Warning: Permanently added '[localhost]:38759' (ECDSA) to the list of known hosts. 2025/01/18 04:21:04 fuzzer started 2025/01/18 04:21:05 dialing manager at localhost:44245 syzkaller login: [ 68.902223] cgroup: Unknown subsys name 'net' [ 69.014084] cgroup: Unknown subsys name 'cpuset' [ 69.050591] cgroup: Unknown subsys name 'rlimit' [ 73.985435] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 84.068069] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 04:21:20 syscalls: 2217 2025/01/18 04:21:20 code coverage: enabled 2025/01/18 04:21:20 comparison tracing: enabled 2025/01/18 04:21:20 extra coverage: enabled 2025/01/18 04:21:20 setuid sandbox: enabled 2025/01/18 04:21:20 namespace sandbox: enabled 2025/01/18 04:21:20 Android sandbox: enabled 2025/01/18 04:21:20 fault injection: enabled 2025/01/18 04:21:20 leak checking: enabled 2025/01/18 04:21:20 net packet injection: enabled 2025/01/18 04:21:20 net device setup: enabled 2025/01/18 04:21:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 04:21:20 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 04:21:20 USB emulation: enabled 2025/01/18 04:21:20 hci packet injection: enabled 2025/01/18 04:21:20 wifi device emulation: enabled 2025/01/18 04:21:20 802.15.4 emulation: enabled 2025/01/18 04:21:20 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 04:21:21 fetching corpus: 50, signal 32159/34568 (executing program) 2025/01/18 04:21:21 fetching corpus: 100, signal 42831/45672 (executing program) 2025/01/18 04:21:21 fetching corpus: 150, signal 51830/54678 (executing program) 2025/01/18 04:21:21 fetching corpus: 200, signal 56334/59375 (executing program) 2025/01/18 04:21:22 fetching corpus: 250, signal 60767/63725 (executing program) 2025/01/18 04:21:22 fetching corpus: 300, signal 64137/66980 (executing program) 2025/01/18 04:21:22 fetching corpus: 350, signal 67173/69862 (executing program) 2025/01/18 04:21:22 fetching corpus: 400, signal 69691/72193 (executing program) 2025/01/18 04:21:22 fetching corpus: 450, signal 73941/75607 (executing program) 2025/01/18 04:21:22 fetching corpus: 500, signal 76512/77615 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79487 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79527 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79574 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79630 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79681 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79723 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79758 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79795 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79847 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79879 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79921 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/79974 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80016 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80060 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80117 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80165 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80205 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80253 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80304 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80353 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80405 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80458 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80501 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80544 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80586 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80645 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80691 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80746 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80786 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80820 (executing program) 2025/01/18 04:21:23 fetching corpus: 528, signal 78927/80820 (executing program) 2025/01/18 04:21:26 starting 8 fuzzer processes 04:21:26 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x19, 0x0, 0x0) 04:21:26 executing program 1: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4) syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x4e24, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) 04:21:26 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x42, 0x0) fadvise64(r0, 0xfffffffffffffff9, 0x7, 0x0) [ 89.829902] audit: type=1400 audit(1737174086.404:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 04:21:26 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000c40)={0xffffffffffffffff}) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, 0x0) 04:21:26 executing program 4: r0 = syz_io_uring_setup(0x1af1, &(0x7f0000000000), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff2000/0xe000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, r1) 04:21:26 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="fd", 0x1, r0) keyctl$read(0xb, r0, &(0x7f00000002c0)=""/102400, 0x19000) 04:21:26 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='oom_score_adj\x00') pread64(r0, 0x0, 0x0, 0x0) 04:21:26 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000140)={0x40000000000001fa, &(0x7f0000000100)=[{}, {}, {}, {}, {}, {}, {}]}) [ 91.497079] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.501216] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.503813] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.512484] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.517810] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.521813] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.525373] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.532486] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.534744] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.541214] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.541558] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 91.551325] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.552928] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.560639] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.572458] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.584472] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.601879] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 91.607691] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.634915] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.638482] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.640835] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.644706] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.647394] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.649562] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.741524] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.747469] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.751985] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.753865] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.773880] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.788593] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.788924] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.796905] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.803545] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 91.808748] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.809450] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.824902] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.832419] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.834119] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.849813] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 91.866008] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.866790] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.866811] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 91.888528] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.892659] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.905004] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 91.931588] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 91.935580] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 91.936094] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 93.572715] Bluetooth: hci0: command tx timeout [ 93.636304] Bluetooth: hci2: command tx timeout [ 93.636384] Bluetooth: hci1: command tx timeout [ 93.700547] Bluetooth: hci3: command tx timeout [ 93.892353] Bluetooth: hci4: command tx timeout [ 94.020365] Bluetooth: hci6: command tx timeout [ 94.020356] Bluetooth: hci7: command tx timeout [ 94.020831] Bluetooth: hci5: command tx timeout [ 95.621019] Bluetooth: hci0: command tx timeout [ 95.684678] Bluetooth: hci2: command tx timeout [ 95.684703] Bluetooth: hci1: command tx timeout [ 95.748368] Bluetooth: hci3: command tx timeout [ 95.941299] Bluetooth: hci4: command tx timeout [ 96.068363] Bluetooth: hci6: command tx timeout [ 96.068397] Bluetooth: hci7: command tx timeout [ 96.068516] Bluetooth: hci5: command tx timeout [ 97.669324] Bluetooth: hci0: command tx timeout [ 97.734206] Bluetooth: hci1: command tx timeout [ 97.734241] Bluetooth: hci2: command tx timeout [ 97.797217] Bluetooth: hci3: command tx timeout [ 97.989306] Bluetooth: hci4: command tx timeout [ 98.116406] Bluetooth: hci6: command tx timeout [ 98.116605] Bluetooth: hci5: command tx timeout [ 98.116653] Bluetooth: hci7: command tx timeout [ 99.716291] Bluetooth: hci0: command tx timeout [ 99.780531] Bluetooth: hci2: command tx timeout [ 99.780567] Bluetooth: hci1: command tx timeout [ 99.844531] Bluetooth: hci3: command tx timeout [ 100.037208] Bluetooth: hci4: command tx timeout [ 100.166271] Bluetooth: hci7: command tx timeout [ 100.166359] Bluetooth: hci5: command tx timeout [ 100.166441] Bluetooth: hci6: command tx timeout [ 154.386826] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.392122] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.394626] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.402112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.409064] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.411659] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.586047] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.588601] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.593039] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.602802] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.608290] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.611297] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.639622] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.642561] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.652656] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.656846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.657931] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.658353] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.667473] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.675531] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.691871] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 154.708608] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 154.715479] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 154.719555] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 154.798710] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.832115] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.835794] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.836010] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.867498] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.896800] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.899506] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.900183] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.908335] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.908601] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.910289] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.911096] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.911503] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.919389] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.921899] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.922352] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.926679] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.927399] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.927770] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.935463] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.943240] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 154.943828] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.959377] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.967418] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.484346] Bluetooth: hci0: command tx timeout [ 156.676403] Bluetooth: hci2: command tx timeout [ 156.677927] Bluetooth: hci1: command tx timeout [ 156.804509] Bluetooth: hci3: command tx timeout [ 156.996381] Bluetooth: hci4: command tx timeout [ 157.060339] Bluetooth: hci7: command tx timeout [ 157.060723] Bluetooth: hci5: command tx timeout [ 157.060796] Bluetooth: hci6: command tx timeout [ 158.535176] Bluetooth: hci0: command tx timeout [ 158.724380] Bluetooth: hci2: command tx timeout [ 158.725059] Bluetooth: hci1: command tx timeout [ 158.852238] Bluetooth: hci3: command tx timeout [ 159.045316] Bluetooth: hci4: command tx timeout [ 159.108465] Bluetooth: hci7: command tx timeout [ 159.108510] Bluetooth: hci6: command tx timeout [ 159.108776] Bluetooth: hci5: command tx timeout [ 160.581220] Bluetooth: hci0: command tx timeout [ 160.774220] Bluetooth: hci1: command tx timeout [ 160.774315] Bluetooth: hci2: command tx timeout [ 160.901932] Bluetooth: hci3: command tx timeout [ 161.092221] Bluetooth: hci4: command tx timeout [ 161.156252] Bluetooth: hci6: command tx timeout [ 161.156354] Bluetooth: hci5: command tx timeout [ 161.156453] Bluetooth: hci7: command tx timeout [ 162.628369] Bluetooth: hci0: command tx timeout [ 162.821284] Bluetooth: hci2: command tx timeout [ 162.821997] Bluetooth: hci1: command tx timeout [ 162.948259] Bluetooth: hci3: command tx timeout [ 163.140241] Bluetooth: hci4: command tx timeout [ 163.204313] Bluetooth: hci7: command tx timeout [ 163.204413] Bluetooth: hci5: command tx timeout [ 163.204515] Bluetooth: hci6: command tx timeout [ 216.224027] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.227439] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.228013] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.232567] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.236960] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 216.237865] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 216.260005] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.261205] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.261884] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.265787] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.267102] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.267689] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.464244] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.466968] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.470238] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.486540] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.487432] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 216.487853] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.523046] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 216.536972] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 216.539457] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 216.550450] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 216.552560] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 216.553173] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 216.592861] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 216.609411] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 216.616950] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 216.627507] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 216.642493] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 216.655346] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 216.663523] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 216.668396] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 216.676800] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 216.678669] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 216.687004] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 216.691306] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 216.731281] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 216.752613] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 216.753574] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 216.774579] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 216.819589] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 216.861794] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 216.862683] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 216.888344] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 216.898598] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 216.938195] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 216.952342] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 216.967590] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 218.310693] Bluetooth: hci0: command tx timeout [ 218.310741] Bluetooth: hci1: command tx timeout [ 218.501245] Bluetooth: hci2: command tx timeout [ 218.567289] Bluetooth: hci3: command tx timeout [ 218.757368] Bluetooth: hci5: command tx timeout [ 218.757390] Bluetooth: hci4: command tx timeout [ 219.077423] Bluetooth: hci6: command tx timeout [ 219.077641] Bluetooth: hci7: command tx timeout [ 220.358161] Bluetooth: hci0: command tx timeout [ 220.358247] Bluetooth: hci1: command tx timeout [ 220.548242] Bluetooth: hci2: command tx timeout [ 220.612559] Bluetooth: hci3: command tx timeout [ 220.804914] Bluetooth: hci5: command tx timeout [ 220.805243] Bluetooth: hci4: command tx timeout [ 221.124441] Bluetooth: hci6: command tx timeout [ 221.125824] Bluetooth: hci7: command tx timeout [ 222.404315] Bluetooth: hci1: command tx timeout [ 222.404471] Bluetooth: hci0: command tx timeout [ 222.597187] Bluetooth: hci2: command tx timeout [ 222.660252] Bluetooth: hci3: command tx timeout [ 222.854205] Bluetooth: hci5: command tx timeout [ 222.854230] Bluetooth: hci4: command tx timeout [ 223.172256] Bluetooth: hci7: command tx timeout [ 223.173570] Bluetooth: hci6: command tx timeout [ 224.453433] Bluetooth: hci1: command tx timeout [ 224.453541] Bluetooth: hci0: command tx timeout [ 224.644246] Bluetooth: hci2: command tx timeout [ 224.708635] Bluetooth: hci3: command tx timeout [ 224.900225] Bluetooth: hci5: command tx timeout [ 224.900791] Bluetooth: hci4: command tx timeout [ 225.220323] Bluetooth: hci6: command tx timeout [ 225.220374] Bluetooth: hci7: command tx timeout [ 276.366145] syz-executor.3 (6763) used greatest stack depth: 23488 bytes left [ 278.548450] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 278.552904] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 278.555359] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 278.561015] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 278.564749] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 278.569841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 278.611341] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 278.616046] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 278.621471] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 278.633432] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 278.641378] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 278.643864] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 278.678406] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 278.683652] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 278.698602] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 278.710812] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 278.720072] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 278.722801] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 278.841348] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 278.849375] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 278.861904] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 278.893547] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 278.898295] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 278.907902] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 278.923358] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 278.926078] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 278.939971] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 278.944292] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 278.945298] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 278.946935] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 278.950616] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 278.952498] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 278.953929] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 278.955409] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 278.955952] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 278.965667] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 278.973724] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 278.982324] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 279.021044] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 279.052533] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 279.056558] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 279.088871] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 279.091318] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 279.093466] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 279.100796] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 279.155549] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 279.227481] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 279.292423] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 280.644223] Bluetooth: hci0: command tx timeout [ 280.708196] Bluetooth: hci1: command tx timeout [ 280.772202] Bluetooth: hci2: command tx timeout [ 281.028392] Bluetooth: hci7: command tx timeout [ 281.028781] Bluetooth: hci3: command tx timeout [ 281.028876] Bluetooth: hci6: command tx timeout [ 281.222199] Bluetooth: hci4: command tx timeout [ 281.348359] Bluetooth: hci5: command tx timeout [ 282.692232] Bluetooth: hci0: command tx timeout [ 282.756175] Bluetooth: hci1: command tx timeout [ 282.821165] Bluetooth: hci2: command tx timeout [ 283.076307] Bluetooth: hci7: command tx timeout [ 283.076602] Bluetooth: hci6: command tx timeout [ 283.076719] Bluetooth: hci3: command tx timeout [ 283.268909] Bluetooth: hci4: command tx timeout [ 283.396680] Bluetooth: hci5: command tx timeout [ 284.740301] Bluetooth: hci0: command tx timeout [ 284.804175] Bluetooth: hci1: command tx timeout [ 284.868956] Bluetooth: hci2: command tx timeout [ 285.124520] Bluetooth: hci7: command tx timeout [ 285.125629] Bluetooth: hci3: command tx timeout [ 285.125708] Bluetooth: hci6: command tx timeout [ 285.316215] Bluetooth: hci4: command tx timeout [ 285.444327] Bluetooth: hci5: command tx timeout [ 286.788234] Bluetooth: hci0: command tx timeout [ 286.852334] Bluetooth: hci1: command tx timeout [ 286.916247] Bluetooth: hci2: command tx timeout [ 287.173179] Bluetooth: hci3: command tx timeout [ 287.173306] Bluetooth: hci6: command tx timeout [ 287.173415] Bluetooth: hci7: command tx timeout [ 287.366167] Bluetooth: hci4: command tx timeout [ 287.492197] Bluetooth: hci5: command tx timeout [ 340.689539] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 340.695506] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 340.702434] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 340.707849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 340.714376] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 340.717820] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 341.007529] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 341.010730] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 341.012969] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 341.017518] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 341.020359] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 341.022570] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 341.213675] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 341.223352] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 341.227981] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 341.235730] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 341.240846] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 341.243904] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 341.270235] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 341.293495] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 341.298818] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 341.306765] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 341.310453] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 341.312868] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 341.368156] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 341.377906] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 341.401833] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 341.434616] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 341.439559] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 341.468369] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 341.469515] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 341.519517] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 341.528936] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 341.533901] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 341.536420] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 341.541619] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 341.547611] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 341.557590] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 341.575922] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 341.586199] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 341.602302] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 341.613777] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 341.658688] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 341.659527] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 341.663681] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 341.672361] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 341.692571] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 341.702179] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 342.789183] Bluetooth: hci0: command tx timeout [ 343.044451] Bluetooth: hci1: command tx timeout [ 343.300266] Bluetooth: hci2: command tx timeout [ 343.364615] Bluetooth: hci3: command tx timeout [ 343.686276] Bluetooth: hci4: command tx timeout [ 343.748248] Bluetooth: hci5: command tx timeout [ 343.812209] Bluetooth: hci7: command tx timeout [ 343.878233] Bluetooth: hci6: command tx timeout [ 344.836464] Bluetooth: hci0: command tx timeout [ 345.092292] Bluetooth: hci1: command tx timeout [ 345.348204] Bluetooth: hci2: command tx timeout [ 345.412267] Bluetooth: hci3: command tx timeout [ 345.733130] Bluetooth: hci4: command tx timeout [ 345.796182] Bluetooth: hci5: command tx timeout [ 345.860178] Bluetooth: hci7: command tx timeout [ 345.924458] Bluetooth: hci6: command tx timeout [ 346.884161] Bluetooth: hci0: command tx timeout [ 347.140515] Bluetooth: hci1: command tx timeout [ 347.397246] Bluetooth: hci2: command tx timeout [ 347.460243] Bluetooth: hci3: command tx timeout [ 347.780279] Bluetooth: hci4: command tx timeout [ 347.844157] Bluetooth: hci5: command tx timeout [ 347.908228] Bluetooth: hci7: command tx timeout [ 347.972163] Bluetooth: hci6: command tx timeout [ 348.932564] Bluetooth: hci0: command tx timeout [ 349.190000] Bluetooth: hci1: command tx timeout [ 349.445061] Bluetooth: hci2: command tx timeout [ 349.509182] Bluetooth: hci3: command tx timeout [ 349.828204] Bluetooth: hci4: command tx timeout [ 349.892745] Bluetooth: hci5: command tx timeout [ 349.956196] Bluetooth: hci7: command tx timeout [ 350.020150] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 04:26:33 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=0000000000000044 RCX=ffffffff814fe0ca RDX=fffffbfff0fe0de6 RSI=0000000000000008 RDI=ffffffff87f06f28 RBP=ffff888029ae2660 RSP=ffff88806ce09a90 R8 =0000000000000000 R9 =fffffbfff0fe0de5 R10=ffffffff87f06f2f R11=0000000000000001 R12=ffff888029ae1bc0 R13=ffffffff882a6208 R14=0000000000000040 R15=0000000000000000 RIP=ffffffff84ab0080 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f214f674008 CR3=0000000031b30000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000ff000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000876 RBX=000000000008d100 RCX=1ffffffff0fe34a3 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff81abbfd4 RBP=ffff88800942fdc0 RSP=ffff88806cf09db8 R8 =0000000000000001 R9 =fffffbfff0fe0dea R10=ffffffff87f06f57 R11=0000000000000000 R12=0000000000000200 R13=0000000000000001 R14=0000000000000000 R15=ffff888032dde870 RIP=ffffffff81abbfd6 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe3300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f9d58f1e8e0 CR3=000000003a1d6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=00362e6f732e6362696c2f756e672d78 XMM02=ffff0000000000ffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000