Warning: Permanently added '[localhost]:1506' (ECDSA) to the list of known hosts.
2022/09/29 03:58:37 fuzzer started
2022/09/29 03:58:37 dialing manager at localhost:45751
syzkaller login: [   39.080871] cgroup: Unknown subsys name 'net'
[   39.181000] cgroup: Unknown subsys name 'rlimit'
2022/09/29 03:58:50 syscalls: 2215
2022/09/29 03:58:50 code coverage: enabled
2022/09/29 03:58:50 comparison tracing: enabled
2022/09/29 03:58:50 extra coverage: enabled
2022/09/29 03:58:50 setuid sandbox: enabled
2022/09/29 03:58:50 namespace sandbox: enabled
2022/09/29 03:58:50 Android sandbox: enabled
2022/09/29 03:58:50 fault injection: enabled
2022/09/29 03:58:50 leak checking: enabled
2022/09/29 03:58:50 net packet injection: enabled
2022/09/29 03:58:50 net device setup: enabled
2022/09/29 03:58:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/29 03:58:50 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/29 03:58:50 USB emulation: enabled
2022/09/29 03:58:50 hci packet injection: enabled
2022/09/29 03:58:50 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220928                                          )
2022/09/29 03:58:50 802.15.4 emulation: enabled
2022/09/29 03:58:50 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/29 03:58:50 fetching corpus: 50, signal 24316/27848 (executing program)
2022/09/29 03:58:50 fetching corpus: 100, signal 38067/42937 (executing program)
2022/09/29 03:58:50 fetching corpus: 150, signal 44410/50612 (executing program)
2022/09/29 03:58:51 fetching corpus: 200, signal 48936/56489 (executing program)
2022/09/29 03:58:51 fetching corpus: 250, signal 54804/63577 (executing program)
2022/09/29 03:58:51 fetching corpus: 300, signal 61210/70989 (executing program)
2022/09/29 03:58:51 fetching corpus: 350, signal 67588/78245 (executing program)
2022/09/29 03:58:51 fetching corpus: 400, signal 71479/83142 (executing program)
2022/09/29 03:58:51 fetching corpus: 450, signal 76269/88765 (executing program)
2022/09/29 03:58:51 fetching corpus: 500, signal 79223/92631 (executing program)
2022/09/29 03:58:51 fetching corpus: 550, signal 83287/97414 (executing program)
2022/09/29 03:58:52 fetching corpus: 600, signal 87930/102679 (executing program)
2022/09/29 03:58:52 fetching corpus: 650, signal 90341/105865 (executing program)
2022/09/29 03:58:52 fetching corpus: 700, signal 92904/109179 (executing program)
2022/09/29 03:58:52 fetching corpus: 750, signal 94400/111543 (executing program)
2022/09/29 03:58:52 fetching corpus: 800, signal 96892/114687 (executing program)
2022/09/29 03:58:52 fetching corpus: 850, signal 99024/117465 (executing program)
2022/09/29 03:58:52 fetching corpus: 900, signal 101239/120275 (executing program)
2022/09/29 03:58:53 fetching corpus: 950, signal 104480/123917 (executing program)
2022/09/29 03:58:53 fetching corpus: 1000, signal 107805/127539 (executing program)
2022/09/29 03:58:53 fetching corpus: 1050, signal 109844/130091 (executing program)
2022/09/29 03:58:53 fetching corpus: 1100, signal 113565/133940 (executing program)
2022/09/29 03:58:53 fetching corpus: 1150, signal 115974/136668 (executing program)
2022/09/29 03:58:53 fetching corpus: 1200, signal 117266/138501 (executing program)
2022/09/29 03:58:53 fetching corpus: 1250, signal 119023/140663 (executing program)
2022/09/29 03:58:53 fetching corpus: 1300, signal 122433/143950 (executing program)
2022/09/29 03:58:54 fetching corpus: 1350, signal 123939/145822 (executing program)
2022/09/29 03:58:54 fetching corpus: 1400, signal 125328/147558 (executing program)
2022/09/29 03:58:54 fetching corpus: 1450, signal 127200/149646 (executing program)
2022/09/29 03:58:54 fetching corpus: 1500, signal 128997/151592 (executing program)
2022/09/29 03:58:54 fetching corpus: 1550, signal 130942/153609 (executing program)
2022/09/29 03:58:54 fetching corpus: 1600, signal 133328/155912 (executing program)
2022/09/29 03:58:54 fetching corpus: 1650, signal 134486/157364 (executing program)
2022/09/29 03:58:55 fetching corpus: 1700, signal 136235/159164 (executing program)
2022/09/29 03:58:55 fetching corpus: 1750, signal 137586/160763 (executing program)
2022/09/29 03:58:55 fetching corpus: 1800, signal 138890/162190 (executing program)
2022/09/29 03:58:55 fetching corpus: 1850, signal 139807/163382 (executing program)
2022/09/29 03:58:55 fetching corpus: 1900, signal 141309/164898 (executing program)
2022/09/29 03:58:55 fetching corpus: 1950, signal 142670/166330 (executing program)
2022/09/29 03:58:55 fetching corpus: 2000, signal 144039/167717 (executing program)
2022/09/29 03:58:55 fetching corpus: 2050, signal 145191/168981 (executing program)
2022/09/29 03:58:55 fetching corpus: 2100, signal 146004/170018 (executing program)
2022/09/29 03:58:56 fetching corpus: 2150, signal 147249/171270 (executing program)
2022/09/29 03:58:56 fetching corpus: 2200, signal 149480/173018 (executing program)
2022/09/29 03:58:56 fetching corpus: 2250, signal 150655/174155 (executing program)
2022/09/29 03:58:56 fetching corpus: 2300, signal 151659/175233 (executing program)
2022/09/29 03:58:56 fetching corpus: 2350, signal 152534/176166 (executing program)
2022/09/29 03:58:56 fetching corpus: 2400, signal 153219/177035 (executing program)
2022/09/29 03:58:56 fetching corpus: 2450, signal 154508/178175 (executing program)
2022/09/29 03:58:56 fetching corpus: 2500, signal 155327/179078 (executing program)
2022/09/29 03:58:56 fetching corpus: 2550, signal 156320/180043 (executing program)
2022/09/29 03:58:57 fetching corpus: 2600, signal 157691/181151 (executing program)
2022/09/29 03:58:57 fetching corpus: 2650, signal 158330/181922 (executing program)
2022/09/29 03:58:57 fetching corpus: 2700, signal 159835/183024 (executing program)
2022/09/29 03:58:57 fetching corpus: 2750, signal 161432/184136 (executing program)
2022/09/29 03:58:57 fetching corpus: 2800, signal 162319/184904 (executing program)
2022/09/29 03:58:57 fetching corpus: 2850, signal 163567/185861 (executing program)
2022/09/29 03:58:57 fetching corpus: 2900, signal 164471/186608 (executing program)
2022/09/29 03:58:58 fetching corpus: 2950, signal 166421/187722 (executing program)
2022/09/29 03:58:58 fetching corpus: 3000, signal 167307/188424 (executing program)
2022/09/29 03:58:58 fetching corpus: 3050, signal 168067/189074 (executing program)
2022/09/29 03:58:58 fetching corpus: 3100, signal 169064/189790 (executing program)
2022/09/29 03:58:58 fetching corpus: 3150, signal 170242/190551 (executing program)
2022/09/29 03:58:58 fetching corpus: 3200, signal 171597/191314 (executing program)
2022/09/29 03:58:58 fetching corpus: 3250, signal 172311/191880 (executing program)
2022/09/29 03:58:58 fetching corpus: 3300, signal 172855/192354 (executing program)
2022/09/29 03:58:58 fetching corpus: 3350, signal 173380/192838 (executing program)
2022/09/29 03:58:59 fetching corpus: 3400, signal 174007/193342 (executing program)
2022/09/29 03:58:59 fetching corpus: 3450, signal 174550/193770 (executing program)
2022/09/29 03:58:59 fetching corpus: 3500, signal 175368/194276 (executing program)
2022/09/29 03:58:59 fetching corpus: 3550, signal 175838/194687 (executing program)
2022/09/29 03:58:59 fetching corpus: 3600, signal 176778/195234 (executing program)
2022/09/29 03:58:59 fetching corpus: 3650, signal 177388/195645 (executing program)
2022/09/29 03:58:59 fetching corpus: 3700, signal 177983/196040 (executing program)
2022/09/29 03:58:59 fetching corpus: 3750, signal 179179/196607 (executing program)
2022/09/29 03:59:00 fetching corpus: 3800, signal 179656/196972 (executing program)
2022/09/29 03:59:00 fetching corpus: 3850, signal 180213/197330 (executing program)
2022/09/29 03:59:00 fetching corpus: 3900, signal 181099/197720 (executing program)
2022/09/29 03:59:00 fetching corpus: 3950, signal 181725/198055 (executing program)
2022/09/29 03:59:00 fetching corpus: 4000, signal 182237/198334 (executing program)
2022/09/29 03:59:00 fetching corpus: 4050, signal 183056/198717 (executing program)
2022/09/29 03:59:00 fetching corpus: 4100, signal 183612/199064 (executing program)
2022/09/29 03:59:00 fetching corpus: 4150, signal 183908/199300 (executing program)
2022/09/29 03:59:00 fetching corpus: 4200, signal 184747/199632 (executing program)
2022/09/29 03:59:00 fetching corpus: 4250, signal 185525/199910 (executing program)
2022/09/29 03:59:01 fetching corpus: 4300, signal 186314/200216 (executing program)
2022/09/29 03:59:01 fetching corpus: 4350, signal 187175/200505 (executing program)
2022/09/29 03:59:01 fetching corpus: 4400, signal 188352/200788 (executing program)
2022/09/29 03:59:01 fetching corpus: 4450, signal 188754/200968 (executing program)
2022/09/29 03:59:01 fetching corpus: 4500, signal 189232/201167 (executing program)
2022/09/29 03:59:01 fetching corpus: 4550, signal 189970/201366 (executing program)
2022/09/29 03:59:01 fetching corpus: 4600, signal 190646/201558 (executing program)
2022/09/29 03:59:01 fetching corpus: 4650, signal 191374/201741 (executing program)
2022/09/29 03:59:02 fetching corpus: 4700, signal 192300/201916 (executing program)
2022/09/29 03:59:02 fetching corpus: 4750, signal 192969/202157 (executing program)
2022/09/29 03:59:02 fetching corpus: 4800, signal 193519/202249 (executing program)
2022/09/29 03:59:02 fetching corpus: 4850, signal 194629/202369 (executing program)
2022/09/29 03:59:02 fetching corpus: 4900, signal 195121/202464 (executing program)
2022/09/29 03:59:02 fetching corpus: 4950, signal 195689/202564 (executing program)
2022/09/29 03:59:02 fetching corpus: 5000, signal 196461/202628 (executing program)
2022/09/29 03:59:02 fetching corpus: 5032, signal 196904/202632 (executing program)
2022/09/29 03:59:02 fetching corpus: 5032, signal 196904/202632 (executing program)
2022/09/29 03:59:05 starting 8 fuzzer processes
03:59:05 executing program 0:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x47, 0x0, 0x0, 0x0, 0x0, "ce397fb01034ede6a83d9a69b41b2d8b21772f"})

03:59:05 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001000010000000000000000000c0000000200000000000000040000000c0014"], 0x2c}], 0x1}, 0x0)

[   67.108504] audit: type=1400 audit(1664423945.637:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
03:59:05 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_IOC_CATATONIC(r0, 0x9362, 0x0)
ioctl$HCIINQUIRY(r0, 0x400448ca, 0x0)

03:59:05 executing program 3:
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000200), 0xffffffffffffffff)
getpgid(0x0)
clone3(&(0x7f0000000dc0)={0x100, 0x0, &(0x7f0000000b00), 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000d80)=[0x0], 0x1}, 0x58)
process_vm_writev(0x0, &(0x7f0000000e80), 0x0, &(0x7f0000000f80), 0x0, 0x0)

03:59:05 executing program 4:
syz_emit_ethernet(0x42, &(0x7f0000000000)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote, {[@lsrr={0x83, 0x3, 0xc1}]}}, @source_quench={0x8, 0x5c, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private}}}}}}, 0x0)

03:59:05 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffffffd}]})

03:59:05 executing program 6:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000040)={0xec4, 0x3ed, 0x0, 0x0, 0x0, "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"}, 0xec4}}, 0x0)

03:59:05 executing program 7:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x7af33237, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x80000, &(0x7f0000000140)=ANY=[])
pwritev(r0, &(0x7f00000006c0)=[{&(0x7f0000000040)="77d76688a173640a8805dc0fa2330ff300750758a214f882305b079e9d5bcf398afc7dc5247d5f582dd51c69de7077c234da7b5d3de03c", 0x37}, {&(0x7f0000000300)="f1a49296eafcebac780e9c0da1016ae592a861ed45f67ee84fc484dd9bddfcef41d4ac62552d436040b0c4e37b82bfc625291b58738fbf39599fad2f6ea78f361ddfec7dd352e231a98b67195ae77356eab00b0fd8de3ba05d4cbb4c20b320123519ed33b0d1c148536df18721ae09400e91b9245ecc267456b36e157c1b88c577f34b0787b0169b8bc9700876e4f5563ba0c08e3497ebc5", 0x98}, {&(0x7f00000003c0)}, {&(0x7f0000000180)="bdfe2cac76ec20e0b674d95aac59f7547283b2f6d61b53bcfb389a4de35db2332bbaba22c16bf98b7111bc3cd266adda71366385e41bc60e9a741d42a5cb88d8ed6d91227ee673498dbeacb0dfd186cae0895fc737884fb67b869848638f2deb5bfbeaa86e6fe1ff03e3f40af764723584fbbda4e0", 0x75}, {&(0x7f0000000480)="98fc316023ee87e6927010f9829c7146f576710f712ba5a4a50499608aa89a8ebba203cdf2665d95dc30d1e93efc5e0d2084aa3488ad44af4831faaa47588fcf3d821c65e737514073221fdb65449abc4bbd39d415b8f6b0ae0e6470bda4f57f80c5dc52e2b543af7d3894", 0x6b}, {&(0x7f0000000500)="56d02ea3b01c3a662da62b9454decbfc7eb27e4148b98937d4763115bd28c188e49b88b33e80ef7cd4aea55e971d5109820adda120526949669855dc69459e370899b27a21ea11683a4d1028aafcf66dce4eb8b471fded9649295c30fc88ae00743a9d5aad77e253fbf7807da3ae026b64479c70ef553b47eae0b254df4a7842982895b627f5941fdb4d9e7b0d1fc25ba292d1c42c4878e9ec93e38e3ccb36997b1d38be708813910304021a3687eccda3f8f70c11fdd8e2341b889b5ad5014a36cf25a76703e7a1a19e909b73eb3f3f3d9b5a3d8b596a150f86ff66c04db151e333a9e7bd0df7511e9d922e0e00", 0xee}, {&(0x7f0000000600)="5367d00378ca74f4d9560427cf7b8f4ad385809034c51f82c5d09b7dccb0e4a87c963558b8d25865fea693564b2df89a1e122edf2ae2bf9464a27713001470a59dc71a7789311d2143e964a24636a451d10fc9fb3422b4bc16288629b5685f73abd3c75be5e0146a1046e855091ed9b28599f4788453046f32116889a7fcd3c6f39ea3ecec6b54c8b9f5ac291a9b224b1abb76ca9caf339b5d64644ab566ccfe946030040a5247520708599ecf8abb", 0xaf}], 0x7, 0x8, 0x7fff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='mpol=default,size=53p,huge=never,nr_inodes=1'])
r2 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='mpol=default,size=53p,huge=never,nr_inodes=1'])
mknodat$loop(r2, &(0x7f0000000000)='./file1\x00', 0x2000, 0x0)
mknodat$loop(r1, &(0x7f0000000000)='./file1\x00', 0x2000, 0x0)

[   68.440358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.442227] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.444743] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.446078] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.447417] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.451678] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.454444] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.455743] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.457180] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.470417] Bluetooth: hci1: HCI_REQ-0x0c1a
[   68.489277] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.493798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.495147] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.500052] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.502184] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.504565] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.509563] Bluetooth: hci2: HCI_REQ-0x0c1a
[   68.551498] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   68.560449] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   68.562895] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.565783] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.567651] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.570152] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   68.574949] Bluetooth: hci0: HCI_REQ-0x0c1a
[   68.575046] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   68.576359] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   68.586148] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   68.587560] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   68.589436] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   68.591012] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   68.596752] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   68.598280] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   68.614003] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   68.615276] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   68.618201] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   68.620521] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   68.622033] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   68.624687] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   68.626803] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   68.632299] Bluetooth: hci5: HCI_REQ-0x0c1a
[   68.634791] Bluetooth: hci6: HCI_REQ-0x0c1a
[   68.637293] Bluetooth: hci4: HCI_REQ-0x0c1a
[   70.519108] Bluetooth: hci3: Opcode 0x c03 failed: -110
[   70.519125] Bluetooth: hci1: command 0x0409 tx timeout
[   70.582810] Bluetooth: hci2: command 0x0409 tx timeout
[   70.647176] Bluetooth: hci5: command 0x0409 tx timeout
[   70.647245] Bluetooth: hci0: command 0x0409 tx timeout
[   70.648091] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   70.710991] Bluetooth: hci4: command 0x0409 tx timeout
[   70.711815] Bluetooth: hci6: command 0x0409 tx timeout
[   72.567760] Bluetooth: hci1: command 0x041b tx timeout
[   72.630810] Bluetooth: hci2: command 0x041b tx timeout
[   72.694754] Bluetooth: hci0: command 0x041b tx timeout
[   72.695215] Bluetooth: hci5: command 0x041b tx timeout
[   72.758790] Bluetooth: hci6: command 0x041b tx timeout
[   72.759248] Bluetooth: hci4: command 0x041b tx timeout
[   73.452311] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   73.456593] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   73.462659] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   73.472591] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   73.474617] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   73.476467] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.483934] Bluetooth: hci3: HCI_REQ-0x0c1a
[   74.614741] Bluetooth: hci1: command 0x040f tx timeout
[   74.678735] Bluetooth: hci2: command 0x040f tx timeout
[   74.742893] Bluetooth: hci5: command 0x040f tx timeout
[   74.743360] Bluetooth: hci0: command 0x040f tx timeout
[   74.806798] Bluetooth: hci4: command 0x040f tx timeout
[   74.807268] Bluetooth: hci6: command 0x040f tx timeout
[   75.510755] Bluetooth: hci3: command 0x0409 tx timeout
[   75.638754] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   76.662732] Bluetooth: hci1: command 0x0419 tx timeout
[   76.726802] Bluetooth: hci2: command 0x0419 tx timeout
[   76.790762] Bluetooth: hci0: command 0x0419 tx timeout
[   76.791226] Bluetooth: hci5: command 0x0419 tx timeout
[   76.854749] Bluetooth: hci6: command 0x0419 tx timeout
[   76.855216] Bluetooth: hci4: command 0x0419 tx timeout
[   77.558738] Bluetooth: hci3: command 0x041b tx timeout
[   79.606745] Bluetooth: hci3: command 0x040f tx timeout
[   80.118748] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   81.654744] Bluetooth: hci3: command 0x0419 tx timeout
[   84.791010] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   87.650494] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   87.652988] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   87.663436] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   87.687038] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   87.689799] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   87.690573] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   87.714425] Bluetooth: hci7: HCI_REQ-0x0c1a
[   89.782891] Bluetooth: hci7: command 0x0409 tx timeout
[   91.830815] Bluetooth: hci7: command 0x041b tx timeout
[   93.878879] Bluetooth: hci7: command 0x040f tx timeout
[   95.926770] Bluetooth: hci7: command 0x0419 tx timeout
04:00:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001000010000000000000000000c0000000200000000000000040000000c0014"], 0x2c}], 0x1}, 0x0)

04:00:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001000010000000000000000000c0000000200000000000000040000000c0014"], 0x2c}], 0x1}, 0x0)

04:00:04 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001000010000000000000000000c0000000200000000000000040000000c0014"], 0x2c}], 0x1}, 0x0)

04:00:04 executing program 1:
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, 0x0)
getegid()
write$P9_RGETATTR(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, 0x0, 0x0)

[  126.361159] loop7: detected capacity change from 0 to 264192
[  126.372772] audit: type=1400 audit(1664424004.901:7): avc:  denied  { open } for  pid=3646 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.374269] audit: type=1400 audit(1664424004.901:8): avc:  denied  { kernel } for  pid=3646 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.389105] ------------[ cut here ]------------
[  126.389125] 
[  126.389128] ======================================================
[  126.389132] WARNING: possible circular locking dependency detected
[  126.389136] 6.0.0-rc7-next-20220928 #1 Not tainted
[  126.389143] ------------------------------------------------------
[  126.389146] syz-executor.7/3647 is trying to acquire lock:
[  126.389153] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  126.389199] 
[  126.389199] but task is already holding lock:
[  126.389202] ffff88800f537420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.389233] 
[  126.389233] which lock already depends on the new lock.
[  126.389233] 
[  126.389236] 
[  126.389236] the existing dependency chain (in reverse order) is:
[  126.389240] 
[  126.389240] -> #3 (&ctx->lock){....}-{2:2}:
[  126.389255]        _raw_spin_lock+0x2a/0x40
[  126.389268]        __perf_event_task_sched_out+0x53b/0x18d0
[  126.389282]        __schedule+0xedd/0x2470
[  126.389300]        schedule+0xda/0x1b0
[  126.389316]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.389330]        syscall_exit_to_user_mode+0x19/0x40
[  126.389345]        do_syscall_64+0x48/0x90
[  126.389357]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.389372] 
[  126.389372] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  126.389387]        _raw_spin_lock_nested+0x30/0x40
[  126.389399]        raw_spin_rq_lock_nested+0x1e/0x30
[  126.389414]        task_fork_fair+0x63/0x4d0
[  126.389433]        sched_cgroup_fork+0x3d0/0x540
[  126.389448]        copy_process+0x4183/0x6e20
[  126.389460]        kernel_clone+0xe7/0x890
[  126.389473]        user_mode_thread+0xad/0xf0
[  126.389483]        rest_init+0x24/0x250
[  126.389498]        arch_call_rest_init+0xf/0x14
[  126.389519]        start_kernel+0x4c6/0x4eb
[  126.389537]        secondary_startup_64_no_verify+0xe0/0xeb
[  126.389553] 
[  126.389553] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  126.389567]        _raw_spin_lock_irqsave+0x39/0x60
[  126.389580]        try_to_wake_up+0xab/0x1930
[  126.389594]        up+0x75/0xb0
[  126.389612]        __up_console_sem+0x6e/0x80
[  126.389630]        console_unlock+0x46a/0x590
[  126.389648]        vprintk_emit+0x1bd/0x560
[  126.389666]        vprintk+0x84/0xa0
[  126.389684]        _printk+0xba/0xf1
[  126.389698]        regdb_fw_cb.cold+0x6c/0xa7
[  126.389719]        request_firmware_work_func+0x12e/0x240
[  126.389733]        process_one_work+0xa17/0x16a0
[  126.389754]        worker_thread+0x637/0x1260
[  126.389772]        kthread+0x2ed/0x3a0
[  126.389788]        ret_from_fork+0x22/0x30
[  126.389801] 
[  126.389801] -> #0 ((console_sem).lock){....}-{2:2}:
[  126.389816]        __lock_acquire+0x2a02/0x5e70
[  126.389834]        lock_acquire+0x1a2/0x530
[  126.389852]        _raw_spin_lock_irqsave+0x39/0x60
[  126.389865]        down_trylock+0xe/0x70
[  126.389884]        __down_trylock_console_sem+0x3b/0xd0
[  126.389902]        vprintk_emit+0x16b/0x560
[  126.389920]        vprintk+0x84/0xa0
[  126.389938]        _printk+0xba/0xf1
[  126.389951]        report_bug.cold+0x72/0xab
[  126.389961]        handle_bug+0x3c/0x70
[  126.389971]        exc_invalid_op+0x14/0x50
[  126.389982]        asm_exc_invalid_op+0x16/0x20
[  126.389997]        group_sched_out.part.0+0x2c7/0x460
[  126.390008]        ctx_sched_out+0x8f1/0xc10
[  126.390019]        __perf_event_task_sched_out+0x6d0/0x18d0
[  126.390032]        __schedule+0xedd/0x2470
[  126.390049]        schedule+0xda/0x1b0
[  126.390066]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.390077]        syscall_exit_to_user_mode+0x19/0x40
[  126.390092]        do_syscall_64+0x48/0x90
[  126.390103]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.390118] 
[  126.390118] other info that might help us debug this:
[  126.390118] 
[  126.390121] Chain exists of:
[  126.390121]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  126.390121] 
[  126.390137]  Possible unsafe locking scenario:
[  126.390137] 
[  126.390139]        CPU0                    CPU1
[  126.390142]        ----                    ----
[  126.390145]   lock(&ctx->lock);
[  126.390151]                                lock(&rq->__lock);
[  126.390158]                                lock(&ctx->lock);
[  126.390164]   lock((console_sem).lock);
[  126.390170] 
[  126.390170]  *** DEADLOCK ***
[  126.390170] 
[  126.390172] 2 locks held by syz-executor.7/3647:
[  126.390179]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  126.390213]  #1: ffff88800f537420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.390242] 
[  126.390242] stack backtrace:
[  126.390245] CPU: 1 PID: 3647 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220928 #1
[  126.390258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.390267] Call Trace:
[  126.390270]  <TASK>
[  126.390274]  dump_stack_lvl+0x8b/0xb3
[  126.390287]  check_noncircular+0x263/0x2e0
[  126.390305]  ? format_decode+0x26c/0xb50
[  126.390325]  ? print_circular_bug+0x450/0x450
[  126.390344]  ? enable_ptr_key_workfn+0x20/0x20
[  126.390364]  ? format_decode+0x26c/0xb50
[  126.390385]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  126.390404]  __lock_acquire+0x2a02/0x5e70
[  126.390428]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  126.390453]  lock_acquire+0x1a2/0x530
[  126.390471]  ? down_trylock+0xe/0x70
[  126.390492]  ? lock_release+0x750/0x750
[  126.390515]  ? vprintk+0x84/0xa0
[  126.390535]  _raw_spin_lock_irqsave+0x39/0x60
[  126.390548]  ? down_trylock+0xe/0x70
[  126.390568]  down_trylock+0xe/0x70
[  126.390588]  ? vprintk+0x84/0xa0
[  126.390606]  __down_trylock_console_sem+0x3b/0xd0
[  126.390626]  vprintk_emit+0x16b/0x560
[  126.390646]  vprintk+0x84/0xa0
[  126.390666]  _printk+0xba/0xf1
[  126.390680]  ? record_print_text.cold+0x16/0x16
[  126.390699]  ? report_bug.cold+0x66/0xab
[  126.390711]  ? group_sched_out.part.0+0x2c7/0x460
[  126.390723]  report_bug.cold+0x72/0xab
[  126.390736]  handle_bug+0x3c/0x70
[  126.390747]  exc_invalid_op+0x14/0x50
[  126.390760]  asm_exc_invalid_op+0x16/0x20
[  126.390775] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.390790] Code: 5e 41 5f e9 cb a9 ef ff e8 c6 a9 ef ff 65 8b 1d db 12 ac 7e 31 ff 89 de e8 66 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 a9 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 9d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.390802] RSP: 0018:ffff88803e46fc48 EFLAGS: 00010006
[  126.390811] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.390819] RDX: ffff88803d553580 RSI: ffffffff815662f7 RDI: 0000000000000005
[  126.390827] RBP: ffff88803e460000 R08: 0000000000000005 R09: 0000000000000001
[  126.390835] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f537400
[  126.390843] R13: ffff88806cf3d140 R14: ffffffff8547cf00 R15: 0000000000000002
[  126.390855]  ? group_sched_out.part.0+0x2c7/0x460
[  126.390869]  ? group_sched_out.part.0+0x2c7/0x460
[  126.390883]  ctx_sched_out+0x8f1/0xc10
[  126.390897]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.390914]  ? lock_is_held_type+0xd7/0x130
[  126.390930]  ? __perf_cgroup_move+0x160/0x160
[  126.390943]  ? set_next_entity+0x304/0x550
[  126.390963]  ? update_curr+0x267/0x740
[  126.390984]  ? lock_is_held_type+0xd7/0x130
[  126.391000]  __schedule+0xedd/0x2470
[  126.391021]  ? io_schedule_timeout+0x150/0x150
[  126.391041]  ? rcu_read_lock_sched_held+0x3e/0x80
[  126.391064]  schedule+0xda/0x1b0
[  126.391082]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.391095]  syscall_exit_to_user_mode+0x19/0x40
[  126.391112]  do_syscall_64+0x48/0x90
[  126.391123]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.391139] RIP: 0033:0x7f797a254b19
[  126.391148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.391159] RSP: 002b:00007f79777ca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.391170] RAX: 0000000000000001 RBX: 00007f797a367f68 RCX: 00007f797a254b19
[  126.391178] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f797a367f6c
[  126.391186] RBP: 00007f797a367f60 R08: 000000000000000e R09: 0000000000000000
[  126.391194] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f797a367f6c
[  126.391201] R13: 00007ffc637de1ef R14: 00007f79777ca300 R15: 0000000000022000
[  126.391214]  </TASK>
[  126.448386] WARNING: CPU: 1 PID: 3647 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  126.449080] Modules linked in:
[  126.449324] CPU: 1 PID: 3647 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220928 #1
[  126.449927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.450768] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.451178] Code: 5e 41 5f e9 cb a9 ef ff e8 c6 a9 ef ff 65 8b 1d db 12 ac 7e 31 ff 89 de e8 66 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 a9 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 9d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.452525] RSP: 0018:ffff88803e46fc48 EFLAGS: 00010006
[  126.452929] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.453451] RDX: ffff88803d553580 RSI: ffffffff815662f7 RDI: 0000000000000005
[  126.453987] RBP: ffff88803e460000 R08: 0000000000000005 R09: 0000000000000001
[  126.454523] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f537400
[  126.455057] R13: ffff88806cf3d140 R14: ffffffff8547cf00 R15: 0000000000000002
[  126.455581] FS:  00007f79777ca700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  126.456185] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  126.456619] CR2: 00007f0e8bcc4620 CR3: 0000000017d02000 CR4: 0000000000350ee0
[  126.457157] Call Trace:
[  126.457353]  <TASK>
[  126.457529]  ctx_sched_out+0x8f1/0xc10
[  126.457828]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.458220]  ? lock_is_held_type+0xd7/0x130
[  126.458553]  ? __perf_cgroup_move+0x160/0x160
[  126.458895]  ? set_next_entity+0x304/0x550
[  126.459222]  ? update_curr+0x267/0x740
[  126.459530]  ? lock_is_held_type+0xd7/0x130
[  126.459859]  __schedule+0xedd/0x2470
[  126.460154]  ? io_schedule_timeout+0x150/0x150
[  126.460513]  ? rcu_read_lock_sched_held+0x3e/0x80
[  126.460895]  schedule+0xda/0x1b0
[  126.461162]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.461526]  syscall_exit_to_user_mode+0x19/0x40
[  126.461886]  do_syscall_64+0x48/0x90
[  126.462161]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.462543] RIP: 0033:0x7f797a254b19
[  126.462817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.464122] RSP: 002b:00007f79777ca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.464671] RAX: 0000000000000001 RBX: 00007f797a367f68 RCX: 00007f797a254b19
[  126.465213] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f797a367f6c
[  126.465735] RBP: 00007f797a367f60 R08: 000000000000000e R09: 0000000000000000
[  126.466265] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f797a367f6c
[  126.466785] R13: 00007ffc637de1ef R14: 00007f79777ca300 R15: 0000000000022000
[  126.467305]  </TASK>
[  126.467478] irq event stamp: 3752
[  126.467735] hardirqs last  enabled at (3751): [<ffffffff8133e8b9>] exit_to_user_mode_prepare+0x109/0x1a0
[  126.468423] hardirqs last disabled at (3752): [<ffffffff842598f5>] __schedule+0x1225/0x2470
[  126.469035] softirqs last  enabled at (3742): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.469665] softirqs last disabled at (3627): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.470292] ---[ end trace 0000000000000000 ]---
04:00:05 executing program 1:
syz_emit_ethernet(0x4e, &(0x7f00000000c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd606374400018000020010000000000000000000000000000200100000000000000000000000000000000c204"], 0x0)

04:00:05 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)

04:00:05 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)

04:00:05 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)

[  126.846881] loop7: detected capacity change from 0 to 264192
[  129.916225] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  129.923067] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  129.942996] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  129.946061] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  129.948269] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  129.950493] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  129.953038] Bluetooth: hci5: HCI_REQ-0x0c1a
[  131.574715] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  131.958758] Bluetooth: hci5: command 0x0409 tx timeout
[  131.958781] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  131.959235] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  134.006771] Bluetooth: hci5: command 0x041b tx timeout
[  134.268867] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  134.269645] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  134.270592] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  134.272403] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  134.273730] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  134.274514] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  134.278143] Bluetooth: hci6: HCI_REQ-0x0c1a
[  135.798710] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  136.054720] Bluetooth: hci5: command 0x040f tx timeout
[  136.246740] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  136.311723] Bluetooth: hci6: command 0x0409 tx timeout

VM DIAGNOSIS:
04:00:05  Registers:
info registers vcpu 0
RAX=0000000000000003 RBX=0000000000000001 RCX=1ffffffff0e0c0e0 RDX=0000000000000004
RSI=ffff88803e55f8c8 RDI=0000000000000001 RBP=ffff88803e558000 RSP=ffff88803e55f498
R8 =ffffffff85edf9c0 R9 =ffffffff85edf9c4 R10=ffffed1007cabeb2 R11=ffff88803e55f568
R12=ffff88803e55f569 R13=ffff88803e55f588 R14=ffff88803e55f528 R15=0000000000000005
RIP=ffffffff81203615 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5c7eced028 CR3=000000002054a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 6f732e616d7a6c62 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00352e6f732e616d 7a6c62696c2f756e
YMM03=0000000000000000 0000000000000000 672d78756e696c2d 34365f3638782f62
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823ba131 RDI=ffffffff8765a980 RBP=ffffffff8765a940 RSP=ffff88803e46f690
R8 =0000000000000001 R9 =000000000000000a R10=000000000000003a R11=0000000000000001
R12=000000000000003a R13=ffffffff8765a940 R14=0000000000000010 R15=ffffffff823ba120
RIP=ffffffff823ba189 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f79777ca700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f0e8bcc4620 CR3=0000000017d02000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000