Warning: Permanently added '[localhost]:34933' (ECDSA) to the list of known hosts. 2025/01/29 16:53:21 fuzzer started 2025/01/29 16:53:22 dialing manager at localhost:36977 syzkaller login: [ 69.097512] cgroup: Unknown subsys name 'net' [ 69.197790] cgroup: Unknown subsys name 'cpuset' [ 69.232008] cgroup: Unknown subsys name 'rlimit' 2025/01/29 16:53:40 syscalls: 2217 2025/01/29 16:53:40 code coverage: enabled 2025/01/29 16:53:40 comparison tracing: enabled 2025/01/29 16:53:40 extra coverage: enabled 2025/01/29 16:53:40 setuid sandbox: enabled 2025/01/29 16:53:40 namespace sandbox: enabled 2025/01/29 16:53:40 Android sandbox: enabled 2025/01/29 16:53:40 fault injection: enabled 2025/01/29 16:53:40 leak checking: enabled 2025/01/29 16:53:40 net packet injection: enabled 2025/01/29 16:53:40 net device setup: enabled 2025/01/29 16:53:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/29 16:53:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/29 16:53:40 USB emulation: enabled 2025/01/29 16:53:40 hci packet injection: enabled 2025/01/29 16:53:40 wifi device emulation: enabled 2025/01/29 16:53:40 802.15.4 emulation: enabled 2025/01/29 16:53:40 fetching corpus: 0, signal 0/0 (executing program) 2025/01/29 16:53:40 fetching corpus: 0, signal 0/0 (executing program) 2025/01/29 16:53:42 starting 8 fuzzer processes 16:53:42 executing program 0: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f0000000000)=@ready={0x0, 0x0, 0x8, 'BBBB'}) 16:53:42 executing program 1: syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000001300)=[{&(0x7f0000000080)="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", 0x1fd, 0x3}], 0x0, 0x0) syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000001900), 0x0, 0x0) openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000001e00)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001dc0)={&(0x7f0000001d80)={0x1c}, 0x1c}}, 0x0) 16:53:42 executing program 2: futimesat(0xffffffffffffffff, 0x0, 0x0) 16:53:42 executing program 3: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0x1) setxattr$security_selinux(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f0000000240)='system_u:object_r:zero_device_t:s0\x00', 0x23, 0x0) 16:53:42 executing program 4: fgetxattr(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x0, 0x0) [ 89.629537] audit: type=1400 audit(1738169622.991:7): avc: denied { execmem } for pid=281 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:53:43 executing program 5: mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3, 0x32, 0xffffffffffffffff, 0x0) 16:53:43 executing program 6: syz_mount_image$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'user.', '9p\x00'}, 0x0, 0x0) 16:53:43 executing program 7: syz_mount_image$ext4(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000002600)='./file0\x00', &(0x7f0000002640), 0x0, 0x0, 0x0) [ 91.007637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.011098] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.012412] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.016286] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.018713] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.023198] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.023866] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.028997] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.031317] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.034723] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.037774] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 91.042133] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.072551] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.074862] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.078669] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.083202] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.085740] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 91.088599] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.131763] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.155318] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.158693] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.160618] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.161513] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.165469] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.168073] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 91.171581] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.203976] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.207905] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.215583] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.221752] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.231008] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.233067] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.245433] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.247037] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.249648] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.251447] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.259656] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.268842] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.270124] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.272836] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 91.275807] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 91.279636] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.284997] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.291887] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 91.293982] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.322292] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.343934] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 91.364191] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.085826] Bluetooth: hci0: command tx timeout [ 93.149674] Bluetooth: hci2: command tx timeout [ 93.149719] Bluetooth: hci1: command tx timeout [ 93.213619] Bluetooth: hci4: command tx timeout [ 93.341715] Bluetooth: hci5: command tx timeout [ 93.342040] Bluetooth: hci6: command tx timeout [ 93.342735] Bluetooth: hci3: command tx timeout [ 93.471417] Bluetooth: hci7: command tx timeout [ 95.133492] Bluetooth: hci0: command tx timeout [ 95.197405] Bluetooth: hci1: command tx timeout [ 95.197433] Bluetooth: hci2: command tx timeout [ 95.262401] Bluetooth: hci4: command tx timeout [ 95.391399] Bluetooth: hci6: command tx timeout [ 95.391469] Bluetooth: hci5: command tx timeout [ 95.391895] Bluetooth: hci3: command tx timeout [ 95.517439] Bluetooth: hci7: command tx timeout [ 97.182663] Bluetooth: hci0: command tx timeout [ 97.245887] Bluetooth: hci2: command tx timeout [ 97.247091] Bluetooth: hci1: command tx timeout [ 97.309577] Bluetooth: hci4: command tx timeout [ 97.437502] Bluetooth: hci3: command tx timeout [ 97.438730] Bluetooth: hci5: command tx timeout [ 97.438774] Bluetooth: hci6: command tx timeout [ 97.565494] Bluetooth: hci7: command tx timeout [ 99.231428] Bluetooth: hci0: command tx timeout [ 99.293480] Bluetooth: hci2: command tx timeout [ 99.293642] Bluetooth: hci1: command tx timeout [ 99.357461] Bluetooth: hci4: command tx timeout [ 99.485675] Bluetooth: hci3: command tx timeout [ 99.485885] Bluetooth: hci5: command tx timeout [ 99.487439] Bluetooth: hci6: command tx timeout [ 99.614540] Bluetooth: hci7: command tx timeout [ 151.439256] syz-executor.2 (289) used greatest stack depth: 24208 bytes left [ 151.532735] syz-executor.6 (294) used greatest stack depth: 24160 bytes left [ 153.973257] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 153.977189] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 153.981680] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 153.987962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 153.992511] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 153.994055] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.029148] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.031628] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.035931] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.038937] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.042468] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.044911] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.046153] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.049706] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.050918] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.052126] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.060424] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.062837] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.227670] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.233378] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.237868] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.246131] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.248252] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.252221] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 154.260903] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.267668] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.274803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 154.276243] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.298738] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 154.300170] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 154.314594] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.332809] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.346984] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.368029] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.389992] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.391090] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.393642] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.413549] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.416058] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.416801] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.420360] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 154.421068] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.446247] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.470844] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.479686] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.481959] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.498749] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.521591] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.061541] Bluetooth: hci0: command tx timeout [ 156.125492] Bluetooth: hci1: command tx timeout [ 156.125581] Bluetooth: hci2: command tx timeout [ 156.381568] Bluetooth: hci3: command tx timeout [ 156.381786] Bluetooth: hci4: command tx timeout [ 156.574530] Bluetooth: hci5: command tx timeout [ 156.637542] Bluetooth: hci7: command tx timeout [ 156.638278] Bluetooth: hci6: command tx timeout [ 158.110393] Bluetooth: hci0: command tx timeout [ 158.173385] Bluetooth: hci2: command tx timeout [ 158.174633] Bluetooth: hci1: command tx timeout [ 158.429450] Bluetooth: hci4: command tx timeout [ 158.429655] Bluetooth: hci3: command tx timeout [ 158.621385] Bluetooth: hci5: command tx timeout [ 158.685461] Bluetooth: hci6: command tx timeout [ 158.685506] Bluetooth: hci7: command tx timeout [ 160.159426] Bluetooth: hci0: command tx timeout [ 160.221581] Bluetooth: hci1: command tx timeout [ 160.221603] Bluetooth: hci2: command tx timeout [ 160.477402] Bluetooth: hci4: command tx timeout [ 160.479402] Bluetooth: hci3: command tx timeout [ 160.671381] Bluetooth: hci5: command tx timeout [ 160.733466] Bluetooth: hci7: command tx timeout [ 160.736371] Bluetooth: hci6: command tx timeout [ 162.206392] Bluetooth: hci0: command tx timeout [ 162.269404] Bluetooth: hci2: command tx timeout [ 162.270707] Bluetooth: hci1: command tx timeout [ 162.525705] Bluetooth: hci3: command tx timeout [ 162.526025] Bluetooth: hci4: command tx timeout [ 162.717524] Bluetooth: hci5: command tx timeout [ 162.782374] Bluetooth: hci6: command tx timeout [ 162.782409] Bluetooth: hci7: command tx timeout [ 215.975067] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 215.982771] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 215.985066] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 215.989974] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 215.993606] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 215.996105] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.045933] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.049273] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.051432] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.059466] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.063639] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 216.066194] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 216.100722] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.103640] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.109872] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.114637] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.120691] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 216.128100] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.191262] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 216.197757] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 216.201790] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 216.215820] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 216.228074] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 216.253552] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 216.254978] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 216.274867] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 216.308589] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 216.310588] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 216.316710] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 216.321042] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 216.324774] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 216.326640] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 216.331620] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 216.339057] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 216.348971] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 216.356429] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 216.411201] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 216.434669] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 216.453705] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 216.458436] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 216.462795] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 216.470213] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 216.473707] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 216.489538] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 216.496950] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 216.498670] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 216.504635] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 216.511619] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 218.013410] Bluetooth: hci0: command tx timeout [ 218.142575] Bluetooth: hci1: command tx timeout [ 218.206393] Bluetooth: hci2: command tx timeout [ 218.334509] Bluetooth: hci3: command tx timeout [ 218.398591] Bluetooth: hci4: command tx timeout [ 218.461450] Bluetooth: hci5: command tx timeout [ 218.589589] Bluetooth: hci6: command tx timeout [ 218.589643] Bluetooth: hci7: command tx timeout [ 220.063423] Bluetooth: hci0: command tx timeout [ 220.189485] Bluetooth: hci1: command tx timeout [ 220.253625] Bluetooth: hci2: command tx timeout [ 220.383392] Bluetooth: hci3: command tx timeout [ 220.445433] Bluetooth: hci4: command tx timeout [ 220.509409] Bluetooth: hci5: command tx timeout [ 220.637521] Bluetooth: hci7: command tx timeout [ 220.637994] Bluetooth: hci6: command tx timeout [ 222.109478] Bluetooth: hci0: command tx timeout [ 222.237528] Bluetooth: hci1: command tx timeout [ 222.301617] Bluetooth: hci2: command tx timeout [ 222.429374] Bluetooth: hci3: command tx timeout [ 222.493396] Bluetooth: hci4: command tx timeout [ 222.557370] Bluetooth: hci5: command tx timeout [ 222.686743] Bluetooth: hci6: command tx timeout [ 222.687226] Bluetooth: hci7: command tx timeout [ 224.157556] Bluetooth: hci0: command tx timeout [ 224.285585] Bluetooth: hci1: command tx timeout [ 224.350533] Bluetooth: hci2: command tx timeout [ 224.477542] Bluetooth: hci3: command tx timeout [ 224.542382] Bluetooth: hci4: command tx timeout [ 224.605390] Bluetooth: hci5: command tx timeout [ 224.733419] Bluetooth: hci7: command tx timeout [ 224.733902] Bluetooth: hci6: command tx timeout [ 275.960434] syz-executor.0 (6943) used greatest stack depth: 23896 bytes left [ 278.519849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 278.527179] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 278.539006] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 278.548559] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 278.555813] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 278.559017] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 278.575687] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 278.595863] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 278.598876] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 278.605151] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 278.610743] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 278.612989] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 278.654650] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 278.664077] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 278.666822] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 278.681059] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 278.686813] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 278.692823] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 278.780647] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 278.783204] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 278.787153] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 278.789003] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 278.792740] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 278.796448] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 278.799727] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 278.801395] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 278.803599] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 278.820830] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 278.822462] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 278.825569] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 278.841540] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 278.862576] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 278.864636] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 278.868467] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 278.872965] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 278.874563] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 278.890720] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 278.895370] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 278.898015] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 278.907119] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 278.909159] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 278.914011] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 278.916915] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 278.919641] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 278.940817] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 278.957985] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 278.980602] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 279.009761] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 280.606400] Bluetooth: hci0: command tx timeout [ 280.669368] Bluetooth: hci1: command tx timeout [ 280.734512] Bluetooth: hci2: command tx timeout [ 280.861419] Bluetooth: hci4: command tx timeout [ 280.926434] Bluetooth: hci3: command tx timeout [ 280.989681] Bluetooth: hci7: command tx timeout [ 280.990517] Bluetooth: hci5: command tx timeout [ 281.117446] Bluetooth: hci6: command tx timeout [ 282.655339] Bluetooth: hci0: command tx timeout [ 282.717407] Bluetooth: hci1: command tx timeout [ 282.782030] Bluetooth: hci2: command tx timeout [ 282.909429] Bluetooth: hci4: command tx timeout [ 282.973422] Bluetooth: hci3: command tx timeout [ 283.037397] Bluetooth: hci7: command tx timeout [ 283.037849] Bluetooth: hci5: command tx timeout [ 283.167386] Bluetooth: hci6: command tx timeout [ 284.701432] Bluetooth: hci0: command tx timeout [ 284.765347] Bluetooth: hci1: command tx timeout [ 284.829356] Bluetooth: hci2: command tx timeout [ 284.957425] Bluetooth: hci4: command tx timeout [ 285.021916] Bluetooth: hci3: command tx timeout [ 285.085580] Bluetooth: hci5: command tx timeout [ 285.086027] Bluetooth: hci7: command tx timeout [ 285.213351] Bluetooth: hci6: command tx timeout [ 286.749365] Bluetooth: hci0: command tx timeout [ 286.813459] Bluetooth: hci1: command tx timeout [ 286.877665] Bluetooth: hci2: command tx timeout [ 287.005546] Bluetooth: hci4: command tx timeout [ 287.069495] Bluetooth: hci3: command tx timeout [ 287.133818] Bluetooth: hci7: command tx timeout [ 287.134446] Bluetooth: hci5: command tx timeout [ 287.262011] Bluetooth: hci6: command tx timeout [ 340.776729] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 340.781617] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 340.785120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 340.789884] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 340.792876] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 340.796996] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 340.904754] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 340.907158] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 340.909914] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 340.917056] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 340.920215] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 340.922175] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 340.991514] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 340.997445] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 341.008083] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 341.021778] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 341.041451] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 341.044948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 341.047521] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 341.053710] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 341.054507] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 341.056117] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 341.060036] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 341.064526] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 341.067085] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 341.073563] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 341.089192] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 341.115020] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 341.129048] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 341.134661] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 341.145651] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 341.148120] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 341.149945] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 341.151738] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 341.171250] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 341.173734] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 341.211984] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 341.229861] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 341.240474] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 341.261049] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 341.282821] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 341.284811] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 341.289651] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 341.292601] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 341.307116] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 341.320814] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 341.334018] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 341.351726] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 342.814400] Bluetooth: hci0: command tx timeout [ 342.941369] Bluetooth: hci1: command tx timeout [ 343.133493] Bluetooth: hci3: command tx timeout [ 343.197626] Bluetooth: hci2: command tx timeout [ 343.261437] Bluetooth: hci4: command tx timeout [ 343.261479] Bluetooth: hci5: command tx timeout [ 343.454350] Bluetooth: hci7: command tx timeout [ 343.517384] Bluetooth: hci6: command tx timeout [ 344.861336] Bluetooth: hci0: command tx timeout [ 344.989519] Bluetooth: hci1: command tx timeout [ 345.181338] Bluetooth: hci3: command tx timeout [ 345.245399] Bluetooth: hci2: command tx timeout [ 345.309346] Bluetooth: hci4: command tx timeout [ 345.311043] Bluetooth: hci5: command tx timeout [ 345.501391] Bluetooth: hci7: command tx timeout [ 345.565425] Bluetooth: hci6: command tx timeout [ 346.911323] Bluetooth: hci0: command tx timeout [ 347.038336] Bluetooth: hci1: command tx timeout [ 347.229463] Bluetooth: hci3: command tx timeout [ 347.293614] Bluetooth: hci2: command tx timeout [ 347.359379] Bluetooth: hci5: command tx timeout [ 347.360341] Bluetooth: hci4: command tx timeout [ 347.549395] Bluetooth: hci7: command tx timeout [ 347.613642] Bluetooth: hci6: command tx timeout [ 348.958374] Bluetooth: hci0: command tx timeout [ 349.086364] Bluetooth: hci1: command tx timeout [ 349.278329] Bluetooth: hci3: command tx timeout [ 349.342333] Bluetooth: hci2: command tx timeout [ 349.405394] Bluetooth: hci4: command tx timeout [ 349.408363] Bluetooth: hci5: command tx timeout [ 349.598723] Bluetooth: hci7: command tx timeout [ 349.662408] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 16:58:50 Registers: info registers vcpu 0 RAX=ffff88800be6b780 RBX=0000000000089100 RCX=ffffffff815092a4 RDX=ffff88800be4bae0 RSI=0000000000000000 RDI=ffff88800be70000 RBP=ffff88800be70000 RSP=ffff88806ce09d70 R8 =0000000000000001 R9 =ffffed100d9c139e R10=0000000000000003 R11=0000000000000001 R12=ffff88800cef6ad0 R13=0000000000000246 R14=0000000000000000 R15=ffff88800be70000 RIP=ffffffff81aee400 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f11e3bc6260 CR3=00000000315a2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=2e6f747079726362696c2f756e672d78 XMM02=00312e312e6f732e6f74707972636269 XMM03=6c2f756e672d78756e696c2d34365f36 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffed100505cfc2 RBX=ffff8880282e7e10 RCX=dffffc0000000000 RDX=ffff8880282e7e10 RSI=ffff888036cea01c RDI=ffff8880282e7e10 RBP=dffffc0000000000 RSP=ffff8880282e7c80 R8 =0000000000000001 R9 =fffffbfff0fe15e4 R10=00000000fffffffe R11=0000000000000000 R12=00000000fffffffe R13=0000000000000000 R14=ffff8880282e7e4d R15=0000000000000002 RIP=ffffffff8171a4d0 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6f2f3e4540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000557c007684c8 CR3=0000000024c8c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0070656474666f732e73656c75646f6d XMM01=0070656474666f732e73656c75646f6d XMM02=00000000000000000000ffffffffffff XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000