Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:44513' (ECDSA) to the list of known hosts. 2022/09/30 03:13:55 fuzzer started 2022/09/30 03:13:56 dialing manager at localhost:40535 syzkaller login: [ 36.953809] cgroup: Unknown subsys name 'net' [ 37.072519] cgroup: Unknown subsys name 'rlimit' 2022/09/30 03:14:11 syscalls: 2215 2022/09/30 03:14:11 code coverage: enabled 2022/09/30 03:14:11 comparison tracing: enabled 2022/09/30 03:14:11 extra coverage: enabled 2022/09/30 03:14:11 setuid sandbox: enabled 2022/09/30 03:14:11 namespace sandbox: enabled 2022/09/30 03:14:11 Android sandbox: enabled 2022/09/30 03:14:11 fault injection: enabled 2022/09/30 03:14:11 leak checking: enabled 2022/09/30 03:14:11 net packet injection: enabled 2022/09/30 03:14:11 net device setup: enabled 2022/09/30 03:14:11 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 03:14:11 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 03:14:11 USB emulation: enabled 2022/09/30 03:14:11 hci packet injection: enabled 2022/09/30 03:14:11 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 03:14:11 802.15.4 emulation: enabled 2022/09/30 03:14:11 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/30 03:14:11 fetching corpus: 50, signal 26867/30273 (executing program) 2022/09/30 03:14:11 fetching corpus: 100, signal 39556/44213 (executing program) 2022/09/30 03:14:12 fetching corpus: 150, signal 51365/57047 (executing program) 2022/09/30 03:14:12 fetching corpus: 200, signal 58324/64987 (executing program) 2022/09/30 03:14:12 fetching corpus: 250, signal 62390/70127 (executing program) 2022/09/30 03:14:12 fetching corpus: 300, signal 66832/75431 (executing program) 2022/09/30 03:14:12 fetching corpus: 350, signal 70109/79598 (executing program) 2022/09/30 03:14:12 fetching corpus: 400, signal 73887/84130 (executing program) 2022/09/30 03:14:12 fetching corpus: 450, signal 76962/87990 (executing program) 2022/09/30 03:14:12 fetching corpus: 500, signal 78725/90602 (executing program) 2022/09/30 03:14:12 fetching corpus: 550, signal 80777/93459 (executing program) 2022/09/30 03:14:12 fetching corpus: 600, signal 83175/96552 (executing program) 2022/09/30 03:14:13 fetching corpus: 650, signal 86925/100732 (executing program) 2022/09/30 03:14:13 fetching corpus: 700, signal 89314/103697 (executing program) 2022/09/30 03:14:13 fetching corpus: 750, signal 91426/106333 (executing program) 2022/09/30 03:14:13 fetching corpus: 800, signal 94722/109976 (executing program) 2022/09/30 03:14:13 fetching corpus: 850, signal 97642/113174 (executing program) 2022/09/30 03:14:13 fetching corpus: 900, signal 99908/115783 (executing program) 2022/09/30 03:14:13 fetching corpus: 950, signal 101835/118046 (executing program) 2022/09/30 03:14:13 fetching corpus: 1000, signal 103462/120066 (executing program) 2022/09/30 03:14:14 fetching corpus: 1050, signal 104748/121791 (executing program) 2022/09/30 03:14:14 fetching corpus: 1100, signal 106605/123970 (executing program) 2022/09/30 03:14:14 fetching corpus: 1150, signal 108216/125911 (executing program) 2022/09/30 03:14:14 fetching corpus: 1200, signal 110336/128157 (executing program) 2022/09/30 03:14:14 fetching corpus: 1250, signal 111440/129668 (executing program) 2022/09/30 03:14:14 fetching corpus: 1300, signal 113371/131745 (executing program) 2022/09/30 03:14:14 fetching corpus: 1350, signal 115179/133688 (executing program) 2022/09/30 03:14:14 fetching corpus: 1400, signal 117399/135847 (executing program) 2022/09/30 03:14:15 fetching corpus: 1450, signal 118806/137395 (executing program) 2022/09/30 03:14:15 fetching corpus: 1500, signal 120034/138767 (executing program) 2022/09/30 03:14:15 fetching corpus: 1550, signal 121643/140382 (executing program) 2022/09/30 03:14:15 fetching corpus: 1600, signal 123065/141873 (executing program) 2022/09/30 03:14:15 fetching corpus: 1650, signal 124937/143636 (executing program) 2022/09/30 03:14:15 fetching corpus: 1700, signal 126275/145000 (executing program) 2022/09/30 03:14:15 fetching corpus: 1750, signal 128610/146866 (executing program) 2022/09/30 03:14:15 fetching corpus: 1800, signal 129897/148119 (executing program) 2022/09/30 03:14:16 fetching corpus: 1850, signal 130949/149215 (executing program) 2022/09/30 03:14:16 fetching corpus: 1900, signal 132253/150439 (executing program) 2022/09/30 03:14:16 fetching corpus: 1950, signal 133326/151524 (executing program) 2022/09/30 03:14:16 fetching corpus: 2000, signal 135043/153042 (executing program) 2022/09/30 03:14:16 fetching corpus: 2050, signal 136143/154053 (executing program) 2022/09/30 03:14:16 fetching corpus: 2100, signal 136723/154775 (executing program) 2022/09/30 03:14:16 fetching corpus: 2150, signal 138450/156209 (executing program) 2022/09/30 03:14:16 fetching corpus: 2200, signal 140170/157536 (executing program) 2022/09/30 03:14:17 fetching corpus: 2250, signal 141211/158388 (executing program) 2022/09/30 03:14:17 fetching corpus: 2300, signal 141855/159082 (executing program) 2022/09/30 03:14:17 fetching corpus: 2350, signal 142529/159755 (executing program) 2022/09/30 03:14:17 fetching corpus: 2400, signal 143515/160543 (executing program) 2022/09/30 03:14:17 fetching corpus: 2450, signal 144176/161188 (executing program) 2022/09/30 03:14:17 fetching corpus: 2500, signal 145037/161890 (executing program) 2022/09/30 03:14:17 fetching corpus: 2550, signal 146361/162707 (executing program) 2022/09/30 03:14:17 fetching corpus: 2600, signal 146957/163259 (executing program) 2022/09/30 03:14:18 fetching corpus: 2650, signal 147721/163839 (executing program) 2022/09/30 03:14:18 fetching corpus: 2700, signal 148759/164548 (executing program) 2022/09/30 03:14:18 fetching corpus: 2750, signal 149443/165089 (executing program) 2022/09/30 03:14:18 fetching corpus: 2800, signal 150833/165978 (executing program) 2022/09/30 03:14:18 fetching corpus: 2850, signal 151419/166451 (executing program) 2022/09/30 03:14:18 fetching corpus: 2900, signal 152364/167033 (executing program) 2022/09/30 03:14:18 fetching corpus: 2950, signal 153065/167539 (executing program) 2022/09/30 03:14:18 fetching corpus: 3000, signal 154003/168090 (executing program) 2022/09/30 03:14:19 fetching corpus: 3050, signal 154445/168429 (executing program) 2022/09/30 03:14:19 fetching corpus: 3100, signal 154938/168785 (executing program) 2022/09/30 03:14:19 fetching corpus: 3150, signal 155625/169180 (executing program) 2022/09/30 03:14:19 fetching corpus: 3200, signal 156472/169611 (executing program) 2022/09/30 03:14:19 fetching corpus: 3250, signal 157412/170041 (executing program) 2022/09/30 03:14:19 fetching corpus: 3300, signal 158037/170375 (executing program) 2022/09/30 03:14:19 fetching corpus: 3350, signal 158650/170739 (executing program) 2022/09/30 03:14:19 fetching corpus: 3400, signal 159439/171063 (executing program) 2022/09/30 03:14:19 fetching corpus: 3450, signal 160512/171441 (executing program) 2022/09/30 03:14:20 fetching corpus: 3500, signal 160948/171681 (executing program) 2022/09/30 03:14:20 fetching corpus: 3550, signal 161901/171996 (executing program) 2022/09/30 03:14:20 fetching corpus: 3600, signal 162495/172195 (executing program) 2022/09/30 03:14:20 fetching corpus: 3650, signal 163181/172442 (executing program) 2022/09/30 03:14:20 fetching corpus: 3700, signal 164065/172665 (executing program) 2022/09/30 03:14:20 fetching corpus: 3750, signal 164804/172925 (executing program) 2022/09/30 03:14:20 fetching corpus: 3800, signal 165150/173086 (executing program) 2022/09/30 03:14:20 fetching corpus: 3850, signal 166213/173293 (executing program) 2022/09/30 03:14:20 fetching corpus: 3900, signal 167454/173478 (executing program) 2022/09/30 03:14:21 fetching corpus: 3950, signal 168262/173667 (executing program) 2022/09/30 03:14:21 fetching corpus: 4000, signal 169056/173835 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/173907 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/173967 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/174021 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/174069 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/174071 (executing program) 2022/09/30 03:14:21 fetching corpus: 4037, signal 169341/174071 (executing program) 2022/09/30 03:14:24 starting 8 fuzzer processes 03:14:24 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x9, r0, 0x8) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsopen(0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = dup(r1) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r2, &(0x7f0000000200)={0xa, 0x4e22, 0x3, @private2, 0x7}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000002880), 0x4000101, 0x0) symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) preadv(r3, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x41) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000003280)={0x0, 0x0, "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", "bc814f1e421304699c87988d578a0a83e359f4c0be15077dc7547e05d8d3e86fd0a544b052031ab5435bfa1d3cb761dcf3cc5ed23c524ee1c3178c0b78972b97712343f0c489b8dc22aebc61c82ede5b06d0e78af78d2c0971f7ddbc5f5698fb66c6bd36db6289222aee97a1cc0492740d3d84eadcfeb2c8965cbeaae9f381cfc6c2849b0371e0ee8119179cf7cd82c855e1ccac83bec9af15fadec7884bf4458259dfc82682c66b53620ff2f6d83326671102337965af980249343ed01173744daff6b3c705225d7faf6c85bf102f18aca5d8e229fd8179954945de7f1ab059a15f9786b194654c5bf732f9fb83e1f985654347ca65022de65f67320a0fb2281737a3ddf710c645ac69a8453c3b70d560ef653514dbc0eb06b73b4f633188a7ab2f36d7e3bbfb71f498dcd599e9fd4e6f73a8e06d625a58bbd0c63cdf50ce7d5064c21e75b92f44506d720b89550cdc8227f32f25510ed8d4e441b132d9f7157acf293ee3c0d44d072b5e81c4c39e2fab668f3f30bf3035931c93df026b41f33c15cb08b55c00ff2d6ef5171a481b0ee2282dc2306971d73c1cbc21bf01b23ca4936e4f4518207e0e94c2973e709b24d13b63657f4d1689f7a4f779640aab3a4e7a6e3b6e4040a71078569f33fdbc35c23e8b030cd07eabbf542244241463937f1189c328a6d0967c65ff5307ba71311ed83289d2a24db12b38ba399932cf0d921bdc2d4ca64bcae4c28622cb69509089aea132e1237f33da2e7ba216cd610a8dfdac60c089260ae5e5e827d133e72deeadccf2dc14bcdaf270aa9d9072b2098ce65738896a1d908e2d6cf42f90216e5e5dc2d48b458d3bf901fa68d4f4bcc95dd145354329baaa5f6d72983b3c5cdb6e6e90e754ea3d9ca286313655ad326ed5f017e1424b7573918e3acf96644835c09be7085b043ec416b97a6eae45df8d312519f14ce8469386f97e85509d5cb90d8b1d66dc72219176ec5022edd76c02ea8e723ec7086f40788f45c37df77eb877d2654b3a2009d603cf223f93b5cd83f846da8e75ecbfffc4d6f11a11a7ddb8744cbd0c82f156e5915a2c879efb00f48afda0580b980ea0143a2bb111cd59371e954e5593fb3f4d14190056333fde9e40806269380381fee347b43bb345e50eb065dfd65e4202bb532bc36742828d898d86337d87416018d2246aa621726b376fcf2d229d8c9703f0f6607703e1b939a5023bbae5528a3aa4a24736a444ca1cb8c3075a110414c1629bbcd5c9c4e4080aa44674a34f5c31347e5bca2052fba2e27ed084449da3314358cb192065e1999982b95cc18a488e3189c404c3ba2262b424553e425ac01a78c7aab15e48b2d78837ca0127b1bf28bdd46e14e58c0717687acea3fef73e035c0b6f482fbfeabace42db1aa83a1f3644f9e63c87afc3afab26090af7e7c4fb1b81f8b01bc4e4814be39b0325a270657954f26af83a20d130ed6220a5212205440bb48fbbbc07a7b18cd0bd96d3a250c66bb93454f074a1ddcb836e3ab6af4153058cd94f16d9641f3929087c2ed87e20527eca22b3b3ac62c00f0620d5f28c518c5d03d8f180fe524bfc79c8e8577cc576192ce0547242e747351cde648664691f455e03064f57196524c8e3370efaa64ac28e09b1f2d2b6d69723885f294ea2df1cec3dd25c87883ab65aee612d325eb04cfaaa41d340f65c5745a14fc541902bf299f97f848034fa5a9968fd052087eb5fe6eebb232146191f1fec644d61aeee0ac3c218fbdc077f5c11ee746bcf9197db06ac78f5aa56b64a361ee6ff35efbf679482673cf5d5c51755f33d7a4af59a06484e787df20d684a78754634e651ca76e042643c0b60a22c2a2815619a958ace318639757e7a16d80add9fa9a61fe8ab4de921736de7b75af95bf9b57417451f9d812ccf4db0dd46acfad3136ad94dda1cc622a83daa02181a9f2e7607c77c3d6fd032289f93a1a18f7508366b96c6cd4d6bbff2b3c249b16d205f6369ac1d5af8a4e81400bdf93c820ae6f3622569b20410973a7f58ea541f64e977fb730c853d5fa809cc57b65c54e786641d28be2750dc637a794332163c972c896ae4d86296ddc39c3d433b546b9d7dbe67bb43c129aad2c32dc68d8dc26e489682e00ab92a16bdbbdd5ad803a0ae91a5af285db0fb6b8d118f2d0f120cc1667530bfb4c32b4fa4caf1192a035aafb458f311a04b6491014f0629d86a712a356ff2bac0df5b6c497ba5852e452b226718bea604d2fef071f443c055318045fcd5eea0062432fcadd11f93f0c152e01ff5d1f510f63b6266ae1b314ce06b4f6a388dbeccb7d257e6f3d82b0c23be3bc134bb127b0bf82bd7dada2c645e37621858fdd650fb213ddf61d07e46b8eb24cfa0b66f38f7a90f7d4d3439e701b8b0e36514b5a333d4b8c3439c3f67f074f45776c888d00f5e2fdfa65c175330253d3e032a9442ea08a54fa661c1784ff4a01d90f28a2936659d2d1bb6a2670438a3ac7864b17ed1cada9ca479045db0162297973861fdf6f6fc724543181133f201dcc4035f75585b3d3fce08eb8454b45b87a8055cb14ebcabd324feeb73c46c57b5d4e0de70863920b422952049f756d578971ee1c583a17467258324e13f349f8d36aa55820a7e76e51c4afa0b8c4f664432c5ad089aa79a39a2a6e4ab46b48f5b69ea6cfc5944b3e058bc837bc556b28351895734acfa3693f1537b58374bd39c5cca45e1ad9232a15554f1046f3cd60cbf78e5819de443b14d4887d83f14e5d944b8fb8fd678d6decafe117f93fc8cc44d3f6190c0f9f66100ee9f58818fa36b5e3e45c53fdf90587f3afeb9e3a62e74a999f1628f55c8980268ab73e66f5403873d0fe421da4eb22dd9afdfea0e1e960f9dcd6383e262151cfd63587d15009a930a44e63b559f063f9cfa75661a7866faedc287c534beb7b9113a01c0ece0e4f18cddbe482b7f4810683a3fdf61ea161c8f24a099310ce3e2e822ae0b659e6bfa78289bef995e2f45805c2881eec6453c5f07067d760c8774495a0c184eb6db75f17a7033ea4b652abbd1e806f668e84f7b8ab761ea4502e78294eeecef8b22760c4936901943b2387682c08459b2ec5a02ce17df9d0327e516aa2284b438acfb5f7e0ab4999114d1e039492a2034dbab39c8f1ca39de84f9fb4bf2ebe267c4510b0b196317e0ea392cfbc216bc51d82671ba50be6bb66a32ab9e5df046be877180e9ec84cd35296881af635f0a3ff4b9f675068e31579be666c0b1989af184aac44101383ca5a6b25c6554cd716c76631bda53456a35466256f02a9aa4587b918e2fad906b8464197b8989f6600a71d77bb51424e5589bfeb3d03e78820e627ace0ef66b74cdb15de646d2c42dfd36a45c751f92ec0ca4735e928f1a83ca8a489cd45f61bab6da8f5fcdafc174d55ee1d1a3c82ddfbe7063162f95545dab3dc82deb11f1819e679707cb8c44c268234057d1cdd8048169355d57c1f524e7e997b085d99655831f72df213772eaf96b71a86719b14fd334bab58b80feba7b9ec5173621367d1937407d7710489d66b84da940b8139aabd13eb484320eea59ada26b5267e3f10d0bbe24af0d99c7527dff570287d1c77e8272ef5aef7745e483acb5854c7f650f229af8e653ad245f3fc30b5401fb2f9da69451b4e6e470dccbb4a8e01a32d5c2b481610fd3d0c918021582f1be03590387cdc4ee70f94a6492afe660d7ee72978574ad92ba4c97181dff483291d8cd89eaaec13ec3e7c4c89040e843b17531f24b406dd3f8aa93e9c5770b2499941f7270ebca618e9ca258c7ebbf90ecf4ad27cfd89e560ef73f74c8cdedce8542fe658050bab5d7f2e32e639c69f2c1663634c6ea9186d9afbb6924489fb60250a2dcf769ccec3a8528c66f5dec199b04fdb4fdef8b9d917667a3ca1950cf970b7b8000bad56b6300d4c0dcc497e0d0d1574ce447c075098cc1d7b4b070833105e718f322694634c2d2734ddd7e61b62163db4f63ab39840fab2090bd75a750855ee9091ee5ead23614e8b04bcf25b718db19d6d38f14cba33548033d6ef99f86e940f55f1fbe001a8f508a82ff6f758b39826b087c274e7b383f1e8825edef09450d7eec345f2b553e1bc3e2404a6acd7d743b4713150c35543b2bab1b3c881baa7855a230986e9c030e7b54a6b8b50419848beb755458efa6142f43a1d3b4d14c482683a9dcce9105a1ee96dbe339f910afc267968d7a05f019d2bf128884ad73dba7257c21a15d7a45b1c11dfe18bd077c6c57377baeae5b87a74101b4467bc26d18131f21f2ef22a46cf80461c118aae318078561af2668f700339665b8d552c182419f816a2d73ab6e64354a198688078ad244a0b91fbc3de5f645971306f4979605ee2c373f8a49e6a8f397ddcd9e952a8695f5326f9ccd365a8b873851c4ad578b57c223b6fde3ea6e8fd5dc9093f5fe190f2d58c76d0d4fe18486403c0abcf55b626c9f935fbcebd30e716d541868a777d3880c4fb47edfcf364246996a24088dfcfafa7c1220efd38c356e5ede5ef9b6b2046937b50523fe4565bb0e08a0514fdae54da25338c316a379c12669d2bdd416632965aa23a137c86cbb0682fa5e84a659753ecd8059bb03c3fdb69fbf1b15f875cb34463fbdbde6b6933730776837b9c5175107227367d1eda9f4a39146b6692e183163ea7159c68aa3bf7d2b33d2bd5d549254cb946a2657cbef0919ab14c87931269698f40d1b389abb63807056bf7e25e1e52b9bd110e09c10baf28722a380a29ee3556236778aa3594d9f4ffff2f9f5072f7891cd3a5c58909ea8f41701604ee58eb1935bf1c0dbc3a98617686043ef2a3abbeacd433ba7a4185a1fa195e77b4ab3f07a617b5ef6cb3d22868c62a5be213765c9aef4ee5a22b241f798a2c89e2fc5155d5ecc2cbb589ed3be1974b21ff8874088236dbaf1f49174a8ce77286086e171c1e80493820734e8bff23341b868816d05e1813239397abe41729ab28eca7af82c75f78bdfa82ef5614cad6612ce43c29364759bbbacbcbb62dd8b11b5be653766143a86bef63dc914f09338bf1dd352804c3cff83b36f4092c960376244ac278aa6f2ab043fcab03e283569d6ac6b485a110c33f6a238cfd7a7d26e2c81698d6c9c86575b5e7ed305a643966fc5424f4d679839a34d3d65a7d561a11f5dfe30ac2732f331aa5120e994996c8ec290fd16c9a50b4763ca33595b081963ab6820b1306556419c3baf600ecdcc27069499986df8592c956168a81b8294155bee6dbf55352d401fcf0acc4f5ac67e9b12af83ec34a8bd4f4d9dedce46cc798c06d7210da9aef6fcb186d00a3a16bbc043cd45d05a72e79b6fdb5f927a3f906ce6603d3c23c7cba45d834c3e6d942ea0ea69ccb9ab65e9be0627ab1351"}) write$sndseq(r4, &(0x7f0000000140)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}], 0xfffffdcd) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, 0xffffffffffffffff, 0x0) fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000180)='silent\x00', 0x0, 0x0) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) 03:14:24 executing program 2: r0 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000440)) ioctl$NS_GET_USERNS(r0, 0x80086601, 0x0) 03:14:24 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x891d, &(0x7f0000000180)={'wpan1\x00'}) [ 64.800446] audit: type=1400 audit(1664507664.286:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 03:14:24 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0) ioctl$LOOP_CLR_FD(r0, 0x401870c8) 03:14:24 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x4) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040)) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) io_submit(0x0, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f00000004c0), 0x80000, 0x0) lseek(0xffffffffffffffff, 0xfffffffffffffff7, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0xd29) 03:14:24 executing program 5: creat(&(0x7f0000000000)='./file0\x00', 0x0) creat(&(0x7f0000000940)='./file0\x00', 0x0) 03:14:24 executing program 6: syz_io_uring_setup(0x759a, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000280), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000300), &(0x7f0000000340)) 03:14:24 executing program 7: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000080)={{0x80}, 'port0\x00', 0x2b}) [ 66.073553] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.075177] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.078032] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.081824] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.084136] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.086393] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.095459] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.105391] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.108136] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.111515] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.115023] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.116748] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.118024] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.124334] Bluetooth: hci1: HCI_REQ-0x0c1a [ 66.179926] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.185417] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.192073] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.199566] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.207392] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.210397] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.211766] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.215586] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.218125] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.219124] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.222782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.224295] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.226536] Bluetooth: hci2: HCI_REQ-0x0c1a [ 66.254391] Bluetooth: hci3: HCI_REQ-0x0c1a [ 66.258742] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 66.266466] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 66.267695] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 66.271760] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 66.274742] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 66.275969] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.282592] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.284026] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.287201] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.300642] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.304689] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.306429] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.312666] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.328342] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.331802] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 66.341523] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 66.343075] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 66.347888] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 66.349724] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 66.351105] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 66.353238] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.374553] Bluetooth: hci4: HCI_REQ-0x0c1a [ 66.376438] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.397813] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.401177] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.403600] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.404924] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.410382] Bluetooth: hci5: HCI_REQ-0x0c1a [ 68.148067] Bluetooth: hci1: command 0x0409 tx timeout [ 68.148082] Bluetooth: hci0: command 0x0409 tx timeout [ 68.275533] Bluetooth: hci3: command 0x0409 tx timeout [ 68.275553] Bluetooth: hci2: command 0x0409 tx timeout [ 68.339591] Bluetooth: hci6: command 0x0409 tx timeout [ 68.340148] Bluetooth: hci7: command 0x0409 tx timeout [ 68.403385] Bluetooth: hci4: command 0x0409 tx timeout [ 68.467383] Bluetooth: hci5: command 0x0409 tx timeout [ 70.195361] Bluetooth: hci0: command 0x041b tx timeout [ 70.195797] Bluetooth: hci1: command 0x041b tx timeout [ 70.323372] Bluetooth: hci2: command 0x041b tx timeout [ 70.323801] Bluetooth: hci3: command 0x041b tx timeout [ 70.387335] Bluetooth: hci7: command 0x041b tx timeout [ 70.387804] Bluetooth: hci6: command 0x041b tx timeout [ 70.451351] Bluetooth: hci4: command 0x041b tx timeout [ 70.515329] Bluetooth: hci5: command 0x041b tx timeout [ 72.243476] Bluetooth: hci1: command 0x040f tx timeout [ 72.243935] Bluetooth: hci0: command 0x040f tx timeout [ 72.371356] Bluetooth: hci3: command 0x040f tx timeout [ 72.371825] Bluetooth: hci2: command 0x040f tx timeout [ 72.435318] Bluetooth: hci6: command 0x040f tx timeout [ 72.435787] Bluetooth: hci7: command 0x040f tx timeout [ 72.499309] Bluetooth: hci4: command 0x040f tx timeout [ 72.563389] Bluetooth: hci5: command 0x040f tx timeout [ 74.291318] Bluetooth: hci0: command 0x0419 tx timeout [ 74.291788] Bluetooth: hci1: command 0x0419 tx timeout [ 74.419339] Bluetooth: hci2: command 0x0419 tx timeout [ 74.419822] Bluetooth: hci3: command 0x0419 tx timeout [ 74.483374] Bluetooth: hci7: command 0x0419 tx timeout [ 74.483851] Bluetooth: hci6: command 0x0419 tx timeout [ 74.547352] Bluetooth: hci4: command 0x0419 tx timeout [ 74.611323] Bluetooth: hci5: command 0x0419 tx timeout 03:15:21 executing program 2: r0 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000440)) ioctl$NS_GET_USERNS(r0, 0x80086601, 0x0) 03:15:21 executing program 2: r0 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000440)) ioctl$NS_GET_USERNS(r0, 0x80086601, 0x0) 03:15:21 executing program 2: r0 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000440)) ioctl$NS_GET_USERNS(r0, 0x80086601, 0x0) 03:15:22 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x2c, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x4, 0x0, 0x0, 0x0, @binary}, @typed={0xc, 0x31, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) [ 122.670565] netlink: 'syz-executor.2': attribute type 49 has an invalid length. 03:15:22 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x2c, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x4, 0x0, 0x0, 0x0, @binary}, @typed={0xc, 0x31, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) [ 122.791775] netlink: 'syz-executor.2': attribute type 49 has an invalid length. 03:15:22 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x2c, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x4, 0x0, 0x0, 0x0, @binary}, @typed={0xc, 0x31, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) [ 122.928032] netlink: 'syz-executor.2': attribute type 49 has an invalid length. 03:15:22 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000000)={0x2c, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x4, 0x0, 0x0, 0x0, @binary}, @typed={0xc, 0x31, 0x0, 0x0, @u64}]}, 0x2c}], 0x1}, 0x0) [ 123.031508] netlink: 'syz-executor.2': attribute type 49 has an invalid length. 03:15:22 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4c, &(0x7f00000000c0), 0x4) [ 123.194961] audit: type=1400 audit(1664507722.680:7): avc: denied { open } for pid=3792 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.196528] audit: type=1400 audit(1664507722.681:8): avc: denied { kernel } for pid=3792 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.213710] ------------[ cut here ]------------ [ 123.213731] [ 123.213735] ====================================================== [ 123.213738] WARNING: possible circular locking dependency detected [ 123.213742] 6.0.0-rc7-next-20220929 #1 Not tainted [ 123.213749] ------------------------------------------------------ [ 123.213752] syz-executor.0/3796 is trying to acquire lock: [ 123.213758] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 123.213797] [ 123.213797] but task is already holding lock: [ 123.213800] ffff88801a1f6020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.213826] [ 123.213826] which lock already depends on the new lock. [ 123.213826] [ 123.213829] [ 123.213829] the existing dependency chain (in reverse order) is: [ 123.213833] [ 123.213833] -> #3 (&ctx->lock){....}-{2:2}: [ 123.213847] _raw_spin_lock+0x2a/0x40 [ 123.213859] __perf_event_task_sched_out+0x53b/0x18d0 [ 123.213873] __schedule+0xedd/0x2470 [ 123.213887] schedule+0xda/0x1b0 [ 123.213900] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.213912] syscall_exit_to_user_mode+0x19/0x40 [ 123.213924] do_syscall_64+0x48/0x90 [ 123.213942] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.213954] [ 123.213954] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 123.213968] _raw_spin_lock_nested+0x30/0x40 [ 123.213978] raw_spin_rq_lock_nested+0x1e/0x30 [ 123.213991] task_fork_fair+0x63/0x4d0 [ 123.214007] sched_cgroup_fork+0x3d0/0x540 [ 123.214021] copy_process+0x4183/0x6e20 [ 123.214032] kernel_clone+0xe7/0x890 [ 123.214041] user_mode_thread+0xad/0xf0 [ 123.214051] rest_init+0x24/0x250 [ 123.214063] arch_call_rest_init+0xf/0x14 [ 123.214079] start_kernel+0x4c6/0x4eb [ 123.214094] secondary_startup_64_no_verify+0xe0/0xeb [ 123.214108] [ 123.214108] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 123.214121] _raw_spin_lock_irqsave+0x39/0x60 [ 123.214132] try_to_wake_up+0xab/0x1930 [ 123.214145] up+0x75/0xb0 [ 123.214159] __up_console_sem+0x6e/0x80 [ 123.214175] console_unlock+0x46a/0x590 [ 123.214190] con_flush_chars+0x76/0x90 [ 123.214208] n_tty_write+0xc40/0xfe0 [ 123.214220] file_tty_write.constprop.0+0x455/0x8a0 [ 123.214232] vfs_write+0x9c3/0xd90 [ 123.214251] ksys_write+0x127/0x250 [ 123.214266] do_syscall_64+0x3b/0x90 [ 123.214283] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.214295] [ 123.214295] -> #0 ((console_sem).lock){....}-{2:2}: [ 123.214308] __lock_acquire+0x2a02/0x5e70 [ 123.214325] lock_acquire+0x1a2/0x530 [ 123.214341] _raw_spin_lock_irqsave+0x39/0x60 [ 123.214351] down_trylock+0xe/0x70 [ 123.214366] __down_trylock_console_sem+0x3b/0xd0 [ 123.214382] vprintk_emit+0x16b/0x560 [ 123.214398] vprintk+0x84/0xa0 [ 123.214413] _printk+0xba/0xf1 [ 123.214425] report_bug.cold+0x72/0xab [ 123.214441] handle_bug+0x3c/0x70 [ 123.214457] exc_invalid_op+0x14/0x50 [ 123.214474] asm_exc_invalid_op+0x16/0x20 [ 123.214485] group_sched_out.part.0+0x2c7/0x460 [ 123.214503] ctx_sched_out+0x8f1/0xc10 [ 123.214519] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.214530] __schedule+0xedd/0x2470 [ 123.214543] schedule+0xda/0x1b0 [ 123.214557] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.214567] syscall_exit_to_user_mode+0x19/0x40 [ 123.214580] do_syscall_64+0x48/0x90 [ 123.214596] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.214608] [ 123.214608] other info that might help us debug this: [ 123.214608] [ 123.214611] Chain exists of: [ 123.214611] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 123.214611] [ 123.214626] Possible unsafe locking scenario: [ 123.214626] [ 123.214628] CPU0 CPU1 [ 123.214630] ---- ---- [ 123.214632] lock(&ctx->lock); [ 123.214638] lock(&rq->__lock); [ 123.214644] lock(&ctx->lock); [ 123.214650] lock((console_sem).lock); [ 123.214656] [ 123.214656] *** DEADLOCK *** [ 123.214656] [ 123.214657] 2 locks held by syz-executor.0/3796: [ 123.214664] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 123.214693] #1: ffff88801a1f6020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.214719] [ 123.214719] stack backtrace: [ 123.214722] CPU: 1 PID: 3796 Comm: syz-executor.0 Not tainted 6.0.0-rc7-next-20220929 #1 [ 123.214735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.214742] Call Trace: [ 123.214745] [ 123.214750] dump_stack_lvl+0x8b/0xb3 [ 123.214768] check_noncircular+0x263/0x2e0 [ 123.214785] ? format_decode+0x26c/0xb50 [ 123.214801] ? print_circular_bug+0x450/0x450 [ 123.214818] ? enable_ptr_key_workfn+0x20/0x20 [ 123.214834] ? format_decode+0x26c/0xb50 [ 123.214851] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 123.214869] __lock_acquire+0x2a02/0x5e70 [ 123.214890] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 123.214913] lock_acquire+0x1a2/0x530 [ 123.214929] ? down_trylock+0xe/0x70 [ 123.214946] ? lock_release+0x750/0x750 [ 123.214967] ? vprintk+0x84/0xa0 [ 123.214984] _raw_spin_lock_irqsave+0x39/0x60 [ 123.214995] ? down_trylock+0xe/0x70 [ 123.215011] down_trylock+0xe/0x70 [ 123.215027] ? vprintk+0x84/0xa0 [ 123.215044] __down_trylock_console_sem+0x3b/0xd0 [ 123.215061] vprintk_emit+0x16b/0x560 [ 123.215080] vprintk+0x84/0xa0 [ 123.215104] _printk+0xba/0xf1 [ 123.215116] ? record_print_text.cold+0x16/0x16 [ 123.215131] ? report_bug.cold+0x66/0xab [ 123.215149] ? group_sched_out.part.0+0x2c7/0x460 [ 123.215167] report_bug.cold+0x72/0xab [ 123.215186] handle_bug+0x3c/0x70 [ 123.215203] exc_invalid_op+0x14/0x50 [ 123.215221] asm_exc_invalid_op+0x16/0x20 [ 123.215234] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.215254] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.215265] RSP: 0018:ffff88801884fc48 EFLAGS: 00010006 [ 123.215274] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.215282] RDX: ffff888020693580 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 123.215289] RBP: ffff888017628000 R08: 0000000000000005 R09: 0000000000000001 [ 123.215297] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88801a1f6000 [ 123.215304] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 123.215315] ? group_sched_out.part.0+0x2c7/0x460 [ 123.215335] ? group_sched_out.part.0+0x2c7/0x460 [ 123.215355] ctx_sched_out+0x8f1/0xc10 [ 123.215374] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.215388] ? lock_is_held_type+0xd7/0x130 [ 123.215402] ? __perf_cgroup_move+0x160/0x160 [ 123.215413] ? set_next_entity+0x304/0x550 [ 123.215430] ? update_curr+0x267/0x740 [ 123.215448] ? lock_is_held_type+0xd7/0x130 [ 123.215462] __schedule+0xedd/0x2470 [ 123.215479] ? io_schedule_timeout+0x150/0x150 [ 123.215496] ? rcu_read_lock_sched_held+0x3e/0x80 [ 123.215516] schedule+0xda/0x1b0 [ 123.215530] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.215543] syscall_exit_to_user_mode+0x19/0x40 [ 123.215556] do_syscall_64+0x48/0x90 [ 123.215574] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.215587] RIP: 0033:0x7f89ff82eb19 [ 123.215595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.215606] RSP: 002b:00007f89fcda4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.215617] RAX: 0000000000000001 RBX: 00007f89ff941f68 RCX: 00007f89ff82eb19 [ 123.215624] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f89ff941f6c [ 123.215631] RBP: 00007f89ff941f60 R08: 000000000000000e R09: 0000000000000000 [ 123.215638] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f89ff941f6c [ 123.215646] R13: 00007ffcb74207bf R14: 00007f89fcda4300 R15: 0000000000022000 [ 123.215658] [ 123.307185] WARNING: CPU: 1 PID: 3796 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 123.308360] Modules linked in: [ 123.308778] CPU: 1 PID: 3796 Comm: syz-executor.0 Not tainted 6.0.0-rc7-next-20220929 #1 [ 123.309795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.311261] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.311981] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.314352] RSP: 0018:ffff88801884fc48 EFLAGS: 00010006 [ 123.315050] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.315985] RDX: ffff888020693580 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 123.316895] RBP: ffff888017628000 R08: 0000000000000005 R09: 0000000000000001 [ 123.317808] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88801a1f6000 [ 123.318714] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 123.319612] FS: 00007f89fcda4700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 123.320614] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.321354] CR2: 000055a516228080 CR3: 000000003f922000 CR4: 0000000000350ee0 [ 123.322249] Call Trace: [ 123.322577] [ 123.322875] ctx_sched_out+0x8f1/0xc10 [ 123.323394] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.324058] ? lock_is_held_type+0xd7/0x130 [ 123.324615] ? __perf_cgroup_move+0x160/0x160 [ 123.325181] ? set_next_entity+0x304/0x550 [ 123.325733] ? update_curr+0x267/0x740 [ 123.326245] ? lock_is_held_type+0xd7/0x130 [ 123.326799] __schedule+0xedd/0x2470 [ 123.327299] ? io_schedule_timeout+0x150/0x150 [ 123.327888] ? rcu_read_lock_sched_held+0x3e/0x80 [ 123.328507] schedule+0xda/0x1b0 [ 123.328946] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.329565] syscall_exit_to_user_mode+0x19/0x40 [ 123.330175] do_syscall_64+0x48/0x90 [ 123.330662] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.331319] RIP: 0033:0x7f89ff82eb19 [ 123.331800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.334012] RSP: 002b:00007f89fcda4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.334946] RAX: 0000000000000001 RBX: 00007f89ff941f68 RCX: 00007f89ff82eb19 [ 123.335837] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f89ff941f6c [ 123.336731] RBP: 00007f89ff941f60 R08: 000000000000000e R09: 0000000000000000 [ 123.337614] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f89ff941f6c [ 123.338498] R13: 00007ffcb74207bf R14: 00007f89fcda4300 R15: 0000000000022000 [ 123.339406] [ 123.339710] irq event stamp: 868 [ 123.340130] hardirqs last enabled at (867): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 123.341281] hardirqs last disabled at (868): [] __schedule+0x1225/0x2470 [ 123.342311] softirqs last enabled at (590): [] __irq_exit_rcu+0x11b/0x180 [ 123.343372] softirqs last disabled at (515): [] __irq_exit_rcu+0x11b/0x180 [ 123.344429] ---[ end trace 0000000000000000 ]--- [ 123.351050] audit: type=1400 audit(1664507722.837:9): avc: denied { block_suspend } for pid=3795 comm="syz-executor.4" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 129.331281] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 129.331339] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 129.333321] Bluetooth: hci2: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 03:15:22 Registers: info registers vcpu 0 RAX=ffffed100120b740 RBX=ffffed100120b741 RCX=ffffffff811da3e7 RDX=ffffed100120b741 RSI=0000000000000008 RDI=ffff88800905ba00 RBP=ffffed100120b740 RSP=ffff88800fd67d70 R8 =0000000000000000 R9 =ffff88800905ba07 R10=ffffed100120b740 R11=0000000000000001 R12=ffff88807d08eff9 R13=ffff88800fba5040 R14=0000000000000000 R15=0000000000000092 RIP=ffffffff81787825 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005615caeeffa8 CR3=000000003b976000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88801884f690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f89fcda4700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a516228080 CR3=000000003f922000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f89ff9157c0 00007f89ff9157c8 YMM02=0000000000000000 0000000000000000 00007f89ff9157e0 00007f89ff9157c0 YMM03=0000000000000000 0000000000000000 00007f89ff9157c8 00007f89ff9157c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000