syzkaller login: [ 39.001819] sshd (244) used greatest stack depth: 24744 bytes left Warning: Permanently added '[localhost]:24843' (ECDSA) to the list of known hosts. 2022/09/16 11:46:38 fuzzer started 2022/09/16 11:46:38 dialing manager at localhost:36051 [ 41.973129] cgroup: Unknown subsys name 'net' [ 42.079339] cgroup: Unknown subsys name 'rlimit' 2022/09/16 11:46:54 syscalls: 2215 2022/09/16 11:46:54 code coverage: enabled 2022/09/16 11:46:54 comparison tracing: enabled 2022/09/16 11:46:54 extra coverage: enabled 2022/09/16 11:46:54 setuid sandbox: enabled 2022/09/16 11:46:54 namespace sandbox: enabled 2022/09/16 11:46:54 Android sandbox: enabled 2022/09/16 11:46:54 fault injection: enabled 2022/09/16 11:46:54 leak checking: enabled 2022/09/16 11:46:54 net packet injection: enabled 2022/09/16 11:46:54 net device setup: enabled 2022/09/16 11:46:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/16 11:46:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/16 11:46:54 USB emulation: enabled 2022/09/16 11:46:54 hci packet injection: enabled 2022/09/16 11:46:54 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220916) 2022/09/16 11:46:54 802.15.4 emulation: enabled 2022/09/16 11:46:54 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/16 11:46:54 fetching corpus: 50, signal 26246/29665 (executing program) 2022/09/16 11:46:54 fetching corpus: 100, signal 40804/45440 (executing program) 2022/09/16 11:46:54 fetching corpus: 149, signal 51364/57062 (executing program) 2022/09/16 11:46:55 fetching corpus: 198, signal 58355/65067 (executing program) 2022/09/16 11:46:55 fetching corpus: 248, signal 63450/71131 (executing program) 2022/09/16 11:46:55 fetching corpus: 298, signal 67472/76100 (executing program) 2022/09/16 11:46:55 fetching corpus: 348, signal 72706/82103 (executing program) 2022/09/16 11:46:55 fetching corpus: 398, signal 81286/90964 (executing program) 2022/09/16 11:46:55 fetching corpus: 448, signal 84862/95158 (executing program) 2022/09/16 11:46:55 fetching corpus: 498, signal 87702/98692 (executing program) 2022/09/16 11:46:55 fetching corpus: 548, signal 91763/103236 (executing program) 2022/09/16 11:46:56 fetching corpus: 598, signal 94277/106349 (executing program) 2022/09/16 11:46:56 fetching corpus: 648, signal 97001/109559 (executing program) 2022/09/16 11:46:56 fetching corpus: 697, signal 98840/111992 (executing program) 2022/09/16 11:46:56 fetching corpus: 747, signal 101165/114777 (executing program) 2022/09/16 11:46:56 fetching corpus: 797, signal 103513/117491 (executing program) 2022/09/16 11:46:56 fetching corpus: 846, signal 107198/121273 (executing program) 2022/09/16 11:46:57 fetching corpus: 896, signal 110540/124617 (executing program) 2022/09/16 11:46:57 fetching corpus: 946, signal 113014/127276 (executing program) 2022/09/16 11:46:57 fetching corpus: 995, signal 116083/130344 (executing program) 2022/09/16 11:46:57 fetching corpus: 1045, signal 118951/133144 (executing program) 2022/09/16 11:46:57 fetching corpus: 1095, signal 121071/135284 (executing program) 2022/09/16 11:46:57 fetching corpus: 1145, signal 123230/137461 (executing program) 2022/09/16 11:46:57 fetching corpus: 1195, signal 125520/139664 (executing program) 2022/09/16 11:46:58 fetching corpus: 1244, signal 128758/142536 (executing program) 2022/09/16 11:46:58 fetching corpus: 1293, signal 131719/145096 (executing program) 2022/09/16 11:46:58 fetching corpus: 1342, signal 133877/147042 (executing program) 2022/09/16 11:46:58 fetching corpus: 1391, signal 134993/148268 (executing program) 2022/09/16 11:46:58 fetching corpus: 1441, signal 136499/149744 (executing program) 2022/09/16 11:46:58 fetching corpus: 1490, signal 138041/151199 (executing program) 2022/09/16 11:46:58 fetching corpus: 1539, signal 139318/152433 (executing program) 2022/09/16 11:46:59 fetching corpus: 1589, signal 140763/153781 (executing program) 2022/09/16 11:46:59 fetching corpus: 1634, signal 142009/154978 (executing program) 2022/09/16 11:46:59 fetching corpus: 1684, signal 144064/156648 (executing program) 2022/09/16 11:46:59 fetching corpus: 1734, signal 145673/158019 (executing program) 2022/09/16 11:46:59 fetching corpus: 1784, signal 146722/158959 (executing program) 2022/09/16 11:46:59 fetching corpus: 1834, signal 147911/159984 (executing program) 2022/09/16 11:46:59 fetching corpus: 1884, signal 149025/160921 (executing program) 2022/09/16 11:47:00 fetching corpus: 1934, signal 149818/161682 (executing program) 2022/09/16 11:47:00 fetching corpus: 1983, signal 151706/162983 (executing program) 2022/09/16 11:47:00 fetching corpus: 2033, signal 152678/163751 (executing program) 2022/09/16 11:47:00 fetching corpus: 2083, signal 153814/164590 (executing program) 2022/09/16 11:47:00 fetching corpus: 2132, signal 155076/165475 (executing program) 2022/09/16 11:47:00 fetching corpus: 2181, signal 156443/166375 (executing program) 2022/09/16 11:47:01 fetching corpus: 2231, signal 157528/167114 (executing program) 2022/09/16 11:47:01 fetching corpus: 2280, signal 159031/168172 (executing program) 2022/09/16 11:47:01 fetching corpus: 2329, signal 160188/168861 (executing program) 2022/09/16 11:47:01 fetching corpus: 2377, signal 161329/169537 (executing program) 2022/09/16 11:47:01 fetching corpus: 2426, signal 162325/170124 (executing program) 2022/09/16 11:47:01 fetching corpus: 2476, signal 163080/170580 (executing program) 2022/09/16 11:47:01 fetching corpus: 2526, signal 163737/170998 (executing program) 2022/09/16 11:47:02 fetching corpus: 2576, signal 166418/172654 (executing program) 2022/09/16 11:47:02 fetching corpus: 2626, signal 167078/173012 (executing program) 2022/09/16 11:47:02 fetching corpus: 2676, signal 168227/173557 (executing program) 2022/09/16 11:47:02 fetching corpus: 2726, signal 169144/174008 (executing program) 2022/09/16 11:47:02 fetching corpus: 2776, signal 169898/174363 (executing program) 2022/09/16 11:47:02 fetching corpus: 2808, signal 170811/174788 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/174854 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/174919 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/174985 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175054 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175127 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175180 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175232 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175308 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175377 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175445 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175509 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175583 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175656 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175730 (executing program) 2022/09/16 11:47:02 fetching corpus: 2810, signal 170816/175802 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/175866 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/175929 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176008 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176070 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176146 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176216 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176285 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176351 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176423 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176486 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176545 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176618 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176661 (executing program) 2022/09/16 11:47:02 fetching corpus: 2811, signal 170819/176661 (executing program) 2022/09/16 11:47:05 starting 8 fuzzer processes 11:47:05 executing program 0: r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/229) 11:47:05 executing program 1: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000140)=ANY=[@ANYBLOB='decodes '], 0xf) 11:47:05 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0x4058534c, &(0x7f0000000400)) 11:47:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_BEARER_SET(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000cc0)={0x14}, 0x14}}, 0x0) 11:47:05 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000140)=[{&(0x7f0000000000)='%', 0x1}], 0x1, 0x10000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1538b, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r2, r1, 0x0, 0xfffffdef) [ 68.296150] audit: type=1400 audit(1663328825.879:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:47:05 executing program 5: keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000000)='%[.+,}*!$\x00', &(0x7f0000000040)) r0 = add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)={0x1, 0x0, @auto=[0x1b, 0x39, 0x1b, 0x17, 0x32, 0x2c, 0x21]}, 0xf, 0xfffffffffffffffd) keyctl$describe(0x6, r0, &(0x7f0000000140)=""/209, 0xd1) r1 = request_key(&(0x7f0000000340)='.request_key_auth\x00', &(0x7f0000000380)={'syz', 0x2}, &(0x7f00000003c0)='\\,\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="d2f333da308f231b0d5c731c1b0d4f690dec4e862af6e4101334b1ed331defcd70dc5b710b69ca90b4591a31c5b54a401f982ca279fbc94af0307e77cc61ee384543f6248477de65fec109943a0b68d33ede7ec2dd2f9c58d770ac398e8bbbf4ce8b86c22352da24622d01f5bff3", 0x6e, r1) r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc4}, &(0x7f0000000480)={0x0, "3ccaaa4c590a6ce914090e0413a062691f97fc2b4d6e4b3b3643ca9e593c23da96671869c7c1e8d82d503ef20afba8030f66c2eebd3e1b87fb0a07169c676490", 0x20}, 0x48, 0xfffffffffffffffc) keyctl$invalidate(0x15, r2) r3 = add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="b9a922563e3db0b6e21c8d7284221b0dc95b30eb20f5137b62428a79e4f069449c1e2f6b0846d2270f6665bf92844a7ebd24c72dde056d2df80411e4962188bcabcdec22e10f65a09604685aafff4a12a241340410d3ed9f1db52c39f06476131c772526eae296e2c369a57132d3522af3c06e2ad3f4a2", 0x77, r2) keyctl$describe(0x6, 0x0, &(0x7f0000000780)=""/92, 0x5c) keyctl$describe(0x6, r1, &(0x7f0000000800)=""/182, 0xb6) r4 = add_key$keyring(&(0x7f00000008c0), &(0x7f0000000900)={'syz', 0x2}, 0x0, 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000a00), &(0x7f0000000a40)={'syz', 0x2}, &(0x7f0000000a80)={0x1, 0x0, @c}, 0x29, 0x0) keyctl$KEYCTL_MOVE(0x1e, r3, r4, 0xfffffffffffffffa, 0x0) 11:47:05 executing program 6: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000040)=@other={'decodes', ' ', 'io'}, 0xb) 11:47:05 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f0000000140)=@ethtool_link_settings={0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0xa406]}}) [ 69.648204] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.650865] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.652700] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.657144] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.659392] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.660680] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.665026] Bluetooth: hci0: HCI_REQ-0x0c1a [ 69.727729] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 69.737180] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 69.738455] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 69.741476] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 69.743217] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 69.746971] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 69.751873] Bluetooth: hci4: HCI_REQ-0x0c1a [ 69.752323] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.754876] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.756354] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.763510] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.765427] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.766949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.771661] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.773270] Bluetooth: hci2: HCI_REQ-0x0c1a [ 69.773845] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 69.774732] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.781272] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.782503] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 69.784974] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 69.786960] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 69.788270] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.789391] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 69.791371] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.793194] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.794458] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 69.796450] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 69.798305] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 69.800044] Bluetooth: hci3: HCI_REQ-0x0c1a [ 69.800379] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 69.802963] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 69.804574] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 69.807246] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 69.808275] Bluetooth: hci6: HCI_REQ-0x0c1a [ 69.808741] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 69.812945] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 69.817889] Bluetooth: hci7: HCI_REQ-0x0c1a [ 69.847368] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 69.852390] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 69.854588] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 69.862684] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 69.880034] Bluetooth: hci5: HCI_REQ-0x0c1a [ 71.733512] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 71.734446] Bluetooth: hci0: command 0x0409 tx timeout [ 71.796812] Bluetooth: hci2: command 0x0409 tx timeout [ 71.797292] Bluetooth: hci4: command 0x0409 tx timeout [ 71.860868] Bluetooth: hci7: command 0x0409 tx timeout [ 71.861319] Bluetooth: hci3: command 0x0409 tx timeout [ 71.861825] Bluetooth: hci6: command 0x0409 tx timeout [ 71.925813] Bluetooth: hci5: command 0x0409 tx timeout [ 73.780848] Bluetooth: hci0: command 0x041b tx timeout [ 73.844985] Bluetooth: hci4: command 0x041b tx timeout [ 73.845872] Bluetooth: hci2: command 0x041b tx timeout [ 73.909173] Bluetooth: hci6: command 0x041b tx timeout [ 73.910050] Bluetooth: hci3: command 0x041b tx timeout [ 73.910895] Bluetooth: hci7: command 0x041b tx timeout [ 73.972854] Bluetooth: hci5: command 0x041b tx timeout [ 75.828903] Bluetooth: hci0: command 0x040f tx timeout [ 75.892954] Bluetooth: hci2: command 0x040f tx timeout [ 75.895446] Bluetooth: hci4: command 0x040f tx timeout [ 75.956840] Bluetooth: hci7: command 0x040f tx timeout [ 75.957665] Bluetooth: hci3: command 0x040f tx timeout [ 75.959826] Bluetooth: hci6: command 0x040f tx timeout [ 76.020857] Bluetooth: hci5: command 0x040f tx timeout [ 76.660880] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 77.876823] Bluetooth: hci0: command 0x0419 tx timeout [ 77.940838] Bluetooth: hci4: command 0x0419 tx timeout [ 77.941580] Bluetooth: hci2: command 0x0419 tx timeout [ 78.004885] Bluetooth: hci6: command 0x0419 tx timeout [ 78.005676] Bluetooth: hci3: command 0x0419 tx timeout [ 78.007896] Bluetooth: hci7: command 0x0419 tx timeout [ 78.068838] Bluetooth: hci5: command 0x0419 tx timeout [ 81.460835] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 83.960925] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.962085] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.962815] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.965159] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.966148] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 83.968104] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.971414] Bluetooth: hci1: HCI_REQ-0x0c1a [ 86.004835] Bluetooth: hci1: command 0x0409 tx timeout [ 88.052902] Bluetooth: hci1: command 0x041b tx timeout [ 90.100831] Bluetooth: hci1: command 0x040f tx timeout [ 92.148815] Bluetooth: hci1: command 0x0419 tx timeout 11:48:00 executing program 3: semctl$GETZCNT(0x0, 0x0, 0xf, 0x0) 11:48:00 executing program 3: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 123.367529] audit: type=1400 audit(1663328880.951:7): avc: denied { open } for pid=3636 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.369035] audit: type=1400 audit(1663328880.951:8): avc: denied { kernel } for pid=3636 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.387356] ------------[ cut here ]------------ [ 123.387379] [ 123.387383] ====================================================== [ 123.387386] WARNING: possible circular locking dependency detected [ 123.387390] 6.0.0-rc5-next-20220916 #1 Not tainted [ 123.387397] ------------------------------------------------------ [ 123.387400] syz-executor.3/3638 is trying to acquire lock: [ 123.387407] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 123.387445] [ 123.387445] but task is already holding lock: [ 123.387448] ffff88800e707820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.387476] [ 123.387476] which lock already depends on the new lock. [ 123.387476] [ 123.387479] [ 123.387479] the existing dependency chain (in reverse order) is: [ 123.387482] [ 123.387482] -> #3 (&ctx->lock){....}-{2:2}: [ 123.387496] _raw_spin_lock+0x2a/0x40 [ 123.387513] __perf_event_task_sched_out+0x53b/0x18d0 [ 123.387525] __schedule+0xedd/0x2470 [ 123.387536] schedule+0xda/0x1b0 [ 123.387546] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.387566] syscall_exit_to_user_mode+0x19/0x40 [ 123.387584] do_syscall_64+0x48/0x90 [ 123.387597] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.387615] [ 123.387615] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 123.387628] _raw_spin_lock_nested+0x30/0x40 [ 123.387643] raw_spin_rq_lock_nested+0x1e/0x30 [ 123.387656] task_fork_fair+0x63/0x4d0 [ 123.387673] sched_cgroup_fork+0x3d0/0x540 [ 123.387687] copy_process+0x4183/0x6e20 [ 123.387697] kernel_clone+0xe7/0x890 [ 123.387707] user_mode_thread+0xad/0xf0 [ 123.387717] rest_init+0x24/0x250 [ 123.387733] arch_call_rest_init+0xf/0x14 [ 123.387746] start_kernel+0x4c1/0x4e6 [ 123.387758] secondary_startup_64_no_verify+0xe0/0xeb [ 123.387773] [ 123.387773] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 123.387786] _raw_spin_lock_irqsave+0x39/0x60 [ 123.387801] try_to_wake_up+0xab/0x1920 [ 123.387814] up+0x75/0xb0 [ 123.387825] __up_console_sem+0x6e/0x80 [ 123.387841] console_unlock+0x46a/0x590 [ 123.387856] vt_ioctl+0x2822/0x2ca0 [ 123.387869] tty_ioctl+0x7c4/0x1700 [ 123.387881] __x64_sys_ioctl+0x19a/0x210 [ 123.387896] do_syscall_64+0x3b/0x90 [ 123.387909] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.387926] [ 123.387926] -> #0 ((console_sem).lock){....}-{2:2}: [ 123.387940] __lock_acquire+0x2a02/0x5e70 [ 123.387956] lock_acquire+0x1a2/0x530 [ 123.387971] _raw_spin_lock_irqsave+0x39/0x60 [ 123.387986] down_trylock+0xe/0x70 [ 123.387998] __down_trylock_console_sem+0x3b/0xd0 [ 123.388013] vprintk_emit+0x16b/0x560 [ 123.388029] vprintk+0x84/0xa0 [ 123.388045] _printk+0xba/0xf1 [ 123.388062] report_bug.cold+0x72/0xab [ 123.388075] handle_bug+0x3c/0x70 [ 123.388088] exc_invalid_op+0x14/0x50 [ 123.388101] asm_exc_invalid_op+0x16/0x20 [ 123.388117] group_sched_out.part.0+0x2c7/0x460 [ 123.388127] ctx_sched_out+0x8f1/0xc10 [ 123.388137] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.388149] __schedule+0xedd/0x2470 [ 123.388159] schedule+0xda/0x1b0 [ 123.388169] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.388187] syscall_exit_to_user_mode+0x19/0x40 [ 123.388204] do_syscall_64+0x48/0x90 [ 123.388217] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.388233] [ 123.388233] other info that might help us debug this: [ 123.388233] [ 123.388236] Chain exists of: [ 123.388236] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 123.388236] [ 123.388251] Possible unsafe locking scenario: [ 123.388251] [ 123.388253] CPU0 CPU1 [ 123.388255] ---- ---- [ 123.388258] lock(&ctx->lock); [ 123.388263] lock(&rq->__lock); [ 123.388270] lock(&ctx->lock); [ 123.388276] lock((console_sem).lock); [ 123.388281] [ 123.388281] *** DEADLOCK *** [ 123.388281] [ 123.388283] 2 locks held by syz-executor.3/3638: [ 123.388290] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 123.388316] #1: ffff88800e707820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.388343] [ 123.388343] stack backtrace: [ 123.388346] CPU: 0 PID: 3638 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220916 #1 [ 123.388359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.388366] Call Trace: [ 123.388370] [ 123.388374] dump_stack_lvl+0x8b/0xb3 [ 123.388389] check_noncircular+0x263/0x2e0 [ 123.388405] ? format_decode+0x26c/0xb50 [ 123.388420] ? print_circular_bug+0x450/0x450 [ 123.388437] ? enable_ptr_key_workfn+0x20/0x20 [ 123.388452] ? format_decode+0x26c/0xb50 [ 123.388468] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 123.388485] __lock_acquire+0x2a02/0x5e70 [ 123.388506] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 123.388528] lock_acquire+0x1a2/0x530 [ 123.388544] ? down_trylock+0xe/0x70 [ 123.388559] ? rcu_read_unlock+0x40/0x40 [ 123.388579] ? vprintk+0x84/0xa0 [ 123.388596] _raw_spin_lock_irqsave+0x39/0x60 [ 123.388612] ? down_trylock+0xe/0x70 [ 123.388625] down_trylock+0xe/0x70 [ 123.388638] ? vprintk+0x84/0xa0 [ 123.388655] __down_trylock_console_sem+0x3b/0xd0 [ 123.388671] vprintk_emit+0x16b/0x560 [ 123.388690] vprintk+0x84/0xa0 [ 123.388707] _printk+0xba/0xf1 [ 123.388724] ? record_print_text.cold+0x16/0x16 [ 123.388746] ? report_bug.cold+0x66/0xab [ 123.388761] ? group_sched_out.part.0+0x2c7/0x460 [ 123.388772] report_bug.cold+0x72/0xab [ 123.388787] handle_bug+0x3c/0x70 [ 123.388801] exc_invalid_op+0x14/0x50 [ 123.388815] asm_exc_invalid_op+0x16/0x20 [ 123.388833] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.388846] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.388857] RSP: 0018:ffff88803d2bfc48 EFLAGS: 00010006 [ 123.388866] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.388874] RDX: ffff88801d12d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 123.388882] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 123.388889] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800e707800 [ 123.388897] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 123.388908] ? group_sched_out.part.0+0x2c7/0x460 [ 123.388921] ? group_sched_out.part.0+0x2c7/0x460 [ 123.388934] ctx_sched_out+0x8f1/0xc10 [ 123.388946] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.388961] ? lock_is_held_type+0xd7/0x130 [ 123.388980] ? __perf_cgroup_move+0x160/0x160 [ 123.388991] ? set_next_entity+0x304/0x550 [ 123.389008] ? update_curr+0x267/0x740 [ 123.389026] ? lock_is_held_type+0xd7/0x130 [ 123.389045] __schedule+0xedd/0x2470 [ 123.389058] ? io_schedule_timeout+0x150/0x150 [ 123.389071] ? rcu_read_lock_sched_held+0x3e/0x80 [ 123.389091] schedule+0xda/0x1b0 [ 123.389103] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.389122] syscall_exit_to_user_mode+0x19/0x40 [ 123.389140] do_syscall_64+0x48/0x90 [ 123.389155] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.389172] RIP: 0033:0x7fc936dd9b19 [ 123.389180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.389191] RSP: 002b:00007fc93434f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.389202] RAX: 0000000000000001 RBX: 00007fc936eecf68 RCX: 00007fc936dd9b19 [ 123.389210] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc936eecf6c [ 123.389217] RBP: 00007fc936eecf60 R08: 000000000000000e R09: 0000000000000000 [ 123.389224] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fc936eecf6c [ 123.389231] R13: 00007ffcd09b30ff R14: 00007fc93434f300 R15: 0000000000022000 [ 123.389244] [ 123.443674] WARNING: CPU: 0 PID: 3638 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 123.444325] Modules linked in: [ 123.444560] CPU: 0 PID: 3638 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220916 #1 [ 123.445123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.445902] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.446288] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.447565] RSP: 0018:ffff88803d2bfc48 EFLAGS: 00010006 [ 123.447941] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.448440] RDX: ffff88801d12d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 123.448948] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 123.449453] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800e707800 [ 123.449952] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 123.450457] FS: 00007fc93434f700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 123.451017] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.451444] CR2: 00007f5ae0355368 CR3: 0000000018208000 CR4: 0000000000350ef0 [ 123.451951] Call Trace: [ 123.452143] [ 123.452314] ctx_sched_out+0x8f1/0xc10 [ 123.452605] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.452991] ? lock_is_held_type+0xd7/0x130 [ 123.453316] ? __perf_cgroup_move+0x160/0x160 [ 123.453651] ? set_next_entity+0x304/0x550 [ 123.453972] ? update_curr+0x267/0x740 [ 123.454267] ? lock_is_held_type+0xd7/0x130 [ 123.454592] __schedule+0xedd/0x2470 [ 123.454874] ? io_schedule_timeout+0x150/0x150 [ 123.455219] ? rcu_read_lock_sched_held+0x3e/0x80 [ 123.455588] schedule+0xda/0x1b0 [ 123.455845] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.456215] syscall_exit_to_user_mode+0x19/0x40 [ 123.456573] do_syscall_64+0x48/0x90 [ 123.456858] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.457243] RIP: 0033:0x7fc936dd9b19 [ 123.457516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.458822] RSP: 002b:00007fc93434f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.459381] RAX: 0000000000000001 RBX: 00007fc936eecf68 RCX: 00007fc936dd9b19 [ 123.459896] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc936eecf6c [ 123.460407] RBP: 00007fc936eecf60 R08: 000000000000000e R09: 0000000000000000 [ 123.460919] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fc936eecf6c [ 123.461436] R13: 00007ffcd09b30ff R14: 00007fc93434f300 R15: 0000000000022000 [ 123.461959] [ 123.462136] irq event stamp: 2432 [ 123.462390] hardirqs last enabled at (2431): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 123.463082] hardirqs last disabled at (2432): [] __schedule+0x1225/0x2470 [ 123.463696] softirqs last enabled at (2198): [] __irq_exit_rcu+0x11b/0x180 [ 123.464323] softirqs last disabled at (2121): [] __irq_exit_rcu+0x11b/0x180 [ 123.464950] ---[ end trace 0000000000000000 ]--- 11:48:01 executing program 3: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 11:48:01 executing program 3: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 11:48:01 executing program 3: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 11:48:01 executing program 3: mq_open(&(0x7f0000000000)='@\x00', 0x0, 0xb2, &(0x7f0000000040)={0xa554, 0x7, 0x8001, 0x8}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000300)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000500)={{}, r0, 0x12, @unused=[0x1, 0x0, 0x7ff], @subvolid=0x80000000}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.idle_time\x00', 0x0, 0x0) pipe2$9p(&(0x7f0000002600)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000000)) sendfile(r2, r3, 0x0, 0x5) ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, 0x0) mq_timedsend(r1, &(0x7f0000000180)="846a34816a6da7b6348cf5487fd246a7c603e99ddfc62a407d4f0a2c40434437573601db883a6e819dcb5ef55f0a796671683e914f317679bda1cd3a464662a51f7185ec0f4cbda7b9bf2234914b5c7bc2b2ac1b5c14c52434a66df9a4a87869a8b6c2a21310763151b158c8e0e9696619e607786d908413ebb92ca73407a915", 0x80, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x862a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept$unix(r1, 0x0, &(0x7f0000000200)) fork() 11:48:01 executing program 3: mq_open(&(0x7f0000000000)='@\x00', 0x0, 0xb2, &(0x7f0000000040)={0xa554, 0x7, 0x8001, 0x8}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000300)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000500)={{}, r0, 0x12, @unused=[0x1, 0x0, 0x7ff], @subvolid=0x80000000}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.idle_time\x00', 0x0, 0x0) pipe2$9p(&(0x7f0000002600)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000000)) sendfile(r2, r3, 0x0, 0x5) ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, 0x0) mq_timedsend(r1, &(0x7f0000000180)="846a34816a6da7b6348cf5487fd246a7c603e99ddfc62a407d4f0a2c40434437573601db883a6e819dcb5ef55f0a796671683e914f317679bda1cd3a464662a51f7185ec0f4cbda7b9bf2234914b5c7bc2b2ac1b5c14c52434a66df9a4a87869a8b6c2a21310763151b158c8e0e9696619e607786d908413ebb92ca73407a915", 0x80, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x862a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept$unix(r1, 0x0, &(0x7f0000000200)) fork() [ 124.444772] hrtimer: interrupt took 22001 ns [ 125.408099] syz-executor.4 (3804) used greatest stack depth: 23448 bytes left [ 126.589483] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem 11:48:08 executing program 6: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000040)=@other={'decodes', ' ', 'io'}, 0xb) 11:48:08 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f0000000140)=@ethtool_link_settings={0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, [0xa406]}}) 11:48:08 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0x4058534c, &(0x7f0000000400)) 11:48:08 executing program 1: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000140)=ANY=[@ANYBLOB='decodes '], 0xf) 11:48:08 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000140)=[{&(0x7f0000000000)='%', 0x1}], 0x1, 0x10000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1538b, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r2, r1, 0x0, 0xfffffdef) 11:48:08 executing program 5: keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000000)='%[.+,}*!$\x00', &(0x7f0000000040)) r0 = add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)={0x1, 0x0, @auto=[0x1b, 0x39, 0x1b, 0x17, 0x32, 0x2c, 0x21]}, 0xf, 0xfffffffffffffffd) keyctl$describe(0x6, r0, &(0x7f0000000140)=""/209, 0xd1) r1 = request_key(&(0x7f0000000340)='.request_key_auth\x00', &(0x7f0000000380)={'syz', 0x2}, &(0x7f00000003c0)='\\,\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="d2f333da308f231b0d5c731c1b0d4f690dec4e862af6e4101334b1ed331defcd70dc5b710b69ca90b4591a31c5b54a401f982ca279fbc94af0307e77cc61ee384543f6248477de65fec109943a0b68d33ede7ec2dd2f9c58d770ac398e8bbbf4ce8b86c22352da24622d01f5bff3", 0x6e, r1) r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc4}, &(0x7f0000000480)={0x0, "3ccaaa4c590a6ce914090e0413a062691f97fc2b4d6e4b3b3643ca9e593c23da96671869c7c1e8d82d503ef20afba8030f66c2eebd3e1b87fb0a07169c676490", 0x20}, 0x48, 0xfffffffffffffffc) keyctl$invalidate(0x15, r2) r3 = add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="b9a922563e3db0b6e21c8d7284221b0dc95b30eb20f5137b62428a79e4f069449c1e2f6b0846d2270f6665bf92844a7ebd24c72dde056d2df80411e4962188bcabcdec22e10f65a09604685aafff4a12a241340410d3ed9f1db52c39f06476131c772526eae296e2c369a57132d3522af3c06e2ad3f4a2", 0x77, r2) keyctl$describe(0x6, 0x0, &(0x7f0000000780)=""/92, 0x5c) keyctl$describe(0x6, r1, &(0x7f0000000800)=""/182, 0xb6) r4 = add_key$keyring(&(0x7f00000008c0), &(0x7f0000000900)={'syz', 0x2}, 0x0, 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000a00), &(0x7f0000000a40)={'syz', 0x2}, &(0x7f0000000a80)={0x1, 0x0, @c}, 0x29, 0x0) keyctl$KEYCTL_MOVE(0x1e, r3, r4, 0xfffffffffffffffa, 0x0) [ 131.302922] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem 11:48:08 executing program 0: r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/229) 11:48:08 executing program 3: mq_open(&(0x7f0000000000)='@\x00', 0x0, 0xb2, &(0x7f0000000040)={0xa554, 0x7, 0x8001, 0x8}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000300)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000500)={{}, r0, 0x12, @unused=[0x1, 0x0, 0x7ff], @subvolid=0x80000000}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.idle_time\x00', 0x0, 0x0) pipe2$9p(&(0x7f0000002600)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000080)) ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000000)) sendfile(r2, r3, 0x0, 0x5) ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, 0x0) mq_timedsend(r1, &(0x7f0000000180)="846a34816a6da7b6348cf5487fd246a7c603e99ddfc62a407d4f0a2c40434437573601db883a6e819dcb5ef55f0a796671683e914f317679bda1cd3a464662a51f7185ec0f4cbda7b9bf2234914b5c7bc2b2ac1b5c14c52434a66df9a4a87869a8b6c2a21310763151b158c8e0e9696619e607786d908413ebb92ca73407a915", 0x80, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x862a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept$unix(r1, 0x0, &(0x7f0000000200)) fork() 11:48:08 executing program 1: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000140)=ANY=[@ANYBLOB='decodes '], 0xf) 11:48:08 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0x4058534c, &(0x7f0000000400)) 11:48:09 executing program 5: keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000000)='%[.+,}*!$\x00', &(0x7f0000000040)) r0 = add_key$fscrypt_provisioning(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)={0x1, 0x0, @auto=[0x1b, 0x39, 0x1b, 0x17, 0x32, 0x2c, 0x21]}, 0xf, 0xfffffffffffffffd) keyctl$describe(0x6, r0, &(0x7f0000000140)=""/209, 0xd1) r1 = request_key(&(0x7f0000000340)='.request_key_auth\x00', &(0x7f0000000380)={'syz', 0x2}, &(0x7f00000003c0)='\\,\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="d2f333da308f231b0d5c731c1b0d4f690dec4e862af6e4101334b1ed331defcd70dc5b710b69ca90b4591a31c5b54a401f982ca279fbc94af0307e77cc61ee384543f6248477de65fec109943a0b68d33ede7ec2dd2f9c58d770ac398e8bbbf4ce8b86c22352da24622d01f5bff3", 0x6e, r1) r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc4}, &(0x7f0000000480)={0x0, "3ccaaa4c590a6ce914090e0413a062691f97fc2b4d6e4b3b3643ca9e593c23da96671869c7c1e8d82d503ef20afba8030f66c2eebd3e1b87fb0a07169c676490", 0x20}, 0x48, 0xfffffffffffffffc) keyctl$invalidate(0x15, r2) r3 = add_key(&(0x7f0000000500)='encrypted\x00', &(0x7f0000000540)={'syz', 0x1}, &(0x7f0000000580)="b9a922563e3db0b6e21c8d7284221b0dc95b30eb20f5137b62428a79e4f069449c1e2f6b0846d2270f6665bf92844a7ebd24c72dde056d2df80411e4962188bcabcdec22e10f65a09604685aafff4a12a241340410d3ed9f1db52c39f06476131c772526eae296e2c369a57132d3522af3c06e2ad3f4a2", 0x77, r2) keyctl$describe(0x6, 0x0, &(0x7f0000000780)=""/92, 0x5c) keyctl$describe(0x6, r1, &(0x7f0000000800)=""/182, 0xb6) r4 = add_key$keyring(&(0x7f00000008c0), &(0x7f0000000900)={'syz', 0x2}, 0x0, 0x0, 0x0) add_key$fscrypt_provisioning(&(0x7f0000000a00), &(0x7f0000000a40)={'syz', 0x2}, &(0x7f0000000a80)={0x1, 0x0, @c}, 0x29, 0x0) keyctl$KEYCTL_MOVE(0x1e, r3, r4, 0xfffffffffffffffa, 0x0) 11:48:09 executing program 6: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x40102, 0x0) write$vga_arbiter(r0, &(0x7f0000000040)=@other={'decodes', ' ', 'io'}, 0xb) 11:48:09 executing program 0: r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/229) [ 131.507745] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem VM DIAGNOSIS: 11:48:01 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822b31cc RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88803d2bf600 R8 =0000000000000004 R9 =0000000000000010 R10=000000000000000d R11=0000000000000001 R12=0000000000002710 R13=0000000000000060 R14=fffffbfff0ec83c3 R15=dffffc0000000000 RIP=ffffffff822b3221 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc93434f700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f5ae0355368 CR3=0000000018208000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fc936ec07c0 00007fc936ec07c8 YMM02=0000000000000000 0000000000000000 00007fc936ec07e0 00007fc936ec07c0 YMM03=0000000000000000 0000000000000000 00007fc936ec07c8 00007fc936ec07c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff88806cf33b60 RCX=ffffffff84243c5c RDX=ffffed100d9e676d RSI=0000000000000004 RDI=ffff88806cf33b60 RBP=ffff88806cf33b60 RSP=ffff88803efafbc8 R8 =0000000000000000 R9 =ffff88806cf33b63 R10=ffffed100d9e676c R11=0000000000000001 R12=4000000000000002 R13=0000000000000000 R14=0000000000000000 R15=ffffea00003d0e80 RIP=ffffffff84243c5c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f7ccfce28c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055bc3ff73080 CR3=000000003b8b6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 YMM02=0000000000000000 0000000000000000 ffffffffff0f0e0d 0c0b0a0908070605 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000006561 6124242f6867632f YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 75253a75252f7325 2f7665642f007261 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000