Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:18309' (ECDSA) to the list of known hosts. 2022/09/21 12:50:02 fuzzer started 2022/09/21 12:50:03 dialing manager at localhost:40289 syzkaller login: [ 36.224184] cgroup: Unknown subsys name 'net' [ 36.315154] cgroup: Unknown subsys name 'rlimit' 2022/09/21 12:50:18 syscalls: 2215 2022/09/21 12:50:18 code coverage: enabled 2022/09/21 12:50:18 comparison tracing: enabled 2022/09/21 12:50:18 extra coverage: enabled 2022/09/21 12:50:18 setuid sandbox: enabled 2022/09/21 12:50:18 namespace sandbox: enabled 2022/09/21 12:50:18 Android sandbox: enabled 2022/09/21 12:50:18 fault injection: enabled 2022/09/21 12:50:18 leak checking: enabled 2022/09/21 12:50:18 net packet injection: enabled 2022/09/21 12:50:18 net device setup: enabled 2022/09/21 12:50:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/21 12:50:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/21 12:50:18 USB emulation: enabled 2022/09/21 12:50:18 hci packet injection: enabled 2022/09/21 12:50:18 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921) 2022/09/21 12:50:18 802.15.4 emulation: enabled 2022/09/21 12:50:18 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/21 12:50:18 fetching corpus: 31, signal 18003/21337 (executing program) 2022/09/21 12:50:18 fetching corpus: 49, signal 25578/30200 (executing program) 2022/09/21 12:50:18 fetching corpus: 73, signal 30595/36367 (executing program) 2022/09/21 12:50:18 fetching corpus: 112, signal 41554/47789 (executing program) 2022/09/21 12:50:18 fetching corpus: 162, signal 53535/59735 (executing program) 2022/09/21 12:50:18 fetching corpus: 212, signal 58558/65152 (executing program) 2022/09/21 12:50:18 fetching corpus: 262, signal 63972/70870 (executing program) 2022/09/21 12:50:19 fetching corpus: 312, signal 68728/75645 (executing program) 2022/09/21 12:50:19 fetching corpus: 362, signal 72297/79357 (executing program) 2022/09/21 12:50:19 fetching corpus: 412, signal 76485/83431 (executing program) 2022/09/21 12:50:19 fetching corpus: 462, signal 81561/88056 (executing program) 2022/09/21 12:50:19 fetching corpus: 512, signal 83861/90313 (executing program) 2022/09/21 12:50:19 fetching corpus: 562, signal 85486/92018 (executing program) 2022/09/21 12:50:19 fetching corpus: 612, signal 87563/93970 (executing program) 2022/09/21 12:50:20 fetching corpus: 662, signal 90937/96893 (executing program) 2022/09/21 12:50:20 fetching corpus: 712, signal 92753/98449 (executing program) 2022/09/21 12:50:20 fetching corpus: 762, signal 94803/100197 (executing program) 2022/09/21 12:50:20 fetching corpus: 812, signal 97251/102110 (executing program) 2022/09/21 12:50:20 fetching corpus: 862, signal 99612/103843 (executing program) 2022/09/21 12:50:20 fetching corpus: 912, signal 103586/106708 (executing program) 2022/09/21 12:50:21 fetching corpus: 962, signal 106309/108459 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109124 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109220 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109308 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109397 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109488 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109597 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109692 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109767 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109866 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/109960 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110065 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110151 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110251 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110338 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110424 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110516 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110600 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110702 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110785 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110867 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/110959 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111064 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111164 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111250 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111347 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111444 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111540 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111625 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111726 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111832 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111833 (executing program) 2022/09/21 12:50:21 fetching corpus: 979, signal 106984/111833 (executing program) 2022/09/21 12:50:23 starting 8 fuzzer processes 12:50:23 executing program 0: syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000002c0), 0x0, &(0x7f0000000340)={[{@iocharset={'iocharset', 0x3d, 'cp437'}}, {@dmode}]}) 12:50:23 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) 12:50:23 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5}, 0x0) syz_io_uring_setup(0x16e0, &(0x7f0000001400), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001480), &(0x7f00000014c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000300)=@IORING_OP_FSYNC, 0x0) io_uring_enter(r0, 0x100008, 0x0, 0x0, 0x0, 0x0) 12:50:23 executing program 3: r0 = io_uring_setup(0x5766, &(0x7f0000000040)) io_uring_register$IORING_REGISTER_FILES(r0, 0x12, 0x0, 0xfffffeed) 12:50:23 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000002240), 0x0, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, 0x0) [ 56.638881] audit: type=1400 audit(1663764623.636:6): avc: denied { execmem } for pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:50:23 executing program 6: capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000580)) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) lsetxattr$security_selinux(&(0x7f0000000000)='./file1\x00', &(0x7f0000000180), 0x0, 0x0, 0x0) 12:50:23 executing program 5: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0xa0002, 0x0) write$rfkill(r0, &(0x7f0000000000)={0x0, 0x0, 0x3}, 0x8) 12:50:23 executing program 7: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) readv(r0, &(0x7f0000002140)=[{&(0x7f0000000140)=""/4096, 0x1004}], 0x1) [ 58.017450] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 58.019308] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 58.020782] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 58.022413] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 58.023561] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 58.025022] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 58.026077] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 58.027186] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 58.028539] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 58.031985] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 58.033336] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 58.035125] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 58.042123] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 58.046822] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 58.066866] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 58.068239] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 58.074312] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 58.075681] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 58.077431] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 58.079275] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 58.081226] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 58.083484] Bluetooth: hci1: HCI_REQ-0x0c1a [ 58.087097] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 58.093670] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 58.094071] Bluetooth: hci2: HCI_REQ-0x0c1a [ 58.095154] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 58.098317] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 58.099393] Bluetooth: hci0: HCI_REQ-0x0c1a [ 58.102873] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 58.103930] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 58.110231] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 58.111720] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 58.116387] Bluetooth: hci5: HCI_REQ-0x0c1a [ 58.116904] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 58.120237] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 58.127147] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 58.128269] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 58.132877] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 58.134387] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 58.136207] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 58.139494] Bluetooth: hci3: HCI_REQ-0x0c1a [ 58.144003] Bluetooth: hci4: HCI_REQ-0x0c1a [ 58.162875] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 58.170825] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 58.172229] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 58.175404] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 58.177092] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 58.178300] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 58.180187] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 58.184225] Bluetooth: hci7: HCI_REQ-0x0c1a [ 58.205854] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 58.209543] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 58.220352] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 58.223047] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 58.227966] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 58.240372] Bluetooth: hci6: HCI_REQ-0x0c1a [ 60.150273] Bluetooth: hci1: command 0x0409 tx timeout [ 60.151264] Bluetooth: hci3: command 0x0409 tx timeout [ 60.152093] Bluetooth: hci5: command 0x0409 tx timeout [ 60.152905] Bluetooth: hci0: command 0x0409 tx timeout [ 60.153702] Bluetooth: hci2: command 0x0409 tx timeout [ 60.213843] Bluetooth: hci7: command 0x0409 tx timeout [ 60.214740] Bluetooth: hci4: command 0x0409 tx timeout [ 60.277980] Bluetooth: hci6: command 0x0409 tx timeout [ 62.198772] Bluetooth: hci2: command 0x041b tx timeout [ 62.199223] Bluetooth: hci0: command 0x041b tx timeout [ 62.199670] Bluetooth: hci5: command 0x041b tx timeout [ 62.200079] Bluetooth: hci3: command 0x041b tx timeout [ 62.200471] Bluetooth: hci1: command 0x041b tx timeout [ 62.261669] Bluetooth: hci4: command 0x041b tx timeout [ 62.262082] Bluetooth: hci7: command 0x041b tx timeout [ 62.326675] Bluetooth: hci6: command 0x041b tx timeout [ 64.245811] Bluetooth: hci1: command 0x040f tx timeout [ 64.246629] Bluetooth: hci3: command 0x040f tx timeout [ 64.247343] Bluetooth: hci5: command 0x040f tx timeout [ 64.248159] Bluetooth: hci0: command 0x040f tx timeout [ 64.248903] Bluetooth: hci2: command 0x040f tx timeout [ 64.309763] Bluetooth: hci7: command 0x040f tx timeout [ 64.310564] Bluetooth: hci4: command 0x040f tx timeout [ 64.373751] Bluetooth: hci6: command 0x040f tx timeout [ 66.294704] Bluetooth: hci2: command 0x0419 tx timeout [ 66.295161] Bluetooth: hci0: command 0x0419 tx timeout [ 66.295579] Bluetooth: hci5: command 0x0419 tx timeout [ 66.296170] Bluetooth: hci3: command 0x0419 tx timeout [ 66.296553] Bluetooth: hci1: command 0x0419 tx timeout [ 66.357652] Bluetooth: hci4: command 0x0419 tx timeout [ 66.358085] Bluetooth: hci7: command 0x0419 tx timeout [ 66.422696] Bluetooth: hci6: command 0x0419 tx timeout [ 113.841682] audit: type=1400 audit(1663764680.839:7): avc: denied { open } for pid=3633 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.849422] audit: type=1400 audit(1663764680.846:8): avc: denied { kernel } for pid=3633 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 113.863740] ------------[ cut here ]------------ [ 113.863765] [ 113.863768] ====================================================== [ 113.863772] WARNING: possible circular locking dependency detected [ 113.863777] 6.0.0-rc6-next-20220921 #1 Not tainted [ 113.863784] ------------------------------------------------------ [ 113.863787] syz-executor.1/3634 is trying to acquire lock: [ 113.863794] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 113.863837] [ 113.863837] but task is already holding lock: [ 113.863840] ffff888017c81420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 113.863871] [ 113.863871] which lock already depends on the new lock. [ 113.863871] [ 113.863874] [ 113.863874] the existing dependency chain (in reverse order) is: [ 113.863878] [ 113.863878] -> #3 (&ctx->lock){....}-{2:2}: [ 113.863893] _raw_spin_lock+0x2a/0x40 [ 113.863915] __perf_event_task_sched_out+0x53b/0x18d0 [ 113.863928] __schedule+0xedd/0x2470 [ 113.863942] schedule+0xda/0x1b0 [ 113.863956] exit_to_user_mode_prepare+0x114/0x1a0 [ 113.863968] syscall_exit_to_user_mode+0x19/0x40 [ 113.863981] do_syscall_64+0x48/0x90 [ 113.863999] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 113.864012] [ 113.864012] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 113.864027] _raw_spin_lock_nested+0x30/0x40 [ 113.864046] raw_spin_rq_lock_nested+0x1e/0x30 [ 113.864061] task_fork_fair+0x63/0x4d0 [ 113.864080] sched_cgroup_fork+0x3d0/0x540 [ 113.864096] copy_process+0x4183/0x6e20 [ 113.864107] kernel_clone+0xe7/0x890 [ 113.864117] user_mode_thread+0xad/0xf0 [ 113.864128] rest_init+0x24/0x250 [ 113.864140] arch_call_rest_init+0xf/0x14 [ 113.864157] start_kernel+0x4c1/0x4e6 [ 113.864172] secondary_startup_64_no_verify+0xe0/0xeb [ 113.864188] [ 113.864188] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 113.864203] _raw_spin_lock_irqsave+0x39/0x60 [ 113.864224] try_to_wake_up+0xab/0x1930 [ 113.864238] up+0x75/0xb0 [ 113.864253] __up_console_sem+0x6e/0x80 [ 113.864272] console_unlock+0x46a/0x590 [ 113.864289] do_con_write+0xc05/0x1d50 [ 113.864302] con_write+0x21/0x40 [ 113.864313] n_tty_write+0x4d4/0xfe0 [ 113.864328] file_tty_write.constprop.0+0x49c/0x8f0 [ 113.864341] vfs_write+0x9c3/0xd90 [ 113.864362] ksys_write+0x127/0x250 [ 113.864382] do_syscall_64+0x3b/0x90 [ 113.864399] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 113.864411] [ 113.864411] -> #0 ((console_sem).lock){....}-{2:2}: [ 113.864426] __lock_acquire+0x2a02/0x5e70 [ 113.864446] lock_acquire+0x1a2/0x530 [ 113.864464] _raw_spin_lock_irqsave+0x39/0x60 [ 113.864484] down_trylock+0xe/0x70 [ 113.864499] __down_trylock_console_sem+0x3b/0xd0 [ 113.864517] vprintk_emit+0x16b/0x560 [ 113.864536] vprintk+0x84/0xa0 [ 113.864554] _printk+0xba/0xf1 [ 113.864582] report_bug.cold+0x72/0xab [ 113.864601] handle_bug+0x3c/0x70 [ 113.864621] exc_invalid_op+0x14/0x50 [ 113.864639] asm_exc_invalid_op+0x16/0x20 [ 113.864650] group_sched_out.part.0+0x2c7/0x460 [ 113.864662] ctx_sched_out+0x8f1/0xc10 [ 113.864672] __perf_event_task_sched_out+0x6d0/0x18d0 [ 113.864685] __schedule+0xedd/0x2470 [ 113.864699] schedule+0xda/0x1b0 [ 113.864712] exit_to_user_mode_prepare+0x114/0x1a0 [ 113.864723] syscall_exit_to_user_mode+0x19/0x40 [ 113.864735] do_syscall_64+0x48/0x90 [ 113.864753] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 113.864765] [ 113.864765] other info that might help us debug this: [ 113.864765] [ 113.864768] Chain exists of: [ 113.864768] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 113.864768] [ 113.864784] Possible unsafe locking scenario: [ 113.864784] [ 113.864786] CPU0 CPU1 [ 113.864789] ---- ---- [ 113.864791] lock(&ctx->lock); [ 113.864797] lock(&rq->__lock); [ 113.864804] lock(&ctx->lock); [ 113.864811] lock((console_sem).lock); [ 113.864817] [ 113.864817] *** DEADLOCK *** [ 113.864817] [ 113.864819] 2 locks held by syz-executor.1/3634: [ 113.864827] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 113.864857] #1: ffff888017c81420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 113.864887] [ 113.864887] stack backtrace: [ 113.864890] CPU: 0 PID: 3634 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220921 #1 [ 113.864903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 113.864912] Call Trace: [ 113.864915] [ 113.864920] dump_stack_lvl+0x8b/0xb3 [ 113.864939] check_noncircular+0x263/0x2e0 [ 113.864957] ? format_decode+0x26c/0xb50 [ 113.864974] ? print_circular_bug+0x450/0x450 [ 113.864993] ? enable_ptr_key_workfn+0x20/0x20 [ 113.865009] ? __lockdep_reset_lock+0x180/0x180 [ 113.865027] ? format_decode+0x26c/0xb50 [ 113.865045] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 113.865064] __lock_acquire+0x2a02/0x5e70 [ 113.865087] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 113.865111] lock_acquire+0x1a2/0x530 [ 113.865130] ? down_trylock+0xe/0x70 [ 113.865147] ? lock_release+0x750/0x750 [ 113.865167] ? find_held_lock+0x2c/0x110 [ 113.865185] ? vprintk+0x84/0xa0 [ 113.865205] _raw_spin_lock_irqsave+0x39/0x60 [ 113.865225] ? down_trylock+0xe/0x70 [ 113.865242] down_trylock+0xe/0x70 [ 113.865258] ? vprintk+0x84/0xa0 [ 113.865276] __down_trylock_console_sem+0x3b/0xd0 [ 113.865295] vprintk_emit+0x16b/0x560 [ 113.865316] vprintk+0x84/0xa0 [ 113.865335] _printk+0xba/0xf1 [ 113.865346] ? record_print_text.cold+0x16/0x16 [ 113.865360] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 113.865374] ? lock_downgrade+0x6d0/0x6d0 [ 113.865394] ? report_bug.cold+0x66/0xab [ 113.865412] ? group_sched_out.part.0+0x2c7/0x460 [ 113.865424] report_bug.cold+0x72/0xab [ 113.865443] handle_bug+0x3c/0x70 [ 113.865461] exc_invalid_op+0x14/0x50 [ 113.865480] asm_exc_invalid_op+0x16/0x20 [ 113.865492] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 113.865507] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 113.865519] RSP: 0018:ffff88801db7fc48 EFLAGS: 00010006 [ 113.865529] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 113.865537] RDX: ffff8880103a9ac0 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 113.865545] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 113.865553] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888017c81400 [ 113.865561] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002 [ 113.865573] ? group_sched_out.part.0+0x2c7/0x460 [ 113.865587] ? group_sched_out.part.0+0x2c7/0x460 [ 113.865600] ctx_sched_out+0x8f1/0xc10 [ 113.865614] __perf_event_task_sched_out+0x6d0/0x18d0 [ 113.865630] ? lock_is_held_type+0xd7/0x130 [ 113.865643] ? __perf_cgroup_move+0x160/0x160 [ 113.865656] ? set_next_entity+0x304/0x550 [ 113.865675] ? update_curr+0x267/0x740 [ 113.865695] ? lock_is_held_type+0xd7/0x130 [ 113.865709] __schedule+0xedd/0x2470 [ 113.865726] ? io_schedule_timeout+0x150/0x150 [ 113.865742] ? __x64_sys_futex_time32+0x480/0x480 [ 113.865756] schedule+0xda/0x1b0 [ 113.865772] exit_to_user_mode_prepare+0x114/0x1a0 [ 113.865784] syscall_exit_to_user_mode+0x19/0x40 [ 113.865797] do_syscall_64+0x48/0x90 [ 113.865815] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 113.865828] RIP: 0033:0x7f94b4d10b19 [ 113.865837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.865848] RSP: 002b:00007f94b2286218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.865860] RAX: 0000000000000001 RBX: 00007f94b4e23f68 RCX: 00007f94b4d10b19 [ 113.865868] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f94b4e23f6c [ 113.865875] RBP: 00007f94b4e23f60 R08: 000000000000000e R09: 0000000000000000 [ 113.865883] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f94b4e23f6c [ 113.865891] R13: 00007ffeecb87acf R14: 00007f94b2286300 R15: 0000000000022000 [ 113.865904] [ 113.923770] WARNING: CPU: 0 PID: 3634 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 113.924490] Modules linked in: [ 113.924751] CPU: 0 PID: 3634 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220921 #1 [ 113.925353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 113.926193] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 113.926605] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 113.927973] RSP: 0018:ffff88801db7fc48 EFLAGS: 00010006 [ 113.928382] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 113.928920] RDX: ffff8880103a9ac0 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 113.929462] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 113.929989] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888017c81400 [ 113.930533] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002 [ 113.931073] FS: 00007f94b2286700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 113.931683] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 113.932109] CR2: 00007f7942a2e260 CR3: 000000001a898000 CR4: 0000000000350ef0 [ 113.932658] Call Trace: [ 113.932863] [ 113.933042] ctx_sched_out+0x8f1/0xc10 [ 113.933337] __perf_event_task_sched_out+0x6d0/0x18d0 [ 113.933721] ? lock_is_held_type+0xd7/0x130 [ 113.934040] ? __perf_cgroup_move+0x160/0x160 [ 113.934371] ? set_next_entity+0x304/0x550 [ 113.934702] ? update_curr+0x267/0x740 [ 113.935011] ? lock_is_held_type+0xd7/0x130 [ 113.935343] __schedule+0xedd/0x2470 [ 113.935630] ? io_schedule_timeout+0x150/0x150 [ 113.936003] ? __x64_sys_futex_time32+0x480/0x480 [ 113.936374] schedule+0xda/0x1b0 [ 113.936659] exit_to_user_mode_prepare+0x114/0x1a0 [ 113.937060] syscall_exit_to_user_mode+0x19/0x40 [ 113.937426] do_syscall_64+0x48/0x90 [ 113.937725] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 113.938121] RIP: 0033:0x7f94b4d10b19 [ 113.938412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 113.939800] RSP: 002b:00007f94b2286218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 113.940384] RAX: 0000000000000001 RBX: 00007f94b4e23f68 RCX: 00007f94b4d10b19 [ 113.940933] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f94b4e23f6c [ 113.941481] RBP: 00007f94b4e23f60 R08: 000000000000000e R09: 0000000000000000 [ 113.942021] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f94b4e23f6c [ 113.942555] R13: 00007ffeecb87acf R14: 00007f94b2286300 R15: 0000000000022000 [ 113.943083] [ 113.943272] irq event stamp: 552 [ 113.943515] hardirqs last enabled at (551): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 113.944220] hardirqs last disabled at (552): [] __schedule+0x1225/0x2470 [ 113.944868] softirqs last enabled at (0): [] copy_process+0x1e15/0x6e20 [ 113.945483] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 113.945955] ---[ end trace 0000000000000000 ]--- 12:51:21 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) [ 114.586947] blktrace: Concurrent blktraces are not allowed on sg0 12:51:21 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) [ 114.713603] hrtimer: interrupt took 18374 ns 12:51:22 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) 12:51:22 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) 12:51:22 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3}) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4) sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041) bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc) 12:51:22 executing program 7: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) readv(r0, &(0x7f0000002140)=[{&(0x7f0000000140)=""/4096, 0x1004}], 0x1) 12:51:22 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5}, 0x0) syz_io_uring_setup(0x16e0, &(0x7f0000001400), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001480), &(0x7f00000014c0)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000300)=@IORING_OP_FSYNC, 0x0) io_uring_enter(r0, 0x100008, 0x0, 0x0, 0x0, 0x0) 12:51:22 executing program 7: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) readv(r0, &(0x7f0000002140)=[{&(0x7f0000000140)=""/4096, 0x1004}], 0x1) [ 119.097660] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 119.098398] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 119.099464] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 119.102364] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 119.105442] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 119.107785] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 119.113289] Bluetooth: hci1: HCI_REQ-0x0c1a [ 119.118786] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 119.120973] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 119.122312] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 119.129411] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 119.135733] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 119.141072] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 119.151053] Bluetooth: hci6: HCI_REQ-0x0c1a [ 119.166425] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 119.168378] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 119.169490] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 119.181510] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 119.190342] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 119.191953] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 119.195978] Bluetooth: hci4: HCI_REQ-0x0c1a [ 121.141705] Bluetooth: hci1: command 0x0409 tx timeout [ 121.142637] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 121.205682] Bluetooth: hci6: command 0x0409 tx timeout [ 121.269809] Bluetooth: hci4: command 0x0409 tx timeout [ 123.190690] Bluetooth: hci1: command 0x041b tx timeout [ 123.254658] Bluetooth: hci6: command 0x041b tx timeout [ 123.317653] Bluetooth: hci4: command 0x041b tx timeout VM DIAGNOSIS: 12:51:21 Registers: info registers vcpu 0 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff822b1c0c RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff88801db7f6a0 R8 =0000000000000001 R9 =ffff88801db7f62b R10=ffffed1003b6fec5 R11=0000000000000001 R12=0000000000000041 R13=ffffffff87645b60 R14=ffffffff87645bb0 R15=ffffffff87645e08 RIP=ffffffff822b1c61 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f94b2286700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7942a2e260 CR3=000000001a898000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f94b4df77c0 00007f94b4df77c8 YMM02=0000000000000000 0000000000000000 00007f94b4df77e0 00007f94b4df77c0 YMM03=0000000000000000 0000000000000000 00007f94b4df77c8 00007f94b4df77c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=ffff88801a03d040 RSI=ffffffff814695c2 RDI=ffff88801a03d434 RBP=0000000000000001 RSP=ffff888017c47940 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffffffff8544db88 R15=ffff88800843f280 RIP=ffffffff814695d8 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2758d0b540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2758ea64a1 CR3=000000003bcbc000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM01=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff YMM03=0000000000000000 0000000000000000 65006463682d6963 6865203a65727020 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 676f6c206d6f7473 7563000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000