./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2449335059
<...>
Warning: Permanently added '10.128.0.135' (ECDSA) to the list of known hosts.
execve("./syz-executor2449335059", ["./syz-executor2449335059"], 0x7ffea122e040 /* 10 vars */) = 0
brk(NULL) = 0x555556bd0000
brk(0x555556bd0c40) = 0x555556bd0c40
arch_prctl(ARCH_SET_FS, 0x555556bd0300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
set_tid_address(0x555556bd05d0) = 3603
set_robust_list(0x555556bd05e0, 24) = 0
rt_sigaction(SIGRTMIN, {sa_handler=0x7f906fdcfaa0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f906fdd0170}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7f906fdcfb40, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f906fdd0170}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2449335059", 4096) = 28
brk(0x555556bf1c40) = 0x555556bf1c40
brk(0x555556bf2000) = 0x555556bf2000
mprotect(0x7f906fe91000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 3604
./strace-static-x86_64: Process 3604 attached
[pid 3604] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3604] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid 3604] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3
[pid 3604] openat(AT_FDCWD, "/dev/vhci", O_RDWR) = 4
[pid 3604] dup2(4, 202) = 202
[pid 3604] close(4) = 0
[pid 3604] read(202, "\xff\x00\x00\x00", 4) = 4
[pid 3604] mmap(NULL, 8392704, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f906f400000
[pid 3604] mprotect(0x7f906f401000, 8388608, PROT_READ|PROT_WRITE) = 0
[pid 3604] clone(child_stack=0x7f906fc003f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2], tls=0x7f906fc00700, child_tidptr=0x7f906fc009d0) = 2
[pid 3604] ioctl(3, HCIDEVUP./strace-static-x86_64: Process 3607 attached
<unfinished ...>
[pid 3607] set_robust_list(0x7f906fc009e0, 24) = 0
[pid 3607] read(202, "\x01\x03\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x03\x10\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x03\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x01\x10\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x01\x10", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x09\x10\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0a", iov_len=2}, {iov_base="\x01\x09\x10", iov_len=3}, {iov_base="\x00\xaa\xaa\xaa\xaa\xaa\xaa", iov_len=7}], 4) = 13
[pid 3607] read(202, "\x01\x05\x10\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x0b", iov_len=2}, {iov_base="\x01\x05\x10", iov_len=3}, {iov_base="\x00\xfd\x03\x60\x04\x00\x06\x00", iov_len=8}], 4) = 14
[pid 3607] read(202, "\x01\x23\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x23\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x14\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x14\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x25\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x25\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x38\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x38\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x39\x0c\x00", 1024) = 4
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x39\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, "\x01\x16\x0c\x02\x00\x7d", 1024) = 6
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\xfc", iov_len=2}, {iov_base="\x01\x16\x0c", iov_len=3}, {iov_base="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=249}], 4) = 255
[pid 3607] read(202, <unfinished ...>
[pid 3604] <... ioctl resumed>, 0) = -1 EALREADY (Operation already in progress)
syzkaller login: [ 42.548532][ T3605] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 42.556470][ T3605] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 42.564273][ T3605] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 42.573932][ T3608] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 42.581913][ T3608] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 42.589377][ T3608] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[pid 3604] ioctl(3, HCISETSCAN <unfinished ...>
[pid 3607] <... read resumed>"\x01\x1a\x0c\x01\x02", 1024) = 5
[pid 3607] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x0e\x04", iov_len=2}, {iov_base="\x01\x1a\x0c", iov_len=3}, {iov_base="\x00", iov_len=1}], 4) = 7
[pid 3604] <... ioctl resumed>, 0x7ffdc2e8249c) = 0
[pid 3607] madvise(0x7f906f400000, 8372224, MADV_DONTNEED) = 0
[pid 3607] exit(0) = ?
[pid 3607] +++ exited with 0 +++
[pid 3604] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x04\x0a", iov_len=2}, {iov_base="\xaa\xaa\xaa\xaa\xaa\x10\x00\x00\x00\x01", iov_len=10}], 3) = 13
[pid 3604] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x03\x0b", iov_len=2}, {iov_base="\x00\xc8\x00\xaa\xaa\xaa\xaa\xaa\x10\x01\x00", iov_len=11}], 3) = 14
[pid 3604] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\v\v", iov_len=2}, {iov_base="\x00\xc8\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=11}], 3) = 14
[pid 3604] writev(202, [{iov_base="\x04", iov_len=1}, {iov_base="\x3e\x13", iov_len=2}, {iov_base="\x01\x00\xc9\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\x11\x00\x00\x00\x00\x00\x00\x00", iov_len=19}], 3) = 22
[pid 3604] close(3) = 0
[pid 3604] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3604] setsid() = 1
[pid 3604] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid 3604] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid 3604] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid 3604] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid 3604] prlimit64(0, RLIMIT_CORE, {rlim_cur=0, rlim_max=0}, NULL) = 0
[pid 3604] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid 3604] unshare(CLONE_NEWNS) = 0
[pid 3604] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid 3604] unshare(CLONE_NEWIPC) = 0
[pid 3604] unshare(CLONE_NEWCGROUP) = 0
[pid 3604] unshare(CLONE_NEWUTS) = 0
[pid 3604] unshare(CLONE_SYSVSEM) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "16777216", 8) = 8
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "536870912", 9) = 9
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "1024", 4) = 4
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "8192", 4) = 4
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "1024", 4) = 4
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "1024", 4) = 4
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "1024 1048576 500 1024", 21) = 21
[pid 3604] close(3) = 0
[pid 3604] getpid() = 1
[pid 3604] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 3604] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 3604] unshare(CLONE_NEWNET) = 0
[pid 3604] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "0 65535", 7) = 7
[pid 3604] close(3) = 0
[pid 3604] mkdir("/dev/binderfs", 0777) = 0
[pid 3604] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid 3604] symlink("/dev/binderfs", "./binderfs") = 0
[ 42.598148][ T3604] Bluetooth: hci0: HCI_REQ-0x0c1a
[pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 3
./strace-static-x86_64: Process 3610 attached
[pid 3610] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3610] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3610] setpgid(0, 0) = 0
[pid 3610] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3610] write(3, "1000", 4) = 4
[pid 3610] close(3) = 0
[pid 3610] write(202, "\x04\x3e\x1f\x0a\x00\x00\x00\x00\x00\xaa\xaa\xaa\xaa\xaa\x00\xaa\xaa\xaa\xaa\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 34) = 34
[pid 3610] write(202, "\x04\x3e\x1d\x19\x00\x00\x00\x52\x01\x68\x16\x01\xef\x94\xe8\x0a\x06\x01\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32) = 32
[pid 3610] close(3) = -1 EBADF (Bad file descriptor)
[pid 3610] close(4) = -1 EBADF (Bad file descriptor)
[pid 3610] close(5) = -1 EBADF (Bad file descriptor)
[pid 3610] close(6) = -1 EBADF (Bad file descriptor)
[pid 3610] close(7) = -1 EBADF (Bad file descriptor)
[pid 3610] close(8) = -1 EBADF (Bad file descriptor)
[pid 3610] close(9) = -1 EBADF (Bad file descriptor)
[pid 3610] close(10) = -1 EBADF (Bad file descriptor)
[pid 3610] close(11) = -1 EBADF (Bad file descriptor)
[pid 3610] close(12) = -1 EBADF (Bad file descriptor)
[pid 3610] close(13) = -1 EBADF (Bad file descriptor)
[pid 3610] close(14) = -1 EBADF (Bad file descriptor)
[pid 3610] close(15) = -1 EBADF (Bad file descriptor)
[pid 3610] close(16) = -1 EBADF (Bad file descriptor)
[pid 3610] close(17) = -1 EBADF (Bad file descriptor)
[pid 3610] close(18) = -1 EBADF (Bad file descriptor)
[pid 3610] close(19) = -1 EBADF (Bad file descriptor)
[pid 3610] close(20) = -1 EBADF (Bad file descriptor)
[pid 3610] close(21) = -1 EBADF (Bad file descriptor)
[pid 3610] close(22) = -1 EBADF (Bad file descriptor)
[pid 3610] close(23) = -1 EBADF (Bad file descriptor)
[pid 3610] close(24) = -1 EBADF (Bad file descriptor)
[pid 3610] close(25) = -1 EBADF (Bad file descriptor)
[pid 3610] close(26) = -1 EBADF (Bad file descriptor)
[pid 3610] close(27) = -1 EBADF (Bad file descriptor)
[pid 3610] close(28) = -1 EBADF (Bad file descriptor)
[pid 3610] close(29) = -1 EBADF (Bad file descriptor)
[pid 3610] exit_group(0) = ?
[pid 3610] +++ exited with 0 +++
[pid 3604] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 4
./strace-static-x86_64: Process 3611 attached
[pid 3611] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3611] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3611] setpgid(0, 0) = 0
[ 42.645279][ T3605] list_add double add: new=ffff888077508540, prev=ffff888077508540, next=ffff888012717000.
[ 42.655792][ T3605] ------------[ cut here ]------------
[ 42.661285][ T3605] kernel BUG at lib/list_debug.c:33!
[ 42.666747][ T3605] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 42.672819][ T3605] CPU: 1 PID: 3605 Comm: kworker/u5:1 Not tainted 6.0.0-rc3-next-20220901-syzkaller #0
[ 42.682446][ T3605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 42.692501][ T3605] Workqueue: hci0 hci_rx_work
[ 42.697197][ T3605] RIP: 0010:__list_add_valid.cold+0x42/0x58
[ 42.703097][ T3605] Code: e8 b4 cf f0 ff 0f 0b 48 c7 c7 c0 34 49 8a e8 a6 cf f0 ff 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 c0 36 49 8a e8 8f cf f0 ff <0f> 0b 48 89 f1 48 c7 c7 40 36 49 8a 4c 89 e6 e8 7b cf f0 ff 0f 0b
[ 42.722707][ T3605] RSP: 0018:ffffc90003b3f800 EFLAGS: 00010282
[ 42.728773][ T3605] RAX: 0000000000000058 RBX: ffff88807ddb9298 RCX: 0000000000000000
[ 42.736745][ T3605] RDX: ffff88801e01d7c0 RSI: ffffffff81620448 RDI: fffff52000767ef2
[ 42.744714][ T3605] RBP: ffff888077508540 R08: 0000000000000058 R09: 0000000000000000
[ 42.752706][ T3605] R10: 0000000080000001 R11: 6464615f7473696c R12: ffff888012717000
[ 42.760677][ T3605] R13: ffff888077508550 R14: ffff888077508558 R15: ffff888077508540
[ 42.768647][ T3605] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 42.777580][ T3605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.784162][ T3605] CR2: 00007f906fdcfc70 CR3: 0000000074b55000 CR4: 00000000003506e0
[ 42.792135][ T3605] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.800106][ T3605] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 42.808075][ T3605] Call Trace:
[ 42.811348][ T3605] <TASK>
[ 42.814277][ T3605] kobject_add_internal+0x18f/0x8f0
[ 42.819489][ T3605] kobject_add+0x150/0x1c0
[ 42.823912][ T3605] ? kset_create_and_add+0x1a0/0x1a0
[ 42.829211][ T3605] ? kfree_const+0x51/0x60
[ 42.833628][ T3605] ? __kmem_cache_free+0xab/0x3b0
[ 42.838668][ T3605] ? rcu_read_lock_sched_held+0xd/0x70
[ 42.844132][ T3605] device_add+0x368/0x1e90
[ 42.848556][ T3605] ? dev_set_name+0xbb/0xf0
[ 42.853074][ T3605] ? device_initialize+0x540/0x540
[ 42.858201][ T3605] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0
[ 42.864450][ T3605] ? hci_le_cis_estabilished_evt+0x1ee/0xae0
[ 42.870436][ T3605] ? lock_downgrade+0x6e0/0x6e0
[ 42.875308][ T3605] ? hci_event_packet+0x425/0xfd0
[ 42.880336][ T3605] ? rcu_read_lock_sched_held+0xd/0x70
[ 42.885822][ T3605] hci_conn_add_sysfs+0x9b/0x1b0
[ 42.890766][ T3605] hci_le_cis_estabilished_evt+0x57c/0xae0
[ 42.896577][ T3605] ? hci_cc_le_set_random_addr+0x290/0x290
[ 42.902383][ T3605] ? wait_for_completion_io_timeout+0x20/0x20
[ 42.908467][ T3605] hci_le_meta_evt+0x2b8/0x510
[ 42.913264][ T3605] ? hci_cc_le_set_random_addr+0x290/0x290
[ 42.919074][ T3605] hci_event_packet+0x63d/0xfd0
[ 42.923935][ T3605] ? hci_conn_drop+0x2f0/0x2f0
[ 42.928711][ T3605] ? hci_phy_link_complete_evt+0x940/0x940
[ 42.934524][ T3605] ? trace_hardirqs_on+0x2d/0x120
[ 42.939570][ T3605] hci_rx_work+0xae7/0x1230
[pid 3611] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3611] write(3, "1000", 4) = 4
[pid 3611] close(3) = 0
[ 42.944092][ T3605] process_one_work+0x991/0x1610
[ 42.949045][ T3605] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 42.954430][ T3605] ? rwlock_bug.part.0+0x90/0x90
[ 42.959380][ T3605] worker_thread+0x665/0x1080
[ 42.964073][ T3605] ? process_one_work+0x1610/0x1610
[ 42.969284][ T3605] kthread+0x2e4/0x3a0
[ 42.973357][ T3605] ? kthread_complete_and_exit+0x40/0x40
[ 42.979002][ T3605] ret_from_fork+0x1f/0x30
[ 42.983432][ T3605] </TASK>
[ 42.986446][ T3605] Modules linked in:
[ 42.990400][ T3605] ---[ end trace 0000000000000000 ]---
[pid 3611] write(202, "\x04\x3e\x1f\x0a\x00\x00\x00\x00\x00\xaa\xaa\xaa\xaa\xaa\x00\xaa\xaa\xaa\xaa\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 34) = 34
[pid 3611] write(202, "\x04\x3e\x1d\x19\x00\x00\x00\x52\x01\x68\x16\x01\xef\x94\xe8\x0a\x06\x01\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32) = 32
[pid 3611] close(3) = -1 EBADF (Bad file descriptor)
[pid 3611] close(4) = -1 EBADF (Bad file descriptor)
[pid 3611] close(5) = -1 EBADF (Bad file descriptor)
[pid 3611] close(6) = -1 EBADF (Bad file descriptor)
[pid 3611] close(7) = -1 EBADF (Bad file descriptor)
[pid 3611] close(8) = -1 EBADF (Bad file descriptor)
[pid 3611] close(9) = -1 EBADF (Bad file descriptor)
[pid 3611] close(10) = -1 EBADF (Bad file descriptor)
[pid 3611] close(11) = -1 EBADF (Bad file descriptor)
[pid 3611] close(12) = -1 EBADF (Bad file descriptor)
[pid 3611] close(13) = -1 EBADF (Bad file descriptor)
[pid 3611] close(14) = -1 EBADF (Bad file descriptor)
[pid 3611] close(15) = -1 EBADF (Bad file descriptor)
[pid 3611] close(16) = -1 EBADF (Bad file descriptor)
[pid 3611] close(17) = -1 EBADF (Bad file descriptor)
[pid 3611] close(18) = -1 EBADF (Bad file descriptor)
[pid 3611] close(19) = -1 EBADF (Bad file descriptor)
[pid 3611] close(20) = -1 EBADF (Bad file descriptor)
[pid 3611] close(21) = -1 EBADF (Bad file descriptor)
[pid 3611] close(22) = -1 EBADF (Bad file descriptor)
[pid 3611] close(23) = -1 EBADF (Bad file descriptor)
[pid 3611] close(24) = -1 EBADF (Bad file descriptor)
[pid 3611] close(25) = -1 EBADF (Bad file descriptor)
[pid 3611] close(26) = -1 EBADF (Bad file descriptor)
[pid 3611] close(27) = -1 EBADF (Bad file descriptor)
[pid 3611] close(28) = -1 EBADF (Bad file descriptor)
[pid 3611] close(29) = -1 EBADF (Bad file descriptor)
[pid 3611] exit_group(0) = ?
[pid 3611] +++ exited with 0 +++
[pid 3604] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid 3604] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 5
./strace-static-x86_64: Process 3612 attached
[pid 3612] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3612] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3612] setpgid(0, 0) = 0
[pid 3612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3612] write(3, "1000", 4) = 4
[pid 3612] close(3) = 0
[pid 3612] write(202, "\x04\x3e\x1f\x0a\x00\x00\x00\x00\x00\xaa\xaa\xaa\xaa\xaa\x00\xaa\xaa\xaa\xaa\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 34) = 34
[pid 3612] write(202, "\x04\x3e\x1d\x19\x00\x00\x00\x52\x01\x68\x16\x01\xef\x94\xe8\x0a\x06\x01\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32) = 32
[pid 3612] close(3) = -1 EBADF (Bad file descriptor)
[pid 3612] close(4) = -1 EBADF (Bad file descriptor)
[pid 3612] close(5) = -1 EBADF (Bad file descriptor)
[pid 3612] close(6) = -1 EBADF (Bad file descriptor)
[pid 3612] close(7) = -1 EBADF (Bad file descriptor)
[pid 3612] close(8) = -1 EBADF (Bad file descriptor)
[pid 3612] close(9) = -1 EBADF (Bad file descriptor)
[pid 3612] close(10) = -1 EBADF (Bad file descriptor)
[pid 3612] close(11) = -1 EBADF (Bad file descriptor)
[pid 3612] close(12) = -1 EBADF (Bad file descriptor)
[pid 3612] close(13) = -1 EBADF (Bad file descriptor)
[pid 3612] close(14) = -1 EBADF (Bad file descriptor)
[pid 3612] close(15) = -1 EBADF (Bad file descriptor)
[pid 3612] close(16) = -1 EBADF (Bad file descriptor)
[pid 3612] close(17) = -1 EBADF (Bad file descriptor)
[pid 3612] close(18) = -1 EBADF (Bad file descriptor)
[pid 3612] close(19) = -1 EBADF (Bad file descriptor)
[pid 3612] close(20) = -1 EBADF (Bad file descriptor)
[pid 3612] close(21) = -1 EBADF (Bad file descriptor)
[pid 3612] close(22) = -1 EBADF (Bad file descriptor)
[pid 3612] close(23) = -1 EBADF (Bad file descriptor)
[pid 3612] close(24) = -1 EBADF (Bad file descriptor)
[pid 3612] close(25) = -1 EBADF (Bad file descriptor)
[pid 3612] close(26) = -1 EBADF (Bad file descriptor)
[pid 3612] close(27) = -1 EBADF (Bad file descriptor)
[pid 3612] close(28) = -1 EBADF (Bad file descriptor)
[pid 3612] close(29) = -1 EBADF (Bad file descriptor)
[pid 3612] exit_group(0) = ?
[pid 3612] +++ exited with 0 +++
[pid 3604] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid 3604] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 6
./strace-static-x86_64: Process 3613 attached
[pid 3613] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3613] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3613] setpgid(0, 0) = 0
[pid 3613] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3613] write(3, "1000", 4) = 4
[pid 3613] close(3) = 0
[pid 3613] write(202, "\x04\x3e\x1f\x0a\x00\x00\x00\x00\x00\xaa\xaa\xaa\xaa\xaa\x00\xaa\xaa\xaa\xaa\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 34) = 34
[pid 3613] write(202, "\x04\x3e\x1d\x19\x00\x00\x00\x52\x01\x68\x16\x01\xef\x94\xe8\x0a\x06\x01\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32) = 32
[pid 3613] close(3) = -1 EBADF (Bad file descriptor)
[pid 3613] close(4) = -1 EBADF (Bad file descriptor)
[pid 3613] close(5) = -1 EBADF (Bad file descriptor)
[pid 3613] close(6) = -1 EBADF (Bad file descriptor)
[pid 3613] close(7) = -1 EBADF (Bad file descriptor)
[pid 3613] close(8) = -1 EBADF (Bad file descriptor)
[pid 3613] close(9) = -1 EBADF (Bad file descriptor)
[pid 3613] close(10) = -1 EBADF (Bad file descriptor)
[pid 3613] close(11) = -1 EBADF (Bad file descriptor)
[pid 3613] close(12) = -1 EBADF (Bad file descriptor)
[pid 3613] close(13) = -1 EBADF (Bad file descriptor)
[pid 3613] close(14) = -1 EBADF (Bad file descriptor)
[pid 3613] close(15) = -1 EBADF (Bad file descriptor)
[pid 3613] close(16) = -1 EBADF (Bad file descriptor)
[pid 3613] close(17) = -1 EBADF (Bad file descriptor)
[pid 3613] close(18) = -1 EBADF (Bad file descriptor)
[pid 3613] close(19) = -1 EBADF (Bad file descriptor)
[pid 3613] close(20) = -1 EBADF (Bad file descriptor)
[pid 3613] close(21) = -1 EBADF (Bad file descriptor)
[pid 3613] close(22) = -1 EBADF (Bad file descriptor)
[pid 3613] close(23) = -1 EBADF (Bad file descriptor)
[pid 3613] close(24) = -1 EBADF (Bad file descriptor)
[pid 3613] close(25) = -1 EBADF (Bad file descriptor)
[pid 3613] close(26) = -1 EBADF (Bad file descriptor)
[pid 3613] close(27) = -1 EBADF (Bad file descriptor)
[pid 3613] close(28) = -1 EBADF (Bad file descriptor)
[pid 3613] close(29) = -1 EBADF (Bad file descriptor)
[pid 3613] exit_group(0) = ?
[pid 3613] +++ exited with 0 +++
[pid 3604] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
[pid 3604] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid 3604] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556bd05d0) = 7
./strace-static-x86_64: Process 3614 attached
[pid 3614] set_robust_list(0x555556bd05e0, 24) = 0
[pid 3614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3614] setpgid(0, 0) = 0
[pid 3614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3614] write(3, "1000", 4) = 4
[pid 3614] close(3) = 0
[pid 3614] write(202, "\x04\x3e\x1f\x0a\x00\x00\x00\x00\x00\xaa\xaa\xaa\xaa\xaa\x00\xaa\xaa\xaa\xaa\xaa\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 34) = 34
[pid 3614] write(202, "\x04\x3e\x1d\x19\x00\x00\x00\x52\x01\x68\x16\x01\xef\x94\xe8\x0a\x06\x01\xfb\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32) = 32
[pid 3614] close(3) = -1 EBADF (Bad file descriptor)
[ 42.996041][ T3605] RIP: 0010:__list_add_valid.cold+0x42/0x58
[ 43.003061][ T3605] Code: e8 b4 cf f0 ff 0f 0b 48 c7 c7 c0 34 49 8a e8 a6 cf f0 ff 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 c0 36 49 8a e8 8f cf f0 ff <0f> 0b 48 89 f1 48 c7 c7 40 36 49 8a 4c 89 e6 e8 7b cf f0 ff 0f 0b
[ 43.023703][ T3605] RSP: 0018:ffffc90003b3f800 EFLAGS: 00010282
[ 43.029814][ T3605] RAX: 0000000000000058 RBX: ffff88807ddb9298 RCX: 0000000000000000
[ 43.037847][ T3605] RDX: ffff88801e01d7c0 RSI: ffffffff81620448 RDI: fffff52000767ef2
[pid 3614] close(4) = -1 EBADF (Bad file descriptor)
[pid 3614] close(5) = -1 EBADF (Bad file descriptor)
[pid 3614] close(6) = -1 EBADF (Bad file descriptor)
[pid 3614] close(7) = -1 EBADF (Bad file descriptor)
[pid 3614] close(8) = -1 EBADF (Bad file descriptor)
[pid 3614] close(9) = -1 EBADF (Bad file descriptor)
[pid 3614] close(10) = -1 EBADF (Bad file descriptor)
[pid 3614] close(11) = -1 EBADF (Bad file descriptor)
[pid 3614] close(12) = -1 EBADF (Bad file descriptor)
[pid 3614] close(13) = -1 EBADF (Bad file descriptor)
[pid 3614] close(14) = -1 EBADF (Bad file descriptor)
[pid 3614] close(15) = -1 EBADF (Bad file descriptor)
[pid 3614] close(16) = -1 EBADF (Bad file descriptor)
[pid 3614] close(17) = -1 EBADF (Bad file descriptor)
[pid 3614] close(18) = -1 EBADF (Bad file descriptor)
[pid 3614] close(19) = -1 EBADF (Bad file descriptor)
[pid 3614] close(20) = -1 EBADF (Bad file descriptor)
[pid 3614] close(21) = -1 EBADF (Bad file descriptor)
[pid 3614] close(22) = -1 EBADF (Bad file descriptor)
[pid 3614] close(23) = -1 EBADF (Bad file descriptor)
[ 43.045871][ T3605] RBP: ffff888077508540 R08: 0000000000000058 R09: 0000000000000000
[ 43.053899][ T3605] R10: 0000000080000001 R11: 6464615f7473696c R12: ffff888012717000
[ 43.061911][ T3605] R13: ffff888077508550 R14: ffff888077508558 R15: ffff888077508540
[ 43.070007][ T3605] FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 43.078989][ T3605] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 43.085620][ T3605] CR2: 00007f906fdcfc70 CR3: 0000000074b55000 CR4: 00000000003506e0
[ 43.093651][ T3605] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 43.101665][ T3605] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 43.109665][ T3605] Kernel panic - not syncing: Fatal exception
[ 43.115882][ T3605] Kernel Offset: disabled
[ 43.120206][ T3605] Rebooting in 86400 seconds..