833315] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.833747] CR2: 00007fb2a9d9f1f0 CR3: 0000000040afa000 CR4: 0000000000350ee0 [ 135.834276] Call Trace: [ 135.834466] [ 135.834644] ctx_sched_out+0x8f1/0xc10 [ 135.834938] __perf_event_task_sched_out+0x6d0/0x18d0 [ 135.835313] ? lock_is_held_type+0xd7/0x130 [ 135.835643] ? __perf_cgroup_move+0x160/0x160 [ 135.835976] ? set_next_entity+0x304/0x550 [ 135.836294] ? update_curr+0x267/0x740 [ 135.836590] ? lock_is_held_type+0xd7/0x130 [ 135.836914] __schedule+0xedd/0x2470 [ 135.837196] ? io_schedule_timeout+0x150/0x150 [ 135.837541] ? rcu_read_lock_sched_held+0x3e/0x80 [ 135.837904] schedule+0xda/0x1b0 [ 135.838164] exit_to_user_mode_prepare+0x114/0x1a0 [ 135.838547] syscall_exit_to_user_mode+0x19/0x40 [ 135.838915] do_syscall_64+0x48/0x90 [ 135.839201] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 135.839591] RIP: 0033:0x7fe36c39fb19 [ 135.839876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 135.841223] RSP: 002b:00007fe369915218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 135.841792] RAX: 0000000000000001 RBX: 00007fe36c4b2f68 RCX: 00007fe36c39fb19 [ 135.842323] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe36c4b2f6c [ 135.842855] RBP: 00007fe36c4b2f60 R08: 000000000000000e R09: 0000000000000000 [ 135.843393] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe36c4b2f6c [ 135.843927] R13: 00007fff9513caef R14: 00007fe369915300 R15: 0000000000022000 [ 135.844456] [ 135.844636] irq event stamp: 700 [ 135.844890] hardirqs last enabled at (699): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 135.845600] hardirqs last disabled at (700): [] __schedule+0x1225/0x2470 [ 135.846209] softirqs last enabled at (326): [] __irq_exit_rcu+0x11b/0x180 [ 135.846841] softirqs last disabled at (287): [] __irq_exit_rcu+0x11b/0x180 [ 135.847476] ---[ end trace 0000000000000000 ]--- [ 136.134995] 9pnet_virtio: no channels available for device 127.0.0.1 [ 136.153014] 9pnet_virtio: no channels available for device 127.0.0.1 [ 136.189512] audit: type=1400 audit(1663247717.741:9): avc: denied { block_suspend } for pid=3708 comm="syz-executor.0" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 13:15:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000300), 0xa00) mount$9p_fd(0x0, &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x4000, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_tcp(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e7d04259269e54037bbbe04a6543272733d7463702c706f72743d3078303030303030303030303030346532342c616669643d3078303030303030303030303030303030322c616669643d307830303030303030aadb6ae730303030342c6163636573733d7573655f747970653d2f70726f632f6c6f636b73002c726f6f74636f6e746578743d757365725f752c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',obj_type=,rootcontext=staff_u,\x00']) [ 136.254756] 9pnet_virtio: no channels available for device 127.0.0.1 [ 137.265839] audit: type=1400 audit(1663247718.818:10): avc: denied { write } for pid=3816 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 137.319625] syz-executor.2 (3817) used greatest stack depth: 24280 bytes left [ 138.216921] ======================================================= [ 138.216921] WARNING: The mand mount option has been deprecated and [ 138.216921] and is ignored by this kernel. Remove the mand [ 138.216921] option from the mount to silence this warning. [ 138.216921] ======================================================= [ 143.482970] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 143.482984] Bluetooth: hci4: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 13:15:17 Registers: info registers vcpu 0 RAX=0000000000000004 RBX=0000000000000001 RCX=0000000000005e8d RDX=00000000000011da RSI=00000000000011d9 RDI=ffffffff8626fa5c RBP=ffff888019c173d8 RSP=ffff888019c172b0 R8 =0000000000000000 R9 =ffff888019c17380 R10=ffffed1003382e7d R11=000000000003603d R12=ffff888019c173c1 R13=ffff888019c173e0 R14=ffff888019c17380 R15=ffffffff8111d909 RIP=ffffffff8111b4f7 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0fe9469368 CR3=0000000041002000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b29f1 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff8880090df698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006e R11=0000000000000001 R12=000000000000006e R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b29e0 RIP=ffffffff822b2a49 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe369915700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb2a9d9f1f0 CR3=0000000040afa000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fe36c4867c0 00007fe36c4867c8 YMM02=0000000000000000 0000000000000000 00007fe36c4867e0 00007fe36c4867c0 YMM03=0000000000000000 0000000000000000 00007fe36c4867c8 00007fe36c4867c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000