Warning: Permanently added '[localhost]:2424' (ECDSA) to the list of known hosts. 2022/09/20 11:25:34 fuzzer started 2022/09/20 11:25:34 dialing manager at localhost:34957 syzkaller login: [ 35.951603] cgroup: Unknown subsys name 'net' [ 36.050355] cgroup: Unknown subsys name 'rlimit' 2022/09/20 11:25:47 syscalls: 2215 2022/09/20 11:25:47 code coverage: enabled 2022/09/20 11:25:47 comparison tracing: enabled 2022/09/20 11:25:47 extra coverage: enabled 2022/09/20 11:25:47 setuid sandbox: enabled 2022/09/20 11:25:47 namespace sandbox: enabled 2022/09/20 11:25:47 Android sandbox: enabled 2022/09/20 11:25:47 fault injection: enabled 2022/09/20 11:25:47 leak checking: enabled 2022/09/20 11:25:47 net packet injection: enabled 2022/09/20 11:25:47 net device setup: enabled 2022/09/20 11:25:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/20 11:25:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/20 11:25:47 USB emulation: enabled 2022/09/20 11:25:47 hci packet injection: enabled 2022/09/20 11:25:47 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220920) 2022/09/20 11:25:47 802.15.4 emulation: enabled 2022/09/20 11:25:47 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/20 11:25:47 fetching corpus: 50, signal 25369/28375 (executing program) 2022/09/20 11:25:47 fetching corpus: 100, signal 39142/42852 (executing program) 2022/09/20 11:25:48 fetching corpus: 150, signal 47288/51555 (executing program) 2022/09/20 11:25:48 fetching corpus: 200, signal 53506/58240 (executing program) 2022/09/20 11:25:48 fetching corpus: 250, signal 57819/63004 (executing program) 2022/09/20 11:25:48 fetching corpus: 300, signal 65126/70286 (executing program) 2022/09/20 11:25:48 fetching corpus: 350, signal 69932/75119 (executing program) 2022/09/20 11:25:48 fetching corpus: 400, signal 74214/79346 (executing program) 2022/09/20 11:25:49 fetching corpus: 450, signal 78004/82943 (executing program) 2022/09/20 11:25:49 fetching corpus: 500, signal 82928/87290 (executing program) 2022/09/20 11:25:49 fetching corpus: 550, signal 87378/91105 (executing program) 2022/09/20 11:25:49 fetching corpus: 600, signal 90468/93742 (executing program) 2022/09/20 11:25:49 fetching corpus: 650, signal 93017/95871 (executing program) 2022/09/20 11:25:49 fetching corpus: 700, signal 94863/97341 (executing program) 2022/09/20 11:25:49 fetching corpus: 750, signal 96929/99023 (executing program) 2022/09/20 11:25:50 fetching corpus: 800, signal 100523/101604 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/101907 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/101969 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102023 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102082 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102137 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102204 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102253 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102310 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102360 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102429 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102467 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102516 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102577 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102642 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102705 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102758 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102809 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102871 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/102938 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103002 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103056 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103116 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103173 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103225 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103279 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103333 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103399 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103459 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103523 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103583 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103656 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103714 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103763 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103810 (executing program) 2022/09/20 11:25:50 fetching corpus: 810, signal 100838/103810 (executing program) 2022/09/20 11:25:53 starting 8 fuzzer processes 11:25:53 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) openat(r1, &(0x7f0000000840)='./file0\x00', 0x2, 0x4a) io_setup(0x7, &(0x7f0000000000)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='personality\x00') perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00') read$hiddev(r4, &(0x7f0000000040)=""/169, 0x200000e9) io_submit(r2, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f00000001c0)="0a64c8716b203053fc54e7491aa00a3e1d051b888b5740f00737cb0e42db455a392813b7130b6a0d792d5e5a2c03799b80b2bc4b836790e05e6739915a09db97762936f4c49f9de4c82ca1c691628be42492f9f1b1bf63906e02cd551feed4b8f616a7b7b1b8c06fa9c396c580e88a6757fbd1858fdfb08cdfd49a62fe1f2395dc2525518f2343817d3314653cf98daeff4526ba174e32e99369e99c81cc191cd0c6cd9c6a318b608676f0cff38fccf3696c5faff7fda22edc5007fa69fc2bc5ae9fab42d7869d03ec3240cf2592f8e0a550ff8efb91190470", 0xd9, 0x2901, 0x0, 0x1, r4}]) write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220) creat(&(0x7f0000000180)='./file1\x00', 0x0) r5 = syz_mount_image$msdos(&(0x7f0000000880), &(0x7f00000008c0)='./file0\x00', 0x8, 0x0, &(0x7f0000000900), 0x1020000, &(0x7f0000000940)={[{@nodots}, {@dots}, {@dots}, {@fat=@usefree}, {@dots}, {@dots}], [{@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@seclabel}, {@defcontext={'defcontext', 0x3d, 'user_u'}}]}) fcntl$setown(r5, 0x8, 0xffffffffffffffff) write$binfmt_aout(r0, &(0x7f0000000380)={{0xcc, 0x97, 0x7f, 0x285, 0x151, 0x7, 0x303, 0x7}, "c0a28a7d9e5ac1bd80ef9a9b73aa97262904abacab0a89555de0f40b44d64a0f1933f8bab051f6db92f59236273882871a1407708cc3d6ad2b4799185fea5563237b98e2062f3ceeb19d32e1012a583598f539c8578dee9972f6487e45663abf5edee76600b96f2d671a38b0be1b47d427bdb10270c0336be3bdc22222e9a367a1e63ece9580", ['\x00', '\x00', '\x00', '\x00']}, 0x4a6) 11:25:53 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) signalfd4(r0, &(0x7f0000000040)={[0x3]}, 0x8, 0x80000) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_open_dev$tty20(0xc, 0x4, 0x0) gettid() socket$packet(0x11, 0x2, 0x300) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 11:25:53 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101342, 0x0) write$binfmt_aout(r1, &(0x7f0000000c40)=ANY=[], 0x820) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000380)={0x0, 0x3ff}) 11:25:53 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGSERIAL(r0, 0x5412, 0x0) 11:25:53 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000800), 0x4) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000840)=@ccm_128={{}, "6e40e9cf9eddbe83", "471b87d4ec921fd960978b3bac297d8e", "5211fa44", "753c19ec2dfbccad"}, 0x28) [ 54.892128] audit: type=1400 audit(1663673153.676:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:25:53 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000006dc0)=@updsa={0xf0, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0xa0}, {@in6=@loopback}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {}, {}, {}, 0x0, 0x0, 0xa}}, 0xf0}}, 0x0) 11:25:53 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:25:53 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) setresuid(0xee00, 0x0, 0x0) [ 56.214712] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 56.216614] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 56.218084] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 56.219650] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 56.221647] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 56.223674] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 56.225112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 56.226806] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 56.229076] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 56.231422] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 56.234363] Bluetooth: hci0: HCI_REQ-0x0c1a [ 56.243611] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 56.246331] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 56.281353] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 56.283197] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 56.285499] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 56.288439] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 56.290874] Bluetooth: hci1: HCI_REQ-0x0c1a [ 56.291634] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 56.293797] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 56.295214] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 56.296489] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 56.299605] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 56.308807] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 56.310476] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 56.312666] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 56.314236] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 56.316135] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 56.317753] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 56.319683] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 56.320901] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 56.322897] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 56.324177] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 56.325786] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 56.332092] Bluetooth: hci5: HCI_REQ-0x0c1a [ 56.332466] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 56.339778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 56.340842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 56.340892] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 56.343464] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 56.343830] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 56.347954] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 56.349507] Bluetooth: hci3: HCI_REQ-0x0c1a [ 56.356808] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 56.358120] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 56.360268] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 56.364147] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 56.366448] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 56.367787] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 56.369111] Bluetooth: hci2: HCI_REQ-0x0c1a [ 56.369468] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 56.375481] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 56.379319] Bluetooth: hci6: HCI_REQ-0x0c1a [ 56.380651] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 56.393557] Bluetooth: hci4: HCI_REQ-0x0c1a [ 56.393572] Bluetooth: hci7: HCI_REQ-0x0c1a [ 58.296003] Bluetooth: hci0: command 0x0409 tx timeout [ 58.358476] Bluetooth: hci3: command 0x0409 tx timeout [ 58.358535] Bluetooth: hci5: command 0x0409 tx timeout [ 58.359647] Bluetooth: hci1: command 0x0409 tx timeout [ 58.423071] Bluetooth: hci7: command 0x0409 tx timeout [ 58.423151] Bluetooth: hci4: command 0x0409 tx timeout [ 58.424120] Bluetooth: hci6: command 0x0409 tx timeout [ 58.424737] Bluetooth: hci2: command 0x0409 tx timeout [ 60.342184] Bluetooth: hci0: command 0x041b tx timeout [ 60.406203] Bluetooth: hci1: command 0x041b tx timeout [ 60.406321] Bluetooth: hci5: command 0x041b tx timeout [ 60.407124] Bluetooth: hci3: command 0x041b tx timeout [ 60.470113] Bluetooth: hci6: command 0x041b tx timeout [ 60.470858] Bluetooth: hci4: command 0x041b tx timeout [ 60.471650] Bluetooth: hci7: command 0x041b tx timeout [ 60.472457] Bluetooth: hci2: command 0x041b tx timeout [ 62.391174] Bluetooth: hci0: command 0x040f tx timeout [ 62.454047] Bluetooth: hci3: command 0x040f tx timeout [ 62.455507] Bluetooth: hci5: command 0x040f tx timeout [ 62.456257] Bluetooth: hci1: command 0x040f tx timeout [ 62.518207] Bluetooth: hci2: command 0x040f tx timeout [ 62.519089] Bluetooth: hci7: command 0x040f tx timeout [ 62.519867] Bluetooth: hci4: command 0x040f tx timeout [ 62.520601] Bluetooth: hci6: command 0x040f tx timeout [ 64.438132] Bluetooth: hci0: command 0x0419 tx timeout [ 64.502105] Bluetooth: hci1: command 0x0419 tx timeout [ 64.502873] Bluetooth: hci5: command 0x0419 tx timeout [ 64.503664] Bluetooth: hci3: command 0x0419 tx timeout [ 64.566165] Bluetooth: hci6: command 0x0419 tx timeout [ 64.566923] Bluetooth: hci4: command 0x0419 tx timeout [ 64.567730] Bluetooth: hci7: command 0x0419 tx timeout [ 64.568480] Bluetooth: hci2: command 0x0419 tx timeout [ 112.429524] audit: type=1400 audit(1663673211.214:7): avc: denied { open } for pid=3773 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 112.432326] audit: type=1400 audit(1663673211.214:8): avc: denied { kernel } for pid=3773 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 112.456651] ------------[ cut here ]------------ [ 112.456674] [ 112.456678] ====================================================== [ 112.456682] WARNING: possible circular locking dependency detected [ 112.456686] 6.0.0-rc6-next-20220920 #1 Not tainted [ 112.456693] ------------------------------------------------------ [ 112.456696] syz-executor.2/3774 is trying to acquire lock: [ 112.456702] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 112.456742] [ 112.456742] but task is already holding lock: [ 112.456745] ffff888034e47420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 112.456773] [ 112.456773] which lock already depends on the new lock. [ 112.456773] [ 112.456776] [ 112.456776] the existing dependency chain (in reverse order) is: [ 112.456780] [ 112.456780] -> #3 (&ctx->lock){....}-{2:2}: [ 112.456794] _raw_spin_lock+0x2a/0x40 [ 112.456814] __perf_event_task_sched_out+0x53b/0x18d0 [ 112.456827] __schedule+0xedd/0x2470 [ 112.456840] schedule+0xda/0x1b0 [ 112.456853] exit_to_user_mode_prepare+0x114/0x1a0 [ 112.456865] syscall_exit_to_user_mode+0x19/0x40 [ 112.456877] do_syscall_64+0x48/0x90 [ 112.456893] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 112.456912] [ 112.456912] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 112.456926] _raw_spin_lock_nested+0x30/0x40 [ 112.456943] raw_spin_rq_lock_nested+0x1e/0x30 [ 112.456956] task_fork_fair+0x63/0x4d0 [ 112.456973] sched_cgroup_fork+0x3d0/0x540 [ 112.456987] copy_process+0x4183/0x6e20 [ 112.456998] kernel_clone+0xe7/0x890 [ 112.457007] user_mode_thread+0xad/0xf0 [ 112.457018] rest_init+0x24/0x250 [ 112.457028] arch_call_rest_init+0xf/0x14 [ 112.457044] start_kernel+0x4c1/0x4e6 [ 112.457056] secondary_startup_64_no_verify+0xe0/0xeb [ 112.457070] [ 112.457070] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 112.457084] _raw_spin_lock_irqsave+0x39/0x60 [ 112.457101] try_to_wake_up+0xab/0x1930 [ 112.457114] up+0x75/0xb0 [ 112.457125] __up_console_sem+0x6e/0x80 [ 112.457142] console_unlock+0x46a/0x590 [ 112.457158] con_install+0x14e/0x5d0 [ 112.457170] tty_init_dev.part.0+0xa0/0x610 [ 112.457183] tty_open+0xbc0/0x1370 [ 112.457195] chrdev_open+0x268/0x6e0 [ 112.457209] do_dentry_open+0x6ca/0x12b0 [ 112.457224] path_openat+0x19e1/0x2800 [ 112.457235] do_filp_open+0x1b6/0x410 [ 112.457247] do_sys_openat2+0x171/0x4c0 [ 112.457262] __x64_sys_openat+0x13f/0x1f0 [ 112.457277] do_syscall_64+0x3b/0x90 [ 112.457292] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 112.457311] [ 112.457311] -> #0 ((console_sem).lock){....}-{2:2}: [ 112.457324] __lock_acquire+0x2a02/0x5e70 [ 112.457341] lock_acquire+0x1a2/0x530 [ 112.457357] _raw_spin_lock_irqsave+0x39/0x60 [ 112.457374] down_trylock+0xe/0x70 [ 112.457386] __down_trylock_console_sem+0x3b/0xd0 [ 112.457402] vprintk_emit+0x16b/0x560 [ 112.457418] vprintk+0x84/0xa0 [ 112.457434] _printk+0xba/0xf1 [ 112.457445] report_bug.cold+0x72/0xab [ 112.457460] handle_bug+0x3c/0x70 [ 112.457475] exc_invalid_op+0x14/0x50 [ 112.457490] asm_exc_invalid_op+0x16/0x20 [ 112.457500] group_sched_out.part.0+0x2c7/0x460 [ 112.457511] ctx_sched_out+0x8f1/0xc10 [ 112.457522] __perf_event_task_sched_out+0x6d0/0x18d0 [ 112.457534] __schedule+0xedd/0x2470 [ 112.457546] schedule+0xda/0x1b0 [ 112.457558] exit_to_user_mode_prepare+0x114/0x1a0 [ 112.457568] syscall_exit_to_user_mode+0x19/0x40 [ 112.457579] do_syscall_64+0x48/0x90 [ 112.457594] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 112.457613] [ 112.457613] other info that might help us debug this: [ 112.457613] [ 112.457616] Chain exists of: [ 112.457616] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 112.457616] [ 112.457631] Possible unsafe locking scenario: [ 112.457631] [ 112.457633] CPU0 CPU1 [ 112.457636] ---- ---- [ 112.457639] lock(&ctx->lock); [ 112.457644] lock(&rq->__lock); [ 112.457651] lock(&ctx->lock); [ 112.457657] lock((console_sem).lock); [ 112.457663] [ 112.457663] *** DEADLOCK *** [ 112.457663] [ 112.457665] 2 locks held by syz-executor.2/3774: [ 112.457672] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 112.457700] #1: ffff888034e47420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 112.457727] [ 112.457727] stack backtrace: [ 112.457731] CPU: 0 PID: 3774 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220920 #1 [ 112.457743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 112.457752] Call Trace: [ 112.457755] [ 112.457760] dump_stack_lvl+0x8b/0xb3 [ 112.457777] check_noncircular+0x263/0x2e0 [ 112.457793] ? format_decode+0x26c/0xb50 [ 112.457809] ? print_circular_bug+0x450/0x450 [ 112.457826] ? enable_ptr_key_workfn+0x20/0x20 [ 112.457841] ? format_decode+0x26c/0xb50 [ 112.457857] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 112.457875] __lock_acquire+0x2a02/0x5e70 [ 112.457897] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 112.457919] lock_acquire+0x1a2/0x530 [ 112.457935] ? down_trylock+0xe/0x70 [ 112.457950] ? lock_release+0x750/0x750 [ 112.457970] ? vprintk+0x84/0xa0 [ 112.457988] _raw_spin_lock_irqsave+0x39/0x60 [ 112.458005] ? down_trylock+0xe/0x70 [ 112.458019] down_trylock+0xe/0x70 [ 112.458032] ? vprintk+0x84/0xa0 [ 112.458049] __down_trylock_console_sem+0x3b/0xd0 [ 112.458066] vprintk_emit+0x16b/0x560 [ 112.458085] vprintk+0x84/0xa0 [ 112.458102] _printk+0xba/0xf1 [ 112.458112] ? record_print_text.cold+0x16/0x16 [ 112.458127] ? report_bug.cold+0x66/0xab [ 112.458143] ? group_sched_out.part.0+0x2c7/0x460 [ 112.458155] report_bug.cold+0x72/0xab [ 112.458172] handle_bug+0x3c/0x70 [ 112.458188] exc_invalid_op+0x14/0x50 [ 112.458204] asm_exc_invalid_op+0x16/0x20 [ 112.458215] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 112.458228] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 112.458240] RSP: 0018:ffff88801c0d7c48 EFLAGS: 00010006 [ 112.458249] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 112.458257] RDX: ffff8880189e1ac0 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 112.458265] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 112.458273] R10: 0000000000000000 R11: ffffffff865ae01b R12: ffff888034e47400 [ 112.458281] R13: ffff88806ce3d140 R14: ffffffff8547cec0 R15: 0000000000000002 [ 112.458292] ? group_sched_out.part.0+0x2c7/0x460 [ 112.458305] ? group_sched_out.part.0+0x2c7/0x460 [ 112.458318] ctx_sched_out+0x8f1/0xc10 [ 112.458331] __perf_event_task_sched_out+0x6d0/0x18d0 [ 112.458347] ? lock_is_held_type+0xd7/0x130 [ 112.458359] ? __perf_cgroup_move+0x160/0x160 [ 112.458371] ? set_next_entity+0x304/0x550 [ 112.458389] ? update_curr+0x267/0x740 [ 112.458407] ? lock_is_held_type+0xd7/0x130 [ 112.458419] __schedule+0xedd/0x2470 [ 112.458435] ? io_schedule_timeout+0x150/0x150 [ 112.458452] schedule+0xda/0x1b0 [ 112.458466] exit_to_user_mode_prepare+0x114/0x1a0 [ 112.458478] syscall_exit_to_user_mode+0x19/0x40 [ 112.458490] do_syscall_64+0x48/0x90 [ 112.458506] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 112.458526] RIP: 0033:0x7ff5e9d45b19 [ 112.458534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 112.458545] RSP: 002b:00007ff5e72bb218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 112.458556] RAX: 0000000000000001 RBX: 00007ff5e9e58f68 RCX: 00007ff5e9d45b19 [ 112.458564] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff5e9e58f6c [ 112.458571] RBP: 00007ff5e9e58f60 R08: 000000000000000e R09: 0000000000000000 [ 112.458578] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff5e9e58f6c [ 112.458586] R13: 00007ffe192dd00f R14: 00007ff5e72bb300 R15: 0000000000022000 [ 112.458599] [ 112.516238] WARNING: CPU: 0 PID: 3774 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 112.516929] Modules linked in: [ 112.517181] CPU: 0 PID: 3774 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220920 #1 [ 112.517791] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 112.518633] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 112.519040] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 112.520416] RSP: 0018:ffff88801c0d7c48 EFLAGS: 00010006 [ 112.520817] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 112.521353] RDX: ffff8880189e1ac0 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 112.521895] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 112.522425] R10: 0000000000000000 R11: ffffffff865ae01b R12: ffff888034e47400 [ 112.522959] R13: ffff88806ce3d140 R14: ffffffff8547cec0 R15: 0000000000000002 [ 112.523496] FS: 00007ff5e72bb700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 112.524112] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.524534] CR2: 000055e584d06080 CR3: 0000000017634000 CR4: 0000000000350ef0 [ 112.525063] Call Trace: [ 112.525259] [ 112.525435] ctx_sched_out+0x8f1/0xc10 [ 112.525736] __perf_event_task_sched_out+0x6d0/0x18d0 [ 112.526133] ? lock_is_held_type+0xd7/0x130 [ 112.526460] ? __perf_cgroup_move+0x160/0x160 [ 112.526799] ? set_next_entity+0x304/0x550 [ 112.527127] ? update_curr+0x267/0x740 [ 112.527429] ? lock_is_held_type+0xd7/0x130 [ 112.527756] __schedule+0xedd/0x2470 [ 112.528050] ? io_schedule_timeout+0x150/0x150 [ 112.528404] schedule+0xda/0x1b0 [ 112.528670] exit_to_user_mode_prepare+0x114/0x1a0 [ 112.529045] syscall_exit_to_user_mode+0x19/0x40 [ 112.529406] do_syscall_64+0x48/0x90 [ 112.529694] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 112.530092] RIP: 0033:0x7ff5e9d45b19 [ 112.530371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 112.531736] RSP: 002b:00007ff5e72bb218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 112.532311] RAX: 0000000000000001 RBX: 00007ff5e9e58f68 RCX: 00007ff5e9d45b19 [ 112.532846] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff5e9e58f6c [ 112.533379] RBP: 00007ff5e9e58f60 R08: 000000000000000e R09: 0000000000000000 [ 112.533917] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff5e9e58f6c [ 112.534455] R13: 00007ffe192dd00f R14: 00007ff5e72bb300 R15: 0000000000022000 [ 112.534994] [ 112.535176] irq event stamp: 934 [ 112.535431] hardirqs last enabled at (933): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 112.536136] hardirqs last disabled at (934): [] __schedule+0x1225/0x2470 [ 112.536753] softirqs last enabled at (788): [] __irq_exit_rcu+0x11b/0x180 [ 112.537392] softirqs last disabled at (581): [] __irq_exit_rcu+0x11b/0x180 [ 112.538036] ---[ end trace 0000000000000000 ]--- 11:26:51 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) [ 112.853975] hrtimer: interrupt took 20198 ns 11:26:51 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:26:51 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:26:51 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:26:52 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:26:52 executing program 6: r0 = mq_open(&(0x7f00000056c0)='sy1\x00\x00', 0x842, 0x0, 0x0) mq_timedsend(r0, 0x0, 0x2000, 0x0, 0x0) 11:26:52 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) signalfd4(r0, &(0x7f0000000040)={[0x3]}, 0x8, 0x80000) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_open_dev$tty20(0xc, 0x4, 0x0) gettid() socket$packet(0x11, 0x2, 0x300) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) 11:26:52 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) signalfd4(r0, &(0x7f0000000040)={[0x3]}, 0x8, 0x80000) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) syz_open_dev$tty20(0xc, 0x4, 0x0) gettid() socket$packet(0x11, 0x2, 0x300) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) [ 119.350088] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 121.536531] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 121.540172] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 121.543224] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 121.545918] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 121.548007] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 121.549852] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 121.553309] Bluetooth: hci2: HCI_REQ-0x0c1a VM DIAGNOSIS: 11:26:51 Registers: info registers vcpu 0 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1551 RDI=ffffffff87643ba0 RBP=ffffffff87643b60 RSP=ffff88801c0d7698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006f R11=0000000000000001 R12=000000000000006f R13=ffffffff87643b60 R14=0000000000000010 R15=ffffffff822b1540 RIP=ffffffff822b15a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff5e72bb700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055e584d06080 CR3=0000000017634000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007ff5e9e2c7c0 00007ff5e9e2c7c8 YMM02=0000000000000000 0000000000000000 00007ff5e9e2c7e0 00007ff5e9e2c7c0 YMM03=0000000000000000 0000000000000000 00007ff5e9e2c7c8 00007ff5e9e2c7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84263897 RDX=ffffed100d9c6fa1 RSI=0000000000000004 RDI=ffff88806ce37d00 RBP=ffff88806ce37d00 RSP=ffff88806cf09b28 R8 =0000000000000000 R9 =ffff88806ce37d03 R10=ffffed100d9c6fa0 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9c6fa0 R14=0000000000000001 R15=1ffff1100d9e1366 RIP=ffffffff84263914 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1d26eee4a1 CR3=000000001b6b0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM01=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff YMM03=0000000000000000 0000000000000000 2d646c6f2074736f 0065736100006266 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 676f6c206d6f7473 7563000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000