syzkaller login: [ 59.473006] systemd-udevd (122) used greatest stack depth: 24608 bytes left Warning: Permanently added '[localhost]:55471' (ECDSA) to the list of known hosts. 2024/10/28 16:23:42 fuzzer started 2024/10/28 16:23:42 dialing manager at localhost:45639 [ 62.265962] cgroup: Unknown subsys name 'net' [ 62.364183] cgroup: Unknown subsys name 'cpuset' [ 62.377296] cgroup: Unknown subsys name 'rlimit' 2024/10/28 16:23:58 syscalls: 2217 2024/10/28 16:23:58 code coverage: enabled 2024/10/28 16:23:58 comparison tracing: enabled 2024/10/28 16:23:58 extra coverage: enabled 2024/10/28 16:23:58 setuid sandbox: enabled 2024/10/28 16:23:58 namespace sandbox: enabled 2024/10/28 16:23:58 Android sandbox: enabled 2024/10/28 16:23:58 fault injection: enabled 2024/10/28 16:23:58 leak checking: enabled 2024/10/28 16:23:58 net packet injection: enabled 2024/10/28 16:23:58 net device setup: enabled 2024/10/28 16:23:58 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/10/28 16:23:58 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/10/28 16:23:58 USB emulation: enabled 2024/10/28 16:23:58 hci packet injection: enabled 2024/10/28 16:23:58 wifi device emulation: enabled 2024/10/28 16:23:58 802.15.4 emulation: enabled 2024/10/28 16:23:59 fetching corpus: 50, signal 24217/25973 (executing program) 2024/10/28 16:23:59 fetching corpus: 100, signal 32267/35616 (executing program) 2024/10/28 16:23:59 fetching corpus: 150, signal 40560/45312 (executing program) 2024/10/28 16:24:00 fetching corpus: 200, signal 50793/56684 (executing program) 2024/10/28 16:24:00 fetching corpus: 250, signal 55393/62514 (executing program) 2024/10/28 16:24:00 fetching corpus: 300, signal 58271/66638 (executing program) 2024/10/28 16:24:00 fetching corpus: 350, signal 61735/71262 (executing program) 2024/10/28 16:24:00 fetching corpus: 400, signal 66886/77374 (executing program) 2024/10/28 16:24:00 fetching corpus: 450, signal 69335/80951 (executing program) 2024/10/28 16:24:01 fetching corpus: 500, signal 71296/84032 (executing program) 2024/10/28 16:24:01 fetching corpus: 550, signal 73116/86954 (executing program) 2024/10/28 16:24:01 fetching corpus: 600, signal 75381/90239 (executing program) 2024/10/28 16:24:01 fetching corpus: 650, signal 78581/94256 (executing program) 2024/10/28 16:24:01 fetching corpus: 700, signal 81569/97978 (executing program) 2024/10/28 16:24:01 fetching corpus: 750, signal 83330/100646 (executing program) 2024/10/28 16:24:02 fetching corpus: 800, signal 85815/103890 (executing program) 2024/10/28 16:24:02 fetching corpus: 850, signal 87975/106801 (executing program) 2024/10/28 16:24:02 fetching corpus: 900, signal 89890/109515 (executing program) 2024/10/28 16:24:02 fetching corpus: 950, signal 91534/111929 (executing program) 2024/10/28 16:24:03 fetching corpus: 1000, signal 93539/114591 (executing program) 2024/10/28 16:24:03 fetching corpus: 1050, signal 94686/116563 (executing program) 2024/10/28 16:24:03 fetching corpus: 1100, signal 96150/118758 (executing program) 2024/10/28 16:24:03 fetching corpus: 1150, signal 97404/120763 (executing program) 2024/10/28 16:24:04 fetching corpus: 1200, signal 98931/122939 (executing program) 2024/10/28 16:24:04 fetching corpus: 1250, signal 99733/124506 (executing program) 2024/10/28 16:24:04 fetching corpus: 1300, signal 103611/128306 (executing program) 2024/10/28 16:24:04 fetching corpus: 1350, signal 104825/130137 (executing program) 2024/10/28 16:24:05 fetching corpus: 1400, signal 106462/132251 (executing program) 2024/10/28 16:24:05 fetching corpus: 1450, signal 107487/133859 (executing program) 2024/10/28 16:24:05 fetching corpus: 1500, signal 108324/135389 (executing program) 2024/10/28 16:24:05 fetching corpus: 1550, signal 109514/137104 (executing program) 2024/10/28 16:24:06 fetching corpus: 1600, signal 110129/138409 (executing program) 2024/10/28 16:24:06 fetching corpus: 1650, signal 111536/140204 (executing program) 2024/10/28 16:24:06 fetching corpus: 1700, signal 112974/141986 (executing program) 2024/10/28 16:24:06 fetching corpus: 1750, signal 114333/143758 (executing program) 2024/10/28 16:24:07 fetching corpus: 1800, signal 115302/145223 (executing program) 2024/10/28 16:24:07 fetching corpus: 1850, signal 116227/146642 (executing program) 2024/10/28 16:24:07 fetching corpus: 1900, signal 117102/148004 (executing program) 2024/10/28 16:24:08 fetching corpus: 1950, signal 118089/149481 (executing program) 2024/10/28 16:24:08 fetching corpus: 2000, signal 119042/150897 (executing program) 2024/10/28 16:24:08 fetching corpus: 2050, signal 119777/152154 (executing program) 2024/10/28 16:24:09 fetching corpus: 2100, signal 120502/153369 (executing program) 2024/10/28 16:24:09 fetching corpus: 2150, signal 121169/154549 (executing program) 2024/10/28 16:24:09 fetching corpus: 2200, signal 122524/156090 (executing program) 2024/10/28 16:24:09 fetching corpus: 2250, signal 123011/157132 (executing program) 2024/10/28 16:24:10 fetching corpus: 2300, signal 123487/158128 (executing program) 2024/10/28 16:24:10 fetching corpus: 2350, signal 124914/159643 (executing program) 2024/10/28 16:24:10 fetching corpus: 2400, signal 125638/160753 (executing program) 2024/10/28 16:24:10 fetching corpus: 2450, signal 126432/161892 (executing program) 2024/10/28 16:24:11 fetching corpus: 2500, signal 127620/163149 (executing program) 2024/10/28 16:24:11 fetching corpus: 2550, signal 128321/164142 (executing program) 2024/10/28 16:24:11 fetching corpus: 2600, signal 128923/165119 (executing program) 2024/10/28 16:24:12 fetching corpus: 2650, signal 129500/166096 (executing program) 2024/10/28 16:24:12 fetching corpus: 2700, signal 129920/166944 (executing program) 2024/10/28 16:24:12 fetching corpus: 2750, signal 130484/167862 (executing program) 2024/10/28 16:24:12 fetching corpus: 2800, signal 130981/168764 (executing program) 2024/10/28 16:24:13 fetching corpus: 2850, signal 131664/169723 (executing program) 2024/10/28 16:24:13 fetching corpus: 2900, signal 132706/170785 (executing program) 2024/10/28 16:24:13 fetching corpus: 2950, signal 133251/171660 (executing program) 2024/10/28 16:24:14 fetching corpus: 3000, signal 133898/172573 (executing program) 2024/10/28 16:24:14 fetching corpus: 3050, signal 134478/173438 (executing program) 2024/10/28 16:24:14 fetching corpus: 3100, signal 135082/174367 (executing program) 2024/10/28 16:24:14 fetching corpus: 3150, signal 135471/175132 (executing program) 2024/10/28 16:24:14 fetching corpus: 3200, signal 136713/176215 (executing program) 2024/10/28 16:24:14 fetching corpus: 3250, signal 137220/177018 (executing program) 2024/10/28 16:24:15 fetching corpus: 3300, signal 137875/177831 (executing program) 2024/10/28 16:24:15 fetching corpus: 3350, signal 138359/178578 (executing program) 2024/10/28 16:24:15 fetching corpus: 3400, signal 138931/179327 (executing program) 2024/10/28 16:24:16 fetching corpus: 3450, signal 139491/180107 (executing program) 2024/10/28 16:24:16 fetching corpus: 3500, signal 140443/180974 (executing program) 2024/10/28 16:24:16 fetching corpus: 3550, signal 141006/181690 (executing program) 2024/10/28 16:24:16 fetching corpus: 3600, signal 141455/182401 (executing program) 2024/10/28 16:24:16 fetching corpus: 3650, signal 142153/183160 (executing program) 2024/10/28 16:24:17 fetching corpus: 3700, signal 142706/183844 (executing program) 2024/10/28 16:24:17 fetching corpus: 3750, signal 143269/184516 (executing program) 2024/10/28 16:24:17 fetching corpus: 3800, signal 143727/185150 (executing program) 2024/10/28 16:24:17 fetching corpus: 3850, signal 144191/185776 (executing program) 2024/10/28 16:24:18 fetching corpus: 3900, signal 144718/186422 (executing program) 2024/10/28 16:24:18 fetching corpus: 3950, signal 145058/186984 (executing program) 2024/10/28 16:24:18 fetching corpus: 4000, signal 145349/187578 (executing program) 2024/10/28 16:24:18 fetching corpus: 4050, signal 145803/188198 (executing program) 2024/10/28 16:24:19 fetching corpus: 4100, signal 146417/188828 (executing program) 2024/10/28 16:24:19 fetching corpus: 4150, signal 146732/189406 (executing program) 2024/10/28 16:24:19 fetching corpus: 4200, signal 147225/189981 (executing program) 2024/10/28 16:24:19 fetching corpus: 4250, signal 147659/190599 (executing program) 2024/10/28 16:24:20 fetching corpus: 4300, signal 148618/191215 (executing program) 2024/10/28 16:24:20 fetching corpus: 4350, signal 148905/191761 (executing program) 2024/10/28 16:24:20 fetching corpus: 4400, signal 149165/192283 (executing program) 2024/10/28 16:24:21 fetching corpus: 4450, signal 149745/192841 (executing program) 2024/10/28 16:24:21 fetching corpus: 4500, signal 150075/193365 (executing program) 2024/10/28 16:24:21 fetching corpus: 4550, signal 150603/193867 (executing program) 2024/10/28 16:24:21 fetching corpus: 4600, signal 151291/194376 (executing program) 2024/10/28 16:24:22 fetching corpus: 4650, signal 151758/194896 (executing program) 2024/10/28 16:24:22 fetching corpus: 4700, signal 152208/195414 (executing program) 2024/10/28 16:24:22 fetching corpus: 4750, signal 152559/195910 (executing program) 2024/10/28 16:24:23 fetching corpus: 4800, signal 152845/196364 (executing program) 2024/10/28 16:24:23 fetching corpus: 4850, signal 153639/196815 (executing program) 2024/10/28 16:24:23 fetching corpus: 4900, signal 154064/197262 (executing program) 2024/10/28 16:24:24 fetching corpus: 4950, signal 154455/197599 (executing program) 2024/10/28 16:24:24 fetching corpus: 5000, signal 154779/197599 (executing program) 2024/10/28 16:24:24 fetching corpus: 5050, signal 155270/197615 (executing program) 2024/10/28 16:24:24 fetching corpus: 5100, signal 155801/197615 (executing program) 2024/10/28 16:24:25 fetching corpus: 5150, signal 156154/197615 (executing program) 2024/10/28 16:24:25 fetching corpus: 5200, signal 156628/197615 (executing program) 2024/10/28 16:24:25 fetching corpus: 5250, signal 157159/197615 (executing program) 2024/10/28 16:24:25 fetching corpus: 5300, signal 157542/197617 (executing program) 2024/10/28 16:24:25 fetching corpus: 5350, signal 157996/197617 (executing program) 2024/10/28 16:24:25 fetching corpus: 5400, signal 158523/197617 (executing program) 2024/10/28 16:24:26 fetching corpus: 5450, signal 158973/197619 (executing program) 2024/10/28 16:24:26 fetching corpus: 5500, signal 159234/197619 (executing program) 2024/10/28 16:24:26 fetching corpus: 5550, signal 159698/197619 (executing program) 2024/10/28 16:24:26 fetching corpus: 5600, signal 159898/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5650, signal 160271/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5700, signal 160811/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5750, signal 161305/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5800, signal 161728/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5850, signal 162236/197619 (executing program) 2024/10/28 16:24:27 fetching corpus: 5900, signal 162586/197619 (executing program) 2024/10/28 16:24:28 fetching corpus: 5950, signal 162962/197619 (executing program) 2024/10/28 16:24:28 fetching corpus: 6000, signal 163263/197619 (executing program) 2024/10/28 16:24:28 fetching corpus: 6050, signal 163572/197622 (executing program) 2024/10/28 16:24:28 fetching corpus: 6100, signal 163966/197625 (executing program) 2024/10/28 16:24:29 fetching corpus: 6150, signal 164473/197625 (executing program) 2024/10/28 16:24:29 fetching corpus: 6200, signal 164836/197625 (executing program) 2024/10/28 16:24:29 fetching corpus: 6250, signal 165104/197625 (executing program) 2024/10/28 16:24:29 fetching corpus: 6300, signal 165363/197625 (executing program) 2024/10/28 16:24:30 fetching corpus: 6350, signal 165644/197625 (executing program) 2024/10/28 16:24:30 fetching corpus: 6400, signal 166025/197625 (executing program) 2024/10/28 16:24:30 fetching corpus: 6450, signal 166256/197626 (executing program) 2024/10/28 16:24:31 fetching corpus: 6500, signal 166491/197626 (executing program) 2024/10/28 16:24:31 fetching corpus: 6550, signal 166874/197626 (executing program) 2024/10/28 16:24:31 fetching corpus: 6600, signal 167112/197626 (executing program) 2024/10/28 16:24:31 fetching corpus: 6650, signal 167331/197626 (executing program) 2024/10/28 16:24:32 fetching corpus: 6700, signal 167731/197626 (executing program) 2024/10/28 16:24:32 fetching corpus: 6750, signal 168117/197626 (executing program) 2024/10/28 16:24:32 fetching corpus: 6800, signal 168621/197626 (executing program) 2024/10/28 16:24:32 fetching corpus: 6850, signal 169017/197626 (executing program) 2024/10/28 16:24:33 fetching corpus: 6900, signal 169348/197626 (executing program) 2024/10/28 16:24:33 fetching corpus: 6950, signal 169619/197626 (executing program) 2024/10/28 16:24:33 fetching corpus: 7000, signal 169909/197626 (executing program) 2024/10/28 16:24:34 fetching corpus: 7050, signal 170093/197626 (executing program) 2024/10/28 16:24:34 fetching corpus: 7100, signal 170546/197626 (executing program) 2024/10/28 16:24:35 fetching corpus: 7150, signal 171292/197626 (executing program) 2024/10/28 16:24:35 fetching corpus: 7200, signal 171590/197626 (executing program) 2024/10/28 16:24:35 fetching corpus: 7250, signal 171817/197626 (executing program) 2024/10/28 16:24:35 fetching corpus: 7300, signal 172058/197626 (executing program) 2024/10/28 16:24:36 fetching corpus: 7350, signal 172304/197626 (executing program) 2024/10/28 16:24:36 fetching corpus: 7400, signal 172527/197626 (executing program) 2024/10/28 16:24:36 fetching corpus: 7450, signal 172742/197626 (executing program) 2024/10/28 16:24:37 fetching corpus: 7500, signal 173005/197626 (executing program) 2024/10/28 16:24:37 fetching corpus: 7550, signal 173237/197626 (executing program) 2024/10/28 16:24:38 fetching corpus: 7600, signal 173467/197626 (executing program) 2024/10/28 16:24:38 fetching corpus: 7650, signal 173751/197626 (executing program) 2024/10/28 16:24:38 fetching corpus: 7700, signal 174078/197626 (executing program) 2024/10/28 16:24:39 fetching corpus: 7750, signal 174606/197626 (executing program) 2024/10/28 16:24:39 fetching corpus: 7800, signal 174858/197626 (executing program) 2024/10/28 16:24:39 fetching corpus: 7850, signal 175159/197626 (executing program) 2024/10/28 16:24:40 fetching corpus: 7900, signal 175372/197626 (executing program) 2024/10/28 16:24:40 fetching corpus: 7950, signal 175687/197626 (executing program) 2024/10/28 16:24:40 fetching corpus: 8000, signal 176011/197626 (executing program) 2024/10/28 16:24:40 fetching corpus: 8050, signal 176239/197626 (executing program) 2024/10/28 16:24:41 fetching corpus: 8100, signal 176453/197626 (executing program) 2024/10/28 16:24:41 fetching corpus: 8150, signal 176812/197626 (executing program) 2024/10/28 16:24:41 fetching corpus: 8200, signal 177196/197630 (executing program) 2024/10/28 16:24:41 fetching corpus: 8250, signal 177382/197630 (executing program) 2024/10/28 16:24:41 fetching corpus: 8300, signal 177640/197630 (executing program) 2024/10/28 16:24:42 fetching corpus: 8350, signal 177918/197630 (executing program) 2024/10/28 16:24:42 fetching corpus: 8400, signal 178194/197630 (executing program) 2024/10/28 16:24:42 fetching corpus: 8450, signal 178491/197632 (executing program) 2024/10/28 16:24:43 fetching corpus: 8500, signal 178736/197632 (executing program) 2024/10/28 16:24:43 fetching corpus: 8550, signal 178979/197632 (executing program) 2024/10/28 16:24:43 fetching corpus: 8600, signal 179184/197632 (executing program) 2024/10/28 16:24:43 fetching corpus: 8650, signal 179399/197632 (executing program) 2024/10/28 16:24:43 fetching corpus: 8700, signal 179637/197632 (executing program) 2024/10/28 16:24:44 fetching corpus: 8750, signal 179788/197632 (executing program) 2024/10/28 16:24:44 fetching corpus: 8800, signal 180049/197632 (executing program) 2024/10/28 16:24:44 fetching corpus: 8850, signal 180233/197632 (executing program) 2024/10/28 16:24:45 fetching corpus: 8900, signal 180503/197632 (executing program) 2024/10/28 16:24:45 fetching corpus: 8950, signal 180676/197632 (executing program) 2024/10/28 16:24:45 fetching corpus: 9000, signal 180903/197632 (executing program) 2024/10/28 16:24:46 fetching corpus: 9050, signal 181117/197632 (executing program) 2024/10/28 16:24:46 fetching corpus: 9100, signal 181269/197632 (executing program) 2024/10/28 16:24:46 fetching corpus: 9150, signal 182401/197632 (executing program) 2024/10/28 16:24:46 fetching corpus: 9200, signal 182580/197632 (executing program) 2024/10/28 16:24:47 fetching corpus: 9250, signal 182884/197632 (executing program) 2024/10/28 16:24:47 fetching corpus: 9300, signal 183106/197632 (executing program) 2024/10/28 16:24:47 fetching corpus: 9350, signal 183292/197632 (executing program) 2024/10/28 16:24:47 fetching corpus: 9400, signal 183454/197632 (executing program) 2024/10/28 16:24:48 fetching corpus: 9450, signal 184213/197640 (executing program) 2024/10/28 16:24:48 fetching corpus: 9500, signal 184432/197640 (executing program) 2024/10/28 16:24:48 fetching corpus: 9550, signal 184613/197640 (executing program) 2024/10/28 16:24:49 fetching corpus: 9600, signal 184760/197640 (executing program) 2024/10/28 16:24:49 fetching corpus: 9650, signal 184911/197640 (executing program) 2024/10/28 16:24:49 fetching corpus: 9700, signal 185279/197640 (executing program) 2024/10/28 16:24:50 fetching corpus: 9750, signal 185506/197640 (executing program) 2024/10/28 16:24:50 fetching corpus: 9800, signal 186079/197992 (executing program) 2024/10/28 16:24:50 fetching corpus: 9850, signal 186391/197992 (executing program) 2024/10/28 16:24:50 fetching corpus: 9900, signal 186623/197992 (executing program) 2024/10/28 16:24:51 fetching corpus: 9950, signal 186784/197992 (executing program) 2024/10/28 16:24:51 fetching corpus: 10000, signal 186981/197992 (executing program) 2024/10/28 16:24:51 fetching corpus: 10050, signal 187125/197992 (executing program) 2024/10/28 16:24:52 fetching corpus: 10100, signal 187359/197992 (executing program) 2024/10/28 16:24:52 fetching corpus: 10150, signal 187569/197992 (executing program) 2024/10/28 16:24:52 fetching corpus: 10200, signal 187712/197992 (executing program) 2024/10/28 16:24:52 fetching corpus: 10250, signal 188056/197992 (executing program) 2024/10/28 16:24:53 fetching corpus: 10300, signal 188286/197992 (executing program) 2024/10/28 16:24:53 fetching corpus: 10350, signal 188448/197992 (executing program) 2024/10/28 16:24:53 fetching corpus: 10400, signal 188613/197992 (executing program) 2024/10/28 16:24:53 fetching corpus: 10450, signal 188792/197992 (executing program) 2024/10/28 16:24:53 fetching corpus: 10500, signal 188998/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10550, signal 189124/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10600, signal 189323/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10650, signal 189508/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10700, signal 189639/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10741, signal 189848/197992 (executing program) 2024/10/28 16:24:54 fetching corpus: 10741, signal 189848/197992 (executing program) 2024/10/28 16:24:57 starting 8 fuzzer processes 16:24:57 executing program 0: r0 = gettid() ptrace$setopts(0x4200, r0, 0x3ff2, 0x3) r1 = getpgid(r0) capget(&(0x7f0000000000)={0x20080522, r1}, &(0x7f0000000040)={0x4, 0x4, 0xa78, 0xe0b, 0x8, 0x1000}) ptrace(0x11, r0) r2 = getpid() ptrace$peeksig(0x4209, r2, &(0x7f0000000080)={0x1ff, 0x0, 0x6}, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}]) ptrace(0x10, r2) r3 = getpid() r4 = syz_open_dev$vcsa(&(0x7f0000000440), 0xffffffff, 0x80001) r5 = perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x6, 0x5, 0x80, 0x4, 0x0, 0xc373, 0x20004, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_config_ext={0x7f, 0x6}, 0x2, 0x8, 0x5b5, 0x1, 0x3, 0x80000000, 0x7e8, 0x0, 0x6f, 0x0, 0x29}, 0x0, 0xc, r4, 0x1) perf_event_open(&(0x7f00000004c0)={0x3, 0x80, 0x7, 0x81, 0x0, 0x1c, 0x0, 0x5, 0x20000, 0x6, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xd2, 0x0, @perf_bp={&(0x7f0000000480), 0x2}, 0x10018, 0x7, 0xd87, 0x2, 0x1, 0x4, 0xfff8, 0x0, 0x1ff}, r3, 0xffffffffffffffff, r5, 0x10) sendfile(0xffffffffffffffff, r5, &(0x7f0000000540)=0x3, 0x80000001) ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f0000000640)=0x0) perf_event_open(&(0x7f00000005c0)={0x5, 0x80, 0x0, 0x80, 0x40, 0xbd, 0x0, 0x4, 0x88010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xe1, 0x1, @perf_bp={&(0x7f0000000580), 0x2}, 0x1000, 0x1, 0xffff, 0x3, 0xfffffffffffffffe, 0x9, 0xbb53, 0x0, 0xff, 0x0, 0x7}, r6, 0x0, 0xffffffffffffffff, 0xa) r7 = getpid() capget(&(0x7f0000000680)={0x20080522, r7}, &(0x7f00000006c0)={0xffffff94, 0x101, 0x4, 0x3, 0x80000001}) pidfd_open(r0, 0x0) r8 = socket$inet6_icmp(0xa, 0x2, 0x3a) pread64(r8, &(0x7f0000000700)=""/241, 0xf1, 0x100000000000) 16:24:57 executing program 1: setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)={@remote, @remote, 0x0, 0x1, [@loopback]}, 0x14) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/kcm\x00') getsockopt$inet_buf(r0, 0x0, 0x18, &(0x7f0000000080)=""/231, &(0x7f0000000180)=0xe7) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/udp6\x00') pread64(r1, &(0x7f0000000200)=""/4, 0x4, 0xe26) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240), 0x400280, 0x0) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000280)={{r2}, 0x0, 0x10, @inherit={0x0, 0xffffffffffffffff}, @devid}) setsockopt$inet_buf(r1, 0x0, 0x2c, &(0x7f0000001280), 0x0) r3 = syz_io_uring_setup(0x29df, &(0x7f00000012c0)={0x0, 0xbbd8, 0x8, 0x0, 0x305}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001340)=0x0, &(0x7f0000001380)) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f00000013c0)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r5}}, 0x1) pread64(r3, &(0x7f0000001400)=""/179, 0xb3, 0x4) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f00000014c0)={{0x2, 0x4e23, @empty}, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x48, {0x2, 0x4e22, @multicast1}, 'veth1_vlan\x00'}) r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001540), 0x202100, 0x0) r7 = dup3(r2, r3, 0x80000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r7, 0xc0189378, &(0x7f0000001580)={{0x1, 0x1, 0x18, r2, {r2}}, './file0\x00'}) r9 = open_tree(r6, &(0x7f0000001600)='./file0\x00', 0x1000) renameat(r8, &(0x7f00000015c0)='./file0\x00', r9, &(0x7f0000001640)='./file0\x00') r10 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r10, 0xc0c89425, &(0x7f0000001880)={"9c1fe16abbfa8488c04eff4ea54d466d", 0x0, 0x0, {0x8, 0x9}, {0x101, 0x32}, 0x8, [0x3ff, 0x77000000000, 0xfffffffffffff801, 0x6, 0xfff, 0x4, 0x8, 0xfff, 0x5, 0x6, 0xe18f, 0x0, 0x7ff, 0x3f, 0xc1, 0x4]}) 16:24:57 executing program 2: r0 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x88000) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000580)={{{@in6=@mcast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@multicast1}}, &(0x7f0000000680)=0xe8) r2 = syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="45eff0a648e4f90a9d88b9024012835d189458df00fe6630bb78ad1d7538654ada4bf6afd70debf3b7bffe1eac298953dcfe153679039b2f2c721a6711f2fb742885ba1aa16f4489609af189965798c93f2320772d9e3120f0af6983dccd6c8db42d34eb728d89e1988d9af5c20ef4359fbad81428de65209d5ccfb9d6b149ec2858ff3335607fb049a81736a5a881a8c4a3785e9641e479e014231509d78e096e239fcbc8ebbd5c724f1d4e1ee5459696e8e75ae5bd5ffe9904c29cdd400f1e668abe9d1d8005c3f2a1f562d6eb7f79b4f8725976513d8cda71a01800bb16e5", 0xe0, 0x20000000000000}], 0x0, &(0x7f00000006c0)={[{@mode}, {@mpol={'mpol', 0x3d, {'default', '=static', @void}}}, {@huge_within_size}, {@huge_within_size}, {@huge_always}, {@mpol={'mpol', 0x3d, {'bind', '=static', @void}}}, {@mode={'mode', 0x3d, 0x8f}}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@fsname={'fsname', 0x3d, '-]\'\\-^'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '#,&#:/'}}, {@fowner_gt={'fowner>', r1}}, {@euid_gt}]}) ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f00000007c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$F2FS_IOC_GET_FEATURES(r2, 0x8004f50c, &(0x7f0000000a00)) openat(0xffffffffffffff9c, &(0x7f0000000a40)='./file0\x00', 0x109500, 0xb1) r3 = accept(r2, 0x0, &(0x7f0000000a80)) sendmmsg$inet6(r3, &(0x7f0000000ac0), 0x0, 0x8000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000b00)='./file0\x00', 0x20402, 0x20) ioctl$TIOCSLCKTRMIOS(r4, 0x5457, &(0x7f0000000b40)) syz_mount_image$tmpfs(&(0x7f0000000b80), &(0x7f0000000bc0)='./file0\x00', 0x2b, 0x1, &(0x7f0000000cc0)=[{&(0x7f0000000c00)="4cd740d831ff18191789ceb05df1f8609f6f6d796afdf93afdcd311f16f3b20bc82109a94f0a4cc6df5ba339e7dc788921a9eafdf9d8be485d45acd7defa3d805bb1d4606d42f829fc33a38ea8119252a9ee99f99d5f280ae5b0c3744feddbb99c0e821a62added607988b6572c913ec45ce079fcae43ad597f7252145ea1517c4f8c3954732c2c21baddee75c2d1ccd3f157514e4814accceb400c5dc4aa10119af", 0xa2, 0x2}], 0x8a8002, &(0x7f0000000d00)={[{@huge_within_size}, {@huge_advise}, {@size={'size', 0x3d, [0x65, 0x70, 0x39, 0x32]}}], [{@fsname={'fsname', 0x3d, '+\''}}, {@euid_eq={'euid', 0x3d, 0xee00}}]}) r5 = openat$incfs(r4, &(0x7f0000000d80)='.pending_reads\x00', 0x400400, 0x2) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000dc0)='net/vlan/vlan1\x00') creat(&(0x7f0000000e00)='./file0\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000e40)=0x8000) statfs(&(0x7f0000000e80)='./file0\x00', &(0x7f0000000ec0)=""/66) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000fc0)={{{@in=@multicast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@private1}}, &(0x7f00000010c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000001100)={{{@in6=@mcast1, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in6=@dev}}, &(0x7f0000001200)=0xe8) newfstatat(0xffffffffffffff9c, &(0x7f0000001780)='./file0\x00', &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) setxattr$system_posix_acl(&(0x7f0000000f40)='./file0\x00', &(0x7f0000000f80)='system.posix_acl_access\x00', &(0x7f0000001840)={{}, {0x1, 0x6}, [{0x2, 0x0, r1}, {0x2, 0x1, r7}, {0x2, 0x4, r8}, {0x2, 0x1, r1}, {0x2, 0x3, r9}, {0x2, 0x6, r1}], {0x4, 0x5}, [{0x8, 0x1}], {0x10, 0x4}, {0x20, 0x1}}, 0x5c, 0x2) 16:24:57 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x6000, 0x162) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400040, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x2003}) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x1000) r2 = openat(r1, &(0x7f0000000100)='./file0\x00', 0x212000, 0xc) ioctl$RTC_WKALM_RD(r2, 0x80287010, &(0x7f0000000140)) r3 = socket$inet(0x2, 0x2, 0x5) recvmsg$unix(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000003c0)=""/118, 0x76}, {&(0x7f0000000440)=""/218, 0xda}], 0x2, &(0x7f0000000580)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}, 0x42) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000680)={{{@in=@dev, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@private}}, &(0x7f0000000780)=0xe8) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000007c0)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000800)={{0x1, 0x1, 0x18, r1, {r1}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000840)={{0x1, 0x1, 0x18, r1, {0x5}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000880)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x2}}, './file1\x00'}) sendmsg$unix(r0, &(0x7f0000000940)={&(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000200)="63f6fd0bdd87", 0x6}, {&(0x7f0000000240)="2d49a587b78a27e1002f2320ed9f14b2d64e8be999c75984219bbe819e2274a29ac75d9b726b3d891dce79c13a81", 0x2e}, {&(0x7f0000000280)="5bf8a726e1970b4233c86fbaf11797d983c1900bfb13a8b584c4a6aba8988d3657e8344ec19b28d4d6330ccf87fb38b5db6580c426f502dea4296e1d85a6c092929e41e3d84f7b1165a73ff3487dcc02d69d58c7eb388b5fcde24799d88b857f2590de59f0bfc3bb441e59334ad2dd5a9a67ab23e2d54dcdc4c55764ccc1a0bd1d35181ad7aed68439ccbb8112d0fbea5df97d525acd1513690adbee06f322b6bb6b767ddea579561ebed4c58b8bc4db8f1a5e30577395aeecf5f88e01a19f4f0486d2239d5224d3faa01cba83b6c4bb91fef1b25a413347b6f38a5fd8370d0875f1d843df9425e023", 0xe9}], 0x3, &(0x7f00000008c0)=[@rights={{0x20, 0x1, 0x1, [r2, r2, r2, r3]}}, @rights={{0x18, 0x1, 0x1, [r0, r4]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r6, 0xee01}}}, @rights={{0x28, 0x1, 0x1, [r1, r7, r8, r10, r0, r11]}}], 0x80, 0x20000040}, 0x7a14a9ee3db9399b) r12 = open(&(0x7f0000000980)='./file1\x00', 0x260400, 0x150) r13 = openat$nvram(0xffffffffffffff9c, &(0x7f00000009c0), 0x200800, 0x0) epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r13, &(0x7f0000000a00)={0x90000018}) r14 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000ac0), 0x335080, 0x0) mount$9p_fd(0x0, &(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80), 0x100408, &(0x7f0000000b00)={'trans=fd,', {'rfdno', 0x3d, r14}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_9p2000}, {@cache_loose}, {@cache_fscache}, {@dfltuid}, {@posixacl}, {@loose}], [{@subj_type={'subj_type', 0x3d, '/dev/nvram\x00'}}]}}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r9, 0xc0189371, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, r8}, './file1\x00'}) 16:24:57 executing program 4: ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, &(0x7f0000000000)={0xfffffffa, 0x9, 0x7, 0x401, 0xff, 0x876e}) ioctl$EVIOCGSND(0xffffffffffffffff, 0x8040451a, &(0x7f0000000040)=""/25) ioctl$EVIOCGPHYS(0xffffffffffffffff, 0x80404507, &(0x7f0000000080)=""/235) r0 = openat2(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x40100, 0x100}, 0x18) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000200)=0x7ff) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000240)={0x7f, 0x13, 0x23, 0x2, "6e2c79b62629b990a132420f3dd0fcfeb4f4b11cc900923f7a686c71cce7f7a4"}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) ioctl$EVIOCGABS2F(r1, 0x8018456f, &(0x7f00000002c0)=""/120) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f0000000380)={0x2, 0x3, 0x6, {0xf000, 0x15}, {0x3, 0x8}, @cond=[{0x133, 0x4, 0xee26, 0x81, 0x6, 0x5}, {0x2, 0x5f, 0x3, 0x1f, 0x1, 0x2b}]}) ioctl$EVIOCGUNIQ(r1, 0x80404508, &(0x7f00000003c0)=""/94) r3 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000440)) ioctl$EXT4_IOC_GETSTATE(r3, 0x40046629, &(0x7f0000000480)) r4 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3ff, 0x84300) ioctl$EVIOCSREP(r4, 0x40084503, &(0x7f0000000500)=[0x3, 0xba33]) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000540), 0x151000, 0x0) ioctl$EVIOCSABS0(r5, 0x401845c0, &(0x7f0000000580)={0xfffffffe, 0xffffffff, 0x1ff, 0x40, 0x4, 0x8}) readahead(r3, 0x7, 0x8) r6 = syz_io_uring_complete(0x0) ioctl$EVIOCGMASK(r6, 0x80104592, &(0x7f00000006c0)={0x5, 0xca, &(0x7f00000005c0)="23239f894988a920c3ca468b64ecc7998babe2ac0504955efb762bccb7ca6c7fdf2bb53bb36fa7f3bb99c59d894dd1dd6a6da02b422fc1abccd4cf243d418be4a0f746afe10362c76a003106f7e7b22e79eb84e1b63749216ffd0d031e53f65b8b6b81c50b0a9e925991a718aa7797e49e9ea3cf7004008c6d68b6d63f10314ac49555e3f5986912dec7831ad1cd1ed570283f30301cf3224f78d06e125769bd9e4c55c2880bebddba8c498f5717da16bc80daf1941565e2fdb31b366b86cc4b2549d590694e5cd19361"}) 16:24:57 executing program 5: open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0) r1 = socket$inet(0x2, 0x80000, 0x2) ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) r2 = openat$cgroup_pressure(r0, &(0x7f0000000080)='memory.pressure\x00', 0x2, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f00000000c0)={0x2, [0x0, 0x0]}) r3 = fsmount(r0, 0x1, 0x70) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x48000, 0x0) splice(r3, &(0x7f0000000100)=0x5e07d75f, r4, &(0x7f0000000180)=0x8000, 0xb7f, 0x9) pwrite64(r1, &(0x7f00000001c0)="148923bbdb5a6ed1958db7fde9583c123f360a027d2389ff2fe8bb2cfc4e021685743798de4f477a52fbaa5365b9235cb99e725729d27ce8c3a224904f7cf43c9cf522ab7a0740611b7e13a784f7af6a2c2f5d3c85e23c2283a1877ef30335977ca8fb0963e620f8673f366c49c2ea41a00cafd81691afdffbfc710bf582d9e2c2f82e06e86e6ab65cb2421f925a42c2daca40b4d04ccb6da18f31c8386ba7a546836b9ceacc3ead1b0ad151752d8c39241e31c5aab5", 0xb6, 0x906) creat(&(0x7f0000000280)='./file0\x00', 0x1e7) fcntl$F_GET_FILE_RW_HINT(r4, 0x40d, &(0x7f00000002c0)) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sysvipc/msg\x00', 0x0, 0x0) splice(r5, &(0x7f0000000340)=0x20, r2, &(0x7f0000000380)=0x13c, 0x3, 0x9) r6 = openat$random(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) dup(r6) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000400)) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x28, 0x4, 0x6, 0x201, 0x0, 0x0, {0xf}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x5}, 0x24008014) r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000540), 0x101140, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r7, 0x6, 0x15, &(0x7f0000000580)=0x7fff, 0x4) 16:24:57 executing program 6: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000040)=@v2={0x2, @adiantum, 0x10, '\x00', @a}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={0x0, 0x2, r0, 0x7861013e}) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000000c0), 0x18000, 0x0) ioctl$BTRFS_IOC_INO_PATHS(r2, 0xc0389423, &(0x7f0000000180)={0x20, 0x48, [0x7, 0x81, 0x2, 0x2], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) execveat(r1, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)=[&(0x7f0000000200)='-\x00'], &(0x7f0000000480)=[&(0x7f0000000280)='}]q+}#%\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='i\xb2\xf6\xed\xee\xe7 \xcc\xe0Wy7\xeb\x8agQ', &(0x7f0000000340)='/dev/loop-control\x00', &(0x7f0000000380)='\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='i\xb2\xf6\xed\xee\xe7 \xcc\xe0Wy7\xeb\x8agQ', &(0x7f0000000440)='^^\x00'], 0x0) fcntl$setownex(r1, 0xf, &(0x7f00000004c0)={0x1, 0xffffffffffffffff}) r3 = openat(r0, &(0x7f0000000500)='./file0\x00', 0x800, 0x103) fchmodat(r3, &(0x7f0000000540)='./file0\x00', 0x0) r4 = dup3(r0, r0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000580)={{0x1, 0x1, 0x18, r1, {r4}}, './file0\x00'}) dup2(r2, r5) openat(r0, &(0x7f00000005c0)='./file1\x00', 0xb4340, 0x0) mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r2, 0x8) r6 = syz_mount_image$vfat(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x6, 0x1, &(0x7f0000001680)=[{&(0x7f0000000680)="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", 0x1000, 0x67}], 0x200000, &(0x7f00000016c0)={[{@utf8}, {@rodir}, {@utf8no}, {@uni_xlateno}, {@uni_xlateno}], [{@fsuuid={'fsuuid', 0x3d, {[0x36, 0x36, 0x32, 0x33, 0x33, 0x36, 0x63, 0x62], 0x2d, [0x5a82a4d0ae7b52ab, 0x35, 0x61, 0x63], 0x2d, [0x38, 0x65, 0x38, 0x63], 0x2d, [0x31, 0x61, 0x37, 0x33], 0x2d, [0x32, 0x64, 0x37, 0x38, 0x66, 0x65, 0x38, 0x61]}}}, {@smackfsfloor={'smackfsfloor', 0x3d, '^^\x00'}}, {@dont_hash}, {@seclabel}, {@smackfsroot={'smackfsroot', 0x3d, '^^\x00'}}, {@obj_type={'obj_type', 0x3d, '-\x00'}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}]}) fchmodat(r6, &(0x7f0000001780)='./file0/file0\x00', 0x4a) fsetxattr$security_evm(r1, &(0x7f00000017c0), &(0x7f0000001800)=@v1={0x2, "9bde6fedf6d36839a7aad9fcc7d4ac304c0061f6"}, 0x15, 0x3) r7 = fspick(r1, &(0x7f0000001840)='./file0\x00', 0x0) dup3(r0, r7, 0x0) openat(0xffffffffffffffff, &(0x7f00000018c0)='./file0\x00', 0x4800, 0x66) [ 137.118832] audit: type=1400 audit(1730132697.659:7): avc: denied { execmem } for pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:24:57 executing program 7: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2400, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xffffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x1) sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x2, 0x70bd2b, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x1000}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000800}, 0x2004c004) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x11c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_NODE_NAME={0x7e, 0xa8, @random="4957be10078b4e1be8e0b2edd72f399019941df8c57d2da767ed158dde69666d8953100f316d1d77b74a92553cc165d515906e46640b7f7f14eaa83d923bad0eefd6f2c6c5dcc3c1930c097226dd3f5bd4d632f164e45eebea48a1a7734d25206d4da399ded0a31e8bcf0f261a22575ab9e59b6e8d4b906a31b7"}]}, 0x11c}, 0x1, 0x0, 0x0, 0x800}, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000800)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000007c0)={&(0x7f00000004c0)={0x2c8, r1, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_RULES={0x11c, 0x22, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xaeb}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x101}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xffff}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xd073}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x10000}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x20}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7f}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x9}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x80000001}]}, {0x54, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xffff6faf}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x20}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xde}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}]}]}, @NL80211_ATTR_REG_RULES={0xe0, 0x22, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8001}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x200}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x81}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x480}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x101}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x7fffffff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x78c3}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5d1}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xe38}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xee}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1ff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x6}]}]}, @NL80211_ATTR_REG_RULES={0x94, 0x22, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xfffffffd}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x18}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7ff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xffff}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xffff8000}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1f}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xffff}]}, {0x4}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}]}, 0x2c8}, 0x1, 0x0, 0x0, 0x44094}, 0x88d4) sendmsg$IPSET_CMD_SAVE(r0, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x48, 0x8, 0x6, 0x3, 0x0, 0x0, {0xb, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000c0}, 0x45) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CALIPSO_C_LIST(r2, &(0x7f0000000a40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x24, 0x0, 0x10, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000ac0), r0) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000c00)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x94, r3, 0x2, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x18}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x5b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x52}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x68}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x9}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xc}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x26}]}, 0x94}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x34, 0x0, 0x8, 0x70bd2d, 0x25dfdbfe, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000010) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000d40), 0x200481, 0x0) sendmsg$NL80211_CMD_START_P2P_DEVICE(r4, &(0x7f0000000e40)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x1c, r3, 0x200, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, ["", "", "", ""]}, 0x1c}}, 0x20048850) sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000f40)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x28, r1, 0x8, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x4e}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4002}, 0x4000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000fc0), r2) sendmsg$IEEE802154_ASSOCIATE_REQ(r5, &(0x7f0000001080)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x1c, r6, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x0) sendmsg$IPSET_CMD_PROTOCOL(r0, &(0x7f0000001180)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x1c, 0x1, 0x6, 0x401, 0x0, 0x0, {0x1, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4044001) sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x60, r1, 0x10, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xc000000, 0x69}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x34}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x11}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x23}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x26}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x29}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x11}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x80) [ 138.436661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 138.438046] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 138.443329] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 138.447370] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 138.450806] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 138.453846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 138.496064] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 138.498902] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 138.505683] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 138.510082] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 138.512927] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 138.515221] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 138.523329] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 138.532322] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 138.535745] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 138.549492] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 138.552393] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 138.554797] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 138.557903] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 138.564984] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 138.581043] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 138.596632] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 138.614002] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 138.620208] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 138.635345] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 138.646001] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 138.651564] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 138.654006] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 138.656914] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 138.658786] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 138.663013] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 138.665381] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 138.672551] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 138.674229] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 138.675374] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 138.680843] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 138.682276] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 138.689604] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 138.691133] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 138.704869] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 138.707455] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 138.710795] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 138.715825] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 138.722098] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 138.724241] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 138.724302] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 138.741340] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 138.747864] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 140.526143] Bluetooth: hci0: command tx timeout [ 140.590870] Bluetooth: hci1: command tx timeout [ 140.653733] Bluetooth: hci2: command tx timeout [ 140.655136] Bluetooth: hci3: command tx timeout [ 140.717659] Bluetooth: hci7: command tx timeout [ 140.717674] Bluetooth: hci6: command tx timeout [ 140.782594] Bluetooth: hci4: command tx timeout [ 140.845794] Bluetooth: hci5: command tx timeout [ 142.573617] Bluetooth: hci0: command tx timeout [ 142.638892] Bluetooth: hci1: command tx timeout [ 142.701767] Bluetooth: hci2: command tx timeout [ 142.703155] Bluetooth: hci3: command tx timeout [ 142.765731] Bluetooth: hci7: command tx timeout [ 142.766673] Bluetooth: hci6: command tx timeout [ 142.829579] Bluetooth: hci4: command tx timeout [ 142.893634] Bluetooth: hci5: command tx timeout [ 144.621734] Bluetooth: hci0: command tx timeout [ 144.685594] Bluetooth: hci1: command tx timeout [ 144.749637] Bluetooth: hci2: command tx timeout [ 144.750602] Bluetooth: hci3: command tx timeout [ 144.814685] Bluetooth: hci7: command tx timeout [ 144.814913] Bluetooth: hci6: command tx timeout [ 144.877586] Bluetooth: hci4: command tx timeout [ 144.943567] Bluetooth: hci5: command tx timeout [ 146.669601] Bluetooth: hci0: command tx timeout [ 146.733746] Bluetooth: hci1: command tx timeout [ 146.797751] Bluetooth: hci2: command tx timeout [ 146.798617] Bluetooth: hci3: command tx timeout [ 146.861626] Bluetooth: hci6: command tx timeout [ 146.863477] Bluetooth: hci7: command tx timeout [ 146.925595] Bluetooth: hci4: command tx timeout [ 146.991664] Bluetooth: hci5: command tx timeout [ 198.815114] syz-executor.3 (286) used greatest stack depth: 24288 bytes left [ 201.542459] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 201.547793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 201.549564] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 201.553170] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 201.554222] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 201.556266] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 201.557705] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 201.560928] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 201.563273] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 201.564286] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 201.565846] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 201.566891] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 201.568112] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 201.569745] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 201.572315] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 201.573554] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 201.577332] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 201.578365] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 201.607980] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 201.616828] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 201.619755] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 201.622035] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 201.626041] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 201.631688] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 201.635070] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 201.638327] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 201.639449] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 201.644571] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 201.648539] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 201.649779] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 201.655987] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 201.676167] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 201.678047] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 201.681731] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 201.683638] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 201.697910] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 201.698832] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 201.701316] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 201.703079] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 201.704275] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 201.709116] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 201.731184] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 201.739220] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 201.743819] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 201.745848] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 201.747124] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 201.748130] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 201.749310] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 203.629663] Bluetooth: hci0: command tx timeout [ 203.631297] Bluetooth: hci1: command tx timeout [ 203.631918] Bluetooth: hci2: command tx timeout [ 203.695564] Bluetooth: hci4: command tx timeout [ 203.696342] Bluetooth: hci3: command tx timeout [ 203.758677] Bluetooth: hci5: command tx timeout [ 203.821613] Bluetooth: hci7: command tx timeout [ 203.888645] Bluetooth: hci6: command tx timeout [ 205.678334] Bluetooth: hci1: command tx timeout [ 205.680123] Bluetooth: hci0: command tx timeout [ 205.681474] Bluetooth: hci2: command tx timeout [ 205.742625] Bluetooth: hci3: command tx timeout [ 205.744138] Bluetooth: hci4: command tx timeout [ 205.805678] Bluetooth: hci5: command tx timeout [ 205.870737] Bluetooth: hci7: command tx timeout [ 205.934769] Bluetooth: hci6: command tx timeout [ 207.726546] Bluetooth: hci1: command tx timeout [ 207.727049] Bluetooth: hci0: command tx timeout [ 207.727089] Bluetooth: hci2: command tx timeout [ 207.789614] Bluetooth: hci3: command tx timeout [ 207.789637] Bluetooth: hci4: command tx timeout [ 207.857125] Bluetooth: hci5: command tx timeout [ 207.918537] Bluetooth: hci7: command tx timeout [ 207.982686] Bluetooth: hci6: command tx timeout [ 209.773771] Bluetooth: hci2: command tx timeout [ 209.773957] Bluetooth: hci1: command tx timeout [ 209.775814] Bluetooth: hci0: command tx timeout [ 209.837704] Bluetooth: hci4: command tx timeout [ 209.838240] Bluetooth: hci3: command tx timeout [ 209.902630] Bluetooth: hci5: command tx timeout [ 209.966578] Bluetooth: hci7: command tx timeout [ 210.029659] Bluetooth: hci6: command tx timeout [ 263.809919] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 263.811184] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 263.813672] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 263.819068] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 263.822277] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 263.823666] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 264.253996] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 264.257664] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 264.259112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 264.261861] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 264.265758] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 264.267659] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 264.310150] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 264.311650] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 264.318564] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 264.320083] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 264.324693] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 264.325987] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 264.328108] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 264.329610] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 264.330646] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 264.332985] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 264.337100] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 264.339321] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 264.340310] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 264.363113] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 264.367803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 264.368674] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 264.372378] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 264.373678] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 264.394225] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 264.439042] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 264.439052] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 264.443115] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 264.443166] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 264.443968] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 264.446204] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 264.448278] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 264.450999] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 264.452088] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 264.455682] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 264.471821] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 264.498429] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 264.502122] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 264.503728] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 264.505154] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 264.520356] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 264.538205] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 265.903555] Bluetooth: hci0: command tx timeout [ 266.349719] Bluetooth: hci2: command tx timeout [ 266.350699] Bluetooth: hci1: command tx timeout [ 266.413729] Bluetooth: hci3: command tx timeout [ 266.414664] Bluetooth: hci4: command tx timeout [ 266.605617] Bluetooth: hci6: command tx timeout [ 266.606546] Bluetooth: hci7: command tx timeout [ 266.607140] Bluetooth: hci5: command tx timeout [ 267.949729] Bluetooth: hci0: command tx timeout [ 268.398669] Bluetooth: hci1: command tx timeout [ 268.399230] Bluetooth: hci2: command tx timeout [ 268.463538] Bluetooth: hci4: command tx timeout [ 268.464059] Bluetooth: hci3: command tx timeout [ 268.653719] Bluetooth: hci7: command tx timeout [ 268.653843] Bluetooth: hci5: command tx timeout [ 268.654219] Bluetooth: hci6: command tx timeout [ 269.997570] Bluetooth: hci0: command tx timeout [ 270.446045] Bluetooth: hci2: command tx timeout [ 270.446094] Bluetooth: hci1: command tx timeout [ 270.509792] Bluetooth: hci4: command tx timeout [ 270.510737] Bluetooth: hci3: command tx timeout [ 270.701627] Bluetooth: hci6: command tx timeout [ 270.701662] Bluetooth: hci5: command tx timeout [ 270.702126] Bluetooth: hci7: command tx timeout [ 272.046769] Bluetooth: hci0: command tx timeout [ 272.493805] Bluetooth: hci2: command tx timeout [ 272.494352] Bluetooth: hci1: command tx timeout [ 272.557643] Bluetooth: hci3: command tx timeout [ 272.558161] Bluetooth: hci4: command tx timeout [ 272.749907] Bluetooth: hci7: command tx timeout [ 272.750547] Bluetooth: hci6: command tx timeout [ 272.750670] Bluetooth: hci5: command tx timeout [ 326.402778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 326.404290] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 326.408743] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 326.413721] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 326.416039] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 326.420489] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 326.713886] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 326.718007] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 326.722741] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 326.729976] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 326.732326] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 326.735517] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 326.778270] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 326.787083] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 326.800391] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 326.810746] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 326.815178] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 326.817748] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 326.853960] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 326.860844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 326.864055] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 326.871105] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 326.877073] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 326.879795] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 326.888871] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 326.894067] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 326.894130] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 326.912074] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 326.917891] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 326.918053] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 326.923670] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 326.933733] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 326.940701] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 326.950078] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 326.962083] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 326.964799] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 326.972853] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 326.973186] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 326.977558] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 326.979929] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 326.984097] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 326.991845] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 327.006199] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 327.016163] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 327.022200] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 327.067837] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 327.071271] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 327.073691] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 328.493582] Bluetooth: hci0: command tx timeout [ 328.750387] Bluetooth: hci1: command tx timeout [ 328.877581] Bluetooth: hci2: command tx timeout [ 329.070508] Bluetooth: hci5: command tx timeout [ 329.071386] Bluetooth: hci7: command tx timeout [ 329.072289] Bluetooth: hci4: command tx timeout [ 329.072932] Bluetooth: hci3: command tx timeout [ 329.133762] Bluetooth: hci6: command tx timeout [ 330.541560] Bluetooth: hci0: command tx timeout [ 330.797869] Bluetooth: hci1: command tx timeout [ 330.926727] Bluetooth: hci2: command tx timeout [ 331.119628] Bluetooth: hci4: command tx timeout [ 331.120118] Bluetooth: hci3: command tx timeout [ 331.121075] Bluetooth: hci7: command tx timeout [ 331.121602] Bluetooth: hci5: command tx timeout [ 331.182127] Bluetooth: hci6: command tx timeout [ 332.589599] Bluetooth: hci0: command tx timeout [ 332.845567] Bluetooth: hci1: command tx timeout [ 332.973646] Bluetooth: hci2: command tx timeout [ 333.166649] Bluetooth: hci7: command tx timeout [ 333.167151] Bluetooth: hci5: command tx timeout [ 333.168067] Bluetooth: hci3: command tx timeout [ 333.168129] Bluetooth: hci4: command tx timeout [ 333.229693] Bluetooth: hci6: command tx timeout [ 334.637605] Bluetooth: hci0: command tx timeout [ 334.893703] Bluetooth: hci1: command tx timeout [ 335.023605] Bluetooth: hci2: command tx timeout [ 335.213588] Bluetooth: hci4: command tx timeout [ 335.214136] Bluetooth: hci7: command tx timeout [ 335.214667] Bluetooth: hci3: command tx timeout [ 335.215120] Bluetooth: hci5: command tx timeout [ 335.278868] Bluetooth: hci6: command tx timeout [ 389.060870] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 389.070883] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 389.078742] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 389.087876] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 389.089706] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 389.091199] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 389.395393] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 389.397281] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 389.398414] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 389.402205] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 389.403929] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 389.405193] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 389.432072] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 389.438124] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 389.443687] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 389.450732] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 389.458715] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 389.460840] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 389.520674] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 389.526173] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 389.536740] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 389.538068] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 389.576255] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 389.577206] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 389.583202] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 389.583937] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 389.585501] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 389.586227] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 389.591270] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 389.592270] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 389.593106] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 389.595048] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 389.610220] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 389.619901] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 389.621541] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 389.622838] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 389.626401] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 389.638724] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 389.644084] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 389.648971] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 389.659942] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 389.674739] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 389.675916] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 389.712292] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 389.719768] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 389.719867] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 389.745712] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 389.761059] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 391.150157] Bluetooth: hci0: command tx timeout [ 391.472579] Bluetooth: hci1: command tx timeout [ 391.535251] Bluetooth: hci2: command tx timeout [ 391.661576] Bluetooth: hci4: command tx timeout [ 391.662882] Bluetooth: hci3: command tx timeout [ 391.727523] Bluetooth: hci5: command tx timeout [ 391.789573] Bluetooth: hci7: command tx timeout [ 391.853606] Bluetooth: hci6: command tx timeout [ 393.197931] Bluetooth: hci0: command tx timeout [ 393.517531] Bluetooth: hci1: command tx timeout [ 393.582128] Bluetooth: hci2: command tx timeout [ 393.710760] Bluetooth: hci3: command tx timeout [ 393.711299] Bluetooth: hci4: command tx timeout [ 393.776116] Bluetooth: hci5: command tx timeout [ 393.837601] Bluetooth: hci7: command tx timeout [ 393.901537] Bluetooth: hci6: command tx timeout [ 395.245576] Bluetooth: hci0: command tx timeout [ 395.565532] Bluetooth: hci1: command tx timeout [ 395.629524] Bluetooth: hci2: command tx timeout [ 395.758112] Bluetooth: hci4: command tx timeout [ 395.759317] Bluetooth: hci3: command tx timeout [ 395.822078] Bluetooth: hci5: command tx timeout [ 395.885667] Bluetooth: hci7: command tx timeout [ 395.950568] Bluetooth: hci6: command tx timeout [ 397.293669] Bluetooth: hci0: command tx timeout [ 397.613563] Bluetooth: hci1: command tx timeout [ 397.677527] Bluetooth: hci2: command tx timeout [ 397.805705] Bluetooth: hci3: command tx timeout [ 397.806189] Bluetooth: hci4: command tx timeout [ 397.870566] Bluetooth: hci5: command tx timeout [ 397.933509] Bluetooth: hci7: command tx timeout [ 397.998495] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 16:30:01 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffffffff85c226d8 RCX=ffffffff81306634 RDX=0000000000000001 RSI=0000000000000004 RDI=ffff88806ce09db0 RBP=1ffff1100d9c13b2 RSP=ffff88806ce09d88 R8 =0000000000000001 R9 =ffffed100d9c13b6 R10=0000000000000003 R11=ffffffff85c20dc0 R12=ffffffff85c226e0 R13=ffffffff85c226e8 R14=ffffffff85c20d80 R15=ffff88806ce3c792 RIP=ffffffff81306645 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f75bcf32540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fac06601620 CR3=000000003fc72000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00000000000000000000ffffffffffff XMM02=00000000000000000000ffffffffffff XMM03=2d646c6f2074736f0065736100006266 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffffed10074e0f3e RCX=ffffffff81306634 RDX=ffffed10074e0f3d RSI=0000000000000004 RDI=ffff88803a7079e8 RBP=ffffed10074e0f3d RSP=ffff88803a7079a0 R8 =0000000000000001 R9 =ffffed10074e0f3d R10=0000000000000003 R11=00000000000c2f81 R12=ffff8880091853d8 R13=ffff8880091853e0 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff818b3180 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6856b58540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6856cf34a1 CR3=000000003133c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000ffff000000000000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000