./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3865898142 <...> Warning: Permanently added '10.128.1.73' (ED25519) to the list of known hosts. execve("./syz-executor3865898142", ["./syz-executor3865898142"], 0x7ffe7e98abf0 /* 10 vars */) = 0 brk(NULL) = 0x5555902f1000 brk(0x5555902f1d40) = 0x5555902f1d40 arch_prctl(ARCH_SET_FS, 0x5555902f13c0) = 0 set_tid_address(0x5555902f1690) = 5074 set_robust_list(0x5555902f16a0, 24) = 0 rseq(0x5555902f1ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3865898142", 4096) = 28 getrandom("\xea\x1c\xee\xa0\x4f\x0c\xd4\xb5", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555902f1d40 brk(0x555590312d40) = 0x555590312d40 brk(0x555590313000) = 0x555590313000 mprotect(0x7f257989e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555902f1690) = 5075 ./strace-static-x86_64: Process 5075 attached [pid 5075] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5075] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5075] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 5075] openat(AT_FDCWD, "/dev/vhci", O_RDWR) = 4 [pid 5075] dup2(4, 202) = 202 [pid 5075] close(4) = 0 [pid 5075] write(202, "\xff\x00", 2) = 2 [pid 5075] read(202, "\xff\x00\x00\x00", 4) = 4 [pid 5075] rt_sigaction(SIGRT_1, {sa_handler=0x7f257983fd40, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f25798313c0}, NULL, 8) = 0 [pid 5075] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5075] mmap(NULL, 8392704, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f2578e00000 [pid 5075] mprotect(0x7f2578e01000, 8388608, PROT_READ|PROT_WRITE) = 0 [pid 5075] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5075] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f2579600990, parent_tid=0x7f2579600990, exit_signal=0, stack=0x7f2578e00000, stack_size=0x800300, tls=0x7f25796006c0}./strace-static-x86_64: Process 5077 attached => {parent_tid=[2]}, 88) = 2 [pid 5075] rt_sigprocmask(SIG_SETMASK, [], [pid 5077] rseq(0x7f2579600fe0, 0x20, 0, 0x53053053) = 0 [pid 5075] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5077] set_robust_list(0x7f25796009a0, 24 [pid 5075] ioctl(3, HCIDEVUP [pid 5077] <... set_robust_list resumed>) = 0 [pid 5077] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5077] read(202, "\x01\x03\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x03\x10\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x01\x10\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x01\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x09\x10\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0a", iov_len=2}, {iov_base="\x01\x09\x10", iov_len=3}, {iov_base="\x00\xaa\xaa\xaa\xaa\xaa\xaa", iov_len=7}], 4) = 13 [pid 5077] read(202, "\x01\x05\x10\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0b", iov_len=2}, {iov_base="\x01\x05\x10", iov_len=3}, {iov_base="\x00\xfd\x03\x60\x04\x00\x06\x00", iov_len=8}], 4) = 14 [pid 5077] read(202, "\x01\x23\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x23\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x14\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x14\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x25\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x25\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [ 108.081142][ T5076] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 108.091304][ T5076] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 108.099552][ T5076] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 108.112062][ T5076] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [pid 5077] read(202, "\x01\x38\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x38\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x39\x0c\x00", 1024) = 4 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x39\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, "\x01\x16\x0c\x02\x00\x7d", 1024) = 6 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x16\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255 [pid 5077] read(202, [pid 5075] <... ioctl resumed>, 0) = -1 EALREADY (Operation already in progress) [pid 5075] ioctl(3, HCISETSCAN [pid 5077] <... read resumed>"\x01\x1a\x0c\x01\x02", 1024) = 5 [pid 5077] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x04", iov_len=2}, {iov_base="\x01\x1a\x0c", iov_len=3}, {iov_base="\x00", iov_len=1}], 4) = 7 [pid 5077] rt_sigprocmask(SIG_BLOCK, ~[RT_1], [pid 5075] <... ioctl resumed>, 0x7ffeb728cc7c) = 0 [pid 5077] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5075] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x04\x0a", iov_len=2}, {iov_base="\xaa\xaa\xaa\xaa\xaa\x10\x00\x00\x00\x01", iov_len=10}], 3 [pid 5077] madvise(0x7f2578e00000, 8372224, MADV_DONTNEED [pid 5075] <... writev resumed>) = 13 [pid 5077] <... madvise resumed>) = 0 [pid 5075] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x03\x0b", iov_len=2}, {iov_base="\x00\xc8\x00\xaa\xaa\xaa\xaa\xaa\x10\x01\x00", iov_len=11}], 3 [pid 5077] exit(0) = ? [pid 5077] +++ exited with 0 +++ [pid 5075] <... writev resumed>) = 14 [ 108.144921][ T5076] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 108.153157][ T5076] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [pid 5075] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\v\v", iov_len=2}, {iov_base="\x00\xc8\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=11}], 3) = 14 [pid 5075] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x3e\x13", iov_len=2}, {iov_base="\x01\x00\xc9\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\x11\x00\x00\x00\x00\x00\x00\x00", iov_len=19}], 3) = 22 [pid 5075] close(3) = 0 [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5075] setsid() = 1 [pid 5075] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5075] dup2(3, 201) = 201 [pid 5075] close(3) = 0 [pid 5075] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5075] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5075] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5075] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5075] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5075] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5075] unshare(CLONE_NEWNS) = 0 [pid 5075] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5075] unshare(CLONE_NEWIPC) = 0 [pid 5075] unshare(CLONE_NEWCGROUP) = 0 [pid 5075] unshare(CLONE_NEWUTS) = 0 [pid 5075] unshare(CLONE_SYSVSEM) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "16777216", 8) = 8 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "536870912", 9) = 9 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1024", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "8192", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1024", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1024", 4) = 4 [pid 5075] close(3) = 0 [pid 5075] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5075] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5075] close(3) = 0 [pid 5075] getpid() = 1 [pid 5075] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5075] kill(-3, SIGKILL [pid 5079] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5079] +++ killed by SIGKILL +++ [pid 5075] kill(3, SIGKILL) = 0 [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached , child_tidptr=0x5555902f1690) = 4 [pid 5081] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5081] write(3, "1000", 4) = 4 [pid 5081] close(3) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5081] setns(201, 0) = 0 [pid 5081] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5081] setns(3, 0) = 0 [pid 5081] close(3) = 0 [ 114.422596][ T5076] Bluetooth: hci0: command 0x041b tx timeout [ 116.493047][ T5076] Bluetooth: hci0: command 0x041b tx timeout [pid 5081] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-4, SIGKILL) = 0 [pid 5075] kill(4, SIGKILL [pid 5081] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5081] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=4, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5084 attached , child_tidptr=0x5555902f1690) = 5 [pid 5084] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5084] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5084] setpgid(0, 0) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5084] write(3, "1000", 4) = 4 [pid 5084] close(3) = 0 [pid 5084] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5084] setns(201, 0) = 0 [pid 5084] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5084] setns(3, 0) = 0 [pid 5084] close(3) = 0 [ 118.572644][ T5076] Bluetooth: hci0: command 0x041b tx timeout [pid 5084] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-5, SIGKILL) = 0 [pid 5075] kill(5, SIGKILL) = 0 [pid 5084] <... connect resumed>) = ? [pid 5084] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5086 attached , child_tidptr=0x5555902f1690) = 6 [pid 5086] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5086] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5086] setpgid(0, 0) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5086] write(3, "1000", 4) = 4 [pid 5086] close(3) = 0 [pid 5086] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5086] setns(201, 0) = 0 [pid 5086] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5086] setns(3, 0) = 0 [pid 5086] close(3) = 0 [pid 5086] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-6, SIGKILL [pid 5086] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5075] kill(6, SIGKILL) = 0 [pid 5086] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=6, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached , child_tidptr=0x5555902f1690) = 7 [pid 5089] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5089] setpgid(0, 0) = 0 [pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5089] write(3, "1000", 4) = 4 [pid 5089] close(3) = 0 [pid 5089] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5089] setns(201, 0) = 0 [pid 5089] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5089] setns(3, 0) = 0 [pid 5089] close(3) = 0 [pid 5089] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-7, SIGKILL) = 0 [pid 5089] <... connect resumed>) = ? [pid 5075] kill(7, SIGKILL [pid 5089] +++ killed by SIGKILL +++ [pid 5075] <... kill resumed>) = 0 [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=7, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5091 attached , child_tidptr=0x5555902f1690) = 8 [pid 5091] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5091] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5091] setpgid(0, 0) = 0 [pid 5091] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5091] write(3, "1000", 4) = 4 [pid 5091] close(3) = 0 [pid 5091] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5091] setns(201, 0) = 0 [pid 5091] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5091] setns(3, 0) = 0 [pid 5091] close(3) = 0 [pid 5091] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-8, SIGKILL) = 0 [pid 5075] kill(8, SIGKILL [pid 5091] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5091] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=8, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5099 attached , child_tidptr=0x5555902f1690) = 9 [pid 5099] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5099] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5099] setpgid(0, 0) = 0 [pid 5099] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5099] write(3, "1000", 4) = 4 [pid 5099] close(3) = 0 [pid 5099] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5099] setns(201, 0) = 0 [pid 5099] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5099] setns(3, 0) = 0 [pid 5099] close(3) = 0 [pid 5099] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-9, SIGKILL) = 0 [pid 5075] kill(9, SIGKILL [pid 5099] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5099] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=9, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5100 attached , child_tidptr=0x5555902f1690) = 10 [pid 5100] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5100] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5100] setpgid(0, 0) = 0 [pid 5100] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5100] write(3, "1000", 4) = 4 [pid 5100] close(3) = 0 [pid 5100] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5100] setns(201, 0) = 0 [pid 5100] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5100] setns(3, 0) = 0 [pid 5100] close(3) = 0 [pid 5100] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10) = -1 ECONNREFUSED (Connection refused) [pid 5100] getsockopt(-1, SOL_IPV6, IPV6_FLOWLABEL_MGR, 0x20000100, NULL) = -1 EBADF (Bad file descriptor) [pid 5100] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5100] setns(201, 0) = 0 [pid 5100] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_RFCOMM) = 5 [pid 5100] setns(3, 0) = 0 [pid 5100] close(3) = 0 [ 148.616542][ T5100] [ 148.618950][ T5100] ====================================================== [ 148.627073][ T5100] WARNING: possible circular locking dependency detected [ 148.634368][ T5100] 6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted [ 148.641124][ T5100] ------------------------------------------------------ [ 148.648168][ T5100] syz-executor386/5100 is trying to acquire lock: [ 148.654769][ T5100] ffffffff8f58c328 (rfcomm_mutex){+.+.}-{3:3}, at: rfcomm_dlc_exists+0x5f/0x1a0 [ 148.663899][ T5100] [ 148.663899][ T5100] but task is already holding lock: [ 148.671275][ T5100] ffffffff8f5912a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x8e4/0x1c80 [ 148.681123][ T5100] [ 148.681123][ T5100] which lock already depends on the new lock. [ 148.681123][ T5100] [ 148.691550][ T5100] [ 148.691550][ T5100] the existing dependency chain (in reverse order) is: [ 148.700595][ T5100] [ 148.700595][ T5100] -> #3 (rfcomm_ioctl_mutex){+.+.}-{3:3}: [ 148.708560][ T5100] __mutex_lock+0x175/0x9c0 [ 148.713673][ T5100] rfcomm_dev_ioctl+0x8e4/0x1c80 [ 148.719170][ T5100] rfcomm_sock_ioctl+0xb4/0xe0 [ 148.724539][ T5100] sock_do_ioctl+0x119/0x280 [ 148.729697][ T5100] sock_ioctl+0x22e/0x6c0 [ 148.734595][ T5100] __x64_sys_ioctl+0x196/0x220 [ 148.739935][ T5100] do_syscall_64+0xd5/0x260 [ 148.745714][ T5100] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 148.752448][ T5100] [ 148.752448][ T5100] -> #2 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}: [ 148.762693][ T5100] lock_sock_nested+0x3a/0xf0 [ 148.768030][ T5100] rfcomm_sk_state_change+0x6d/0x3b0 [ 148.773902][ T5100] __rfcomm_dlc_close+0x28f/0x720 [ 148.779693][ T5100] rfcomm_dlc_close+0x1eb/0x240 [ 148.785120][ T5100] __rfcomm_sock_close+0xa7/0x230 [ 148.791164][ T5100] rfcomm_sock_shutdown+0xd5/0x230 [ 148.796961][ T5100] rfcomm_sock_release+0x5d/0x140 [ 148.802623][ T5100] __sock_release+0xb3/0x270 [ 148.807925][ T5100] sock_close+0x1c/0x30 [ 148.813028][ T5100] __fput+0x273/0xb80 [ 148.817572][ T5100] task_work_run+0x151/0x250 [ 148.822729][ T5100] do_exit+0xa7d/0x2be0 [ 148.827559][ T5100] do_group_exit+0xd3/0x2a0 [ 148.832674][ T5100] get_signal+0x2390/0x2760 [ 148.837777][ T5100] arch_do_signal_or_restart+0x90/0x7e0 [ 148.846236][ T5100] syscall_exit_to_user_mode+0x14a/0x2a0 [ 148.853863][ T5100] do_syscall_64+0xe2/0x260 [ 148.859143][ T5100] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 148.865738][ T5100] [ 148.865738][ T5100] -> #1 (&d->lock){+.+.}-{3:3}: [ 148.872838][ T5100] __mutex_lock+0x175/0x9c0 [ 148.880182][ T5100] __rfcomm_dlc_close+0x235/0x720 [ 148.886060][ T5100] rfcomm_dlc_close+0x1eb/0x240 [ 148.891507][ T5100] __rfcomm_sock_close+0xa7/0x230 [ 148.897215][ T5100] rfcomm_sock_shutdown+0xd5/0x230 [ 148.902921][ T5100] rfcomm_sock_release+0x5d/0x140 [ 148.908520][ T5100] __sock_release+0xb3/0x270 [ 148.913753][ T5100] sock_close+0x1c/0x30 [ 148.918462][ T5100] __fput+0x273/0xb80 [ 148.922997][ T5100] task_work_run+0x151/0x250 [ 148.928228][ T5100] do_exit+0xa7d/0x2be0 [ 148.932984][ T5100] do_group_exit+0xd3/0x2a0 [ 148.938070][ T5100] get_signal+0x2390/0x2760 [ 148.943185][ T5100] arch_do_signal_or_restart+0x90/0x7e0 [ 148.949307][ T5100] syscall_exit_to_user_mode+0x14a/0x2a0 [ 148.955808][ T5100] do_syscall_64+0xe2/0x260 [ 148.961126][ T5100] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 148.972563][ T5100] [ 148.972563][ T5100] -> #0 (rfcomm_mutex){+.+.}-{3:3}: [ 148.980006][ T5100] __lock_acquire+0x2478/0x3b30 [ 148.985511][ T5100] lock_acquire+0x1b1/0x540 [ 148.990666][ T5100] __mutex_lock+0x175/0x9c0 [ 148.995778][ T5100] rfcomm_dlc_exists+0x5f/0x1a0 [ 149.001198][ T5100] rfcomm_dev_ioctl+0x9c5/0x1c80 [ 149.006693][ T5100] rfcomm_sock_ioctl+0xb4/0xe0 [ 149.012026][ T5100] sock_do_ioctl+0x119/0x280 [ 149.017193][ T5100] sock_ioctl+0x22e/0x6c0 [ 149.022091][ T5100] __x64_sys_ioctl+0x196/0x220 [ 149.027415][ T5100] do_syscall_64+0xd5/0x260 [ 149.032490][ T5100] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 149.038960][ T5100] [ 149.038960][ T5100] other info that might help us debug this: [ 149.038960][ T5100] [ 149.049554][ T5100] Chain exists of: [ 149.049554][ T5100] rfcomm_mutex --> sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM --> rfcomm_ioctl_mutex [ 149.049554][ T5100] [ 149.067964][ T5100] Possible unsafe locking scenario: [ 149.067964][ T5100] [ 149.075434][ T5100] CPU0 CPU1 [ 149.080815][ T5100] ---- ---- [ 149.086189][ T5100] lock(rfcomm_ioctl_mutex); [ 149.091071][ T5100] lock(sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM); [ 149.099773][ T5100] lock(rfcomm_ioctl_mutex); [ 149.106999][ T5100] lock(rfcomm_mutex); [ 149.111179][ T5100] [ 149.111179][ T5100] *** DEADLOCK *** [ 149.111179][ T5100] [ 149.119337][ T5100] 2 locks held by syz-executor386/5100: [ 149.124908][ T5100] #0: ffff88802219b258 (sk_lock-AF_BLUETOOTH-BTPROTO_RFCOMM){+.+.}-{0:0}, at: rfcomm_sock_ioctl+0xa7/0xe0 [ 149.136398][ T5100] #1: ffffffff8f5912a8 (rfcomm_ioctl_mutex){+.+.}-{3:3}, at: rfcomm_dev_ioctl+0x8e4/0x1c80 [ 149.146745][ T5100] [ 149.146745][ T5100] stack backtrace: [ 149.152647][ T5100] CPU: 0 PID: 5100 Comm: syz-executor386 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 149.162860][ T5100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 149.172949][ T5100] Call Trace: [ 149.176259][ T5100] [ 149.179207][ T5100] dump_stack_lvl+0x116/0x1f0 [ 149.183933][ T5100] check_noncircular+0x31a/0x400 [ 149.188919][ T5100] ? __pfx_check_noncircular+0x10/0x10 [ 149.194414][ T5100] ? __kernel_text_address+0xd/0x40 [ 149.199659][ T5100] ? unwind_get_return_address+0x45/0xe0 [ 149.205433][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.210339][ T5100] ? lockdep_lock+0xc6/0x200 [ 149.215157][ T5100] ? __pfx_lockdep_lock+0x10/0x10 [ 149.220232][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.225142][ T5100] __lock_acquire+0x2478/0x3b30 [ 149.230135][ T5100] ? __pfx___lock_acquire+0x10/0x10 [ 149.235372][ T5100] ? add_lock_to_list+0x17d/0x380 [ 149.240463][ T5100] lock_acquire+0x1b1/0x540 [ 149.245476][ T5100] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 149.250571][ T5100] ? __pfx_lock_acquire+0x10/0x10 [ 149.255682][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.260628][ T5100] ? __mutex_trylock_common+0xea/0x250 [ 149.266141][ T5100] ? __pfx___might_resched+0x10/0x10 [ 149.271485][ T5100] ? __pfx___mutex_trylock_common+0x10/0x10 [ 149.277602][ T5100] __mutex_lock+0x175/0x9c0 [ 149.282161][ T5100] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 149.287249][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.292327][ T5100] ? aa_get_newest_label+0x376/0x680 [ 149.297648][ T5100] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 149.302817][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.307731][ T5100] ? __pfx___mutex_lock+0x10/0x10 [ 149.312893][ T5100] ? __pfx_lock_release+0x10/0x10 [ 149.317961][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.322883][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.327788][ T5100] ? apparmor_capable+0x126/0x1e0 [ 149.332966][ T5100] ? rfcomm_dlc_exists+0x5f/0x1a0 [ 149.338055][ T5100] rfcomm_dlc_exists+0x5f/0x1a0 [ 149.342972][ T5100] rfcomm_dev_ioctl+0x9c5/0x1c80 [ 149.347962][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.352878][ T5100] ? __pfx_rfcomm_dev_ioctl+0x10/0x10 [ 149.358620][ T5100] ? __pfx_lock_release+0x10/0x10 [ 149.369087][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.374962][ T5100] ? mark_held_locks+0x9f/0xe0 [ 149.379856][ T5100] ? rfcomm_sock_ioctl+0xa7/0xe0 [ 149.384946][ T5100] ? __local_bh_enable_ip+0xa4/0x120 [ 149.390365][ T5100] rfcomm_sock_ioctl+0xb4/0xe0 [ 149.395274][ T5100] sock_do_ioctl+0x119/0x280 [ 149.399936][ T5100] ? __pfx_sock_do_ioctl+0x10/0x10 [ 149.405184][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.410104][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.415015][ T5100] sock_ioctl+0x22e/0x6c0 [ 149.419396][ T5100] ? __pfx_sock_ioctl+0x10/0x10 [ 149.424301][ T5100] ? __pfx_restore_fpregs_from_fpstate+0x10/0x10 [ 149.430678][ T5100] ? srso_return_thunk+0x5/0x5f [ 149.435842][ T5100] ? __pfx_sock_ioctl+0x10/0x10 [ 149.440755][ T5100] __x64_sys_ioctl+0x196/0x220 [ 149.445567][ T5100] do_syscall_64+0xd5/0x260 [ 149.450304][ T5100] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 149.456261][ T5100] RIP: 0033:0x7f2579819d49 [ 149.460812][ T5100] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 149.480846][ T5100] RSP: 002b:00007ffeb728cc48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 149.489322][ T5100] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f2579819d49 [ 149.497521][ T5100] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000005 [ 149.505725][ T5100] RBP: 00000000000f4240 R08: 0000000000000000 R09: 0000555500000000 [ 149.513732][ T5100] R10: 0000555500000000 R11: 0000000000000246 R12: 00007ffeb728cc90 [pid 5100] ioctl(5, RFCOMMCREATEDEV, 0x20000100) = -1 ENFILE (Too many open files in system) [pid 5100] close(3) = -1 EBADF (Bad file descriptor) [pid 5100] close(4) = 0 [pid 5100] close(5) = 0 [pid 5075] kill(-10, SIGKILL) = 0 [pid 5075] kill(10, SIGKILL) = 0 [pid 5100] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=10, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5075] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5101 attached [pid 5101] set_robust_list(0x5555902f16a0, 24 [pid 5075] <... clone resumed>, child_tidptr=0x5555902f1690) = 11 [pid 5101] <... set_robust_list resumed>) = 0 [pid 5101] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5101] setpgid(0, 0) = 0 [pid 5101] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5101] write(3, "1000", 4) = 4 [pid 5101] close(3) = 0 [pid 5101] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5101] setns(201, 0) = 0 [pid 5101] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5101] setns(3, 0) = 0 [pid 5101] close(3) = 0 [ 149.521737][ T5100] R13: 00007ffeb728cca0 R14: 0000000000021da5 R15: 00007ffeb728cc60 [ 149.529758][ T5100] [ 151.612689][ T4466] Bluetooth: hci0: command 0x041b tx timeout [pid 5101] connect(4, {sa_family=AF_BLUETOOTH, rc_bdaddr=aa:aa:aa:aa:aa:00, rc_channel=1}, 10 [pid 5075] kill(-11, SIGKILL [pid 5101] <... connect resumed>) = ? [pid 5075] <... kill resumed>) = 0 [pid 5075] kill(11, SIGKILL) = 0 [pid 5101] +++ killed by SIGKILL +++ [pid 5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=11, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555902f1690) = 12 ./strace-static-x86_64: Process 5102 attached [pid 5102] set_robust_list(0x5555902f16a0, 24) = 0 [pid 5102] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5102] setpgid(0, 0) = 0 [pid 5102] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5102] write(3, "1000", 4) = 4 [pid 5102] close(3) = 0 [pid 5102] openat(AT_FDCWD, "/proc/self/ns/net", O_RDONLY) = 3 [pid 5102] setns(201, 0) = 0 [pid 5102] socket(AF_BLUETOOTH, SOCK_STREAM, BTPROTO_RFCOMM) = 4 [pid 5102] setns(3, 0) = 0 [pid 5102] close(3) = 0