Warning: Permanently added '[localhost]:27719' (ECDSA) to the list of known hosts. 2025/07/01 09:24:34 fuzzer started 2025/07/01 09:24:35 dialing manager at localhost:37637 syzkaller login: [ 44.786851] cgroup: Unknown subsys name 'net' [ 44.889218] cgroup: Unknown subsys name 'cpuset' [ 44.912264] cgroup: Unknown subsys name 'rlimit' 2025/07/01 09:24:46 syscalls: 2214 2025/07/01 09:24:46 code coverage: enabled 2025/07/01 09:24:46 comparison tracing: enabled 2025/07/01 09:24:46 extra coverage: enabled 2025/07/01 09:24:46 setuid sandbox: enabled 2025/07/01 09:24:46 namespace sandbox: enabled 2025/07/01 09:24:46 Android sandbox: enabled 2025/07/01 09:24:46 fault injection: enabled 2025/07/01 09:24:46 leak checking: enabled 2025/07/01 09:24:46 net packet injection: enabled 2025/07/01 09:24:46 net device setup: enabled 2025/07/01 09:24:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/07/01 09:24:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/07/01 09:24:46 USB emulation: enabled 2025/07/01 09:24:46 hci packet injection: enabled 2025/07/01 09:24:46 wifi device emulation: enabled 2025/07/01 09:24:46 802.15.4 emulation: enabled 2025/07/01 09:24:46 fetching corpus: 0, signal 0/2000 (executing program) 2025/07/01 09:24:47 fetching corpus: 48, signal 14760/18345 (executing program) 2025/07/01 09:24:47 fetching corpus: 98, signal 28661/33524 (executing program) 2025/07/01 09:24:47 fetching corpus: 148, signal 33541/39737 (executing program) 2025/07/01 09:24:47 fetching corpus: 198, signal 38049/45475 (executing program) 2025/07/01 09:24:47 fetching corpus: 248, signal 41752/50322 (executing program) 2025/07/01 09:24:47 fetching corpus: 298, signal 44364/54114 (executing program) 2025/07/01 09:24:47 fetching corpus: 348, signal 51321/61658 (executing program) 2025/07/01 09:24:47 fetching corpus: 398, signal 54795/65988 (executing program) 2025/07/01 09:24:47 fetching corpus: 448, signal 56990/69088 (executing program) 2025/07/01 09:24:47 fetching corpus: 498, signal 59666/72577 (executing program) 2025/07/01 09:24:48 fetching corpus: 548, signal 61812/75550 (executing program) 2025/07/01 09:24:48 fetching corpus: 598, signal 63546/78118 (executing program) 2025/07/01 09:24:48 fetching corpus: 648, signal 65858/81081 (executing program) 2025/07/01 09:24:48 fetching corpus: 698, signal 67665/83589 (executing program) 2025/07/01 09:24:48 fetching corpus: 748, signal 69313/85972 (executing program) 2025/07/01 09:24:48 fetching corpus: 798, signal 70458/87947 (executing program) 2025/07/01 09:24:48 fetching corpus: 848, signal 71612/89877 (executing program) 2025/07/01 09:24:48 fetching corpus: 898, signal 73297/92117 (executing program) 2025/07/01 09:24:48 fetching corpus: 948, signal 74609/94020 (executing program) 2025/07/01 09:24:48 fetching corpus: 998, signal 76696/96471 (executing program) 2025/07/01 09:24:49 fetching corpus: 1048, signal 79281/99252 (executing program) 2025/07/01 09:24:49 fetching corpus: 1098, signal 80646/101074 (executing program) 2025/07/01 09:24:49 fetching corpus: 1148, signal 82283/103013 (executing program) 2025/07/01 09:24:49 fetching corpus: 1198, signal 83582/104711 (executing program) 2025/07/01 09:24:49 fetching corpus: 1248, signal 85285/106682 (executing program) 2025/07/01 09:24:49 fetching corpus: 1298, signal 86144/108016 (executing program) 2025/07/01 09:24:49 fetching corpus: 1348, signal 86917/109311 (executing program) 2025/07/01 09:24:49 fetching corpus: 1398, signal 88382/110994 (executing program) 2025/07/01 09:24:49 fetching corpus: 1448, signal 90074/112801 (executing program) 2025/07/01 09:24:49 fetching corpus: 1498, signal 90970/114053 (executing program) 2025/07/01 09:24:49 fetching corpus: 1548, signal 91835/115278 (executing program) 2025/07/01 09:24:50 fetching corpus: 1598, signal 93316/116838 (executing program) 2025/07/01 09:24:50 fetching corpus: 1648, signal 94096/117980 (executing program) 2025/07/01 09:24:50 fetching corpus: 1698, signal 94654/118980 (executing program) 2025/07/01 09:24:50 fetching corpus: 1748, signal 95407/120024 (executing program) 2025/07/01 09:24:50 fetching corpus: 1798, signal 95995/120957 (executing program) 2025/07/01 09:24:50 fetching corpus: 1848, signal 96815/122049 (executing program) 2025/07/01 09:24:50 fetching corpus: 1898, signal 97655/123127 (executing program) 2025/07/01 09:24:50 fetching corpus: 1948, signal 98763/124274 (executing program) 2025/07/01 09:24:50 fetching corpus: 1998, signal 99343/125173 (executing program) 2025/07/01 09:24:50 fetching corpus: 2048, signal 102649/127215 (executing program) 2025/07/01 09:24:51 fetching corpus: 2098, signal 103488/128105 (executing program) 2025/07/01 09:24:51 fetching corpus: 2148, signal 104219/128948 (executing program) 2025/07/01 09:24:51 fetching corpus: 2198, signal 105142/129863 (executing program) 2025/07/01 09:24:51 fetching corpus: 2248, signal 106232/130796 (executing program) 2025/07/01 09:24:51 fetching corpus: 2298, signal 106924/131562 (executing program) 2025/07/01 09:24:51 fetching corpus: 2348, signal 107255/132172 (executing program) 2025/07/01 09:24:51 fetching corpus: 2398, signal 107926/132892 (executing program) 2025/07/01 09:24:51 fetching corpus: 2448, signal 108289/133514 (executing program) 2025/07/01 09:24:51 fetching corpus: 2498, signal 109013/134202 (executing program) 2025/07/01 09:24:51 fetching corpus: 2548, signal 109822/134924 (executing program) 2025/07/01 09:24:51 fetching corpus: 2598, signal 110326/135543 (executing program) 2025/07/01 09:24:51 fetching corpus: 2648, signal 110808/136133 (executing program) 2025/07/01 09:24:52 fetching corpus: 2698, signal 111384/136747 (executing program) 2025/07/01 09:24:52 fetching corpus: 2748, signal 111903/137373 (executing program) 2025/07/01 09:24:52 fetching corpus: 2798, signal 113054/138066 (executing program) 2025/07/01 09:24:52 fetching corpus: 2848, signal 113348/138579 (executing program) 2025/07/01 09:24:52 fetching corpus: 2898, signal 113930/139093 (executing program) 2025/07/01 09:24:52 fetching corpus: 2948, signal 114372/139582 (executing program) 2025/07/01 09:24:52 fetching corpus: 2998, signal 114814/140073 (executing program) 2025/07/01 09:24:52 fetching corpus: 3048, signal 115413/140581 (executing program) 2025/07/01 09:24:52 fetching corpus: 3098, signal 115924/141062 (executing program) 2025/07/01 09:24:52 fetching corpus: 3148, signal 116229/141505 (executing program) 2025/07/01 09:24:52 fetching corpus: 3198, signal 116748/141973 (executing program) 2025/07/01 09:24:52 fetching corpus: 3248, signal 117110/142396 (executing program) 2025/07/01 09:24:52 fetching corpus: 3298, signal 117390/142779 (executing program) 2025/07/01 09:24:53 fetching corpus: 3348, signal 117655/143158 (executing program) 2025/07/01 09:24:53 fetching corpus: 3398, signal 118375/143569 (executing program) 2025/07/01 09:24:53 fetching corpus: 3448, signal 119039/143960 (executing program) 2025/07/01 09:24:53 fetching corpus: 3498, signal 119787/144342 (executing program) 2025/07/01 09:24:53 fetching corpus: 3548, signal 120104/144684 (executing program) 2025/07/01 09:24:53 fetching corpus: 3598, signal 120475/144835 (executing program) 2025/07/01 09:24:53 fetching corpus: 3648, signal 120883/144835 (executing program) 2025/07/01 09:24:53 fetching corpus: 3698, signal 121336/144835 (executing program) 2025/07/01 09:24:53 fetching corpus: 3748, signal 121625/144835 (executing program) 2025/07/01 09:24:53 fetching corpus: 3798, signal 121929/144835 (executing program) 2025/07/01 09:24:53 fetching corpus: 3848, signal 122441/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 3898, signal 122794/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 3948, signal 123100/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 3998, signal 123644/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4048, signal 124359/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4098, signal 124621/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4148, signal 125025/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4198, signal 125479/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4248, signal 125848/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4298, signal 126154/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4348, signal 127066/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4398, signal 127362/144835 (executing program) 2025/07/01 09:24:54 fetching corpus: 4448, signal 127820/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4498, signal 128260/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4548, signal 128822/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4598, signal 129292/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4648, signal 130353/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4697, signal 130602/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4747, signal 130925/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4797, signal 131314/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4847, signal 131990/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4897, signal 132373/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4947, signal 132620/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 4997, signal 132834/144835 (executing program) 2025/07/01 09:24:55 fetching corpus: 5047, signal 133153/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5097, signal 133400/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5147, signal 133756/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5197, signal 134111/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5247, signal 134418/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5297, signal 134787/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5347, signal 135113/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5397, signal 135382/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5447, signal 135664/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5497, signal 136200/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5547, signal 136459/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5597, signal 136734/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5647, signal 136952/144835 (executing program) 2025/07/01 09:24:56 fetching corpus: 5697, signal 137416/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5747, signal 137740/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5797, signal 138052/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5847, signal 138424/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5897, signal 139041/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5947, signal 139389/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 5997, signal 139681/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6047, signal 139962/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6097, signal 140224/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6147, signal 140454/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6197, signal 140650/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6247, signal 140883/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6297, signal 141094/144835 (executing program) 2025/07/01 09:24:57 fetching corpus: 6347, signal 141331/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6397, signal 141542/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6447, signal 141697/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6497, signal 142279/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6547, signal 142479/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6597, signal 142659/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6647, signal 142884/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6697, signal 143140/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6747, signal 143348/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6797, signal 143626/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6827, signal 143762/144835 (executing program) 2025/07/01 09:24:58 fetching corpus: 6827, signal 143762/144835 (executing program) 2025/07/01 09:25:00 starting 8 fuzzer processes 09:25:00 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x20000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73665df41100080120000200004000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="0000000072724161140000000b000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f73665df41100080120000200004000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f0700000008000000090000000a000000ffffff0fffffff0f00"/64, 0x40, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f0700000008000000090000000a000000ffffff0fffffff0f00"/64, 0x40, 0x10800}, {&(0x7f0000010600)="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", 0x120, 0x11000}, {&(0x7f0000010800)="2e202020202020202020201000bde670325132510000e67032510300000000002e2e2020202020202020201000bde670325132510000e670325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020202000bde670325132510000e670325104001a040000", 0x80, 0x11800}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x12000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0x12800}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x15800}], 0x0, &(0x7f0000011000)) 09:25:00 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r0, &(0x7f0000000240)=@file={0x1, './file0\x00'}, 0x6e) 09:25:00 executing program 2: semctl$GETNCNT(0x0, 0x3dee3a01e540acad, 0x10, 0x0) 09:25:00 executing program 3: memfd_create(0x0, 0x104de026bf6a352e) 09:25:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) syz_open_pts(r0, 0x0) [ 68.910010] audit: type=1400 audit(1751361900.590:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:25:00 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000180)=""/230) 09:25:00 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000470008000f80100200040000300000000000000800029b11ba1f153595a4b414c4c4552202046415431362020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8fffffff0ffffffff078000ffffff00"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x400}, {&(0x7f0000010300)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x600}, {&(0x7f0000010400)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x800}, {&(0x7f0000010500)="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", 0x120, 0xa00}, {&(0x7f0000010700)="2e20202020202020202020100040eb70325132510000eb7032510300000000002e2e202020202020202020100040eb70325132510000eb70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200040eb70325132510000eb70325104001a040000", 0x80, 0x2800}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x3800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0x4800}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x8800}], 0x0, &(0x7f0000010f00)) 09:25:00 executing program 7: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmmsg(r0, &(0x7f0000008c40)=[{{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000cc0)='~', 0x1}], 0x1}}], 0x1, 0x0) [ 70.092466] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.095898] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.101941] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.106516] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.110737] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.115282] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.117151] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.122447] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.129811] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.133904] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.163108] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.167183] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.171038] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.172530] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.178883] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 70.182845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.186871] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 70.190817] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 70.191938] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.195787] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 70.197040] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 70.198450] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.200049] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.203473] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 70.207420] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.215265] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 70.217413] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.220710] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 70.228209] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 70.235043] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 70.238467] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 70.253848] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 70.260370] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 70.264924] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.287393] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.292852] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 70.296995] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 70.307135] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.331827] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.336280] [ 70.337134] ============================= [ 70.337792] WARNING: suspicious RCU usage [ 70.338388] 6.16.0-rc4-next-20250701 #1 Not tainted [ 70.339409] ----------------------------- [ 70.340754] fs/proc/proc_sysctl.c:934 suspicious rcu_dereference_check() usage! [ 70.342875] [ 70.342875] other info that might help us debug this: [ 70.342875] [ 70.343984] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.345732] [ 70.345732] rcu_scheduler_active = 2, debug_locks = 1 [ 70.349400] 3 locks held by syz-executor.7/286: [ 70.350748] #0: ffff88800f922400 (sb_writers#4){.+.+}-{0:0}, at: path_openat+0x1cd3/0x2880 [ 70.352054] #1: ffff88800939e618 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: path_openat+0x1308/0x2880 [ 70.353504] #2: ffff8880162126b0 (&lockref->lock){+.+.}-{3:3}, at: d_alloc_parallel+0xf97/0x1330 [ 70.354874] [ 70.354874] stack backtrace: [ 70.355529] CPU: 0 UID: 0 PID: 286 Comm: syz-executor.7 Not tainted 6.16.0-rc4-next-20250701 #1 PREEMPT(voluntary) [ 70.355561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 70.355573] Call Trace: [ 70.355581] [ 70.355590] dump_stack_lvl+0xfa/0x120 [ 70.355626] lockdep_rcu_suspicious+0x152/0x1c0 [ 70.355652] proc_sys_compare+0x28a/0x340 [ 70.355673] ? __pfx_proc_sys_compare+0x10/0x10 [ 70.355695] d_same_name+0x229/0x2e0 [ 70.355718] d_alloc_parallel+0x7c1/0x1330 [ 70.355754] ? __pfx_d_alloc_parallel+0x10/0x10 [ 70.355782] ? __pfx_default_wake_function+0x10/0x10 [ 70.355813] ? __d_lookup+0x25f/0x490 [ 70.355845] lookup_open.isra.0+0x64f/0x1530 [ 70.355878] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 70.355921] ? mnt_get_write_access+0x81/0x2d0 [ 70.355942] ? mnt_get_write_access+0x1ea/0x2d0 [ 70.355970] path_openat+0xc26/0x2880 [ 70.356009] ? __lock_acquire+0x694/0x1b70 [ 70.356030] ? __pfx_path_openat+0x10/0x10 [ 70.356069] do_filp_open+0x1e8/0x450 [ 70.356099] ? __pfx_do_filp_open+0x10/0x10 [ 70.356139] ? find_held_lock+0x2b/0x80 [ 70.356168] ? alloc_fd+0x2c1/0x560 [ 70.356205] ? lock_release+0xc8/0x290 [ 70.356231] ? alloc_fd+0x2c1/0x560 [ 70.356268] do_sys_openat2+0x104/0x1b0 [ 70.356293] ? __pfx_do_sys_openat2+0x10/0x10 [ 70.356318] ? rcu_read_unlock+0x2d/0xb0 [ 70.356340] ? lock_release+0xc8/0x290 [ 70.356367] __x64_sys_openat+0x142/0x200 [ 70.356392] ? __pfx___x64_sys_openat+0x10/0x10 [ 70.356422] ? trace_irq_enable.constprop.0+0xc2/0x100 [ 70.356459] do_syscall_64+0xbf/0x360 [ 70.356481] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.356503] RIP: 0033:0x7fc981e13a04 [ 70.356519] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 70.356538] RSP: 002b:00007ffc2da48e90 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 70.356558] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00007fc981e13a04 [ 70.356571] RDX: 0000000000080001 RSI: 00007fc981eca264 RDI: 00000000ffffff9c [ 70.356584] RBP: 00007fc981eca264 R08: 0000000000000000 R09: 00007ffc2da48e80 [ 70.356597] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000080001 [ 70.356609] R13: 00007ffc2da48f30 R14: 0000000000000000 R15: 00000000000000f8 [ 70.356637] [ 72.188187] Bluetooth: hci1: command tx timeout [ 72.188932] Bluetooth: hci0: command tx timeout [ 72.252365] Bluetooth: hci2: command tx timeout [ 72.253080] Bluetooth: hci3: command tx timeout [ 72.253183] Bluetooth: hci4: command tx timeout [ 72.315737] Bluetooth: hci5: command tx timeout [ 72.380470] Bluetooth: hci6: command tx timeout [ 72.572625] Bluetooth: hci7: command tx timeout [ 74.235722] Bluetooth: hci1: command tx timeout [ 74.235802] Bluetooth: hci0: command tx timeout [ 74.300061] Bluetooth: hci2: command tx timeout [ 74.300492] Bluetooth: hci3: command tx timeout [ 74.301623] Bluetooth: hci4: command tx timeout [ 74.364683] Bluetooth: hci5: command tx timeout [ 74.428682] Bluetooth: hci6: command tx timeout [ 74.620605] Bluetooth: hci7: command tx timeout [ 76.283675] Bluetooth: hci1: command tx timeout [ 76.285127] Bluetooth: hci0: command tx timeout [ 76.347630] Bluetooth: hci3: command tx timeout [ 76.348047] Bluetooth: hci4: command tx timeout [ 76.348441] Bluetooth: hci2: command tx timeout [ 76.411613] Bluetooth: hci5: command tx timeout [ 76.475603] Bluetooth: hci6: command tx timeout [ 76.667647] Bluetooth: hci7: command tx timeout [ 78.331655] Bluetooth: hci0: command tx timeout [ 78.332116] Bluetooth: hci1: command tx timeout [ 78.395642] Bluetooth: hci2: command tx timeout [ 78.396076] Bluetooth: hci4: command tx timeout [ 78.396457] Bluetooth: hci3: command tx timeout [ 78.459647] Bluetooth: hci5: command tx timeout [ 78.523670] Bluetooth: hci6: command tx timeout [ 78.715707] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 09:25:02 Registers: info registers vcpu 0 RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff828b9285 RDI=ffffffff8871efa0 RBP=ffffffff8871ef60 RSP=ffff8880158272b8 R8 =0000000000000000 R9 =ffffed1001e0b046 R10=0000000000000000 R11=0000000000000001 R12=000000000000000d R13=0000000000000010 R14=ffffffff8871ef60 R15=ffffffff828b9270 RIP=ffffffff828b92dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055558d74d400 00000000 00000000 GS =0000 ffff8880e55f2000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f15f1ad6980 CR3=000000003a1fc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000004144500d135c0706 XMM01=00000000000000003f847ae147ae147b XMM02=00000000000000000000000000000000 XMM03=00000000000000003f73439b7b1028ac XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=000000000000000a000000c000014016 XMM09=000000000000002a000000c000016000 XMM10=0000000000000009000000c000014040 XMM11=0000000000000007000000c000014049 XMM12=000000000000001c000000c000018000 XMM13=0000000000000041000000c00001a000 XMM14=000000000000000c000000c000014050 XMM15=000000000000000d000000c000014060 info registers vcpu 1 RAX=0000000000000000 RBX=ffff888019a57e88 RCX=ffffffff81ba109e RDX=ffff888016738000 RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000000 RSP=ffff888019a57b18 R8 =0000000000000d66 R9 =0000000000000004 R10=0000000000000000 R11=83d0e28af127ebad R12=0000000000000002 R13=0000000000000018 R14=ffff88800ea4b4ae R15=ffff888019a57eac RIP=ffffffff817391b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3818e1a540 00000000 00000000 GS =0000 ffff8880e56f2000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a629b3c4c8 CR3=000000003c21e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00642e65626f7270646f6d2f6374652f XMM01=00642e65626f7270646f6d2f6374652f XMM02=00000000000000000000ffffffffffff XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000