Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:34704' (ECDSA) to the list of known hosts. 2022/09/19 14:41:24 fuzzer started 2022/09/19 14:41:25 dialing manager at localhost:42121 syzkaller login: [ 38.733727] cgroup: Unknown subsys name 'net' [ 38.811891] cgroup: Unknown subsys name 'rlimit' 2022/09/19 14:41:42 syscalls: 2215 2022/09/19 14:41:42 code coverage: enabled 2022/09/19 14:41:42 comparison tracing: enabled 2022/09/19 14:41:42 extra coverage: enabled 2022/09/19 14:41:42 setuid sandbox: enabled 2022/09/19 14:41:42 namespace sandbox: enabled 2022/09/19 14:41:42 Android sandbox: enabled 2022/09/19 14:41:42 fault injection: enabled 2022/09/19 14:41:42 leak checking: enabled 2022/09/19 14:41:42 net packet injection: enabled 2022/09/19 14:41:42 net device setup: enabled 2022/09/19 14:41:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/19 14:41:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/19 14:41:42 USB emulation: enabled 2022/09/19 14:41:42 hci packet injection: enabled 2022/09/19 14:41:42 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220919) 2022/09/19 14:41:42 802.15.4 emulation: enabled 2022/09/19 14:41:42 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/19 14:41:42 fetching corpus: 50, signal 31069/34519 (executing program) 2022/09/19 14:41:42 fetching corpus: 100, signal 44189/48977 (executing program) 2022/09/19 14:41:42 fetching corpus: 150, signal 54149/60172 (executing program) 2022/09/19 14:41:42 fetching corpus: 200, signal 59803/67097 (executing program) 2022/09/19 14:41:43 fetching corpus: 250, signal 66200/74656 (executing program) 2022/09/19 14:41:43 fetching corpus: 300, signal 72001/81491 (executing program) 2022/09/19 14:41:43 fetching corpus: 350, signal 78069/88442 (executing program) 2022/09/19 14:41:43 fetching corpus: 400, signal 82391/93714 (executing program) 2022/09/19 14:41:43 fetching corpus: 450, signal 85711/97988 (executing program) 2022/09/19 14:41:43 fetching corpus: 500, signal 89538/102658 (executing program) 2022/09/19 14:41:43 fetching corpus: 550, signal 91853/105954 (executing program) 2022/09/19 14:41:43 fetching corpus: 600, signal 94298/109305 (executing program) 2022/09/19 14:41:44 fetching corpus: 650, signal 97288/113086 (executing program) 2022/09/19 14:41:44 fetching corpus: 700, signal 100564/117037 (executing program) 2022/09/19 14:41:44 fetching corpus: 750, signal 105478/122419 (executing program) 2022/09/19 14:41:44 fetching corpus: 800, signal 107424/125136 (executing program) 2022/09/19 14:41:44 fetching corpus: 850, signal 109414/127851 (executing program) 2022/09/19 14:41:44 fetching corpus: 900, signal 112115/131106 (executing program) 2022/09/19 14:41:44 fetching corpus: 950, signal 114527/134043 (executing program) 2022/09/19 14:41:45 fetching corpus: 1000, signal 119885/139400 (executing program) 2022/09/19 14:41:45 fetching corpus: 1050, signal 122160/142131 (executing program) 2022/09/19 14:41:45 fetching corpus: 1100, signal 124875/145195 (executing program) 2022/09/19 14:41:45 fetching corpus: 1150, signal 126994/147779 (executing program) 2022/09/19 14:41:45 fetching corpus: 1200, signal 128618/149935 (executing program) 2022/09/19 14:41:45 fetching corpus: 1250, signal 130274/152039 (executing program) 2022/09/19 14:41:45 fetching corpus: 1300, signal 132139/154267 (executing program) 2022/09/19 14:41:45 fetching corpus: 1350, signal 133797/156337 (executing program) 2022/09/19 14:41:46 fetching corpus: 1400, signal 136518/159123 (executing program) 2022/09/19 14:41:46 fetching corpus: 1450, signal 138067/161044 (executing program) 2022/09/19 14:41:46 fetching corpus: 1500, signal 139796/163057 (executing program) 2022/09/19 14:41:46 fetching corpus: 1550, signal 140931/164645 (executing program) 2022/09/19 14:41:46 fetching corpus: 1600, signal 142045/166158 (executing program) 2022/09/19 14:41:46 fetching corpus: 1650, signal 143526/167929 (executing program) 2022/09/19 14:41:46 fetching corpus: 1700, signal 145140/169790 (executing program) 2022/09/19 14:41:46 fetching corpus: 1750, signal 145951/171080 (executing program) 2022/09/19 14:41:46 fetching corpus: 1800, signal 147006/172543 (executing program) 2022/09/19 14:41:47 fetching corpus: 1850, signal 148315/174106 (executing program) 2022/09/19 14:41:47 fetching corpus: 1900, signal 150440/176170 (executing program) 2022/09/19 14:41:47 fetching corpus: 1950, signal 151657/177575 (executing program) 2022/09/19 14:41:47 fetching corpus: 2000, signal 152842/178960 (executing program) 2022/09/19 14:41:47 fetching corpus: 2050, signal 154224/180441 (executing program) 2022/09/19 14:41:47 fetching corpus: 2100, signal 155717/181993 (executing program) 2022/09/19 14:41:47 fetching corpus: 2150, signal 157292/183583 (executing program) 2022/09/19 14:41:48 fetching corpus: 2200, signal 158550/184955 (executing program) 2022/09/19 14:41:48 fetching corpus: 2250, signal 159717/186192 (executing program) 2022/09/19 14:41:48 fetching corpus: 2300, signal 161284/187722 (executing program) 2022/09/19 14:41:48 fetching corpus: 2350, signal 162278/188842 (executing program) 2022/09/19 14:41:48 fetching corpus: 2400, signal 163875/190342 (executing program) 2022/09/19 14:41:48 fetching corpus: 2450, signal 165119/191558 (executing program) 2022/09/19 14:41:48 fetching corpus: 2500, signal 165791/192436 (executing program) 2022/09/19 14:41:49 fetching corpus: 2550, signal 167157/193731 (executing program) 2022/09/19 14:41:49 fetching corpus: 2600, signal 168278/194777 (executing program) 2022/09/19 14:41:49 fetching corpus: 2650, signal 169344/195818 (executing program) 2022/09/19 14:41:49 fetching corpus: 2700, signal 170471/196842 (executing program) 2022/09/19 14:41:49 fetching corpus: 2750, signal 171867/198100 (executing program) 2022/09/19 14:41:49 fetching corpus: 2800, signal 173022/199126 (executing program) 2022/09/19 14:41:49 fetching corpus: 2850, signal 174651/200355 (executing program) 2022/09/19 14:41:49 fetching corpus: 2900, signal 175550/201203 (executing program) 2022/09/19 14:41:50 fetching corpus: 2950, signal 176139/201918 (executing program) 2022/09/19 14:41:50 fetching corpus: 3000, signal 177713/203042 (executing program) 2022/09/19 14:41:50 fetching corpus: 3050, signal 179011/204089 (executing program) 2022/09/19 14:41:50 fetching corpus: 3100, signal 179666/204826 (executing program) 2022/09/19 14:41:50 fetching corpus: 3150, signal 180398/205496 (executing program) 2022/09/19 14:41:50 fetching corpus: 3200, signal 181151/206214 (executing program) 2022/09/19 14:41:50 fetching corpus: 3250, signal 182587/207172 (executing program) 2022/09/19 14:41:50 fetching corpus: 3300, signal 184350/208253 (executing program) 2022/09/19 14:41:51 fetching corpus: 3350, signal 185371/208971 (executing program) 2022/09/19 14:41:51 fetching corpus: 3400, signal 186026/209562 (executing program) 2022/09/19 14:41:51 fetching corpus: 3450, signal 186865/210199 (executing program) 2022/09/19 14:41:51 fetching corpus: 3500, signal 188014/210961 (executing program) 2022/09/19 14:41:51 fetching corpus: 3550, signal 188955/211607 (executing program) 2022/09/19 14:41:51 fetching corpus: 3600, signal 189991/212271 (executing program) 2022/09/19 14:41:51 fetching corpus: 3650, signal 191398/213033 (executing program) 2022/09/19 14:41:52 fetching corpus: 3700, signal 192085/213544 (executing program) 2022/09/19 14:41:52 fetching corpus: 3750, signal 193012/214139 (executing program) 2022/09/19 14:41:52 fetching corpus: 3800, signal 194217/214789 (executing program) 2022/09/19 14:41:52 fetching corpus: 3850, signal 195451/215408 (executing program) 2022/09/19 14:41:52 fetching corpus: 3900, signal 196054/215862 (executing program) 2022/09/19 14:41:52 fetching corpus: 3950, signal 196928/216332 (executing program) 2022/09/19 14:41:52 fetching corpus: 4000, signal 197648/216749 (executing program) 2022/09/19 14:41:53 fetching corpus: 4050, signal 198456/217222 (executing program) 2022/09/19 14:41:53 fetching corpus: 4100, signal 199284/217661 (executing program) 2022/09/19 14:41:53 fetching corpus: 4150, signal 200541/218174 (executing program) 2022/09/19 14:41:53 fetching corpus: 4200, signal 201098/218534 (executing program) 2022/09/19 14:41:53 fetching corpus: 4250, signal 201650/218876 (executing program) 2022/09/19 14:41:53 fetching corpus: 4300, signal 202307/219201 (executing program) 2022/09/19 14:41:53 fetching corpus: 4350, signal 202878/219579 (executing program) 2022/09/19 14:41:53 fetching corpus: 4400, signal 203700/219915 (executing program) 2022/09/19 14:41:54 fetching corpus: 4450, signal 204668/220275 (executing program) 2022/09/19 14:41:54 fetching corpus: 4500, signal 205906/220748 (executing program) 2022/09/19 14:41:54 fetching corpus: 4550, signal 206506/221047 (executing program) 2022/09/19 14:41:54 fetching corpus: 4600, signal 207896/221388 (executing program) 2022/09/19 14:41:54 fetching corpus: 4650, signal 208544/221642 (executing program) 2022/09/19 14:41:54 fetching corpus: 4700, signal 209242/221911 (executing program) 2022/09/19 14:41:55 fetching corpus: 4750, signal 210023/222184 (executing program) 2022/09/19 14:41:55 fetching corpus: 4800, signal 210478/222405 (executing program) 2022/09/19 14:41:55 fetching corpus: 4850, signal 211334/222629 (executing program) 2022/09/19 14:41:55 fetching corpus: 4900, signal 211703/222785 (executing program) 2022/09/19 14:41:55 fetching corpus: 4950, signal 212248/222987 (executing program) 2022/09/19 14:41:55 fetching corpus: 5000, signal 212865/223165 (executing program) 2022/09/19 14:41:55 fetching corpus: 5050, signal 213854/223575 (executing program) 2022/09/19 14:41:56 fetching corpus: 5100, signal 214648/223908 (executing program) 2022/09/19 14:41:56 fetching corpus: 5150, signal 215091/223998 (executing program) 2022/09/19 14:41:56 fetching corpus: 5200, signal 215609/224090 (executing program) 2022/09/19 14:41:56 fetching corpus: 5250, signal 216344/224198 (executing program) 2022/09/19 14:41:56 fetching corpus: 5300, signal 216717/224341 (executing program) 2022/09/19 14:41:56 fetching corpus: 5350, signal 217404/224430 (executing program) 2022/09/19 14:41:56 fetching corpus: 5400, signal 217922/224584 (executing program) 2022/09/19 14:41:56 fetching corpus: 5450, signal 218471/224655 (executing program) 2022/09/19 14:41:56 fetching corpus: 5450, signal 218471/224657 (executing program) 2022/09/19 14:41:56 fetching corpus: 5450, signal 218471/224657 (executing program) 2022/09/19 14:41:59 starting 8 fuzzer processes 14:41:59 executing program 0: mknodat$loop(0xffffffffffffffff, 0x0, 0x0, 0x0) 14:41:59 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ppoll(0x0, 0x8, &(0x7f0000000600)={0x0, 0x3938700}, 0x0, 0x0) 14:41:59 executing program 2: getrandom(0x0, 0x47, 0x0) 14:41:59 executing program 4: pipe(&(0x7f0000000240)={0xffffffffffffffff}) read$hiddev(r0, &(0x7f0000000400)=""/199, 0xc7) [ 71.031729] audit: type=1400 audit(1663598519.328:6): avc: denied { execmem } for pid=286 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:41:59 executing program 3: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000003c40)={&(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x81000}, 0xc, 0x0}, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000080)=' ', 0x1}], 0x1) vmsplice(r0, &(0x7f0000000000), 0x1, 0x0) 14:41:59 executing program 5: syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) syz_open_dev$loop(0x0, 0x0, 0x0) syz_open_dev$sg(&(0x7f0000001740), 0x0, 0x4040) 14:41:59 executing program 6: syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f0000000400)={[{}, {':'}, {'\x00'}]}) syz_mount_image$msdos(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, 0x3, &(0x7f0000001880)=[{&(0x7f0000000540)="992d440f239c06b4aa86a1c3e4f334202b067bcaeb32cb3b36cd3ecd2fd4af41d88ca398d36f3cfa3856d4453077fd0d9a4c860c5184d1726a719754c2e0f3b25c65a821dd7f41a807", 0x49}, {&(0x7f0000000680)="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", 0x1000, 0x1}, {&(0x7f00000017c0)}], 0x820, &(0x7f0000001940)={[{@nodots}, {@nodots}, {@nodots}, {@dots}, {@dots}]}) syz_mount_image$nfs4(&(0x7f0000001ac0), &(0x7f0000001b00)='./file0\x00', 0x1f, 0x1, &(0x7f0000001cc0)=[{&(0x7f0000001b40)='$', 0x1, 0x800}], 0x1004408, &(0x7f00000063c0)={[{'nodots'}, {'pcr'}], [{@euid_lt={'euid<', 0xffffffffffffffff}}, {@smackfshat={'smackfshat', 0x3d, '\x00'}}, {@dont_measure}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@euid_lt={'euid<', 0xee00}}, {@hash}, {@uid_eq}, {@pcr={'pcr', 0x3d, 0x1a}}, {@subj_user={'subj_user', 0x3d, ':'}}, {@uid_gt}]}) 14:41:59 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @private=0xac141400}, 0xc) openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 72.287098] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 72.288917] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 72.290515] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.293663] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.295683] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 72.297009] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.302818] Bluetooth: hci1: HCI_REQ-0x0c1a [ 72.308383] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.336727] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.341496] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.345483] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.347214] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.348945] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.353712] Bluetooth: hci0: HCI_REQ-0x0c1a [ 72.371107] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 72.371759] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.378016] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 72.379784] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 72.381048] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 72.382703] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.384176] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 72.385559] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.386751] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 72.387980] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.389138] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 72.392134] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 72.394041] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 72.395980] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 72.397882] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 72.399646] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 72.402748] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 72.407765] Bluetooth: hci7: HCI_REQ-0x0c1a [ 72.408901] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 72.416589] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 72.417932] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.420891] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.428011] Bluetooth: hci5: HCI_REQ-0x0c1a [ 72.428136] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.430986] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 72.432497] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.434205] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 72.436611] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 72.438412] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 72.439603] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.446120] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 72.450547] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.460535] Bluetooth: hci6: HCI_REQ-0x0c1a [ 72.464924] Bluetooth: hci4: HCI_REQ-0x0c1a [ 72.473750] Bluetooth: hci3: HCI_REQ-0x0c1a [ 74.356913] Bluetooth: hci1: command 0x0409 tx timeout [ 74.357349] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 74.420713] Bluetooth: hci0: command 0x0409 tx timeout [ 74.421389] Bluetooth: hci7: command 0x0409 tx timeout [ 74.484544] Bluetooth: hci3: command 0x0409 tx timeout [ 74.485341] Bluetooth: hci4: command 0x0409 tx timeout [ 74.485391] Bluetooth: hci6: command 0x0409 tx timeout [ 74.486897] Bluetooth: hci5: command 0x0409 tx timeout [ 76.405390] Bluetooth: hci1: command 0x041b tx timeout [ 76.469400] Bluetooth: hci7: command 0x041b tx timeout [ 76.469898] Bluetooth: hci0: command 0x041b tx timeout [ 76.533792] Bluetooth: hci5: command 0x041b tx timeout [ 76.534345] Bluetooth: hci6: command 0x041b tx timeout [ 76.534779] Bluetooth: hci4: command 0x041b tx timeout [ 76.535227] Bluetooth: hci3: command 0x041b tx timeout [ 78.453773] Bluetooth: hci1: command 0x040f tx timeout [ 78.517339] Bluetooth: hci0: command 0x040f tx timeout [ 78.517830] Bluetooth: hci7: command 0x040f tx timeout [ 78.581562] Bluetooth: hci3: command 0x040f tx timeout [ 78.582061] Bluetooth: hci4: command 0x040f tx timeout [ 78.583934] Bluetooth: hci6: command 0x040f tx timeout [ 78.584408] Bluetooth: hci5: command 0x040f tx timeout [ 79.732445] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 80.500401] Bluetooth: hci1: command 0x0419 tx timeout [ 80.564377] Bluetooth: hci7: command 0x0419 tx timeout [ 80.565172] Bluetooth: hci0: command 0x0419 tx timeout [ 80.628790] Bluetooth: hci5: command 0x0419 tx timeout [ 80.629579] Bluetooth: hci6: command 0x0419 tx timeout [ 80.630344] Bluetooth: hci4: command 0x0419 tx timeout [ 80.633022] Bluetooth: hci3: command 0x0419 tx timeout [ 82.685834] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.686980] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.687810] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.746428] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.751424] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.753813] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.758926] Bluetooth: hci2: HCI_REQ-0x0c1a [ 84.788437] Bluetooth: hci2: command 0x0409 tx timeout [ 86.836395] Bluetooth: hci2: command 0x041b tx timeout [ 88.884469] Bluetooth: hci2: command 0x040f tx timeout [ 90.932376] Bluetooth: hci2: command 0x0419 tx timeout 14:42:57 executing program 4: pipe(&(0x7f0000000240)={0xffffffffffffffff}) read$hiddev(r0, &(0x7f0000000400)=""/199, 0xc7) [ 129.158426] audit: type=1400 audit(1663598577.455:7): avc: denied { open } for pid=3741 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.160047] audit: type=1400 audit(1663598577.455:8): avc: denied { kernel } for pid=3741 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.172842] ------------[ cut here ]------------ [ 129.172863] [ 129.172866] ====================================================== [ 129.172869] WARNING: possible circular locking dependency detected [ 129.172874] 6.0.0-rc6-next-20220919 #1 Not tainted [ 129.172880] ------------------------------------------------------ [ 129.172883] syz-executor.7/3742 is trying to acquire lock: [ 129.172890] ffffffff853fa838 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 129.172927] [ 129.172927] but task is already holding lock: [ 129.172930] ffff88800d8da420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.172957] [ 129.172957] which lock already depends on the new lock. [ 129.172957] [ 129.172961] [ 129.172961] the existing dependency chain (in reverse order) is: [ 129.172964] [ 129.172964] -> #3 (&ctx->lock){....}-{2:2}: [ 129.172978] _raw_spin_lock+0x2a/0x40 [ 129.172995] __perf_event_task_sched_out+0x53b/0x18d0 [ 129.173007] __schedule+0xedd/0x2470 [ 129.173018] schedule+0xda/0x1b0 [ 129.173028] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.173048] syscall_exit_to_user_mode+0x19/0x40 [ 129.173065] do_syscall_64+0x48/0x90 [ 129.173078] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.173096] [ 129.173096] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 129.173109] _raw_spin_lock_nested+0x30/0x40 [ 129.173124] raw_spin_rq_lock_nested+0x1e/0x30 [ 129.173137] task_fork_fair+0x63/0x4d0 [ 129.173154] sched_cgroup_fork+0x3d0/0x540 [ 129.173168] copy_process+0x4183/0x6e20 [ 129.173178] kernel_clone+0xe7/0x890 [ 129.173187] user_mode_thread+0xad/0xf0 [ 129.173197] rest_init+0x24/0x250 [ 129.173213] arch_call_rest_init+0xf/0x14 [ 129.173225] start_kernel+0x4c1/0x4e6 [ 129.173235] secondary_startup_64_no_verify+0xe0/0xeb [ 129.173249] [ 129.173249] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 129.173262] _raw_spin_lock_irqsave+0x39/0x60 [ 129.173280] try_to_wake_up+0xab/0x1920 [ 129.173293] up+0x75/0xb0 [ 129.173304] __up_console_sem+0x6e/0x80 [ 129.173320] console_unlock+0x46a/0x590 [ 129.173335] vprintk_emit+0x1bd/0x560 [ 129.173351] vprintk+0x84/0xa0 [ 129.173366] _printk+0xba/0xf1 [ 129.173384] kauditd_hold_skb.cold+0x3f/0x4e [ 129.173398] kauditd_send_queue+0x233/0x290 [ 129.173413] kauditd_thread+0x5da/0x9a0 [ 129.173426] kthread+0x2ed/0x3a0 [ 129.173440] ret_from_fork+0x22/0x30 [ 129.173452] [ 129.173452] -> #0 ((console_sem).lock){....}-{2:2}: [ 129.173466] __lock_acquire+0x2a02/0x5e70 [ 129.173482] lock_acquire+0x1a2/0x530 [ 129.173497] _raw_spin_lock_irqsave+0x39/0x60 [ 129.173512] down_trylock+0xe/0x70 [ 129.173524] __down_trylock_console_sem+0x3b/0xd0 [ 129.173539] vprintk_emit+0x16b/0x560 [ 129.173555] vprintk+0x84/0xa0 [ 129.173570] _printk+0xba/0xf1 [ 129.173586] report_bug.cold+0x72/0xab [ 129.173598] handle_bug+0x3c/0x70 [ 129.173611] exc_invalid_op+0x14/0x50 [ 129.173624] asm_exc_invalid_op+0x16/0x20 [ 129.173640] group_sched_out.part.0+0x2c7/0x460 [ 129.173650] ctx_sched_out+0x8f1/0xc10 [ 129.173659] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.173671] __schedule+0xedd/0x2470 [ 129.173681] schedule+0xda/0x1b0 [ 129.173690] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.173709] syscall_exit_to_user_mode+0x19/0x40 [ 129.173725] do_syscall_64+0x48/0x90 [ 129.173738] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.173755] [ 129.173755] other info that might help us debug this: [ 129.173755] [ 129.173757] Chain exists of: [ 129.173757] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 129.173757] [ 129.173772] Possible unsafe locking scenario: [ 129.173772] [ 129.173774] CPU0 CPU1 [ 129.173777] ---- ---- [ 129.173779] lock(&ctx->lock); [ 129.173785] lock(&rq->__lock); [ 129.173791] lock(&ctx->lock); [ 129.173797] lock((console_sem).lock); [ 129.173803] [ 129.173803] *** DEADLOCK *** [ 129.173803] [ 129.173805] 2 locks held by syz-executor.7/3742: [ 129.173811] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 129.173837] #1: ffff88800d8da420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.173864] [ 129.173864] stack backtrace: [ 129.173867] CPU: 1 PID: 3742 Comm: syz-executor.7 Not tainted 6.0.0-rc6-next-20220919 #1 [ 129.173879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 129.173888] Call Trace: [ 129.173891] [ 129.173895] dump_stack_lvl+0x8b/0xb3 [ 129.173910] check_noncircular+0x263/0x2e0 [ 129.173927] ? format_decode+0x26c/0xb50 [ 129.173942] ? print_circular_bug+0x450/0x450 [ 129.173958] ? enable_ptr_key_workfn+0x20/0x20 [ 129.173973] ? format_decode+0x26c/0xb50 [ 129.173989] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 129.174006] __lock_acquire+0x2a02/0x5e70 [ 129.174027] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 129.174049] lock_acquire+0x1a2/0x530 [ 129.174065] ? down_trylock+0xe/0x70 [ 129.174079] ? lock_release+0x750/0x750 [ 129.174099] ? vprintk+0x84/0xa0 [ 129.174117] _raw_spin_lock_irqsave+0x39/0x60 [ 129.174132] ? down_trylock+0xe/0x70 [ 129.174145] down_trylock+0xe/0x70 [ 129.174158] ? vprintk+0x84/0xa0 [ 129.174174] __down_trylock_console_sem+0x3b/0xd0 [ 129.174191] vprintk_emit+0x16b/0x560 [ 129.174210] vprintk+0x84/0xa0 [ 129.174227] _printk+0xba/0xf1 [ 129.174244] ? record_print_text.cold+0x16/0x16 [ 129.174266] ? report_bug.cold+0x66/0xab [ 129.174280] ? group_sched_out.part.0+0x2c7/0x460 [ 129.174291] report_bug.cold+0x72/0xab [ 129.174306] handle_bug+0x3c/0x70 [ 129.174320] exc_invalid_op+0x14/0x50 [ 129.174334] asm_exc_invalid_op+0x16/0x20 [ 129.174351] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 129.174364] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d 5b 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 129.174376] RSP: 0018:ffff888031d17c48 EFLAGS: 00010006 [ 129.174385] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 129.174392] RDX: ffff8880100a8000 RSI: ffffffff81566077 RDI: 0000000000000005 [ 129.174401] RBP: ffff888015fd0000 R08: 0000000000000005 R09: 0000000000000001 [ 129.174408] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800d8da400 [ 129.174416] R13: ffff88806cf3d140 R14: ffffffff8547c620 R15: 0000000000000002 [ 129.174427] ? group_sched_out.part.0+0x2c7/0x460 [ 129.174440] ? group_sched_out.part.0+0x2c7/0x460 [ 129.174453] ctx_sched_out+0x8f1/0xc10 [ 129.174465] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.174480] ? lock_is_held_type+0xd7/0x130 [ 129.174498] ? __perf_cgroup_move+0x160/0x160 [ 129.174510] ? set_next_entity+0x304/0x550 [ 129.174527] ? update_curr+0x267/0x740 [ 129.174545] ? lock_is_held_type+0xd7/0x130 [ 129.174563] __schedule+0xedd/0x2470 [ 129.174577] ? io_schedule_timeout+0x150/0x150 [ 129.174590] ? rcu_read_lock_sched_held+0x3e/0x80 [ 129.174610] schedule+0xda/0x1b0 [ 129.174621] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.174641] syscall_exit_to_user_mode+0x19/0x40 [ 129.174658] do_syscall_64+0x48/0x90 [ 129.174673] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.174690] RIP: 0033:0x7efec2f8eb19 [ 129.174699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.174709] RSP: 002b:00007efec0504218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 129.174720] RAX: 0000000000000001 RBX: 00007efec30a1f68 RCX: 00007efec2f8eb19 [ 129.174728] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efec30a1f6c [ 129.174735] RBP: 00007efec30a1f60 R08: 000000000000000e R09: 0000000000000000 [ 129.174742] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efec30a1f6c [ 129.174750] R13: 00007ffd33f3a89f R14: 00007efec0504300 R15: 0000000000022000 [ 129.174762] [ 129.229900] WARNING: CPU: 1 PID: 3742 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 129.230580] Modules linked in: [ 129.230821] CPU: 1 PID: 3742 Comm: syz-executor.7 Not tainted 6.0.0-rc6-next-20220919 #1 [ 129.231415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 129.232236] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 129.232629] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d 5b 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 129.233940] RSP: 0018:ffff888031d17c48 EFLAGS: 00010006 [ 129.234330] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 129.234850] RDX: ffff8880100a8000 RSI: ffffffff81566077 RDI: 0000000000000005 [ 129.235365] RBP: ffff888015fd0000 R08: 0000000000000005 R09: 0000000000000001 [ 129.235887] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800d8da400 [ 129.236404] R13: ffff88806cf3d140 R14: ffffffff8547c620 R15: 0000000000000002 [ 129.236923] FS: 00007efec0504700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 129.237512] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 129.237934] CR2: 00007f4b9c76a310 CR3: 0000000040664000 CR4: 0000000000350ee0 [ 129.238454] Call Trace: [ 129.238647] [ 129.238820] ctx_sched_out+0x8f1/0xc10 [ 129.239110] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.239493] ? lock_is_held_type+0xd7/0x130 [ 129.239830] ? __perf_cgroup_move+0x160/0x160 [ 129.240165] ? set_next_entity+0x304/0x550 [ 129.240486] ? update_curr+0x267/0x740 [ 129.240779] ? lock_is_held_type+0xd7/0x130 [ 129.241103] __schedule+0xedd/0x2470 [ 129.241387] ? io_schedule_timeout+0x150/0x150 [ 129.241728] ? rcu_read_lock_sched_held+0x3e/0x80 [ 129.242089] schedule+0xda/0x1b0 [ 129.242345] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.242713] syscall_exit_to_user_mode+0x19/0x40 [ 129.243070] do_syscall_64+0x48/0x90 [ 129.243352] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.243747] RIP: 0033:0x7efec2f8eb19 [ 129.244022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.245335] RSP: 002b:00007efec0504218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 129.245881] RAX: 0000000000000001 RBX: 00007efec30a1f68 RCX: 00007efec2f8eb19 [ 129.246407] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efec30a1f6c [ 129.246922] RBP: 00007efec30a1f60 R08: 000000000000000e R09: 0000000000000000 [ 129.247438] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efec30a1f6c [ 129.247969] R13: 00007ffd33f3a89f R14: 00007efec0504300 R15: 0000000000022000 [ 129.248495] [ 129.248671] irq event stamp: 632 [ 129.248915] hardirqs last enabled at (631): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 129.249596] hardirqs last disabled at (632): [] __schedule+0x1225/0x2470 [ 129.250195] softirqs last enabled at (224): [] __irq_exit_rcu+0x11b/0x180 [ 129.250820] softirqs last disabled at (219): [] __irq_exit_rcu+0x11b/0x180 [ 129.251440] ---[ end trace 0000000000000000 ]--- 14:42:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @private=0xac141400}, 0xc) openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) 14:42:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @private=0xac141400}, 0xc) openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) 14:42:58 executing program 4: pipe(&(0x7f0000000240)={0xffffffffffffffff}) read$hiddev(r0, &(0x7f0000000400)=""/199, 0xc7) 14:42:58 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @private=0xac141400}, 0xc) openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) 14:42:58 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FITRIM(r0, 0xc0c0583b, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) socket$inet6(0xa, 0x1, 0x0) socket$nl_audit(0x10, 0x3, 0x9) getpeername(r1, &(0x7f0000000080)=@hci, &(0x7f0000000000)=0x80) 14:42:58 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f000000c340)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)={0x14, 0x66, 0xe21, 0x0, 0x0, "", [@generic="8e"]}, 0x14}], 0x1}, 0x0) 14:42:58 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f00000006c0)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x0, @empty}, 0x1b, 0x0, 0x0, &(0x7f0000001b00)=[@pktinfo={{0x24, 0x29, 0xb, {@dev}}}], 0x28}}], 0x1, 0x0) [ 133.834824] nfs4: Unknown parameter ':' [ 133.840566] loop6: detected capacity change from 0 to 8 [ 135.732320] Bluetooth: hci4: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 14:42:57 Registers: info registers vcpu 0 RAX=ffffffff810ad6a4 RBX=ffffffff85b45a0c RCX=ffffffff810ad6fe RDX=0000000000000000 RSI=ffffffff85e2e66a RDI=ffffffff85b459fc RBP=ffffffff85b45a0c RSP=ffff88800e8ff868 R8 =ffffffff85e2e66a R9 =ffffffff85e3c336 R10=ffffed1001d1ff3d R11=000000000003603d R12=ffffffff85b45a0c R13=ffffffff85b459fc R14=ffffffff85b45a08 R15=dffffc0000000000 RIP=ffffffff8111ac99 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f46d85948c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc1efc21260 CR3=0000000009bb8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000007d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b2e71 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff888031d17698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000007d R11=0000000000000001 R12=000000000000007d R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b2e60 RIP=ffffffff822b2ec9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007efec0504700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4b9c76a310 CR3=0000000040664000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007efec30757c0 00007efec30757c8 YMM02=0000000000000000 0000000000000000 00007efec30757e0 00007efec30757c0 YMM03=0000000000000000 0000000000000000 00007efec30757c8 00007efec30757c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000