syzkaller login: [ 43.141497] sshd (242) used greatest stack depth: 24640 bytes left Warning: Permanently added '[localhost]:55866' (ECDSA) to the list of known hosts. 2022/09/30 02:05:08 fuzzer started 2022/09/30 02:05:08 dialing manager at localhost:40535 [ 45.465781] cgroup: Unknown subsys name 'net' [ 45.637923] cgroup: Unknown subsys name 'rlimit' 2022/09/30 02:05:24 syscalls: 2215 2022/09/30 02:05:24 code coverage: enabled 2022/09/30 02:05:24 comparison tracing: enabled 2022/09/30 02:05:24 extra coverage: enabled 2022/09/30 02:05:24 setuid sandbox: enabled 2022/09/30 02:05:24 namespace sandbox: enabled 2022/09/30 02:05:24 Android sandbox: enabled 2022/09/30 02:05:24 fault injection: enabled 2022/09/30 02:05:24 leak checking: enabled 2022/09/30 02:05:24 net packet injection: enabled 2022/09/30 02:05:24 net device setup: enabled 2022/09/30 02:05:24 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 02:05:24 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 02:05:24 USB emulation: enabled 2022/09/30 02:05:24 hci packet injection: enabled 2022/09/30 02:05:24 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 02:05:24 802.15.4 emulation: enabled 2022/09/30 02:05:24 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/30 02:05:24 fetching corpus: 50, signal 30755/33512 (executing program) 2022/09/30 02:05:24 fetching corpus: 100, signal 42647/46028 (executing program) 2022/09/30 02:05:24 fetching corpus: 150, signal 49749/53691 (executing program) 2022/09/30 02:05:25 fetching corpus: 200, signal 54721/59136 (executing program) 2022/09/30 02:05:25 fetching corpus: 250, signal 58543/63417 (executing program) 2022/09/30 02:05:25 fetching corpus: 300, signal 65101/69876 (executing program) 2022/09/30 02:05:25 fetching corpus: 350, signal 69953/74709 (executing program) 2022/09/30 02:05:25 fetching corpus: 400, signal 73623/78327 (executing program) 2022/09/30 02:05:25 fetching corpus: 450, signal 77608/82000 (executing program) 2022/09/30 02:05:26 fetching corpus: 500, signal 79082/83596 (executing program) 2022/09/30 02:05:26 fetching corpus: 550, signal 83813/87567 (executing program) 2022/09/30 02:05:26 fetching corpus: 600, signal 85548/89165 (executing program) 2022/09/30 02:05:26 fetching corpus: 650, signal 87623/90972 (executing program) 2022/09/30 02:05:26 fetching corpus: 700, signal 90993/93757 (executing program) 2022/09/30 02:05:26 fetching corpus: 750, signal 94068/96201 (executing program) 2022/09/30 02:05:26 fetching corpus: 800, signal 96758/98112 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/98942 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/98995 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99055 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99105 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99160 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99217 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99265 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99323 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99371 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99432 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99486 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99541 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99590 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99650 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99710 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99764 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99814 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99875 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99922 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/99990 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100052 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100108 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100161 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100205 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100253 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100310 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100378 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100428 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100478 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100543 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100609 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100657 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100678 (executing program) 2022/09/30 02:05:27 fetching corpus: 828, signal 97931/100678 (executing program) 2022/09/30 02:05:29 starting 8 fuzzer processes 02:05:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0xc020660b, &(0x7f0000000080)) 02:05:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35343235353432393700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000191e9a1afbab4a0784039e22778533ac010000000c00000000000000d1f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d1f4655fd1f4655fd1f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d1f4655fd1f4655fd1f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="2000000008f5ddb808f5ddb800000000d1f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d1f4655fd1f4655fd1f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d1f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d1f4655fd1f4655fd1f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000006d465f020000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d1f4655fd1f4655fd1f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000852c53740000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d1f4655fd1f4655fd1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3534323535343239372f66696c65302f66696c6530000000000000000000000000000000000000000000007c8f883b0000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="ed81000064000000d1f4655fd1f4655fd1f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c315b52e60000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) 02:05:29 executing program 2: openat2(0xffffffffffffffff, 0x0, &(0x7f0000002100)={0x0, 0x0, 0x30}, 0x18) 02:05:29 executing program 3: r0 = fork() waitid(0x1, r0, 0x0, 0x2, &(0x7f0000000000)) [ 65.872320] audit: type=1400 audit(1664503529.769:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 02:05:29 executing program 4: r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$BLKZEROOUT(r0, 0x5451, 0x0) 02:05:29 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x1, 0x4) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x2a, &(0x7f00000002c0)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 02:05:29 executing program 6: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000001b00)) 02:05:29 executing program 7: mkdir(&(0x7f0000003b80)='./file0\x00', 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') [ 67.209558] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.212154] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.214964] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.216003] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.219232] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.224292] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.228420] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.229200] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.231307] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 67.232556] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 67.248954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.250004] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.252864] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.253952] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.256224] Bluetooth: hci1: HCI_REQ-0x0c1a [ 67.263506] Bluetooth: hci0: HCI_REQ-0x0c1a [ 67.274980] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 67.277032] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.278550] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.280848] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.286238] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.288466] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.290158] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 67.292764] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.293407] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 67.295472] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.300069] Bluetooth: hci5: HCI_REQ-0x0c1a [ 67.300713] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.305773] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.306859] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 67.310568] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.312724] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 67.314856] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 67.318015] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 67.320628] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.322832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 67.325015] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.328502] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.330657] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 67.332738] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 67.335020] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.336995] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 67.341561] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 67.343445] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 67.345809] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 67.348798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.350838] Bluetooth: hci7: HCI_REQ-0x0c1a [ 67.354638] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.358903] Bluetooth: hci4: HCI_REQ-0x0c1a [ 67.360885] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 67.373784] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 67.375510] Bluetooth: hci3: HCI_REQ-0x0c1a [ 67.376891] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.384450] Bluetooth: hci6: HCI_REQ-0x0c1a [ 67.399624] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.427571] Bluetooth: hci2: HCI_REQ-0x0c1a [ 69.281092] Bluetooth: hci0: command 0x0409 tx timeout [ 69.281882] Bluetooth: hci1: command 0x0409 tx timeout [ 69.348101] Bluetooth: hci5: command 0x0409 tx timeout [ 69.408940] Bluetooth: hci3: command 0x0409 tx timeout [ 69.409624] Bluetooth: hci4: command 0x0409 tx timeout [ 69.410191] Bluetooth: hci7: command 0x0409 tx timeout [ 69.410807] Bluetooth: hci6: command 0x0409 tx timeout [ 69.473566] Bluetooth: hci2: command 0x0409 tx timeout [ 71.328991] Bluetooth: hci1: command 0x041b tx timeout [ 71.329916] Bluetooth: hci0: command 0x041b tx timeout [ 71.392519] Bluetooth: hci5: command 0x041b tx timeout [ 71.456492] Bluetooth: hci6: command 0x041b tx timeout [ 71.457027] Bluetooth: hci7: command 0x041b tx timeout [ 71.457550] Bluetooth: hci4: command 0x041b tx timeout [ 71.458004] Bluetooth: hci3: command 0x041b tx timeout [ 71.521619] Bluetooth: hci2: command 0x041b tx timeout [ 73.376520] Bluetooth: hci0: command 0x040f tx timeout [ 73.377773] Bluetooth: hci1: command 0x040f tx timeout [ 73.441437] Bluetooth: hci5: command 0x040f tx timeout [ 73.504680] Bluetooth: hci3: command 0x040f tx timeout [ 73.505231] Bluetooth: hci4: command 0x040f tx timeout [ 73.505777] Bluetooth: hci7: command 0x040f tx timeout [ 73.506264] Bluetooth: hci6: command 0x040f tx timeout [ 73.568476] Bluetooth: hci2: command 0x040f tx timeout [ 75.424469] Bluetooth: hci1: command 0x0419 tx timeout [ 75.425016] Bluetooth: hci0: command 0x0419 tx timeout [ 75.488439] Bluetooth: hci5: command 0x0419 tx timeout [ 75.553488] Bluetooth: hci6: command 0x0419 tx timeout [ 75.554828] Bluetooth: hci7: command 0x0419 tx timeout [ 75.555422] Bluetooth: hci4: command 0x0419 tx timeout [ 75.556095] Bluetooth: hci3: command 0x0419 tx timeout [ 75.616439] Bluetooth: hci2: command 0x0419 tx timeout [ 127.041921] syz-executor.4 (299) used greatest stack depth: 23984 bytes left [ 129.550026] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 129.551592] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 129.553398] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 129.554330] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 129.559582] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 129.561097] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 129.563615] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 129.564733] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 129.565857] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 129.582318] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 129.584716] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 129.587656] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 129.589099] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 129.590426] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 129.591348] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 129.592218] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 129.593514] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 129.594679] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 129.595461] Bluetooth: hci2: HCI_REQ-0x0c1a [ 129.610538] Bluetooth: hci1: HCI_REQ-0x0c1a [ 129.617289] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 129.619998] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 129.621098] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 129.624180] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 129.625775] Bluetooth: hci3: HCI_REQ-0x0c1a [ 129.630886] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 129.632128] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 129.636206] Bluetooth: hci0: HCI_REQ-0x0c1a [ 129.651328] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 129.655005] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 129.656460] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 129.657999] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 129.659763] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 129.661209] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 129.663730] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 129.664533] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 129.665265] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 129.666180] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 129.668701] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 129.669513] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 129.673521] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 129.675772] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 129.676663] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 129.677395] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 129.682172] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 129.683179] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 129.708663] Bluetooth: hci7: HCI_REQ-0x0c1a [ 129.711103] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 129.713302] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 129.714891] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 129.714956] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 129.717654] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 129.718599] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 129.723133] Bluetooth: hci4: HCI_REQ-0x0c1a [ 129.726618] Bluetooth: hci5: HCI_REQ-0x0c1a [ 129.764127] Bluetooth: hci6: HCI_REQ-0x0c1a [ 131.616468] Bluetooth: hci1: command 0x0409 tx timeout [ 131.617261] Bluetooth: hci2: command 0x0409 tx timeout [ 131.680579] Bluetooth: hci3: command 0x0409 tx timeout [ 131.681347] Bluetooth: hci0: command 0x0409 tx timeout [ 131.744469] Bluetooth: hci4: command 0x0409 tx timeout [ 131.745270] Bluetooth: hci5: command 0x0409 tx timeout [ 131.745916] Bluetooth: hci7: command 0x0409 tx timeout [ 131.808471] Bluetooth: hci6: command 0x0409 tx timeout [ 133.664583] Bluetooth: hci2: command 0x041b tx timeout [ 133.665130] Bluetooth: hci1: command 0x041b tx timeout [ 133.728544] Bluetooth: hci0: command 0x041b tx timeout [ 133.729133] Bluetooth: hci3: command 0x041b tx timeout [ 133.792607] Bluetooth: hci7: command 0x041b tx timeout [ 133.793200] Bluetooth: hci5: command 0x041b tx timeout [ 133.793839] Bluetooth: hci4: command 0x041b tx timeout [ 133.856441] Bluetooth: hci6: command 0x041b tx timeout [ 135.712454] Bluetooth: hci1: command 0x040f tx timeout [ 135.713081] Bluetooth: hci2: command 0x040f tx timeout [ 135.776441] Bluetooth: hci3: command 0x040f tx timeout [ 135.777038] Bluetooth: hci0: command 0x040f tx timeout [ 135.840504] Bluetooth: hci4: command 0x040f tx timeout [ 135.841102] Bluetooth: hci5: command 0x040f tx timeout [ 135.842093] Bluetooth: hci7: command 0x040f tx timeout [ 135.904523] Bluetooth: hci6: command 0x040f tx timeout [ 137.760467] Bluetooth: hci2: command 0x0419 tx timeout [ 137.761059] Bluetooth: hci1: command 0x0419 tx timeout [ 137.824457] Bluetooth: hci0: command 0x0419 tx timeout [ 137.825030] Bluetooth: hci3: command 0x0419 tx timeout [ 137.888482] Bluetooth: hci7: command 0x0419 tx timeout [ 137.889066] Bluetooth: hci5: command 0x0419 tx timeout [ 137.889637] Bluetooth: hci4: command 0x0419 tx timeout [ 137.952532] Bluetooth: hci6: command 0x0419 tx timeout [ 188.768454] INFO: task rcu_gp:3 blocked for more than 143 seconds. [ 188.769199] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.769764] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.770511] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 188.771262] Call Trace: [ 188.771533] [ 188.771759] __schedule+0x893/0x2470 [ 188.772140] ? io_schedule_timeout+0x150/0x150 [ 188.772594] ? do_raw_spin_lock+0x121/0x260 [ 188.773004] ? rwlock_bug.part.0+0x90/0x90 [ 188.773442] schedule+0xda/0x1b0 [ 188.773763] rescuer_thread+0x851/0xdb0 [ 188.774138] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.774618] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.775070] ? lockdep_hardirqs_on+0x79/0x100 [ 188.775516] ? worker_thread+0x1260/0x1260 [ 188.775910] kthread+0x2ed/0x3a0 [ 188.776231] ? kthread_complete_and_exit+0x40/0x40 [ 188.776711] ret_from_fork+0x22/0x30 [ 188.777078] [ 188.777313] INFO: task rcu_par_gp:4 blocked for more than 143 seconds. [ 188.777922] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.778422] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.779095] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 188.779849] Call Trace: [ 188.780093] [ 188.780315] __schedule+0x893/0x2470 [ 188.780709] ? io_schedule_timeout+0x150/0x150 [ 188.781266] ? do_raw_spin_lock+0x121/0x260 [ 188.781718] ? rwlock_bug.part.0+0x90/0x90 [ 188.782140] schedule+0xda/0x1b0 [ 188.782502] rescuer_thread+0x851/0xdb0 [ 188.782894] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.783435] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.783909] ? lockdep_hardirqs_on+0x79/0x100 [ 188.784344] ? worker_thread+0x1260/0x1260 [ 188.784779] kthread+0x2ed/0x3a0 [ 188.785120] ? kthread_complete_and_exit+0x40/0x40 [ 188.785836] ret_from_fork+0x22/0x30 [ 188.786229] [ 188.786490] INFO: task slub_flushwq:5 blocked for more than 143 seconds. [ 188.787101] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.787631] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.790267] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 188.792647] Call Trace: [ 188.793429] [ 188.794063] __schedule+0x893/0x2470 [ 188.795137] ? io_schedule_timeout+0x150/0x150 [ 188.796436] ? do_raw_spin_lock+0x121/0x260 [ 188.797712] ? rwlock_bug.part.0+0x90/0x90 [ 188.798988] schedule+0xda/0x1b0 [ 188.800018] rescuer_thread+0x851/0xdb0 [ 188.801194] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.802613] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.803816] ? lockdep_hardirqs_on+0x79/0x100 [ 188.805083] ? worker_thread+0x1260/0x1260 [ 188.806449] kthread+0x2ed/0x3a0 [ 188.807522] ? kthread_complete_and_exit+0x40/0x40 [ 188.808973] ret_from_fork+0x22/0x30 [ 188.810185] [ 188.810945] INFO: task netns:6 blocked for more than 143 seconds. [ 188.812847] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.814624] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.817227] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 188.819938] Call Trace: [ 188.820775] [ 188.821570] __schedule+0x893/0x2470 [ 188.822711] ? io_schedule_timeout+0x150/0x150 [ 188.824181] ? do_raw_spin_lock+0x121/0x260 [ 188.825583] ? rwlock_bug.part.0+0x90/0x90 [ 188.826880] schedule+0xda/0x1b0 [ 188.827969] rescuer_thread+0x851/0xdb0 [ 188.829254] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.830857] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.832444] ? lockdep_hardirqs_on+0x79/0x100 [ 188.833890] ? worker_thread+0x1260/0x1260 [ 188.835307] kthread+0x2ed/0x3a0 [ 188.836455] ? kthread_complete_and_exit+0x40/0x40 [ 188.838042] ret_from_fork+0x22/0x30 [ 188.839306] [ 188.839953] INFO: task kworker/0:0H:8 blocked for more than 143 seconds. [ 188.841713] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.843162] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.845063] task:kworker/0:0H state:I stack:29760 pid:8 ppid:2 flags:0x00004000 [ 188.847223] Workqueue: 0x0 (kblockd) [ 188.848195] Call Trace: [ 188.848884] [ 188.849518] __schedule+0x893/0x2470 [ 188.850649] ? io_schedule_timeout+0x150/0x150 [ 188.851976] schedule+0xda/0x1b0 [ 188.853017] worker_thread+0x15f/0x1260 [ 188.854161] ? process_one_work+0x16a0/0x16a0 [ 188.855347] kthread+0x2ed/0x3a0 [ 188.856214] ? kthread_complete_and_exit+0x40/0x40 [ 188.857643] ret_from_fork+0x22/0x30 [ 188.858851] [ 188.859567] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 188.861478] Not tainted 6.0.0-rc7-next-20220929 #1 [ 188.863068] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.865478] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 188.867945] Call Trace: [ 188.868689] [ 188.869337] __schedule+0x893/0x2470 [ 188.870470] ? io_schedule_timeout+0x150/0x150 [ 188.871753] ? do_raw_spin_lock+0x121/0x260 [ 188.873092] ? rwlock_bug.part.0+0x90/0x90 [ 188.874415] schedule+0xda/0x1b0 [ 188.875444] rescuer_thread+0x851/0xdb0 [ 188.876591] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.878161] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.879684] ? lockdep_hardirqs_on+0x79/0x100 [ 188.881023] ? worker_thread+0x1260/0x1260 [ 188.882315] kthread+0x2ed/0x3a0 [ 188.883198] ? kthread_complete_and_exit+0x40/0x40 [ 188.884389] ret_from_fork+0x22/0x30 [ 188.885324] [ 189.025404] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 189.026160] Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.026761] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 189.027591] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 189.028500] Call Trace: [ 189.028762] [ 189.029008] __schedule+0x893/0x2470 [ 189.029426] ? io_schedule_timeout+0x150/0x150 [ 189.029853] ? mark_held_locks+0x9e/0xe0 [ 189.030245] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.030804] schedule+0xda/0x1b0 [ 189.031165] rcu_tasks_one_gp+0x3db/0xc10 [ 189.031644] rcu_tasks_kthread+0x80/0xa0 [ 189.032080] ? rcu_tasks_postscan+0x10/0x10 [ 189.032549] kthread+0x2ed/0x3a0 [ 189.032902] ? kthread_complete_and_exit+0x40/0x40 [ 189.033444] ret_from_fork+0x22/0x30 [ 189.033817] [ 189.034037] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 189.034654] Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.035124] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 189.035816] task:kworker/1:0H state:I stack:29760 pid:21 ppid:2 flags:0x00004000 [ 189.036478] Workqueue: 0x0 (events_highpri) [ 189.036827] Call Trace: [ 189.037062] [ 189.037339] __schedule+0x893/0x2470 [ 189.037734] ? io_schedule_timeout+0x150/0x150 [ 189.038228] schedule+0xda/0x1b0 [ 189.038626] worker_thread+0x15f/0x1260 [ 189.039016] ? process_one_work+0x16a0/0x16a0 [ 189.039395] kthread+0x2ed/0x3a0 [ 189.039668] ? kthread_complete_and_exit+0x40/0x40 [ 189.040058] ret_from_fork+0x22/0x30 [ 189.040398] [ 189.040662] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 189.041224] Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.041783] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 189.042554] task:inet_frag_wq state:I stack:30360 pid:23 ppid:2 flags:0x00004000 [ 189.043247] Call Trace: [ 189.043509] [ 189.043702] __schedule+0x893/0x2470 [ 189.043995] ? io_schedule_timeout+0x150/0x150 [ 189.044477] ? do_raw_spin_lock+0x121/0x260 [ 189.044879] ? rwlock_bug.part.0+0x90/0x90 [ 189.045272] schedule+0xda/0x1b0 [ 189.045612] rescuer_thread+0x851/0xdb0 [ 189.045939] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.046282] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.046738] ? lockdep_hardirqs_on+0x79/0x100 [ 189.047060] ? worker_thread+0x1260/0x1260 [ 189.047414] kthread+0x2ed/0x3a0 [ 189.047773] ? kthread_complete_and_exit+0x40/0x40 [ 189.048173] ret_from_fork+0x22/0x30 [ 189.048524] [ 189.048766] INFO: task writeback:29 blocked for more than 143 seconds. [ 189.049252] Not tainted 6.0.0-rc7-next-20220929 #1 [ 189.049757] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 189.050334] task:writeback state:I stack:30176 pid:29 ppid:2 flags:0x00004000 [ 189.051065] Call Trace: [ 189.051257] [ 189.051445] __schedule+0x893/0x2470 [ 189.051757] ? io_schedule_timeout+0x150/0x150 [ 189.052210] ? do_raw_spin_lock+0x121/0x260 [ 189.052672] ? rwlock_bug.part.0+0x90/0x90 [ 189.053091] schedule+0xda/0x1b0 [ 189.053466] rescuer_thread+0x851/0xdb0 [ 189.053781] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.054161] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.054552] ? lockdep_hardirqs_on+0x79/0x100 [ 189.054887] ? worker_thread+0x1260/0x1260 [ 189.055223] kthread+0x2ed/0x3a0 [ 189.055511] ? kthread_complete_and_exit+0x40/0x40 [ 189.055960] ret_from_fork+0x22/0x30 [ 189.056253] [ 189.056492] [ 189.056492] Showing all locks held in the system: [ 189.056945] 2 locks held by systemd/1: [ 189.057227] 1 lock held by rcu_tasks_kthre/11: [ 189.057601] #0: ffffffff85406890 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 189.058569] 1 lock held by khungtaskd/26: [ 189.059006] #0: ffffffff85407360 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 189.059928] 1 lock held by kmemleak/55: [ 189.060331] 1 lock held by in:imklog/187: [ 189.060820] 2 locks held by kworker/1:4/3094: [ 189.061263] #0: ffff888007c58d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 189.062228] #1: ffff88801f58fdb0 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 189.063335] 1 lock held by syz-executor.1/3106: [ 189.063774] 1 lock held by syz-executor.3/3107: [ 189.064204] 1 lock held by syz-executor.2/3108: [ 189.064604] #0: ffffffff854139b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x7c9/0xc70 [ 189.065509] 1 lock held by syz-executor.7/3110: [ 189.065926] 1 lock held by syz-executor.5/3111: [ 189.066260] 1 lock held by syz-executor.0/3113: [ 189.068897] [ 189.069069] ============================================= [ 189.069069] [ 191.412767] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 191.421415] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 191.423920] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 191.428524] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 191.431441] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 191.433944] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 191.441531] Bluetooth: hci0: HCI_REQ-0x0c1a [ 191.663596] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 191.670909] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 191.673337] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 191.677923] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 191.679737] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 191.680876] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 191.684802] Bluetooth: hci2: HCI_REQ-0x0c1a [ 191.749183] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 191.750920] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 191.752722] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 191.755777] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 191.758591] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 191.760766] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 191.763821] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 191.765886] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 191.768084] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 191.770186] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 191.772280] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 191.774473] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 191.777534] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 191.780840] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 191.783222] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 191.786953] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 191.791749] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 191.793097] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 191.795129] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 191.797575] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 191.799327] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 191.800445] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 191.801700] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 191.802672] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 191.804135] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 191.804962] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 191.806305] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 191.808325] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 191.809107] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 191.811546] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 191.815783] Bluetooth: hci4: HCI_REQ-0x0c1a [ 191.816545] Bluetooth: hci6: HCI_REQ-0x0c1a [ 191.837826] Bluetooth: hci5: HCI_REQ-0x0c1a [ 191.851178] Bluetooth: hci7: HCI_REQ-0x0c1a [ 191.852574] Bluetooth: hci3: HCI_REQ-0x0c1a [ 193.504727] Bluetooth: hci0: command 0x0409 tx timeout [ 193.568436] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 193.696608] Bluetooth: hci2: command 0x0409 tx timeout [ 193.824530] Bluetooth: hci6: command 0x0409 tx timeout [ 193.824981] Bluetooth: hci4: command 0x0409 tx timeout [ 193.888555] Bluetooth: hci7: command 0x0409 tx timeout [ 193.889676] Bluetooth: hci5: command 0x0409 tx timeout [ 193.890304] Bluetooth: hci3: command 0x0409 tx timeout [ 195.552783] Bluetooth: hci0: command 0x041b tx timeout [ 195.745446] Bluetooth: hci2: command 0x041b tx timeout [ 195.872645] Bluetooth: hci6: command 0x041b tx timeout [ 195.874134] Bluetooth: hci4: command 0x041b tx timeout [ 195.936482] Bluetooth: hci3: command 0x041b tx timeout [ 195.938116] Bluetooth: hci5: command 0x041b tx timeout [ 195.938842] Bluetooth: hci7: command 0x041b tx timeout [ 196.196031] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 196.199022] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 196.200234] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 196.236284] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 196.255878] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 196.257303] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 196.284465] Bluetooth: hci1: HCI_REQ-0x0c1a [ 197.600772] Bluetooth: hci0: command 0x040f tx timeout [ 197.792435] Bluetooth: hci2: command 0x040f tx timeout [ 197.920455] Bluetooth: hci4: command 0x040f tx timeout [ 197.921009] Bluetooth: hci6: command 0x040f tx timeout [ 197.984496] Bluetooth: hci7: command 0x040f tx timeout [ 197.985039] Bluetooth: hci5: command 0x040f tx timeout [ 197.985572] Bluetooth: hci3: command 0x040f tx timeout [ 198.368908] Bluetooth: hci1: command 0x0409 tx timeout VM DIAGNOSIS: 02:07:33 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=0000000000000002 RSI=ffffffff81e6bb93 RDI=ffff88800f55d53a RBP=ffff88800c8ea080 RSP=ffff88803a79f798 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=0000000000000000 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff81e6bbc1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007faf86357368 CR3=000000001deee000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff823ba33c RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88800900f9c0 R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000010 R11=0000000000000001 R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ecb588 R15=dffffc0000000000 RIP=ffffffff823ba391 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffe9fdefff8 CR3=000000003d75a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000