syzkaller login: [ 63.235563] sshd (231) used greatest stack depth: 24272 bytes left Warning: Permanently added '[localhost]:57484' (ECDSA) to the list of known hosts. 2025/01/29 17:12:11 fuzzer started 2025/01/29 17:12:12 dialing manager at localhost:36977 [ 66.145597] cgroup: Unknown subsys name 'net' [ 66.230261] cgroup: Unknown subsys name 'cpuset' [ 66.262163] cgroup: Unknown subsys name 'rlimit' 2025/01/29 17:12:30 syscalls: 2217 2025/01/29 17:12:30 code coverage: enabled 2025/01/29 17:12:30 comparison tracing: enabled 2025/01/29 17:12:30 extra coverage: enabled 2025/01/29 17:12:30 setuid sandbox: enabled 2025/01/29 17:12:30 namespace sandbox: enabled 2025/01/29 17:12:30 Android sandbox: enabled 2025/01/29 17:12:30 fault injection: enabled 2025/01/29 17:12:30 leak checking: enabled 2025/01/29 17:12:30 net packet injection: enabled 2025/01/29 17:12:30 net device setup: enabled 2025/01/29 17:12:30 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/29 17:12:30 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/29 17:12:30 USB emulation: enabled 2025/01/29 17:12:30 hci packet injection: enabled 2025/01/29 17:12:30 wifi device emulation: enabled 2025/01/29 17:12:30 802.15.4 emulation: enabled 2025/01/29 17:12:30 fetching corpus: 0, signal 0/0 (executing program) 2025/01/29 17:12:30 fetching corpus: 0, signal 0/0 (executing program) 2025/01/29 17:12:33 starting 8 fuzzer processes 17:12:33 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38303439393233303000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040000c00000000000000d5f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d5f4655fd5f4655fd5f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000d5f4655fd6f4655fd6f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="200000006418e53c6418e53c00000000d5f4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020d5f4655fd5f4655fd5f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d5f4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000d5f4655fd5f4655fd5f4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000d5f4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000d6f4655fd6f4655fd6f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000be5839ad000000000000000000000000000000000000000000000000200000006418e53c6418e53c14f4f03bd6f4655f14f4f03b0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000d6f4655fd6f4655fd6f4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000f3be7438000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000d6f4655fd6f4655fd6f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3830343939323330302f66696c65302f66696c653000000000000000000000000000000000000000000000f583dfd0000000000000000000000000000000000000000000000000200000006418e53c6418e53c6418e53cd6f4655f6418e53c0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="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", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="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", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffd6f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00)) 17:12:33 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg(r0, &(0x7f0000000880)={&(0x7f0000000200)=@isdn, 0x80, &(0x7f0000000740)=[{&(0x7f0000000280)='M', 0x1}], 0x1, &(0x7f00000007c0)=[{0x10}], 0x10}, 0x0) [ 86.878059] audit: type=1400 audit(1738170753.146:7): avc: denied { execmem } for pid=269 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:12:33 executing program 2: ftruncate(0xffffffffffffffff, 0x0) 17:12:33 executing program 3: perf_event_open$cgroup(&(0x7f0000001840)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1004000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 17:12:33 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 17:12:33 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35343235353432393700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000191e9a1afbab4a0784039e22778533ac010000000c00000000000000d1f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d1f4655fd1f4655fd1f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d1f4655fd1f4655fd1f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="2000000008f5ddb808f5ddb800000000d1f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d1f4655fd1f4655fd1f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d1f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d1f4655fd1f4655fd1f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000006d465f020000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d1f4655fd1f4655fd1f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000852c53740000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d1f4655fd1f4655fd1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3534323535343239372f66696c65302f66696c6530000000000000000000000000000000000000000000007c8f883b0000000000000000000000000000000000000000000000002000000008f5ddb808f5ddb808f5ddb8d1f4655f08f5ddb80000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) 17:12:33 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000b80)={0xa, 0x0, 0x0, @dev, 0x43}, 0x1c) 17:12:33 executing program 7: move_pages(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) [ 88.629473] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 88.631369] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 88.634840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 88.638879] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 88.644087] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 88.646613] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 88.649232] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 88.655369] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 88.657894] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 88.659711] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 88.673084] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 88.679831] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 88.706831] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 88.722293] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 88.728645] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.735318] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 88.740137] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.740192] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.743784] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.745935] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 88.748569] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.758187] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.762644] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.765129] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.769433] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.774628] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.776101] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 88.787379] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 88.788816] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 88.793914] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 88.818665] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 88.825177] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 88.838088] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 88.839687] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.846432] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.865471] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.869550] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 88.871646] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.876303] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.879701] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.887301] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 88.889114] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 88.891398] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.904850] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 88.907200] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 88.909760] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.918784] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 88.921169] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 90.714186] Bluetooth: hci0: command tx timeout [ 90.777250] Bluetooth: hci1: command tx timeout [ 90.841364] Bluetooth: hci2: command tx timeout [ 90.904728] Bluetooth: hci4: command tx timeout [ 90.906377] Bluetooth: hci3: command tx timeout [ 90.968120] Bluetooth: hci6: command tx timeout [ 90.968261] Bluetooth: hci7: command tx timeout [ 91.032300] Bluetooth: hci5: command tx timeout [ 92.760586] Bluetooth: hci0: command tx timeout [ 92.824554] Bluetooth: hci1: command tx timeout [ 92.888155] Bluetooth: hci2: command tx timeout [ 92.952147] Bluetooth: hci4: command tx timeout [ 92.952914] Bluetooth: hci3: command tx timeout [ 93.016128] Bluetooth: hci7: command tx timeout [ 93.017032] Bluetooth: hci6: command tx timeout [ 93.081277] Bluetooth: hci5: command tx timeout [ 94.810033] Bluetooth: hci0: command tx timeout [ 94.872130] Bluetooth: hci1: command tx timeout [ 94.936227] Bluetooth: hci2: command tx timeout [ 95.000128] Bluetooth: hci3: command tx timeout [ 95.001128] Bluetooth: hci4: command tx timeout [ 95.064145] Bluetooth: hci7: command tx timeout [ 95.065169] Bluetooth: hci6: command tx timeout [ 95.128259] Bluetooth: hci5: command tx timeout [ 96.859182] Bluetooth: hci0: command tx timeout [ 96.921067] Bluetooth: hci1: command tx timeout [ 96.985068] Bluetooth: hci2: command tx timeout [ 97.048076] Bluetooth: hci3: command tx timeout [ 97.051002] Bluetooth: hci4: command tx timeout [ 97.112180] Bluetooth: hci6: command tx timeout [ 97.113035] Bluetooth: hci7: command tx timeout [ 97.176073] Bluetooth: hci5: command tx timeout [ 148.073126] syz-executor.7 (283) used greatest stack depth: 24160 bytes left [ 150.498911] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.501767] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.504149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.508752] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.511680] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.514209] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.571342] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.577366] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.581847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.586251] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.589858] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.591626] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.687171] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.693444] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.696418] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.699837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.703116] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.705657] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.710791] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.715330] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.717595] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 150.729264] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.731654] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.735908] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.758223] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.763303] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.765309] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.771843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.790713] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.793147] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.856048] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.865566] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.867844] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.884326] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.889328] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.894295] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 150.911192] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.929154] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.935002] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.956139] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.967396] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.976903] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 150.999583] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 151.050385] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 151.054903] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 151.058689] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 151.061409] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 151.073976] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 152.600072] Bluetooth: hci0: command tx timeout [ 152.665091] Bluetooth: hci1: command tx timeout [ 152.792059] Bluetooth: hci3: command tx timeout [ 152.856027] Bluetooth: hci2: command tx timeout [ 152.856055] Bluetooth: hci4: command tx timeout [ 153.113073] Bluetooth: hci5: command tx timeout [ 153.177167] Bluetooth: hci6: command tx timeout [ 153.177212] Bluetooth: hci7: command tx timeout [ 154.648127] Bluetooth: hci0: command tx timeout [ 154.712255] Bluetooth: hci1: command tx timeout [ 154.840604] Bluetooth: hci3: command tx timeout [ 154.904094] Bluetooth: hci4: command tx timeout [ 154.904863] Bluetooth: hci2: command tx timeout [ 155.161227] Bluetooth: hci5: command tx timeout [ 155.225073] Bluetooth: hci7: command tx timeout [ 155.225097] Bluetooth: hci6: command tx timeout [ 156.697306] Bluetooth: hci0: command tx timeout [ 156.761969] Bluetooth: hci1: command tx timeout [ 156.888125] Bluetooth: hci3: command tx timeout [ 156.952009] Bluetooth: hci2: command tx timeout [ 156.953026] Bluetooth: hci4: command tx timeout [ 157.208019] Bluetooth: hci5: command tx timeout [ 157.272243] Bluetooth: hci6: command tx timeout [ 157.272703] Bluetooth: hci7: command tx timeout [ 158.744046] Bluetooth: hci0: command tx timeout [ 158.808008] Bluetooth: hci1: command tx timeout [ 158.936069] Bluetooth: hci3: command tx timeout [ 159.001071] Bluetooth: hci4: command tx timeout [ 159.001159] Bluetooth: hci2: command tx timeout [ 159.256451] Bluetooth: hci5: command tx timeout [ 159.320052] Bluetooth: hci6: command tx timeout [ 159.320075] Bluetooth: hci7: command tx timeout [ 212.664042] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.667122] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.669953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.673266] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.675119] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.680276] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.869895] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.874146] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.876377] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.884075] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.884880] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.893135] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.895362] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.897509] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.903384] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.916474] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.920443] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.926466] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 213.089041] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 213.105419] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 213.110655] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 213.116211] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 213.118616] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 213.128999] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 213.133882] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 213.137350] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 213.155354] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 213.165066] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 213.168828] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 213.176366] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 213.192339] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 213.203605] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 213.205037] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 213.208804] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 213.239584] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 213.241212] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 213.243192] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 213.244661] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 213.245009] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 213.247335] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 213.265080] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 213.266351] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 213.272612] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 213.276623] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 213.282885] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 213.301754] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 213.304486] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 213.314271] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 214.745049] Bluetooth: hci0: command tx timeout [ 214.936994] Bluetooth: hci2: command tx timeout [ 215.002053] Bluetooth: hci1: command tx timeout [ 215.322109] Bluetooth: hci6: command tx timeout [ 215.384233] Bluetooth: hci7: command tx timeout [ 215.385550] Bluetooth: hci4: command tx timeout [ 215.386226] Bluetooth: hci5: command tx timeout [ 215.448067] Bluetooth: hci3: command tx timeout [ 216.792299] Bluetooth: hci0: command tx timeout [ 216.985291] Bluetooth: hci2: command tx timeout [ 217.049024] Bluetooth: hci1: command tx timeout [ 217.370217] Bluetooth: hci6: command tx timeout [ 217.435267] Bluetooth: hci5: command tx timeout [ 217.435790] Bluetooth: hci4: command tx timeout [ 217.436453] Bluetooth: hci7: command tx timeout [ 217.497195] Bluetooth: hci3: command tx timeout [ 218.842061] Bluetooth: hci0: command tx timeout [ 219.032997] Bluetooth: hci2: command tx timeout [ 219.098096] Bluetooth: hci1: command tx timeout [ 219.417082] Bluetooth: hci6: command tx timeout [ 219.480170] Bluetooth: hci7: command tx timeout [ 219.481370] Bluetooth: hci4: command tx timeout [ 219.483178] Bluetooth: hci5: command tx timeout [ 219.546072] Bluetooth: hci3: command tx timeout [ 220.889372] Bluetooth: hci0: command tx timeout [ 221.081037] Bluetooth: hci2: command tx timeout [ 221.145258] Bluetooth: hci1: command tx timeout [ 221.464709] Bluetooth: hci6: command tx timeout [ 221.529172] Bluetooth: hci7: command tx timeout [ 221.530127] Bluetooth: hci5: command tx timeout [ 221.531202] Bluetooth: hci4: command tx timeout [ 221.592087] Bluetooth: hci3: command tx timeout [ 272.833061] syz-executor.5 (6673) used greatest stack depth: 23896 bytes left [ 274.987710] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 274.991627] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 274.995864] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 275.003846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 275.010021] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 275.013323] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 275.112126] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 275.114709] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 275.117340] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 275.123747] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 275.129419] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 275.131535] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 275.175982] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 275.180742] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 275.183409] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 275.188441] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 275.201004] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 275.207278] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 275.213315] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 275.215432] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 275.219592] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 275.223350] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 275.228350] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 275.230740] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 275.277729] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 275.355363] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 275.356119] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 275.364955] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 275.367050] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 275.374065] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 275.377358] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 275.382553] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 275.384405] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 275.386546] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 275.399358] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 275.403629] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 275.406292] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 275.417289] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 275.422319] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 275.423771] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 275.432410] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 275.436419] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 275.445589] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 275.452467] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 275.485442] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 275.512139] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 275.523375] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 275.525447] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 277.080155] Bluetooth: hci0: command tx timeout [ 277.208207] Bluetooth: hci1: command tx timeout [ 277.336118] Bluetooth: hci2: command tx timeout [ 277.400069] Bluetooth: hci3: command tx timeout [ 277.464146] Bluetooth: hci4: command tx timeout [ 277.529052] Bluetooth: hci5: command tx timeout [ 277.592724] Bluetooth: hci6: command tx timeout [ 277.656547] Bluetooth: hci7: command tx timeout [ 279.127985] Bluetooth: hci0: command tx timeout [ 279.255984] Bluetooth: hci1: command tx timeout [ 279.383996] Bluetooth: hci2: command tx timeout [ 279.448034] Bluetooth: hci3: command tx timeout [ 279.511983] Bluetooth: hci4: command tx timeout [ 279.576141] Bluetooth: hci5: command tx timeout [ 279.640014] Bluetooth: hci6: command tx timeout [ 279.704750] Bluetooth: hci7: command tx timeout [ 281.176044] Bluetooth: hci0: command tx timeout [ 281.305984] Bluetooth: hci1: command tx timeout [ 281.432096] Bluetooth: hci2: command tx timeout [ 281.497600] Bluetooth: hci3: command tx timeout [ 281.560119] Bluetooth: hci4: command tx timeout [ 281.624455] Bluetooth: hci5: command tx timeout [ 281.688243] Bluetooth: hci6: command tx timeout [ 281.752718] Bluetooth: hci7: command tx timeout [ 283.224172] Bluetooth: hci0: command tx timeout [ 283.352069] Bluetooth: hci1: command tx timeout [ 283.480416] Bluetooth: hci2: command tx timeout [ 283.544027] Bluetooth: hci3: command tx timeout [ 283.608226] Bluetooth: hci4: command tx timeout [ 283.672029] Bluetooth: hci5: command tx timeout [ 283.736732] Bluetooth: hci6: command tx timeout [ 283.800044] Bluetooth: hci7: command tx timeout [ 337.257233] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 337.260442] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 337.262816] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 337.267724] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 337.271072] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 337.273145] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 337.328378] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 337.334386] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 337.336650] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 337.345595] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 337.350633] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 337.353492] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 337.598868] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 337.609730] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 337.624391] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 337.655552] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 337.664407] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 337.682376] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 337.686986] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 337.696752] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 337.714529] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 337.724836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 337.727460] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 337.734654] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 337.739578] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 337.755722] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 337.762350] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 337.766699] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 337.772082] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 337.774999] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 337.779419] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 337.790037] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 337.796240] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 337.802380] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 337.804615] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 337.812117] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 337.820363] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 337.835687] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 337.866167] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 337.868111] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 337.891412] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 337.902366] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 337.904525] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 337.909631] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 337.920320] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 337.945390] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 337.974287] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 338.006192] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 339.288064] Bluetooth: hci0: command tx timeout [ 339.416041] Bluetooth: hci1: command tx timeout [ 339.800970] Bluetooth: hci2: command tx timeout [ 339.866954] Bluetooth: hci7: command tx timeout [ 339.927984] Bluetooth: hci3: command tx timeout [ 339.991966] Bluetooth: hci4: command tx timeout [ 340.056029] Bluetooth: hci6: command tx timeout [ 340.056780] Bluetooth: hci5: command tx timeout [ 341.336014] Bluetooth: hci0: command tx timeout [ 341.464094] Bluetooth: hci1: command tx timeout [ 341.848441] Bluetooth: hci2: command tx timeout [ 341.912621] Bluetooth: hci7: command tx timeout [ 341.976071] Bluetooth: hci3: command tx timeout [ 342.041039] Bluetooth: hci4: command tx timeout [ 342.104249] Bluetooth: hci6: command tx timeout [ 342.105663] Bluetooth: hci5: command tx timeout [ 343.384588] Bluetooth: hci0: command tx timeout [ 343.512195] Bluetooth: hci1: command tx timeout [ 343.896051] Bluetooth: hci2: command tx timeout [ 343.960032] Bluetooth: hci7: command tx timeout [ 344.024201] Bluetooth: hci3: command tx timeout [ 344.089307] Bluetooth: hci4: command tx timeout [ 344.152068] Bluetooth: hci6: command tx timeout [ 344.152956] Bluetooth: hci5: command tx timeout [ 345.432025] Bluetooth: hci0: command tx timeout [ 345.562077] Bluetooth: hci1: command tx timeout [ 345.944002] Bluetooth: hci2: command tx timeout [ 346.008018] Bluetooth: hci7: command tx timeout [ 346.071960] Bluetooth: hci3: command tx timeout [ 346.136245] Bluetooth: hci4: command tx timeout [ 346.200166] Bluetooth: hci5: command tx timeout [ 346.201351] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 17:17:40 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff81a2002a RDX=dffffc0000000000 RSI=000000000000a200 RDI=ffff88802abe7658 RBP=ffff88802abe76b0 RSP=ffff88802abe75e8 R8 =0000000000000001 R9 =ffff88802abe7698 R10=000000000003ab5c R11=0000000000007a94 R12=ffff88802abe76b8 R13=ffff88802abe76a0 R14=ffff88802abe7699 R15=ffff88802abe7658 RIP=ffffffff81348fea RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb59d664368 CR3=000000000e110000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=322e6f732e6c6462696c2f756e672d78 XMM02=00322e6f732e6c6462696c2f756e672d XMM03=78756e696c2d34365f3638782f62696c XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000000184 RCX=ffffffff814f40de RDX=fffffbfff0fe15eb RSI=0000000000000008 RDI=ffffffff87f0af50 RBP=ffff88800bdc9bc0 RSP=ffff8880134af7f0 R8 =0000000000000000 R9 =fffffbfff0fe15ea R10=ffffffff87f0af57 R11=0000000000000001 R12=0000000000000006 R13=0000000000000040 R14=ffff88800bdca610 R15=ffff88800ba64330 RIP=ffffffff814f40e6 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa28ea214a1 CR3=000000000bcd4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000ffff000000000000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000