Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:15004' (ECDSA) to the list of known hosts. 2025/09/01 11:42:28 fuzzer started 2025/09/01 11:42:28 dialing manager at localhost:35473 syzkaller login: [ 51.442553] cgroup: Unknown subsys name 'net' [ 51.516172] cgroup: Unknown subsys name 'cpuset' [ 51.536960] cgroup: Unknown subsys name 'rlimit' 2025/09/01 11:42:39 syscalls: 2214 2025/09/01 11:42:39 code coverage: enabled 2025/09/01 11:42:39 comparison tracing: enabled 2025/09/01 11:42:39 extra coverage: enabled 2025/09/01 11:42:39 setuid sandbox: enabled 2025/09/01 11:42:39 namespace sandbox: enabled 2025/09/01 11:42:39 Android sandbox: enabled 2025/09/01 11:42:39 fault injection: enabled 2025/09/01 11:42:39 leak checking: enabled 2025/09/01 11:42:39 net packet injection: enabled 2025/09/01 11:42:39 net device setup: enabled 2025/09/01 11:42:39 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/09/01 11:42:39 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/09/01 11:42:39 USB emulation: enabled 2025/09/01 11:42:39 hci packet injection: enabled 2025/09/01 11:42:39 wifi device emulation: enabled 2025/09/01 11:42:39 802.15.4 emulation: enabled 2025/09/01 11:42:39 fetching corpus: 0, signal 0/2000 (executing program) 2025/09/01 11:42:39 fetching corpus: 50, signal 22194/25742 (executing program) 2025/09/01 11:42:39 fetching corpus: 100, signal 31970/36975 (executing program) 2025/09/01 11:42:39 fetching corpus: 150, signal 38406/44783 (executing program) 2025/09/01 11:42:39 fetching corpus: 200, signal 44442/52106 (executing program) 2025/09/01 11:42:39 fetching corpus: 250, signal 57578/65994 (executing program) 2025/09/01 11:42:40 fetching corpus: 300, signal 60501/70143 (executing program) 2025/09/01 11:42:40 fetching corpus: 350, signal 64638/75309 (executing program) 2025/09/01 11:42:40 fetching corpus: 400, signal 67052/78847 (executing program) 2025/09/01 11:42:40 fetching corpus: 450, signal 69905/82672 (executing program) 2025/09/01 11:42:40 fetching corpus: 500, signal 72000/85795 (executing program) 2025/09/01 11:42:40 fetching corpus: 550, signal 75407/90007 (executing program) 2025/09/01 11:42:40 fetching corpus: 600, signal 78193/93690 (executing program) 2025/09/01 11:42:40 fetching corpus: 650, signal 80250/96633 (executing program) 2025/09/01 11:42:40 fetching corpus: 700, signal 83804/100821 (executing program) 2025/09/01 11:42:40 fetching corpus: 750, signal 85709/103509 (executing program) 2025/09/01 11:42:40 fetching corpus: 800, signal 86988/105709 (executing program) 2025/09/01 11:42:40 fetching corpus: 850, signal 88905/108343 (executing program) 2025/09/01 11:42:40 fetching corpus: 900, signal 90751/110862 (executing program) 2025/09/01 11:42:40 fetching corpus: 950, signal 92914/113655 (executing program) 2025/09/01 11:42:41 fetching corpus: 1000, signal 95575/116751 (executing program) 2025/09/01 11:42:41 fetching corpus: 1050, signal 97540/119298 (executing program) 2025/09/01 11:42:41 fetching corpus: 1100, signal 99170/121537 (executing program) 2025/09/01 11:42:41 fetching corpus: 1150, signal 100996/123865 (executing program) 2025/09/01 11:42:41 fetching corpus: 1200, signal 102202/125724 (executing program) 2025/09/01 11:42:41 fetching corpus: 1250, signal 104066/128010 (executing program) 2025/09/01 11:42:41 fetching corpus: 1300, signal 106026/130388 (executing program) 2025/09/01 11:42:41 fetching corpus: 1350, signal 107161/132086 (executing program) 2025/09/01 11:42:41 fetching corpus: 1400, signal 108414/133839 (executing program) 2025/09/01 11:42:41 fetching corpus: 1450, signal 109940/135710 (executing program) 2025/09/01 11:42:41 fetching corpus: 1500, signal 112683/138441 (executing program) 2025/09/01 11:42:41 fetching corpus: 1550, signal 113450/139790 (executing program) 2025/09/01 11:42:42 fetching corpus: 1600, signal 114422/141246 (executing program) 2025/09/01 11:42:42 fetching corpus: 1650, signal 115391/142677 (executing program) 2025/09/01 11:42:42 fetching corpus: 1700, signal 116077/143963 (executing program) 2025/09/01 11:42:42 fetching corpus: 1750, signal 116867/145241 (executing program) 2025/09/01 11:42:42 fetching corpus: 1800, signal 119089/147420 (executing program) 2025/09/01 11:42:42 fetching corpus: 1850, signal 119824/148634 (executing program) 2025/09/01 11:42:42 fetching corpus: 1900, signal 120614/149891 (executing program) 2025/09/01 11:42:42 fetching corpus: 1950, signal 121561/151242 (executing program) 2025/09/01 11:42:42 fetching corpus: 2000, signal 122777/152671 (executing program) 2025/09/01 11:42:42 fetching corpus: 2050, signal 123708/153935 (executing program) 2025/09/01 11:42:42 fetching corpus: 2100, signal 124935/155375 (executing program) 2025/09/01 11:42:42 fetching corpus: 2150, signal 125825/156538 (executing program) 2025/09/01 11:42:43 fetching corpus: 2200, signal 127006/157904 (executing program) 2025/09/01 11:42:43 fetching corpus: 2250, signal 128045/159153 (executing program) 2025/09/01 11:42:43 fetching corpus: 2300, signal 128782/160265 (executing program) 2025/09/01 11:42:43 fetching corpus: 2350, signal 129696/161422 (executing program) 2025/09/01 11:42:43 fetching corpus: 2400, signal 130578/162545 (executing program) 2025/09/01 11:42:43 fetching corpus: 2450, signal 131290/163536 (executing program) 2025/09/01 11:42:43 fetching corpus: 2500, signal 131985/164541 (executing program) 2025/09/01 11:42:43 fetching corpus: 2550, signal 132806/165549 (executing program) 2025/09/01 11:42:43 fetching corpus: 2600, signal 133590/166537 (executing program) 2025/09/01 11:42:43 fetching corpus: 2650, signal 134589/167610 (executing program) 2025/09/01 11:42:43 fetching corpus: 2700, signal 135233/168477 (executing program) 2025/09/01 11:42:44 fetching corpus: 2750, signal 135933/169388 (executing program) 2025/09/01 11:42:44 fetching corpus: 2800, signal 136873/170392 (executing program) 2025/09/01 11:42:44 fetching corpus: 2850, signal 137621/171293 (executing program) 2025/09/01 11:42:44 fetching corpus: 2900, signal 138621/172289 (executing program) 2025/09/01 11:42:44 fetching corpus: 2950, signal 139121/173070 (executing program) 2025/09/01 11:42:44 fetching corpus: 3000, signal 139679/173883 (executing program) 2025/09/01 11:42:44 fetching corpus: 3050, signal 140386/174671 (executing program) 2025/09/01 11:42:44 fetching corpus: 3100, signal 140986/175385 (executing program) 2025/09/01 11:42:44 fetching corpus: 3150, signal 141755/176164 (executing program) 2025/09/01 11:42:44 fetching corpus: 3200, signal 142598/176969 (executing program) 2025/09/01 11:42:44 fetching corpus: 3250, signal 143115/177685 (executing program) 2025/09/01 11:42:45 fetching corpus: 3300, signal 144031/178543 (executing program) 2025/09/01 11:42:45 fetching corpus: 3350, signal 144637/179206 (executing program) 2025/09/01 11:42:45 fetching corpus: 3400, signal 145126/179809 (executing program) 2025/09/01 11:42:45 fetching corpus: 3450, signal 146039/180604 (executing program) 2025/09/01 11:42:45 fetching corpus: 3500, signal 146633/181260 (executing program) 2025/09/01 11:42:45 fetching corpus: 3550, signal 147190/181944 (executing program) 2025/09/01 11:42:45 fetching corpus: 3600, signal 148123/182693 (executing program) 2025/09/01 11:42:45 fetching corpus: 3650, signal 148613/183261 (executing program) 2025/09/01 11:42:45 fetching corpus: 3700, signal 149533/183908 (executing program) 2025/09/01 11:42:45 fetching corpus: 3750, signal 149979/184507 (executing program) 2025/09/01 11:42:45 fetching corpus: 3800, signal 150635/185062 (executing program) 2025/09/01 11:42:46 fetching corpus: 3850, signal 151409/185659 (executing program) 2025/09/01 11:42:46 fetching corpus: 3900, signal 151943/186218 (executing program) 2025/09/01 11:42:46 fetching corpus: 3950, signal 152405/186741 (executing program) 2025/09/01 11:42:46 fetching corpus: 4000, signal 152928/187234 (executing program) 2025/09/01 11:42:46 fetching corpus: 4050, signal 153490/187762 (executing program) 2025/09/01 11:42:46 fetching corpus: 4100, signal 153928/188251 (executing program) 2025/09/01 11:42:46 fetching corpus: 4150, signal 154750/188739 (executing program) 2025/09/01 11:42:46 fetching corpus: 4200, signal 155201/189178 (executing program) 2025/09/01 11:42:46 fetching corpus: 4250, signal 155812/189609 (executing program) 2025/09/01 11:42:46 fetching corpus: 4300, signal 156140/190055 (executing program) 2025/09/01 11:42:47 fetching corpus: 4350, signal 156526/190471 (executing program) 2025/09/01 11:42:47 fetching corpus: 4400, signal 156992/190891 (executing program) 2025/09/01 11:42:47 fetching corpus: 4450, signal 159629/191369 (executing program) 2025/09/01 11:42:47 fetching corpus: 4500, signal 160226/191763 (executing program) 2025/09/01 11:42:47 fetching corpus: 4550, signal 161035/192152 (executing program) 2025/09/01 11:42:47 fetching corpus: 4600, signal 161626/192508 (executing program) 2025/09/01 11:42:47 fetching corpus: 4650, signal 162054/192853 (executing program) 2025/09/01 11:42:47 fetching corpus: 4700, signal 162420/193226 (executing program) 2025/09/01 11:42:47 fetching corpus: 4750, signal 162836/193358 (executing program) 2025/09/01 11:42:47 fetching corpus: 4800, signal 163300/193373 (executing program) 2025/09/01 11:42:48 fetching corpus: 4850, signal 163800/193387 (executing program) 2025/09/01 11:42:48 fetching corpus: 4900, signal 164249/193400 (executing program) 2025/09/01 11:42:48 fetching corpus: 4950, signal 164619/193422 (executing program) 2025/09/01 11:42:48 fetching corpus: 5000, signal 165056/193434 (executing program) 2025/09/01 11:42:48 fetching corpus: 5050, signal 165628/193572 (executing program) 2025/09/01 11:42:48 fetching corpus: 5100, signal 165931/193584 (executing program) 2025/09/01 11:42:48 fetching corpus: 5150, signal 166422/193589 (executing program) 2025/09/01 11:42:48 fetching corpus: 5200, signal 166980/193687 (executing program) 2025/09/01 11:42:48 fetching corpus: 5250, signal 167286/193696 (executing program) 2025/09/01 11:42:48 fetching corpus: 5300, signal 167662/193707 (executing program) 2025/09/01 11:42:48 fetching corpus: 5350, signal 168108/193713 (executing program) 2025/09/01 11:42:48 fetching corpus: 5400, signal 168428/193714 (executing program) 2025/09/01 11:42:49 fetching corpus: 5450, signal 168810/193720 (executing program) 2025/09/01 11:42:49 fetching corpus: 5500, signal 169094/193724 (executing program) 2025/09/01 11:42:49 fetching corpus: 5550, signal 169579/193766 (executing program) 2025/09/01 11:42:49 fetching corpus: 5600, signal 169909/193775 (executing program) 2025/09/01 11:42:49 fetching corpus: 5650, signal 170333/193796 (executing program) 2025/09/01 11:42:49 fetching corpus: 5700, signal 170621/193808 (executing program) 2025/09/01 11:42:49 fetching corpus: 5750, signal 171201/193808 (executing program) 2025/09/01 11:42:49 fetching corpus: 5800, signal 171508/193809 (executing program) 2025/09/01 11:42:49 fetching corpus: 5850, signal 171995/193813 (executing program) 2025/09/01 11:42:49 fetching corpus: 5900, signal 172344/193815 (executing program) 2025/09/01 11:42:49 fetching corpus: 5950, signal 172645/193817 (executing program) 2025/09/01 11:42:49 fetching corpus: 6000, signal 172924/193819 (executing program) 2025/09/01 11:42:50 fetching corpus: 6050, signal 173263/193835 (executing program) 2025/09/01 11:42:50 fetching corpus: 6100, signal 173665/193837 (executing program) 2025/09/01 11:42:50 fetching corpus: 6150, signal 174204/193845 (executing program) 2025/09/01 11:42:50 fetching corpus: 6200, signal 174586/193853 (executing program) 2025/09/01 11:42:50 fetching corpus: 6250, signal 174841/193864 (executing program) 2025/09/01 11:42:50 fetching corpus: 6300, signal 175086/193869 (executing program) 2025/09/01 11:42:50 fetching corpus: 6350, signal 175468/193869 (executing program) 2025/09/01 11:42:50 fetching corpus: 6400, signal 175929/193880 (executing program) 2025/09/01 11:42:50 fetching corpus: 6450, signal 176315/193885 (executing program) 2025/09/01 11:42:50 fetching corpus: 6500, signal 176560/193891 (executing program) 2025/09/01 11:42:51 fetching corpus: 6550, signal 176914/193903 (executing program) 2025/09/01 11:42:51 fetching corpus: 6600, signal 177169/193917 (executing program) 2025/09/01 11:42:51 fetching corpus: 6650, signal 177470/193917 (executing program) 2025/09/01 11:42:51 fetching corpus: 6700, signal 177772/193921 (executing program) 2025/09/01 11:42:51 fetching corpus: 6750, signal 178304/193977 (executing program) 2025/09/01 11:42:51 fetching corpus: 6800, signal 178581/193982 (executing program) 2025/09/01 11:42:51 fetching corpus: 6850, signal 178860/193989 (executing program) 2025/09/01 11:42:51 fetching corpus: 6900, signal 179158/194015 (executing program) 2025/09/01 11:42:51 fetching corpus: 6950, signal 179637/194020 (executing program) 2025/09/01 11:42:52 fetching corpus: 7000, signal 179899/194020 (executing program) 2025/09/01 11:42:52 fetching corpus: 7050, signal 180168/194026 (executing program) 2025/09/01 11:42:52 fetching corpus: 7100, signal 180551/194031 (executing program) 2025/09/01 11:42:52 fetching corpus: 7150, signal 180866/194046 (executing program) 2025/09/01 11:42:52 fetching corpus: 7200, signal 181136/194047 (executing program) 2025/09/01 11:42:52 fetching corpus: 7250, signal 181481/194126 (executing program) 2025/09/01 11:42:52 fetching corpus: 7300, signal 181813/194128 (executing program) 2025/09/01 11:42:52 fetching corpus: 7350, signal 182111/194134 (executing program) 2025/09/01 11:42:52 fetching corpus: 7400, signal 182506/194218 (executing program) 2025/09/01 11:42:52 fetching corpus: 7450, signal 182790/194221 (executing program) 2025/09/01 11:42:52 fetching corpus: 7500, signal 183021/194233 (executing program) 2025/09/01 11:42:52 fetching corpus: 7550, signal 183432/194243 (executing program) 2025/09/01 11:42:53 fetching corpus: 7600, signal 183713/194248 (executing program) 2025/09/01 11:42:53 fetching corpus: 7650, signal 184012/194248 (executing program) 2025/09/01 11:42:53 fetching corpus: 7700, signal 184250/194254 (executing program) 2025/09/01 11:42:53 fetching corpus: 7750, signal 184615/194254 (executing program) 2025/09/01 11:42:53 fetching corpus: 7800, signal 184817/194256 (executing program) 2025/09/01 11:42:53 fetching corpus: 7850, signal 185092/194257 (executing program) 2025/09/01 11:42:53 fetching corpus: 7900, signal 185342/194267 (executing program) 2025/09/01 11:42:53 fetching corpus: 7950, signal 185671/194267 (executing program) 2025/09/01 11:42:53 fetching corpus: 8000, signal 185879/194268 (executing program) 2025/09/01 11:42:53 fetching corpus: 8050, signal 186181/194300 (executing program) 2025/09/01 11:42:53 fetching corpus: 8100, signal 186426/194302 (executing program) 2025/09/01 11:42:53 fetching corpus: 8150, signal 186782/194309 (executing program) 2025/09/01 11:42:54 fetching corpus: 8200, signal 187029/194341 (executing program) 2025/09/01 11:42:54 fetching corpus: 8250, signal 187248/194363 (executing program) 2025/09/01 11:42:54 fetching corpus: 8300, signal 187457/194377 (executing program) 2025/09/01 11:42:54 fetching corpus: 8350, signal 187636/194382 (executing program) 2025/09/01 11:42:54 fetching corpus: 8400, signal 187906/194388 (executing program) 2025/09/01 11:42:54 fetching corpus: 8450, signal 188162/194393 (executing program) 2025/09/01 11:42:54 fetching corpus: 8500, signal 188318/194400 (executing program) 2025/09/01 11:42:54 fetching corpus: 8550, signal 188536/194405 (executing program) 2025/09/01 11:42:54 fetching corpus: 8600, signal 188867/194408 (executing program) 2025/09/01 11:42:54 fetching corpus: 8650, signal 189132/194420 (executing program) 2025/09/01 11:42:54 fetching corpus: 8700, signal 189523/194433 (executing program) 2025/09/01 11:42:55 fetching corpus: 8750, signal 189904/194443 (executing program) 2025/09/01 11:42:55 fetching corpus: 8800, signal 190256/194445 (executing program) 2025/09/01 11:42:55 fetching corpus: 8850, signal 190516/194455 (executing program) 2025/09/01 11:42:55 fetching corpus: 8900, signal 190782/194457 (executing program) 2025/09/01 11:42:55 fetching corpus: 8950, signal 191051/194483 (executing program) 2025/09/01 11:42:55 fetching corpus: 9000, signal 191273/194486 (executing program) 2025/09/01 11:42:55 fetching corpus: 9050, signal 191592/194493 (executing program) 2025/09/01 11:42:55 fetching corpus: 9063, signal 191660/194493 (executing program) 2025/09/01 11:42:55 fetching corpus: 9063, signal 191660/194493 (executing program) 2025/09/01 11:42:57 starting 8 fuzzer processes 11:42:57 executing program 0: r0 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x40086602, 0xffffffffffffffff) 11:42:57 executing program 1: syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_open_dev$vcsu(&(0x7f00000000c0), 0x6, 0x0) pselect6(0x40, &(0x7f0000000240), &(0x7f0000000280)={0x1f}, 0x0, 0x0, 0x0) 11:42:57 executing program 2: r0 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000400)='dns_resolver\x00', 0x0, &(0x7f0000000480)="0080a5d2c52b", 0x6, r0) 11:42:57 executing program 6: setuid(0xee00) r0 = memfd_secret(0x0) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000840), &(0x7f0000000880), 0x2, 0x0) 11:42:57 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)={0x18, 0x1a, 0x101, 0x0, 0x0, "", [@typed={0xc80, 0x0, 0x0, 0x0, @uid}]}, 0x18}], 0x1}, 0x0) 11:42:57 executing program 7: set_mempolicy(0x6, &(0x7f0000000040)=0x7, 0x5db) pipe(&(0x7f0000000440)={0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x276fed8e) 11:42:57 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'lo\x00', &(0x7f0000000000)=@ethtool_coalesce={0x4a}}) [ 80.097222] audit: type=1400 audit(1756726977.538:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:42:57 executing program 5: rseq(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}, 0x59, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETOWNER(r0, 0x400454c9, 0xffffffffffffffff) ioctl$TUNSETOWNER(r0, 0x400454c8, 0x0) [ 81.304880] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 81.307494] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 81.309392] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 81.313492] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 81.316517] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.371522] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 81.373050] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 81.376922] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 81.378542] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 81.381883] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 81.383308] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 81.385005] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 81.392092] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 81.394193] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 81.394278] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 81.397300] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.397421] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 81.403312] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 81.404295] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 81.406488] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 81.413895] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 81.415981] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 81.418669] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 81.437260] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 81.443962] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 81.452300] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 81.454262] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 81.456807] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 81.458245] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 81.459087] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 81.465445] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 81.465451] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 81.472129] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 81.477800] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 81.484936] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 81.492934] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 81.506029] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 81.524033] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 81.529240] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 81.534520] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 83.397869] Bluetooth: hci0: command tx timeout [ 83.461226] Bluetooth: hci1: command tx timeout [ 83.461263] Bluetooth: hci2: command tx timeout [ 83.524687] Bluetooth: hci7: command tx timeout [ 83.526373] Bluetooth: hci4: command tx timeout [ 83.526512] Bluetooth: hci3: command tx timeout [ 83.588752] Bluetooth: hci6: command tx timeout [ 83.589474] Bluetooth: hci5: command tx timeout [ 85.446152] Bluetooth: hci0: command tx timeout [ 85.511028] Bluetooth: hci2: command tx timeout [ 85.511049] Bluetooth: hci1: command tx timeout [ 85.572687] Bluetooth: hci4: command tx timeout [ 85.572728] Bluetooth: hci3: command tx timeout [ 85.573110] Bluetooth: hci7: command tx timeout [ 85.636778] Bluetooth: hci6: command tx timeout [ 85.637200] Bluetooth: hci5: command tx timeout [ 87.494638] Bluetooth: hci0: command tx timeout [ 87.556773] Bluetooth: hci1: command tx timeout [ 87.557668] Bluetooth: hci2: command tx timeout [ 87.620655] Bluetooth: hci4: command tx timeout [ 87.621051] Bluetooth: hci7: command tx timeout [ 87.621709] Bluetooth: hci3: command tx timeout [ 87.684726] Bluetooth: hci6: command tx timeout [ 87.685121] Bluetooth: hci5: command tx timeout [ 89.540797] Bluetooth: hci0: command tx timeout [ 89.604735] Bluetooth: hci2: command tx timeout [ 89.605139] Bluetooth: hci1: command tx timeout [ 89.668706] Bluetooth: hci3: command tx timeout [ 89.669104] Bluetooth: hci7: command tx timeout [ 89.669486] Bluetooth: hci4: command tx timeout [ 89.732743] Bluetooth: hci5: command tx timeout [ 89.733138] Bluetooth: hci6: command tx timeout [ 120.602087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.602797] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.711210] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.711853] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 120.918633] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 120.919248] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.008209] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.009077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.128386] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.129028] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.245388] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.246041] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.307422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.308072] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.430534] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.431423] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.512419] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.513383] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.563567] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.564900] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.662767] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.663383] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.725201] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.725885] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.766190] : tun_chr_ioctl cmd 1074025672 [ 121.766806] : ignored: set checksum enabled [ 121.800555] : tun_chr_ioctl cmd 1074025672 [ 121.801075] : ignored: set checksum enabled [ 121.897421] audit: type=1400 audit(1756727019.338:8): avc: denied { open } for pid=3867 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.902319] audit: type=1400 audit(1756727019.338:9): avc: denied { kernel } for pid=3867 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.914664] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.915296] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 121.954448] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 121.955191] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.304534] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.305163] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.339696] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 122.340243] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 122.423305] dns_resolver: Unsupported content type (128) 11:43:39 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10, 0x0}}, {{&(0x7f0000000000)={0x2, 0x0, @private}, 0x10, 0x0}}], 0x2, 0x0) 11:43:39 executing program 6: timerfd_create(0x0, 0x0) pselect6(0x40, &(0x7f0000000140), &(0x7f0000000180)={0x3}, &(0x7f00000001c0)={0x9}, 0x0, 0x0) 11:43:39 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 11:43:39 executing program 5: rseq(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}, 0x59, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETOWNER(r0, 0x400454c9, 0xffffffffffffffff) ioctl$TUNSETOWNER(r0, 0x400454c8, 0x0) 11:43:39 executing program 0: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0xf1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) 11:43:39 executing program 4: rseq(&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5}, 0x59, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'vcan0\x00'}) ioctl$TUNSETOWNER(r0, 0x400454c9, 0xffffffffffffffff) ioctl$TUNSETOWNER(r0, 0x400454c8, 0x0) 11:43:39 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffe000/0x2000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xa3) 11:43:39 executing program 3: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000980)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x64, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@mbim_extended={0x8}]}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0x3f}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0x7f, 0x0, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x76f6a3093a7435b1}}}}}}}]}}, 0x0) 11:43:39 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r1, &(0x7f00000001c0)=[{&(0x7f00000003c0)="8c3a", 0x2}], 0x1) splice(r0, 0x0, r2, 0x0, 0x1, 0x0) 11:43:39 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000200)={&(0x7f0000ffe000/0x2000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000001c0)=0xa3) 11:43:39 executing program 6: perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x2a, 0x0, "6c7abb3e9a9a691096b5eb47d00faa3f87c4977f0e265c767bc4efcf846530ace2b9d3f684a50d0b1e7c136a28dfcd2b470e6904d7208e05d688f255b9df442a8090a173937522cbeb7c2948aede5252"}, 0xd8) [ 122.523853] tun0: tun_chr_ioctl cmd 1074025672 [ 122.524271] tun0: ignored: set checksum enabled [ 122.535205] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 122.542513] : tun_chr_ioctl cmd 1074025672 [ 122.543059] : ignored: set checksum enabled [ 122.550411] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 123.083016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 123.086405] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 132.668732] unregister_netdevice: waiting for  to become free. Usage count = 0 VM DIAGNOSIS: 11:43:50 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff86897000 RDX=0000000000000001 RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88801bf3f6f0 RSP=ffff88801bf3f628 R8 =ffffffff86897004 R9 =ffff88801bf3f6d8 R10=000000000003bea3 R11=0000000000024b50 R12=ffff88801bf3f6f8 R13=ffff88801bf3f6e0 R14=ffff88801bf3fa20 R15=ffff88801bf3f698 RIP=ffffffff8135901f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007efd1bf96700 00000000 00000000 GS =0000 ffff8880e55d8000 00000000 00000000 LDT=0000 fffffe5000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000c0002fd000 CR3=000000000e100000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000100000000000000000 XMM04=00007efd1bf9510000007efd1bf95140 XMM05=000000000000000023f5923560069600 XMM06=00007efd1bf951400000000000000000 XMM07=00000000000000000000000000000000 XMM08=2e726f7475636578652d7a7973223d6d XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000200 RBX=0000000000000001 RCX=ffff888045b471ac RDX=1ffff110013c19ec RSI=ffffffff823ce86e RDI=ffff888009e0cf60 RBP=ffff88800fdbd000 RSP=ffff888045b471f0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000000 R13=ffff888009e0cdc0 R14=ffff888045b479a0 R15=ffff88800fdbd010 RIP=ffffffff823ce89d RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f58725b6700 00000000 00000000 GS =0000 ffff8880e56d8000 00000000 00000000 LDT=0000 fffffe4900000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056087281052c CR3=000000000f229000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=ffbd4ebe4c2ff636000000000014c358 XMM05=d3fdd5f48436fbd700000000000aead0 XMM06=d60de47a9d3ac68f00000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000