Warning: Permanently added '[localhost]:57773' (ECDSA) to the list of known hosts. 2025/01/23 18:06:44 fuzzer started 2025/01/23 18:06:44 dialing manager at localhost:45511 syzkaller login: [ 78.982405] cgroup: Unknown subsys name 'net' [ 79.115789] cgroup: Unknown subsys name 'cpuset' [ 79.158944] cgroup: Unknown subsys name 'rlimit' [ 84.461285] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/23 18:07:01 syscalls: 2217 2025/01/23 18:07:01 code coverage: enabled 2025/01/23 18:07:01 comparison tracing: enabled 2025/01/23 18:07:01 extra coverage: enabled 2025/01/23 18:07:01 setuid sandbox: enabled 2025/01/23 18:07:01 namespace sandbox: enabled 2025/01/23 18:07:01 Android sandbox: enabled 2025/01/23 18:07:01 fault injection: enabled 2025/01/23 18:07:01 leak checking: enabled 2025/01/23 18:07:01 net packet injection: enabled 2025/01/23 18:07:01 net device setup: enabled 2025/01/23 18:07:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/23 18:07:01 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/23 18:07:01 USB emulation: enabled 2025/01/23 18:07:01 hci packet injection: enabled 2025/01/23 18:07:01 wifi device emulation: enabled 2025/01/23 18:07:01 802.15.4 emulation: enabled 2025/01/23 18:07:01 fetching corpus: 0, signal 0/0 (executing program) 2025/01/23 18:07:04 starting 8 fuzzer processes 18:07:04 executing program 0: lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) r1 = openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x2a2081, 0x10, 0x7}, 0x18) setsockopt$inet6_buf(r1, 0x29, 0xd3, &(0x7f0000000180)="1c6a8fe4c6f4ee0be369a91360d97731f5319b4e8da1b9b6397d530e9dbcf7ce2c9315d8b32f79a94cc049", 0x2b) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000001c0)=0x6) r2 = socket$unix(0x1, 0x2, 0x0) read(r2, &(0x7f0000000200)=""/103, 0x67) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000280)=0x1) r3 = accept4$bt_l2cap(r1, &(0x7f00000002c0)={0x1f, 0x0, @none}, &(0x7f0000000300)=0xe, 0x800) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$KDFONTOP_COPY(r1, 0x4b72, &(0x7f0000000740)={0x3, 0x1, 0x17, 0x19, 0x8f, &(0x7f0000000340)}) r4 = syz_open_dev$mouse(&(0x7f0000000780), 0x0, 0x81) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000800)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_QOS_MAP(r4, &(0x7f0000000980)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000940)={&(0x7f0000000840)={0x100, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x9, 0x15}}}}, [@NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0x3f, 0x4}, {0x80, 0x5}, {0x9, 0x1}, {0x5, 0x2}, {0x5, 0x2}, {0x1}, {0xbb, 0x1}, {0x0, 0x5}, {0x3f, 0x6}, {0x1f}, {0x1d, 0x1}, {0x9, 0x3}, {0x7}, {0x2, 0x6}, {0x1, 0x2}], "db7302a1f1bf9fa4"}}, @NL80211_ATTR_QOS_MAP={0x32, 0xc7, {[{0x81, 0x1}, {0x40, 0x6}, {0x41}, {0xfb}, {0x53, 0x5}, {0x1, 0x5}, {0x4, 0x2}, {0x5, 0x6}, {0x7, 0x2}, {0xee, 0x6}, {0x8, 0x5}, {0x8, 0x6}, {0x6}, {0x4}, {0x4, 0x4}, {0x1f, 0x7}, {0x9, 0x1}, {0x0, 0x1}, {0x1, 0x4}], "74f0fb692e22c727"}}, @NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0xff, 0x6}, {0xb3}, {0x7, 0x6}], "6b6b84d2a0f3836c"}}, @NL80211_ATTR_QOS_MAP={0x1c, 0xc7, {[{0x3, 0x6}, {0x33, 0x4}, {0x4}, {0x1, 0x2}, {0x3}, {0x40, 0x4}, {0x0, 0x1}, {0x6, 0x1}], "24d42c820ec86cfe"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{}, {0x4, 0x7}, {0x81, 0x3}, {0x6, 0x2}, {0x7, 0x1}, {0x70, 0x2}, {0x40, 0x6}, {0x4, 0x5}, {0x4, 0x7}], "fd3b67565f3a815a"}}, @NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x3, 0x5}, {0xa0, 0x4}, {0x40, 0x7}], "87cbe041e82f31c6"}}, @NL80211_ATTR_QOS_MAP={0x14, 0xc7, {[{0x7, 0x3}, {0x1a, 0x3}, {0x9, 0x7}, {0x9, 0x1}], "f955e7d1ec809280"}}]}, 0x100}, 0x1, 0x0, 0x0, 0x40}, 0x20004040) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f00000009c0)=r4, 0x1) sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x3c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x40) sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x64, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x0, 0x21}}}}, [@NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x101}, @NL80211_ATTR_SCAN_FREQUENCIES={0x2c, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x976}, {0x8, 0x0, 0x7fff}, {0x8}, {0x8, 0x0, 0x81}, {0x8, 0x0, 0x8001}]}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x8}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xffff}]}, 0x64}, 0x1, 0x0, 0x0, 0x24004041}, 0x800) dup3(r2, r4, 0x0) ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, &(0x7f0000000c80)) 18:07:04 executing program 1: r0 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x2c0481, 0x10, 0x18}, 0x18) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000080)) getsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000180), &(0x7f00000001c0)=0x4) ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000200)={0x1, 0x80, 0xe4a, 0x6, 0x9, "e653c57d68ab41943ed30611817524e97353d6", 0x99c1, 0xfffffeff}) syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = openat2(r0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x183, 0x9}, 0x18) ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f00000002c0)=0x1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0/file0\x00'}) ioctl$TIOCSIG(r2, 0x40045436, 0x7) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000340), 0x400000, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0), r0) sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x44, r4, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x56}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x67}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) r5 = fsmount(r2, 0x1, 0x7c) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r5, 0x4008941a, &(0x7f0000000500)) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r2) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000540)='net/tcp\x00') ioctl$SG_GET_COMMAND_Q(r6, 0x2270, &(0x7f0000000580)) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r7, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, r8, 0x10, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x80) 18:07:04 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r0, 0x20, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void, @val={0xc, 0x99, {0xfff, 0x29}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4001) sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x20, 0x70bd2c, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2284, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffff}}, './file0\x00'}) sendmsg$NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r0, 0x302, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) r2 = accept4(r1, &(0x7f0000000380)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000400)=0x80, 0x80800) sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x40, 0x0, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xe}}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x40010}, 0x20000800) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000540), 0x80000, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(r4, 0x8008330e, &(0x7f0000000580)) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x40134040}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x24, 0x0, 0x100, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PEER_V4={0x8, 0x8, @rand_addr=0x64010100}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040004}, 0x0) sendmsg$nl_netfilter(r2, &(0x7f00000009c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000700)={0x244, 0x10, 0x4, 0x101, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x9}, [@nested={0x107, 0x2e, 0x0, 0x1, [@generic="2e7ddabfa392247f95befe6fdab4f3953145e854778f188246a356c76f8f762968e3b2bd82bb537a338ec8e8417397b944d4c3afcdc9b3ef378791dd0b2e4c411ae47f0421d4a204fa00191ddb89519f2e86994a0189e774339d2768751640c5666a315b1fe40bfbe36d7e53fc218bef26e653ec0bc8186e6341d75f32905b80acb9b9d27682489887a8a73b3788bc73b915261209e5020504b2e963c79a376b9b0ed70ba604e2ada16956913eebf1f2c105026f58f3e4756f", @generic="e945e3", @generic="0bef8177442020b627a4f89466002f23ac8e42baa170375ee756abd64ccd83e7f8e8ecfe2d2ec470fe40c4df7fb7d2a771954d7d59c6488b70b2c896c7be79970ede8ec0a7b2d9"]}, @nested={0xf4, 0x56, 0x0, 0x1, [@generic="ed55a329b6192c9ed34a33f1e74ef9c178fcd4b8bc87d29028acde7c71d5bfc2dfcd957c28a832a37ad32b8155ce0f839de6e71366afd687d95c106159ebe0cf19f84b04435e3e6e62e237630bba868014432d9606a803afd856e80d581c6d9e829ae6e58cad270a2aa135982f7935ef183982d00f", @generic="f75adf19858360d8ec1f7f10fda2080427687676596c99c1009fa0b0b95ec050a315e4128decf4a223c178c3eefd7eac5b49084071baa4e6e66e1a", @generic="a0babf4c1d503f12e3098d955ef625b993b8624a2ea061b18eb61bd4351f6d748faae6e977e08401834b5cfdb12bcbc5fa7d7ea332d3a01e077664e3d34993a0"]}, @generic="631f04b9cb01091a26d1b739aba9fdda91adb1957558535d7fb9de07a4f8af7c28554f40561910c7f8f07440522596da470e55fd"]}, 0x244}}, 0x6000840) ioctl$RTC_WIE_ON(r1, 0x700f) r5 = memfd_secret(0x80000) sendmsg$BATADV_CMD_GET_DAT_CACHE(r5, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x24, 0x0, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x6000c040}, 0x40000) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000c80)={'ip6gre0\x00', &(0x7f0000000c00)={'syztnl2\x00', r3, 0x2f, 0xb8, 0x2, 0x1, 0x0, @private1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x1, 0x10, 0x2, 0x1}}) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000cc0)={{{@in=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@private}}, &(0x7f0000000dc0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000e80)={'batadv0\x00', 0x0}) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000ec0)={@initdev, 0x0}, &(0x7f0000000f00)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f00000012c0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0xc8010040}, 0xc, &(0x7f0000001280)={&(0x7f0000001080)={0x1d8, 0x0, 0x20, 0x70bd2b, 0x25dfdbfe, {}, [@HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x8001}, 0x88c1) [ 98.312292] audit: type=1400 audit(1737655624.373:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:07:04 executing program 3: ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000000)={{}, {@void, @max}}) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0) sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x8, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x4, 0x41}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}}, 0x4000040) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='stat\x00') write(r1, &(0x7f00000001c0)="686bf80f5f3788e9580a870e3ea542f45f1e169f4d9bd7ebd677353028c785c441f86b5aa607eefb182d28917efaa2afaa265476506ff36baaf591e62216b1f0565f774c201b5b6402550dfc558a939f22e29f70008f183a2d2d453954c03c3f13fe58eaa05dd28bf4ececf9ce9dc1e9e8d00039d93bf1ccd43182ce0ccaea635565803dfe371e85e8238606c203400f090022b4f26fd373d7f1da800e56d797b2d4a6184ca2356b0369ad4c109909", 0xaf) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0x10900, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r1, {0x7ff}}, './file0\x00'}) ioctl$SG_GET_COMMAND_Q(r3, 0x2270, &(0x7f0000000300)) pipe2(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) r5 = openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x800, 0x3) r6 = getpid() sendmmsg$unix(r4, &(0x7f0000000540)=[{{&(0x7f0000000380)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000400)="2c5b3dfe01b36c79a4740d34139fcba1c40dc4c74e74dc1d42ec35d39ed2a5ed0869348e7261d448e915aa208319a590c708bacb9454cf31dd0815808ce0b8710a5b07bf12f92e2770e5c95a068431a25d401ddfcd402baa0e67f478b719d4c27bb2", 0x62}], 0x1, &(0x7f0000000500)=[@rights={{0x18, 0x1, 0x1, [r5, r1]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0xee01, 0xee01}}}], 0x38, 0xd89df2a31a891977}}], 0x1, 0x40000) socket$inet(0x2, 0x3, 0x6) statx(r5, &(0x7f0000000580)='./file0\x00', 0x800, 0x4, &(0x7f00000005c0)) getsockopt$IP6T_SO_GET_ENTRIES(r4, 0x29, 0x41, &(0x7f00000006c0)={'mangle\x00', 0x95, "c57b4d1c1b439520435bc8e55b87ec39053993c6ca9d9b4d728e963a35c2962b3d48808c511939b790c7018c4b79398a7daecfa52d4814ff324ee41e10f8bb20c0d1ef5bb6fd4ea168d65bc990442917bd7412a36ecbf6bfe76add8836ebdcae8f86a746e8a251413873bcb844736044d307ecfd3e8a61d533d1a7589e3554a570556a4ac16b16621e8311cb2fdccbc075d11d339a"}, &(0x7f0000000780)=0xb9) r7 = accept4$bt_l2cap(r0, &(0x7f00000007c0), &(0x7f0000000800)=0xe, 0x800) ioctl$FS_IOC_ENABLE_VERITY(r7, 0x40806685, &(0x7f00000008c0)={0x1, 0x2, 0x1000, 0x17, &(0x7f0000000840)="f57dc4efee62a6fe7bdc73c742759706ef57fe8d23fbec", 0x8, 0x0, &(0x7f0000000880)="0a1850de9f2d558f"}) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r8, 0xc0709411, &(0x7f0000000940)={{0x0, 0x3, 0x6, 0x6, 0x101, 0x0, 0xffffffffffffff80, 0x1000, 0x7, 0x1, 0x0, 0x5, 0x7, 0x232a, 0x8}, 0x30, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 18:07:04 executing program 4: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000040)) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x48, 0x453, 0x8, 0x70bd2a, 0x25dfdbfb, "967b52b0879f7a964fd52500a364c0b5e6c68eb40597f702b7ce4e3222497a710361d4f26c1e1dff84ec6159699a60f2c6f4d054d4", ["", "", "", "", ""]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) r1 = accept$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000200)=0x1c) fchdir(r1) r2 = syz_open_pts(0xffffffffffffffff, 0x220000) fadvise64(r2, 0x2071, 0x1, 0x5) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = dup2(r3, r1) r5 = inotify_init1(0x80000) ioctl$FS_IOC_SETVERSION(r5, 0x40087602, &(0x7f0000000240)=0x7) fcntl$setflags(r2, 0x2, 0x0) r6 = syz_open_dev$vcsa(&(0x7f0000000280), 0x5, 0x80000) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), r4) sendmsg$IPVS_CMD_SET_SERVICE(r6, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x94, r7, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x29}}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x6}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xffffffff}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@empty}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3a}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10000}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000800) fchdir(r2) ioctl$BTRFS_IOC_WAIT_SYNC(r5, 0x40089416, &(0x7f0000000480)) getsockopt$EBT_SO_GET_ENTRIES(r6, 0x0, 0x81, &(0x7f0000000580)={'nat\x00', 0x0, 0x3, 0x11, [0x1, 0x9, 0xffffffffffffffff, 0x7232, 0xb8, 0x1], 0x8, &(0x7f00000004c0)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000540)=""/17}, &(0x7f0000000600)=0x78) r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x2c, r8, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xfffe}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20044040}, 0x40080) 18:07:04 executing program 5: r0 = syz_io_uring_complete(0x0) io_uring_register$IORING_REGISTER_EVENTFD(0xffffffffffffffff, 0x4, &(0x7f0000000000)=r0, 0x1) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in=@multicast2, @in6=@private0, 0x4e20, 0x7f, 0x4e21, 0xbd3, 0x2, 0xa0, 0xa0, 0x32}, {0x1, 0xd1, 0x40, 0x7, 0x6, 0x1, 0x6, 0x9}, {0x6, 0x7ff, 0x100000001, 0x1ff}, 0xb9}, {{@in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x4d6, 0x2b}, 0x2, @in6=@mcast1, 0x0, 0x3, 0x3, 0x1, 0x1, 0x3, 0x7fffffff}}, 0xe8) r1 = syz_open_dev$vcsn(&(0x7f0000000140), 0x7b6, 0x0) r2 = fork() setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000180)={r2, 0xee00, 0xffffffffffffffff}, 0xc) fgetxattr(r1, &(0x7f00000001c0)=@random={'trusted.', '&\x00'}, &(0x7f0000000200)=""/93, 0x5d) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, &(0x7f0000000280)={0x2, 0x8, 0x154, 0x2, 0x4, 0x80000000}) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f00000002c0)={0x0, 'lo\x00', {0x2}, 0xaf1}) sysinfo(&(0x7f0000000300)=""/4096) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001300), 0x101002, 0x0) ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000001340)={0x7f, 0x0, 0x7}) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000001380), &(0x7f00000013c0)={'U+', 0x6}, 0x16, 0x1) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000014c0)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x40, 0x0, 0x8, 0x70bd27, 0x25dfdbfe, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}, @NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}]}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x48091}, 0x240080d0) r5 = syz_mount_image$vfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x7fff, 0x8, &(0x7f0000001940)=[{&(0x7f0000001580)="bd534220", 0x4, 0x7}, {&(0x7f00000015c0)="7cfa08ab197ae04b95fb6c2d360ba826d179183f3a558ade97e7c2060be8d1528512899d137eeca13baa56dc316877acd28ed5edfbded13315e2e5fe09684ceb63131386f8530559e2ca03d278821ef38f2d1feb0d58d7f65d2930770299ae7cc6a520ab6be7df478bc2e7a53345763ffb62ff", 0x73, 0x4}, {&(0x7f0000001640)="39766101820d53672b90e271a53b5210d441d98077cbe53eb9c3872346e11873d65676f0e3ccb23ca1d2724081b3c91d00719c95a3736841c4ab6006f0e18aded9c92d88aec29aaea46ec4953f16dfb138384766ee6f9918d0e541cde3b0e0a79875a7932558e8d1b8b23426f96620c4915c7917d2a9e611d57cbd12ae9dba", 0x7f, 0x9}, {&(0x7f00000016c0)="70c8ab8e9de96ad3190e326b0d0572a7ab9b16", 0x13}, {&(0x7f0000001700)="e8123d8041e292b0a67fd98a425e49d12a25b6fbce9709e08e87d13becb4b56c17589e7335549e9064eedb2f64e7856f0783e9d6f4be0afffb7be7456b4e317e4fbe0328486227a9883746af", 0x4c}, {&(0x7f0000001780)="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", 0xff, 0xa1}, {&(0x7f0000001880)="dd971e27f3ab2a7285ed5dd736c33e5cc1c2fddc30", 0x15, 0xfffffffffffffff7}, {&(0x7f00000018c0)="28b460f6282c2557fc7170ebd84e8a2def8984114eaf516ce56e18f75b0b7bc281404e868f77e1b56d97269c94241a9f8d504c55dff0a060ab25fa2ff9f6104f453ce4316f1798c7f05a7b17e396140efc86fb436405a98458", 0x59, 0x4}], 0x8800, &(0x7f0000001a00)={[{@uni_xlateno}, {@shortname_winnt}, {@shortname_mixed}, {@nonumtail}], [{@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@hash}, {@audit}, {@subj_user={'subj_user', 0x3d, '&\x00'}}, {@subj_type={'subj_type', 0x3d, 'trusted.'}}, {@dont_measure}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@dont_measure}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}) ioctl$FITHAW(r5, 0xc0045878) ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000001b00)=0x1) r6 = socket$inet(0x2, 0x800, 0x2) ioctl$sock_SIOCOUTQNSD(r6, 0x894b, &(0x7f0000001b40)) 18:07:04 executing program 6: arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000000)) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000040)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x8, 0x20, 0x7ff, 0x6, 0x9, 0x1}, {0x1ff, 0x6, 0x276, 0x800, 0x1, 0x20}], ['\x00', '\x00', '\x00', '\x00']}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000200)) vmsplice(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000400)="aaa42ec196524b", 0x7}, {&(0x7f0000000440)="1a0c97bc6424678cb11bad51da3966f220921dd8fa4d2a3ec06459b934d1dbe544f2bf8368b9475c4081e7e0c7b8df1cbbdaa0d5d8500090e7bd5919cfaa31c7f1885d6220b0aa38ee16b873626ecd15e6ffdc857d2f1f7b574aa39001e1c07397261eac825be41e8b6c1f8c28ced607905217d5e43c499c44e7b407", 0x7c}, {&(0x7f00000004c0)="d17f3d7adeca8de2d203624c8393", 0xe}, {&(0x7f0000000500)="22c9338b6eca1d8180c2d9647d9790ad1ed2b68b5298b6f87c586074b95bae7022d497019544f5d070c7", 0x2a}, {&(0x7f0000000540)="937ccac08bc53a523bdfc0fe9a9aea9683ee6b3607fa8d42de7a8be365eb4d02613990e3bc8f1da5c425bea929a2ac68a8721b1794409f81abbda57900150b747db1fe11774b05f222121981a3937a3326853866f098b1ddb343c117177c98620558cec0dc93dca9", 0x68}], 0x5, 0x1) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000640), 0x101440, 0x0) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000680)=@req={0x6, 0x5, 0x1ff, 0x4}, 0x10) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f00000006c0)=@req={0x3, 0x1f, 0x8000, 0xb8c}, 0x10) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000700)={r0, 0x3f, 0x3, 0x4}) r2 = openat2(r1, &(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x900, 0x40, 0x1c}, 0x18) setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f00000007c0)={0x0, 0x1, 0x6, @local}, 0x10) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000800)=0x3f) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000840)={{0x1, 0x1, 0x18, r1, {0x4}}, './file0\x00'}) r4 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f0000000880)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f00000008c0)={0x2, 0x200, 0x0, 0x8000, 0x7, 0x40}) r5 = socket$nl_audit(0x10, 0x3, 0x9) syncfs(r5) ioctl$AUTOFS_IOC_ASKUMOUNT(r4, 0x80049370, &(0x7f0000000900)) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) ioctl$SNDRV_TIMER_IOCTL_STOP(r3, 0x54a1) 18:07:04 executing program 7: ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000000)={'\x00', 0x5, 0x2, 0x9f}) r0 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x103080, 0x8, 0x10}, 0x18) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000100)=0x1b, 0x4) ioctl$HIDIOCGVERSION(r0, 0x80044801, &(0x7f0000000140)) statx(r0, &(0x7f00000001c0)='./file0\x00', 0x400, 0x200, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r0, &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f00000003c0)={{}, {0x1, 0x2}, [{0x2, 0x0, r1}, {0x2, 0x1, 0xee00}], {0x4, 0x6}, [{0x8, 0x5, r2}], {0x10, 0x2}, {0x20, 0x1}}, 0x3c, 0x3) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x4000) pipe2(&(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}, 0x6000) ioctl$EVIOCGSW(r3, 0x8040451b, &(0x7f0000000540)=""/234) getpeername$unix(r3, &(0x7f0000000640), &(0x7f00000006c0)=0x6e) r5 = signalfd4(r4, &(0x7f0000000700)={[0x9d]}, 0x8, 0x800) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000740)={{0x1, 0x1, 0x18, r5, {0x5}}, './file0\x00'}) fcntl$getownex(r4, 0x10, &(0x7f0000000780)={0x0, 0x0}) fcntl$getflags(r4, 0xb) ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f00000007c0)) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f00000009c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000980)={&(0x7f0000000840)={0x130, 0x0, 0x1, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x24}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7fff}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x7d}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xf}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x117}, @NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DURATION={0x8}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1ed}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}], @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x9}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x33f}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2d}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x36c}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x9}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x148c}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x389}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x229}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}], @NL80211_ATTR_DURATION={0x8}]}, 0x130}, 0x1, 0x0, 0x0, 0x4000}, 0x4040011) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a40), r5) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r6, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x68, r8, 0xf717b49d3c67487f, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x30}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7f}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x20}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xd}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x1f}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xa}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}]}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x0) clone3(&(0x7f0000001040)={0x800000, &(0x7f0000000b80), &(0x7f0000000bc0), &(0x7f0000000c00), {0x1a}, &(0x7f0000000c40)=""/64, 0x40, &(0x7f0000000c80)=""/186, &(0x7f0000001000)=[r7, r7, 0x0], 0x3, {r3}}, 0x58) [ 99.569699] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 99.573570] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 99.577773] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 99.584431] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 99.590656] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 99.593958] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.754626] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 99.757752] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 99.760050] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 99.765640] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 99.772821] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.783680] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.790977] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 99.793190] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.795149] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 99.808793] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.817913] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 99.820657] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 99.879717] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 99.889134] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 99.891751] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 99.902161] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 99.915055] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 99.928575] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 99.930823] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 99.931454] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 99.934908] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 99.937561] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 99.944022] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 99.948614] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 99.952834] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 99.952995] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 99.960699] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 99.962886] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 99.966906] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 99.971765] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 99.975751] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 99.978177] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 99.982520] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 99.986480] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 99.987538] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 99.987623] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 99.989038] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 99.993132] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.999881] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 100.001907] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 100.018548] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 100.022263] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 101.644913] Bluetooth: hci0: command tx timeout [ 101.837604] Bluetooth: hci1: command tx timeout [ 101.901378] Bluetooth: hci2: command tx timeout [ 102.092558] Bluetooth: hci6: command tx timeout [ 102.092708] Bluetooth: hci4: command tx timeout [ 102.093436] Bluetooth: hci7: command tx timeout [ 102.094392] Bluetooth: hci5: command tx timeout [ 102.094782] Bluetooth: hci3: command tx timeout [ 103.693396] Bluetooth: hci0: command tx timeout [ 103.884479] Bluetooth: hci1: command tx timeout [ 103.949618] Bluetooth: hci2: command tx timeout [ 104.140463] Bluetooth: hci4: command tx timeout [ 104.141143] Bluetooth: hci6: command tx timeout [ 104.141802] Bluetooth: hci5: command tx timeout [ 104.142355] Bluetooth: hci3: command tx timeout [ 104.142404] Bluetooth: hci7: command tx timeout [ 105.740739] Bluetooth: hci0: command tx timeout [ 105.932785] Bluetooth: hci1: command tx timeout [ 105.997724] Bluetooth: hci2: command tx timeout [ 106.188547] Bluetooth: hci5: command tx timeout [ 106.189077] Bluetooth: hci7: command tx timeout [ 106.190091] Bluetooth: hci4: command tx timeout [ 106.190126] Bluetooth: hci3: command tx timeout [ 106.190747] Bluetooth: hci6: command tx timeout [ 107.788419] Bluetooth: hci0: command tx timeout [ 107.980523] Bluetooth: hci1: command tx timeout [ 108.044415] Bluetooth: hci2: command tx timeout [ 108.236516] Bluetooth: hci3: command tx timeout [ 108.237386] Bluetooth: hci7: command tx timeout [ 108.238108] Bluetooth: hci4: command tx timeout [ 108.238983] Bluetooth: hci6: command tx timeout [ 108.239022] Bluetooth: hci5: command tx timeout [ 159.670994] syz-executor.5 (282) used greatest stack depth: 23696 bytes left [ 162.087828] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 162.089415] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 162.108604] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 162.114046] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 162.116139] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 162.117391] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 162.194550] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 162.203808] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 162.208459] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 162.209717] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 162.210680] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 162.213065] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 162.214823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 162.219393] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 162.223074] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 162.224273] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 162.225231] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 162.228129] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 162.276068] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 162.277513] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 162.281239] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 162.284747] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 162.285650] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 162.286773] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 162.287804] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 162.289059] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 162.295896] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 162.298036] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 162.299376] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 162.302614] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 162.304913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 162.306834] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 162.307879] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 162.309095] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 162.313088] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 162.315699] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 162.316649] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 162.317571] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 162.318687] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 162.319508] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 162.323092] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 162.326094] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 162.328800] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 162.343164] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 162.349376] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 162.368476] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 162.372764] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 162.375272] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 164.172840] Bluetooth: hci0: command tx timeout [ 164.301432] Bluetooth: hci1: command tx timeout [ 164.301498] Bluetooth: hci2: command tx timeout [ 164.365552] Bluetooth: hci7: command tx timeout [ 164.366481] Bluetooth: hci5: command tx timeout [ 164.366617] Bluetooth: hci3: command tx timeout [ 164.428794] Bluetooth: hci6: command tx timeout [ 164.429389] Bluetooth: hci4: command tx timeout [ 166.222349] Bluetooth: hci0: command tx timeout [ 166.348814] Bluetooth: hci2: command tx timeout [ 166.349385] Bluetooth: hci1: command tx timeout [ 166.412562] Bluetooth: hci3: command tx timeout [ 166.413143] Bluetooth: hci7: command tx timeout [ 166.413637] Bluetooth: hci5: command tx timeout [ 166.476484] Bluetooth: hci4: command tx timeout [ 166.476568] Bluetooth: hci6: command tx timeout [ 168.268381] Bluetooth: hci0: command tx timeout [ 168.396396] Bluetooth: hci1: command tx timeout [ 168.396424] Bluetooth: hci2: command tx timeout [ 168.463339] Bluetooth: hci5: command tx timeout [ 168.463832] Bluetooth: hci7: command tx timeout [ 168.464256] Bluetooth: hci3: command tx timeout [ 168.524445] Bluetooth: hci4: command tx timeout [ 168.525488] Bluetooth: hci6: command tx timeout [ 170.318336] Bluetooth: hci0: command tx timeout [ 170.444451] Bluetooth: hci2: command tx timeout [ 170.445502] Bluetooth: hci1: command tx timeout [ 170.508718] Bluetooth: hci3: command tx timeout [ 170.508779] Bluetooth: hci7: command tx timeout [ 170.509442] Bluetooth: hci5: command tx timeout [ 170.573382] Bluetooth: hci6: command tx timeout [ 170.573859] Bluetooth: hci4: command tx timeout [ 224.747661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 224.750403] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 224.753518] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 224.762213] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 224.767606] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 224.771151] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 224.874738] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 224.881644] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 224.887481] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 224.893762] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 224.904250] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 224.909479] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 225.000918] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 225.004720] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 225.007679] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 225.013544] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 225.016545] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 225.018378] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 225.048136] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 225.053143] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 225.056640] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 225.066584] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 225.072714] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 225.076137] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 225.180985] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 225.205914] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 225.247544] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 225.259105] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 225.323436] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 225.327773] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 225.349942] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 225.351423] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 225.354353] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 225.355684] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 225.367022] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 225.378778] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 225.425505] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 225.444334] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 225.469599] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 225.477511] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 225.489024] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 225.494024] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 225.505918] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 225.535556] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 225.546699] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 225.553045] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 225.565923] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 225.574590] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 226.828421] Bluetooth: hci0: command tx timeout [ 226.956958] Bluetooth: hci1: command tx timeout [ 227.084569] Bluetooth: hci2: command tx timeout [ 227.149497] Bluetooth: hci3: command tx timeout [ 227.469197] Bluetooth: hci5: command tx timeout [ 227.532398] Bluetooth: hci4: command tx timeout [ 227.596487] Bluetooth: hci6: command tx timeout [ 227.724408] Bluetooth: hci7: command tx timeout [ 228.876956] Bluetooth: hci0: command tx timeout [ 229.004432] Bluetooth: hci1: command tx timeout [ 229.132760] Bluetooth: hci2: command tx timeout [ 229.197355] Bluetooth: hci3: command tx timeout [ 229.517621] Bluetooth: hci5: command tx timeout [ 229.581329] Bluetooth: hci4: command tx timeout [ 229.644401] Bluetooth: hci6: command tx timeout [ 229.772448] Bluetooth: hci7: command tx timeout [ 230.925338] Bluetooth: hci0: command tx timeout [ 231.053359] Bluetooth: hci1: command tx timeout [ 231.181489] Bluetooth: hci2: command tx timeout [ 231.245430] Bluetooth: hci3: command tx timeout [ 231.565459] Bluetooth: hci5: command tx timeout [ 231.629323] Bluetooth: hci4: command tx timeout [ 231.693470] Bluetooth: hci6: command tx timeout [ 231.821417] Bluetooth: hci7: command tx timeout [ 232.972875] Bluetooth: hci0: command tx timeout [ 233.100390] Bluetooth: hci1: command tx timeout [ 233.228353] Bluetooth: hci2: command tx timeout [ 233.292526] Bluetooth: hci3: command tx timeout [ 233.612353] Bluetooth: hci5: command tx timeout [ 233.676335] Bluetooth: hci4: command tx timeout [ 233.740332] Bluetooth: hci6: command tx timeout [ 233.868390] Bluetooth: hci7: command tx timeout [ 287.070865] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 287.076862] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 287.079474] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 287.084206] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 287.089439] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 287.091735] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 287.391581] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 287.402628] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 287.409697] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 287.416689] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 287.427635] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 287.429892] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 287.438516] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 287.440027] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 287.442877] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 287.443055] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 287.445908] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 287.448694] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 287.529132] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 287.532615] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 287.534499] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 287.545606] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 287.552122] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 287.555106] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 287.711836] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 287.721896] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 287.725633] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 287.730741] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 287.735841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 287.747016] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 287.749850] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 287.766647] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 287.767087] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 287.778937] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 287.784528] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 287.792008] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 287.798011] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 287.800634] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 287.803245] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 287.806852] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 287.815645] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 287.819094] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 287.848502] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 287.866805] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 287.877892] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 287.879667] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 287.913803] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 287.918193] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 289.165433] Bluetooth: hci0: command tx timeout [ 289.484351] Bluetooth: hci1: command tx timeout [ 289.548360] Bluetooth: hci2: command tx timeout [ 289.676334] Bluetooth: hci5: command tx timeout [ 289.935313] Bluetooth: hci4: command tx timeout [ 289.996457] Bluetooth: hci7: command tx timeout [ 289.997239] Bluetooth: hci3: command tx timeout [ 290.060435] Bluetooth: hci6: command tx timeout [ 291.212489] Bluetooth: hci0: command tx timeout [ 291.532800] Bluetooth: hci1: command tx timeout [ 291.596325] Bluetooth: hci2: command tx timeout [ 291.724490] Bluetooth: hci5: command tx timeout [ 291.980450] Bluetooth: hci4: command tx timeout [ 292.044780] Bluetooth: hci3: command tx timeout [ 292.046009] Bluetooth: hci7: command tx timeout [ 292.108885] Bluetooth: hci6: command tx timeout [ 293.260412] Bluetooth: hci0: command tx timeout [ 293.580574] Bluetooth: hci1: command tx timeout [ 293.644326] Bluetooth: hci2: command tx timeout [ 293.773310] Bluetooth: hci5: command tx timeout [ 294.029319] Bluetooth: hci4: command tx timeout [ 294.092376] Bluetooth: hci3: command tx timeout [ 294.092844] Bluetooth: hci7: command tx timeout [ 294.156387] Bluetooth: hci6: command tx timeout [ 295.308448] Bluetooth: hci0: command tx timeout [ 295.628441] Bluetooth: hci1: command tx timeout [ 295.692862] Bluetooth: hci2: command tx timeout [ 295.821650] Bluetooth: hci5: command tx timeout [ 296.076437] Bluetooth: hci4: command tx timeout [ 296.140433] Bluetooth: hci7: command tx timeout [ 296.141457] Bluetooth: hci3: command tx timeout [ 296.204441] Bluetooth: hci6: command tx timeout [ 349.470622] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 349.475795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 349.479188] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 349.486518] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 349.491710] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 349.494907] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 349.603702] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 349.606315] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 349.608475] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 349.616222] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 349.618964] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 349.622590] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 349.623867] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 349.626921] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 349.631784] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 349.657399] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 349.681423] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 349.686001] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 349.729426] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 349.733615] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 349.738169] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 349.744161] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 349.746976] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 349.748894] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 349.819383] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 349.825687] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 349.828842] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 349.831678] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 349.848579] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 349.854582] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 349.858722] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 349.860957] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 349.863135] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 349.866497] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 349.870873] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 349.874884] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 349.877468] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 349.887981] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 349.891095] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 349.893168] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 349.899953] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 349.902145] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 349.935873] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 349.946537] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 349.969779] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 350.012989] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 350.029136] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 350.034758] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 351.564384] Bluetooth: hci0: command tx timeout [ 351.692365] Bluetooth: hci2: command tx timeout [ 351.756335] Bluetooth: hci1: command tx timeout [ 351.821412] Bluetooth: hci3: command tx timeout [ 351.948374] Bluetooth: hci4: command tx timeout [ 351.948591] Bluetooth: hci7: command tx timeout [ 352.012434] Bluetooth: hci5: command tx timeout [ 352.140460] Bluetooth: hci6: command tx timeout [ 353.612645] Bluetooth: hci0: command tx timeout [ 353.740432] Bluetooth: hci2: command tx timeout [ 353.805222] Bluetooth: hci1: command tx timeout [ 353.870586] Bluetooth: hci3: command tx timeout [ 353.996455] Bluetooth: hci7: command tx timeout [ 353.996602] Bluetooth: hci4: command tx timeout [ 354.060393] Bluetooth: hci5: command tx timeout [ 354.188534] Bluetooth: hci6: command tx timeout [ 355.661413] Bluetooth: hci0: command tx timeout [ 355.791326] Bluetooth: hci2: command tx timeout [ 355.853392] Bluetooth: hci1: command tx timeout [ 355.916486] Bluetooth: hci3: command tx timeout [ 356.044407] Bluetooth: hci4: command tx timeout [ 356.045146] Bluetooth: hci7: command tx timeout [ 356.110305] Bluetooth: hci5: command tx timeout [ 356.236373] Bluetooth: hci6: command tx timeout [ 357.708376] Bluetooth: hci0: command tx timeout [ 357.836533] Bluetooth: hci2: command tx timeout [ 357.900442] Bluetooth: hci1: command tx timeout [ 357.964372] Bluetooth: hci3: command tx timeout [ 358.093935] Bluetooth: hci4: command tx timeout [ 358.094878] Bluetooth: hci7: command tx timeout [ 358.166443] Bluetooth: hci5: command tx timeout [ 358.286434] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 18:12:13 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000022 RCX=ffffffff814f3e3e RDX=1ffff11002c69153 RSI=0000000000000008 RDI=ffffffff87f0af20 RBP=ffff888016348aa0 RSP=ffff888026077738 R8 =0000000000000000 R9 =fffffbfff0fe15e4 R10=ffffffff87f0af27 R11=0000000000000001 R12=ffff888016348000 R13=0000000000000000 R14=ffffffff86405170 R15=0000000000000000 RIP=ffffffff81abd4e8 RFL=00000057 [---ZAPC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f12aadd01f0 CR3=000000002610e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6461657268747062696c2f756e672d78 XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0100000000020808 RBX=ffffea0000a0a1c0 RCX=ffffffff819ee3e9 RDX=1ffffd4000141438 RSI=ffff888035105a80 RDI=ffffea0000a0a1c0 RBP=ffff888033a2fd98 RSP=ffff888033a2fbd8 R8 =0000000000000000 R9 =fffff94000141438 R10=ffffea0000a0a1c7 R11=0000000000000000 R12=8000000028287067 R13=ffffea0000223780 R14=0000000000000000 R15=ffff888035105a80 RIP=ffffffff8199f711 RFL=00000296 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f8affc96540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8b00164020 CR3=00000000385f8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff00ffffffffffffffffffffff00ff XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000