Warning: Permanently added '[localhost]:63252' (ECDSA) to the list of known hosts. 2022/09/30 02:13:04 fuzzer started 2022/09/30 02:13:05 dialing manager at localhost:40535 syzkaller login: [ 44.845258] cgroup: Unknown subsys name 'net' [ 44.972734] cgroup: Unknown subsys name 'rlimit' [ 57.004697] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2022/09/30 02:13:18 syscalls: 2215 2022/09/30 02:13:18 code coverage: enabled 2022/09/30 02:13:18 comparison tracing: enabled 2022/09/30 02:13:18 extra coverage: enabled 2022/09/30 02:13:18 setuid sandbox: enabled 2022/09/30 02:13:18 namespace sandbox: enabled 2022/09/30 02:13:18 Android sandbox: enabled 2022/09/30 02:13:18 fault injection: enabled 2022/09/30 02:13:18 leak checking: enabled 2022/09/30 02:13:18 net packet injection: enabled 2022/09/30 02:13:18 net device setup: enabled 2022/09/30 02:13:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 02:13:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 02:13:18 USB emulation: enabled 2022/09/30 02:13:18 hci packet injection: enabled 2022/09/30 02:13:18 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 02:13:18 802.15.4 emulation: enabled 2022/09/30 02:13:18 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/30 02:13:18 fetching corpus: 41, signal 22411/25581 (executing program) 2022/09/30 02:13:18 fetching corpus: 91, signal 38043/41906 (executing program) 2022/09/30 02:13:18 fetching corpus: 141, signal 49661/53846 (executing program) 2022/09/30 02:13:18 fetching corpus: 191, signal 55737/60363 (executing program) 2022/09/30 02:13:18 fetching corpus: 241, signal 59527/64634 (executing program) 2022/09/30 02:13:19 fetching corpus: 291, signal 62610/68125 (executing program) 2022/09/30 02:13:19 fetching corpus: 341, signal 66582/72343 (executing program) 2022/09/30 02:13:19 fetching corpus: 391, signal 70663/76450 (executing program) 2022/09/30 02:13:19 fetching corpus: 441, signal 72421/78566 (executing program) 2022/09/30 02:13:19 fetching corpus: 491, signal 76007/81967 (executing program) 2022/09/30 02:13:19 fetching corpus: 541, signal 79485/85165 (executing program) 2022/09/30 02:13:19 fetching corpus: 591, signal 81584/87239 (executing program) 2022/09/30 02:13:20 fetching corpus: 641, signal 85308/90442 (executing program) 2022/09/30 02:13:20 fetching corpus: 691, signal 87688/92597 (executing program) 2022/09/30 02:13:20 fetching corpus: 741, signal 88998/93849 (executing program) 2022/09/30 02:13:20 fetching corpus: 791, signal 92061/96330 (executing program) 2022/09/30 02:13:20 fetching corpus: 841, signal 94427/98143 (executing program) 2022/09/30 02:13:20 fetching corpus: 891, signal 96238/99632 (executing program) 2022/09/30 02:13:20 fetching corpus: 941, signal 98146/100998 (executing program) 2022/09/30 02:13:21 fetching corpus: 991, signal 100631/102598 (executing program) 2022/09/30 02:13:21 fetching corpus: 1041, signal 102092/103827 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104621 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104676 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104710 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104766 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104833 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104884 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104930 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/104996 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105041 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105090 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105163 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105217 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105269 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105320 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105359 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105421 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105473 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105537 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105587 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105636 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105685 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105737 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105792 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105846 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105911 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/105953 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106010 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106076 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106136 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106182 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106190 (executing program) 2022/09/30 02:13:21 fetching corpus: 1051, signal 103355/106190 (executing program) 2022/09/30 02:13:24 starting 8 fuzzer processes 02:13:24 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_int(r0, 0x1, 0xf, 0x0, &(0x7f0000000040)) 02:13:24 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$SO_COOKIE(r0, 0x1, 0x4, 0x0, &(0x7f0000000040)) 02:13:24 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f00000000c0)={@multicast1, @loopback}, 0x8) 02:13:24 executing program 3: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r1 = creat(&(0x7f0000000040)='./file1\x00', 0x0) pwrite64(r1, &(0x7f0000000080)="a4", 0x1, 0x0) r2 = syz_io_uring_complete(0x0) sendto$unix(r0, &(0x7f0000000240)="071b5d455599d79aa25b803e8f43de00d682dbc87ffd99bd5b74aae8ab4e980c4da7ca97a5d3992b9b261752323c7dcb9f294d522512730ad82eb632e107e154b6c068e05eb6c0e8591cac92d7384af3b9d455ab666aaa8f4f70415d4726b9851d0d3816faec24d75a9ce8263bdd63054dba36", 0x73, 0x80, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, &(0x7f00000000c0)={0x0, 0x4, 0x4, 0x0, 0x0, [@empty, @mcast2={0xff, 0x2, '\x00', 0x0}]}, 0x28) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {0x1}}, './file1\x00'}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r4, &(0x7f0000000080)=ANY=[], 0x220) 02:13:24 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x8910, &(0x7f0000000540)={'syztnl1\x00', 0x0}) 02:13:24 executing program 5: mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000001280)=0xe8, 0x4b, 0x2) 02:13:24 executing program 6: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f00000003c0)="1b7a1666851945cd80a5a2ac0000000000000000b2122fbfdce63a77a865f0778bd425e749feed51f1439746599f0422a9d32dcef6b20d00ce737d913518a188cb9ad737a3f10ee2333baed5899c00ab0d1cce9ff265d634b3b2996ff3a5a91a9283b3b8cbfac984eccdb937f1d200bf96b5b75d5da9e818e348b4", 0x7b, 0x8}]) r2 = eventfd2(0x7, 0x0) sendfile(r1, r2, &(0x7f0000000340)=0x5, 0x400) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00') socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) close(r4) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) openat(0xffffffffffffffff, &(0x7f0000000200)='./file1\x00', 0x82040, 0xa) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) socket$packet(0x11, 0x3, 0x300) ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000300)={0x7, 0x5}) read$hiddev(r3, &(0x7f0000000040)=""/169, 0x200000e9) 02:13:24 executing program 7: r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)) [ 63.602875] audit: type=1400 audit(1664504004.591:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 64.889246] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.891241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.894789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.896547] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.898447] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.899700] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.901495] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.902919] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.904176] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.908615] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.910540] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.918240] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 64.919431] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 64.921418] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.924242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.934548] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 64.937779] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 64.939764] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 64.942703] Bluetooth: hci0: HCI_REQ-0x0c1a [ 64.944154] Bluetooth: hci1: HCI_REQ-0x0c1a [ 64.954068] Bluetooth: hci2: HCI_REQ-0x0c1a [ 64.985913] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.989660] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.995636] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 64.997129] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.999135] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 65.000666] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 65.002451] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 65.004616] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 65.005881] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 65.007417] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 65.008711] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 65.010458] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.012041] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 65.013607] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 65.014684] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 65.016444] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.018338] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 65.022634] Bluetooth: hci3: HCI_REQ-0x0c1a [ 65.036705] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 65.038870] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 65.040182] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 65.041790] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 65.043633] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 65.044867] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 65.046292] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.047740] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 65.049313] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 65.050473] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 65.051794] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.056677] Bluetooth: hci5: HCI_REQ-0x0c1a [ 65.057656] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 65.058895] Bluetooth: hci4: HCI_REQ-0x0c1a [ 65.060838] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 65.073130] Bluetooth: hci6: HCI_REQ-0x0c1a [ 65.086605] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.960360] Bluetooth: hci0: command 0x0409 tx timeout [ 67.023214] Bluetooth: hci2: command 0x0409 tx timeout [ 67.023232] Bluetooth: hci1: command 0x0409 tx timeout [ 67.087074] Bluetooth: hci6: command 0x0409 tx timeout [ 67.087608] Bluetooth: hci4: command 0x0409 tx timeout [ 67.088105] Bluetooth: hci5: command 0x0409 tx timeout [ 67.088575] Bluetooth: hci3: command 0x0409 tx timeout [ 67.151059] Bluetooth: hci7: command 0x0409 tx timeout [ 69.008578] Bluetooth: hci0: command 0x041b tx timeout [ 69.071120] Bluetooth: hci1: command 0x041b tx timeout [ 69.071535] Bluetooth: hci2: command 0x041b tx timeout [ 69.135228] Bluetooth: hci3: command 0x041b tx timeout [ 69.136085] Bluetooth: hci5: command 0x041b tx timeout [ 69.136892] Bluetooth: hci4: command 0x041b tx timeout [ 69.137742] Bluetooth: hci6: command 0x041b tx timeout [ 69.199063] Bluetooth: hci7: command 0x041b tx timeout [ 71.055093] Bluetooth: hci0: command 0x040f tx timeout [ 71.119045] Bluetooth: hci2: command 0x040f tx timeout [ 71.119558] Bluetooth: hci1: command 0x040f tx timeout [ 71.183094] Bluetooth: hci6: command 0x040f tx timeout [ 71.183587] Bluetooth: hci4: command 0x040f tx timeout [ 71.184044] Bluetooth: hci5: command 0x040f tx timeout [ 71.184459] Bluetooth: hci3: command 0x040f tx timeout [ 71.247034] Bluetooth: hci7: command 0x040f tx timeout [ 73.103057] Bluetooth: hci0: command 0x0419 tx timeout [ 73.167034] Bluetooth: hci1: command 0x0419 tx timeout [ 73.167438] Bluetooth: hci2: command 0x0419 tx timeout [ 73.231049] Bluetooth: hci3: command 0x0419 tx timeout [ 73.231438] Bluetooth: hci5: command 0x0419 tx timeout [ 73.231803] Bluetooth: hci4: command 0x0419 tx timeout [ 73.232206] Bluetooth: hci6: command 0x0419 tx timeout [ 73.295054] Bluetooth: hci7: command 0x0419 tx timeout [ 127.012497] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 127.018347] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 127.021657] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 127.024562] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 127.025893] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 127.028642] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 127.033213] Bluetooth: hci0: HCI_REQ-0x0c1a [ 127.202521] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 127.204913] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 127.206642] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 127.210353] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 127.215349] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 127.216439] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 127.221505] Bluetooth: hci2: HCI_REQ-0x0c1a [ 127.229324] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 127.240340] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 127.251322] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 127.255591] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 127.266404] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 127.271274] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 127.273685] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 127.276213] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 127.277399] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 127.278423] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 127.279267] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 127.283183] Bluetooth: hci4: HCI_REQ-0x0c1a [ 127.286498] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 127.288424] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 127.296456] Bluetooth: hci3: HCI_REQ-0x0c1a [ 127.301199] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 127.336039] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 127.336314] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 127.339434] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 127.344798] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 127.356645] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 127.360048] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 127.360097] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 127.362753] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 127.363812] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 127.375214] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 127.379864] Bluetooth: hci5: HCI_REQ-0x0c1a [ 127.386249] Bluetooth: hci7: HCI_REQ-0x0c1a [ 127.389716] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 127.455839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 127.464938] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 127.494735] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 127.539709] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 127.634258] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 127.644039] Bluetooth: hci6: HCI_REQ-0x0c1a [ 129.103092] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 129.104932] Bluetooth: hci0: command 0x0409 tx timeout [ 129.231156] Bluetooth: hci2: command 0x0409 tx timeout [ 129.295170] Bluetooth: hci4: command 0x0409 tx timeout [ 129.359128] Bluetooth: hci3: command 0x0409 tx timeout [ 129.423064] Bluetooth: hci5: command 0x0409 tx timeout [ 129.487097] Bluetooth: hci7: command 0x0409 tx timeout [ 129.744267] Bluetooth: hci6: command 0x0409 tx timeout [ 131.151112] Bluetooth: hci0: command 0x041b tx timeout [ 131.280048] Bluetooth: hci2: command 0x041b tx timeout [ 131.344043] Bluetooth: hci4: command 0x041b tx timeout [ 131.408049] Bluetooth: hci3: command 0x041b tx timeout [ 131.472105] Bluetooth: hci5: command 0x041b tx timeout [ 131.535042] Bluetooth: hci7: command 0x041b tx timeout [ 131.792168] Bluetooth: hci6: command 0x041b tx timeout [ 131.832573] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 131.840288] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 131.859253] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 131.889883] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 131.897438] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 131.901842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 131.914133] Bluetooth: hci1: HCI_REQ-0x0c1a [ 133.199044] Bluetooth: hci0: command 0x040f tx timeout [ 133.327026] Bluetooth: hci2: command 0x040f tx timeout [ 133.391104] Bluetooth: hci4: command 0x040f tx timeout [ 133.456036] Bluetooth: hci3: command 0x040f tx timeout [ 133.520028] Bluetooth: hci5: command 0x040f tx timeout [ 133.584049] Bluetooth: hci7: command 0x040f tx timeout [ 133.839014] Bluetooth: hci6: command 0x040f tx timeout [ 133.967071] Bluetooth: hci1: command 0x0409 tx timeout [ 135.248058] Bluetooth: hci0: command 0x0419 tx timeout [ 135.376039] Bluetooth: hci2: command 0x0419 tx timeout [ 135.439073] Bluetooth: hci4: command 0x0419 tx timeout [ 135.504071] Bluetooth: hci3: command 0x0419 tx timeout [ 135.568246] Bluetooth: hci5: command 0x0419 tx timeout [ 135.631044] Bluetooth: hci7: command 0x0419 tx timeout [ 135.888028] Bluetooth: hci6: command 0x0419 tx timeout [ 136.015043] Bluetooth: hci1: command 0x041b tx timeout [ 138.063106] Bluetooth: hci1: command 0x040f tx timeout [ 140.112116] Bluetooth: hci1: command 0x0419 tx timeout [ 187.857316] INFO: task rcu_gp:3 blocked for more than 143 seconds. [ 187.857918] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.858361] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.858933] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 187.859554] Call Trace: [ 187.859913] [ 187.860111] __schedule+0x893/0x2470 [ 187.860420] ? io_schedule_timeout+0x150/0x150 [ 187.861230] ? do_raw_spin_lock+0x121/0x260 [ 187.861563] ? rwlock_bug.part.0+0x90/0x90 [ 187.862336] schedule+0xda/0x1b0 [ 187.862605] rescuer_thread+0x851/0xdb0 [ 187.862924] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.863322] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.863710] ? lockdep_hardirqs_on+0x79/0x100 [ 187.864068] ? worker_thread+0x1260/0x1260 [ 187.864398] kthread+0x2ed/0x3a0 [ 187.864663] ? kthread_complete_and_exit+0x40/0x40 [ 187.865047] ret_from_fork+0x22/0x30 [ 187.865351] [ 187.865531] INFO: task rcu_par_gp:4 blocked for more than 143 seconds. [ 187.866031] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.866421] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.867010] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 187.867629] Call Trace: [ 187.867824] [ 187.868013] __schedule+0x893/0x2470 [ 187.868309] ? io_schedule_timeout+0x150/0x150 [ 187.868661] ? do_raw_spin_lock+0x121/0x260 [ 187.869014] ? rwlock_bug.part.0+0x90/0x90 [ 187.869345] schedule+0xda/0x1b0 [ 187.869607] rescuer_thread+0x851/0xdb0 [ 187.869922] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.870327] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.870712] ? lockdep_hardirqs_on+0x79/0x100 [ 187.871099] ? worker_thread+0x1260/0x1260 [ 187.871430] kthread+0x2ed/0x3a0 [ 187.871696] ? kthread_complete_and_exit+0x40/0x40 [ 187.872088] ret_from_fork+0x22/0x30 [ 187.872388] [ 187.872568] INFO: task slub_flushwq:5 blocked for more than 143 seconds. [ 187.873074] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.873469] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.874046] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 187.874665] Call Trace: [ 187.874865] [ 187.875068] __schedule+0x893/0x2470 [ 187.875362] ? io_schedule_timeout+0x150/0x150 [ 187.875708] ? do_raw_spin_lock+0x121/0x260 [ 187.876057] ? rwlock_bug.part.0+0x90/0x90 [ 187.876388] schedule+0xda/0x1b0 [ 187.876652] rescuer_thread+0x851/0xdb0 [ 187.876977] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.877356] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.877738] ? lockdep_hardirqs_on+0x79/0x100 [ 187.878105] ? worker_thread+0x1260/0x1260 [ 187.878436] kthread+0x2ed/0x3a0 [ 187.878704] ? kthread_complete_and_exit+0x40/0x40 [ 187.879109] ret_from_fork+0x22/0x30 [ 187.879416] [ 187.879596] INFO: task netns:6 blocked for more than 143 seconds. [ 187.880065] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.880464] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.881053] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 187.881673] Call Trace: [ 187.881872] [ 187.882071] __schedule+0x893/0x2470 [ 187.882366] ? io_schedule_timeout+0x150/0x150 [ 187.882712] ? do_raw_spin_lock+0x121/0x260 [ 187.883066] ? rwlock_bug.part.0+0x90/0x90 [ 187.883398] schedule+0xda/0x1b0 [ 187.883665] rescuer_thread+0x851/0xdb0 [ 187.883993] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.884378] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.884763] ? lockdep_hardirqs_on+0x79/0x100 [ 187.885123] ? worker_thread+0x1260/0x1260 [ 187.885454] kthread+0x2ed/0x3a0 [ 187.885716] ? kthread_complete_and_exit+0x40/0x40 [ 187.886103] ret_from_fork+0x22/0x30 [ 187.886403] [ 187.886580] INFO: task kworker/0:0H:8 blocked for more than 143 seconds. [ 187.887101] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.887497] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.888081] task:kworker/0:0H state:I stack:29760 pid:8 ppid:2 flags:0x00004000 [ 187.888694] Workqueue: 0x0 (events_highpri) [ 187.889048] Call Trace: [ 187.889247] [ 187.889425] __schedule+0x893/0x2470 [ 187.889718] ? io_schedule_timeout+0x150/0x150 [ 187.890094] schedule+0xda/0x1b0 [ 187.890360] worker_thread+0x15f/0x1260 [ 187.890675] ? process_one_work+0x16a0/0x16a0 [ 187.891041] kthread+0x2ed/0x3a0 [ 187.891304] ? kthread_complete_and_exit+0x40/0x40 [ 187.891679] ret_from_fork+0x22/0x30 [ 187.891998] [ 187.892180] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 187.892669] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.893078] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.893643] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 187.894279] Call Trace: [ 187.894477] [ 187.894655] __schedule+0x893/0x2470 [ 187.894983] ? io_schedule_timeout+0x150/0x150 [ 187.895340] ? do_raw_spin_lock+0x121/0x260 [ 187.895673] ? rwlock_bug.part.0+0x90/0x90 [ 187.896042] schedule+0xda/0x1b0 [ 187.896308] rescuer_thread+0x851/0xdb0 [ 187.896611] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.897010] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.897391] ? lockdep_hardirqs_on+0x79/0x100 [ 187.897739] ? worker_thread+0x1260/0x1260 [ 187.898086] kthread+0x2ed/0x3a0 [ 187.898353] ? kthread_complete_and_exit+0x40/0x40 [ 187.898735] ret_from_fork+0x22/0x30 [ 187.899067] [ 187.899253] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 187.899778] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.900200] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.900768] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 187.901418] Call Trace: [ 187.901621] [ 187.901804] __schedule+0x893/0x2470 [ 187.902125] ? io_schedule_timeout+0x150/0x150 [ 187.902482] ? mark_held_locks+0x9e/0xe0 [ 187.902800] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.903217] schedule+0xda/0x1b0 [ 187.903486] rcu_tasks_one_gp+0x3db/0xc10 [ 187.903822] rcu_tasks_kthread+0x80/0xa0 [ 187.904152] ? rcu_tasks_postscan+0x10/0x10 [ 187.904481] kthread+0x2ed/0x3a0 [ 187.904747] ? kthread_complete_and_exit+0x40/0x40 [ 187.905141] ret_from_fork+0x22/0x30 [ 187.905443] [ 187.905627] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 187.906150] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.906549] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.907144] task:kworker/1:0H state:I stack:29376 pid:21 ppid:2 flags:0x00004000 [ 187.907769] Workqueue: 0x0 (kblockd) [ 187.908087] Call Trace: [ 187.908286] [ 187.908464] __schedule+0x893/0x2470 [ 187.908766] ? io_schedule_timeout+0x150/0x150 [ 187.909146] schedule+0xda/0x1b0 [ 187.909415] worker_thread+0x15f/0x1260 [ 187.909730] ? process_one_work+0x16a0/0x16a0 [ 187.910096] kthread+0x2ed/0x3a0 [ 187.910360] ? kthread_complete_and_exit+0x40/0x40 [ 187.910732] ret_from_fork+0x22/0x30 [ 187.911074] [ 187.911258] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 187.911754] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.912190] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.912708] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 187.913282] Call Trace: [ 187.913464] [ 187.913628] __schedule+0x893/0x2470 [ 187.913896] ? io_schedule_timeout+0x150/0x150 [ 187.914232] ? do_raw_spin_lock+0x121/0x260 [ 187.914542] ? rwlock_bug.part.0+0x90/0x90 [ 187.914846] schedule+0xda/0x1b0 [ 187.915120] rescuer_thread+0x851/0xdb0 [ 187.915405] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.915757] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.916119] ? lockdep_hardirqs_on+0x79/0x100 [ 187.916441] ? worker_thread+0x1260/0x1260 [ 187.916740] kthread+0x2ed/0x3a0 [ 187.916998] ? kthread_complete_and_exit+0x40/0x40 [ 187.917342] ret_from_fork+0x22/0x30 [ 187.917621] [ 187.917793] INFO: task writeback:28 blocked for more than 143 seconds. [ 187.918249] Not tainted 6.0.0-rc7-next-20220929 #1 [ 187.918615] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.919156] task:writeback state:I stack:30176 pid:28 ppid:2 flags:0x00004000 [ 187.919722] Call Trace: [ 187.919901] [ 187.920090] __schedule+0x893/0x2470 [ 187.920368] ? io_schedule_timeout+0x150/0x150 [ 187.920682] ? do_raw_spin_lock+0x121/0x260 [ 187.921009] ? rwlock_bug.part.0+0x90/0x90 [ 187.921310] schedule+0xda/0x1b0 [ 187.921555] rescuer_thread+0x851/0xdb0 [ 187.921837] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.922203] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.922559] ? lockdep_hardirqs_on+0x79/0x100 [ 187.922875] ? worker_thread+0x1260/0x1260 [ 187.923197] kthread+0x2ed/0x3a0 [ 187.923439] ? kthread_complete_and_exit+0x40/0x40 [ 187.923780] ret_from_fork+0x22/0x30 [ 187.924075] [ 187.924298] [ 187.924298] Showing all locks held in the system: [ 187.924723] 1 lock held by rcu_tasks_kthre/11: [ 187.925055] #0: ffffffff85406890 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 187.925716] 1 lock held by khungtaskd/25: [ 187.926013] #0: ffffffff85407360 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 187.926637] 1 lock held by kmemleak/55: [ 187.926917] 2 locks held by systemd-journal/112: [ 187.927258] 1 lock held by in:imklog/188: [ 187.927536] #0: ffff88800d873c68 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe7/0x100 [ 187.928137] 2 locks held by kworker/u4:7/338: [ 187.928439] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 187.929156] #1: ffff88801b5f7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 187.929883] [ 187.930039] ============================================= [ 187.930039] [ 189.267708] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 189.268856] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 189.270659] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 189.273659] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 189.275683] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 189.276425] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 189.279719] Bluetooth: hci4: HCI_REQ-0x0c1a [ 189.330120] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 189.331848] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 189.332660] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 189.334879] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 189.335849] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 189.337146] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 189.340364] Bluetooth: hci5: HCI_REQ-0x0c1a 02:15:30 executing program 5: mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000001280)=0xe8, 0x4b, 0x2) 02:15:30 executing program 5: mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000001280)=0xe8, 0x4b, 0x2) 02:15:30 executing program 5: mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000001280)=0xe8, 0x4b, 0x2) 02:15:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) [ 189.643716] audit: type=1400 audit(1664504130.634:7): avc: denied { open } for pid=7303 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 189.645253] audit: type=1400 audit(1664504130.636:8): avc: denied { kernel } for pid=7303 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 189.653723] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 189.654361] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 189.656542] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 189.656577] ------------[ cut here ]------------ [ 189.656609] [ 189.656613] ====================================================== [ 189.656619] WARNING: possible circular locking dependency detected [ 189.656623] 6.0.0-rc7-next-20220929 #1 Not tainted [ 189.656629] ------------------------------------------------------ [ 189.656633] syz-executor.5/7304 is trying to acquire lock: [ 189.656639] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 189.656680] [ 189.656680] but task is already holding lock: [ 189.656683] ffff88803c5a1820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 189.656709] [ 189.656709] which lock already depends on the new lock. [ 189.656709] [ 189.656713] [ 189.656713] the existing dependency chain (in reverse order) is: [ 189.656716] [ 189.656716] -> #3 (&ctx->lock){....}-{2:2}: [ 189.656730] _raw_spin_lock+0x2a/0x40 [ 189.656741] __perf_event_task_sched_out+0x53b/0x18d0 [ 189.656753] __schedule+0xedd/0x2470 [ 189.656767] schedule+0xda/0x1b0 [ 189.656780] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.656793] syscall_exit_to_user_mode+0x19/0x40 [ 189.656806] do_syscall_64+0x48/0x90 [ 189.656823] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.656837] [ 189.656837] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 189.656850] _raw_spin_lock_nested+0x30/0x40 [ 189.656861] raw_spin_rq_lock_nested+0x1e/0x30 [ 189.656874] task_fork_fair+0x63/0x4d0 [ 189.656890] sched_cgroup_fork+0x3d0/0x540 [ 189.656905] copy_process+0x4183/0x6e20 [ 189.656916] kernel_clone+0xe7/0x890 [ 189.656925] user_mode_thread+0xad/0xf0 [ 189.656935] rest_init+0x24/0x250 [ 189.656947] arch_call_rest_init+0xf/0x14 [ 189.656964] start_kernel+0x4c6/0x4eb [ 189.656978] secondary_startup_64_no_verify+0xe0/0xeb [ 189.656992] [ 189.656992] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 189.657006] _raw_spin_lock_irqsave+0x39/0x60 [ 189.657017] try_to_wake_up+0xab/0x1930 [ 189.657032] up+0x75/0xb0 [ 189.657049] __up_console_sem+0x6e/0x80 [ 189.657065] console_unlock+0x46a/0x590 [ 189.657080] do_con_write+0xc05/0x1d50 [ 189.657091] con_write+0x21/0x40 [ 189.657104] n_tty_write+0x4d4/0xfe0 [ 189.657117] file_tty_write.constprop.0+0x455/0x8a0 [ 189.657128] vfs_write+0x9c3/0xd90 [ 189.657145] ksys_write+0x127/0x250 [ 189.657160] do_syscall_64+0x3b/0x90 [ 189.657176] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.657189] [ 189.657189] -> #0 ((console_sem).lock){....}-{2:2}: [ 189.657203] __lock_acquire+0x2a02/0x5e70 [ 189.657220] lock_acquire+0x1a2/0x530 [ 189.657236] _raw_spin_lock_irqsave+0x39/0x60 [ 189.657246] down_trylock+0xe/0x70 [ 189.657261] __down_trylock_console_sem+0x3b/0xd0 [ 189.657277] vprintk_emit+0x16b/0x560 [ 189.657293] vprintk+0x84/0xa0 [ 189.657308] _printk+0xba/0xf1 [ 189.657320] report_bug.cold+0x72/0xab [ 189.657336] handle_bug+0x3c/0x70 [ 189.657352] exc_invalid_op+0x14/0x50 [ 189.657368] asm_exc_invalid_op+0x16/0x20 [ 189.657380] group_sched_out.part.0+0x2c7/0x460 [ 189.657398] ctx_sched_out+0x8f1/0xc10 [ 189.657415] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.657426] __schedule+0xedd/0x2470 [ 189.657439] schedule+0xda/0x1b0 [ 189.657453] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.657464] syscall_exit_to_user_mode+0x19/0x40 [ 189.657477] do_syscall_64+0x48/0x90 [ 189.657493] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.657506] [ 189.657506] other info that might help us debug this: [ 189.657506] [ 189.657509] Chain exists of: [ 189.657509] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 189.657509] [ 189.657523] Possible unsafe locking scenario: [ 189.657523] [ 189.657526] CPU0 CPU1 [ 189.657528] ---- ---- [ 189.657531] lock(&ctx->lock); [ 189.657536] lock(&rq->__lock); [ 189.657543] lock(&ctx->lock); [ 189.657549] lock((console_sem).lock); [ 189.657555] [ 189.657555] *** DEADLOCK *** [ 189.657555] [ 189.657557] 2 locks held by syz-executor.5/7304: [ 189.657563] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 189.657593] #1: ffff88803c5a1820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 189.657620] [ 189.657620] stack backtrace: [ 189.657623] CPU: 0 PID: 7304 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.657635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 189.657643] Call Trace: [ 189.657647] [ 189.657650] dump_stack_lvl+0x8b/0xb3 [ 189.657668] check_noncircular+0x263/0x2e0 [ 189.657685] ? format_decode+0x26c/0xb50 [ 189.657701] ? print_circular_bug+0x450/0x450 [ 189.657719] ? queued_spin_lock_slowpath+0xcd/0xc80 [ 189.657732] ? format_decode+0x26c/0xb50 [ 189.657748] ? memcpy+0x39/0x60 [ 189.657766] ? vsnprintf+0x4ba/0x1600 [ 189.657784] __lock_acquire+0x2a02/0x5e70 [ 189.657805] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 189.657827] lock_acquire+0x1a2/0x530 [ 189.657844] ? down_trylock+0xe/0x70 [ 189.657861] ? lock_release+0x750/0x750 [ 189.657881] ? vprintk+0x84/0xa0 [ 189.657899] _raw_spin_lock_irqsave+0x39/0x60 [ 189.657910] ? down_trylock+0xe/0x70 [ 189.657926] down_trylock+0xe/0x70 [ 189.657942] ? vprintk+0x84/0xa0 [ 189.657958] __down_trylock_console_sem+0x3b/0xd0 [ 189.657976] vprintk_emit+0x16b/0x560 [ 189.657994] vprintk+0x84/0xa0 [ 189.658011] _printk+0xba/0xf1 [ 189.658023] ? record_print_text.cold+0x16/0x16 [ 189.658039] ? report_bug.cold+0x66/0xab [ 189.658057] ? group_sched_out.part.0+0x2c7/0x460 [ 189.658076] report_bug.cold+0x72/0xab [ 189.658094] handle_bug+0x3c/0x70 [ 189.658111] exc_invalid_op+0x14/0x50 [ 189.658129] asm_exc_invalid_op+0x16/0x20 [ 189.658142] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 189.658162] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 189.658173] RSP: 0018:ffff88802a6afc48 EFLAGS: 00010006 [ 189.658182] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 189.658190] RDX: ffff8880174d1ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 189.658198] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 189.658205] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803c5a1800 [ 189.658213] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 189.658224] ? group_sched_out.part.0+0x2c7/0x460 [ 189.658243] ? group_sched_out.part.0+0x2c7/0x460 [ 189.658263] ctx_sched_out+0x8f1/0xc10 [ 189.658283] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.658297] ? lock_is_held_type+0xd7/0x130 [ 189.658310] ? __perf_cgroup_move+0x160/0x160 [ 189.658321] ? set_next_entity+0x304/0x550 [ 189.658339] ? update_curr+0x267/0x740 [ 189.658357] ? lock_is_held_type+0xd7/0x130 [ 189.658371] __schedule+0xedd/0x2470 [ 189.658388] ? io_schedule_timeout+0x150/0x150 [ 189.658405] ? rcu_read_lock_sched_held+0x3e/0x80 [ 189.658425] schedule+0xda/0x1b0 [ 189.658440] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.658452] syscall_exit_to_user_mode+0x19/0x40 [ 189.658466] do_syscall_64+0x48/0x90 [ 189.658484] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.658498] RIP: 0033:0x7fb182a48b19 [ 189.658506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 189.658517] RSP: 002b:00007fb17ffbe218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 189.658527] RAX: 0000000000000001 RBX: 00007fb182b5bf68 RCX: 00007fb182a48b19 [ 189.658535] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb182b5bf6c [ 189.658542] RBP: 00007fb182b5bf60 R08: 000000000000000e R09: 0000000000000000 [ 189.658549] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb182b5bf6c [ 189.658556] R13: 00007ffffc52eabf R14: 00007fb17ffbe300 R15: 0000000000022000 [ 189.658569] [ 189.658936] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 189.659299] WARNING: CPU: 0 PID: 7304 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 189.711846] Modules linked in: [ 189.712077] CPU: 0 PID: 7304 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.712639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 189.713416] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 189.713805] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 189.715072] RSP: 0018:ffff88802a6afc48 EFLAGS: 00010006 [ 189.715445] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 189.715942] RDX: ffff8880174d1ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 189.716435] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 189.716934] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803c5a1800 [ 189.717426] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 189.717924] FS: 00007fb17ffbe700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 189.718490] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 189.718896] CR2: 00007f4f286c3000 CR3: 000000001d6fe000 CR4: 0000000000350ef0 [ 189.719397] Call Trace: [ 189.719583] [ 189.719751] ctx_sched_out+0x8f1/0xc10 [ 189.720042] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.720410] ? lock_is_held_type+0xd7/0x130 [ 189.720721] ? __perf_cgroup_move+0x160/0x160 [ 189.721039] ? set_next_entity+0x304/0x550 [ 189.721345] ? update_curr+0x267/0x740 [ 189.721632] ? lock_is_held_type+0xd7/0x130 [ 189.721942] __schedule+0xedd/0x2470 [ 189.722215] ? io_schedule_timeout+0x150/0x150 [ 189.722546] ? rcu_read_lock_sched_held+0x3e/0x80 [ 189.722897] schedule+0xda/0x1b0 [ 189.723171] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.723514] syscall_exit_to_user_mode+0x19/0x40 [ 189.723858] do_syscall_64+0x48/0x90 [ 189.724134] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.724500] RIP: 0033:0x7fb182a48b19 [ 189.724762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 189.726018] RSP: 002b:00007fb17ffbe218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 189.726556] RAX: 0000000000000001 RBX: 00007fb182b5bf68 RCX: 00007fb182a48b19 [ 189.727064] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb182b5bf6c [ 189.727560] RBP: 00007fb182b5bf60 R08: 000000000000000e R09: 0000000000000000 [ 189.728066] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb182b5bf6c [ 189.728573] R13: 00007ffffc52eabf R14: 00007fb17ffbe300 R15: 0000000000022000 [ 189.729084] [ 189.729253] irq event stamp: 972 [ 189.729497] hardirqs last enabled at (971): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 189.730165] hardirqs last disabled at (972): [] __schedule+0x1225/0x2470 [ 189.730753] softirqs last enabled at (958): [] __irq_exit_rcu+0x11b/0x180 [ 189.731368] softirqs last disabled at (875): [] __irq_exit_rcu+0x11b/0x180 [ 189.731967] ---[ end trace 0000000000000000 ]--- [ 189.738536] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 189.739231] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 189.740935] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 189.741878] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 189.745137] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 189.745714] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 189.745761] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 189.746858] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 189.748450] Bluetooth: hci6: HCI_REQ-0x0c1a [ 189.758771] Bluetooth: hci7: HCI_REQ-0x0c1a 02:15:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) 02:15:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) 02:15:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) 02:15:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) [ 191.119124] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 191.183108] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 191.183636] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 191.311000] Bluetooth: hci4: command 0x0409 tx timeout [ 191.375043] Bluetooth: hci5: command 0x0409 tx timeout [ 191.759000] Bluetooth: hci6: command 0x0409 tx timeout [ 191.823005] Bluetooth: hci7: command 0x0409 tx timeout [ 193.359035] Bluetooth: hci4: command 0x041b tx timeout [ 193.425159] Bluetooth: hci5: command 0x041b tx timeout [ 193.430184] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 193.430936] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 193.432850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 193.434462] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 193.435525] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 193.436242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 193.438275] Bluetooth: hci0: HCI_REQ-0x0c1a [ 193.567632] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 193.569282] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 193.576323] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 193.585749] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 193.586744] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 193.587571] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 193.589333] Bluetooth: hci2: HCI_REQ-0x0c1a [ 193.806994] Bluetooth: hci6: command 0x041b tx timeout [ 193.871038] Bluetooth: hci7: command 0x041b tx timeout [ 195.406990] Bluetooth: hci4: command 0x040f tx timeout [ 195.471026] Bluetooth: hci0: command 0x0409 tx timeout [ 195.471474] Bluetooth: hci5: command 0x040f tx timeout [ 195.600011] Bluetooth: hci2: command 0x0409 tx timeout [ 195.663032] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 195.856029] Bluetooth: hci6: command 0x040f tx timeout [ 195.918985] Bluetooth: hci7: command 0x040f tx timeout [ 197.456024] Bluetooth: hci4: command 0x0419 tx timeout [ 197.520015] Bluetooth: hci5: command 0x0419 tx timeout [ 197.520544] Bluetooth: hci0: command 0x041b tx timeout [ 197.648038] Bluetooth: hci2: command 0x041b tx timeout VM DIAGNOSIS: 02:15:29 Registers: info registers vcpu 0 RAX=0000000080000000 RBX=0000000000000046 RCX=0000000000000001 RDX=0000000000000000 RSI=0000000000000000 RDI=0000000000000000 RBP=ffffffff849ec8c0 RSP=ffff888015b77548 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000000 R13=ffffffff8486ef60 R14=ffff888008812054 R15=0000000000000001 RIP=ffffffff84252011 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f4f29174900 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4f28681cf0 CR3=000000000e602000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM01=0000000000000000 0000000000000000 3030623438613630 3638616663356134 YMM02=0000000000000000 0000000000000000 3830306234386136 3036386166633561 YMM03=0000000000000000 0000000000000000 2f6c616e72756f6a 2f676f6c2f6e7572 YMM04=0000000000000000 0000000000000000 8a57ad9a0edd7904 000000000013f628 YMM05=0000000000000000 0000000000000000 d3fdd5f48436fbd7 00000000000aead0 YMM06=0000000000000000 0000000000000000 967a8b6a507e5621 00000000000ae988 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 2000000000000000 2000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88800902f898 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f9033d2c6f4 CR3=000000000f2f6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f9033d3b470 00007f9033d3af20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000