Warning: Permanently added '[localhost]:33516' (ECDSA) to the list of known hosts. 2025/02/12 11:36:37 fuzzer started 2025/02/12 11:36:37 dialing manager at localhost:42009 syzkaller login: [ 140.027894] cgroup: Unknown subsys name 'net' [ 140.170295] cgroup: Unknown subsys name 'cpuset' [ 140.206269] cgroup: Unknown subsys name 'rlimit' 2025/02/12 11:36:53 syscalls: 2217 2025/02/12 11:36:53 code coverage: enabled 2025/02/12 11:36:53 comparison tracing: enabled 2025/02/12 11:36:53 extra coverage: enabled 2025/02/12 11:36:53 setuid sandbox: enabled 2025/02/12 11:36:53 namespace sandbox: enabled 2025/02/12 11:36:53 Android sandbox: enabled 2025/02/12 11:36:53 fault injection: enabled 2025/02/12 11:36:53 leak checking: enabled 2025/02/12 11:36:53 net packet injection: enabled 2025/02/12 11:36:53 net device setup: enabled 2025/02/12 11:36:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/02/12 11:36:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/02/12 11:36:53 USB emulation: enabled 2025/02/12 11:36:53 hci packet injection: enabled 2025/02/12 11:36:53 wifi device emulation: enabled 2025/02/12 11:36:53 802.15.4 emulation: enabled 2025/02/12 11:36:53 fetching corpus: 0, signal 0/0 (executing program) 2025/02/12 11:36:53 fetching corpus: 0, signal 0/0 (executing program) 2025/02/12 11:36:55 starting 8 fuzzer processes 11:36:55 executing program 0: mincore(&(0x7f0000ffb000/0x4000)=nil, 0x4000, &(0x7f0000000000)) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0xffffffffffffffff) 11:36:55 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x17e}) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x1ff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x17e}) 11:36:55 executing program 2: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)={[{@session}, {@unhide}, {@hide}, {@gid}, {@overriderock}]}) 11:36:55 executing program 3: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000003c0)={0xffffffffffffffff}) ppoll(&(0x7f0000000440)=[{r1}, {r0}, {r2}, {}], 0x4, &(0x7f00000004c0), 0x0, 0x0) [ 157.796329] audit: type=1400 audit(1739360215.909:7): avc: denied { execmem } for pid=279 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:36:55 executing program 4: openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)) ioctl(0xffffffffffffffff, 0x0, 0x0) 11:36:55 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000040)={0x0, {{0x2, 0x0, @loopback}}}, 0x88) 11:36:55 executing program 6: syz_mount_image$nfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lstat(&(0x7f0000000f80)='./file0\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000ec0)='./file0\x00', &(0x7f0000000f00)='system.posix_acl_default\x00', &(0x7f0000001040)={{}, {}, [], {}, [{0x8, 0x0, 0xee00}]}, 0x2c, 0x0) 11:36:56 executing program 7: r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello') [ 159.393190] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 159.395368] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 159.397493] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 159.404061] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 159.407338] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 159.409198] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 159.474497] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 159.489460] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 159.491277] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 159.501036] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 159.502351] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 159.508765] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 159.509961] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 159.527126] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 159.529343] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 159.531075] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 159.535306] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 159.537149] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 159.538422] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 159.547268] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 159.552550] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 159.554409] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 159.556526] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 159.558347] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 159.559533] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 159.560665] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 159.569183] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 159.577823] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 159.580269] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 159.581635] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 159.583469] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 159.584698] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 159.590886] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 159.595934] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 159.600858] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 159.603827] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 159.614152] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 159.615851] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 159.626786] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 159.627834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 159.652214] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 159.680213] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 159.686516] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 159.689963] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 159.703177] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 159.706177] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 159.707993] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 159.718650] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 161.467521] Bluetooth: hci0: command tx timeout [ 161.660812] Bluetooth: hci1: command tx timeout [ 161.660840] Bluetooth: hci7: command tx timeout [ 161.661528] Bluetooth: hci4: command tx timeout [ 161.787154] Bluetooth: hci3: command tx timeout [ 161.787937] Bluetooth: hci5: command tx timeout [ 161.787947] Bluetooth: hci2: command tx timeout [ 161.850875] Bluetooth: hci6: command tx timeout [ 163.515099] Bluetooth: hci0: command tx timeout [ 163.708060] Bluetooth: hci4: command tx timeout [ 163.708586] Bluetooth: hci7: command tx timeout [ 163.708668] Bluetooth: hci1: command tx timeout [ 163.835812] Bluetooth: hci5: command tx timeout [ 163.836302] Bluetooth: hci2: command tx timeout [ 163.836903] Bluetooth: hci3: command tx timeout [ 163.900420] Bluetooth: hci6: command tx timeout [ 165.563128] Bluetooth: hci0: command tx timeout [ 165.755215] Bluetooth: hci4: command tx timeout [ 165.755712] Bluetooth: hci1: command tx timeout [ 165.756493] Bluetooth: hci7: command tx timeout [ 165.883017] Bluetooth: hci3: command tx timeout [ 165.883504] Bluetooth: hci2: command tx timeout [ 165.884613] Bluetooth: hci5: command tx timeout [ 165.948703] Bluetooth: hci6: command tx timeout [ 167.612995] Bluetooth: hci0: command tx timeout [ 167.803370] Bluetooth: hci4: command tx timeout [ 167.804108] Bluetooth: hci7: command tx timeout [ 167.804161] Bluetooth: hci1: command tx timeout [ 167.931418] Bluetooth: hci2: command tx timeout [ 167.933075] Bluetooth: hci5: command tx timeout [ 167.933326] Bluetooth: hci3: command tx timeout [ 167.996293] Bluetooth: hci6: command tx timeout [ 219.871216] syz-executor.6 (289) used greatest stack depth: 24328 bytes left [ 219.948856] syz-executor.1 (291) used greatest stack depth: 24160 bytes left [ 222.481176] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 222.495738] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 222.522557] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 222.539315] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 222.559353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 222.578324] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 222.583955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 222.602595] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 222.605915] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 222.608179] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 222.611496] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 222.619068] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 222.623566] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 222.626344] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 222.628702] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 222.638959] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 222.643010] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 222.645005] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 222.649005] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 222.653328] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 222.657119] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 222.661685] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 222.670158] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 222.672901] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 222.679550] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 222.688516] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 222.691467] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 222.700554] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 222.703413] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 222.714285] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 222.714489] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 222.723150] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 222.724999] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 222.745419] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 222.748292] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 222.752907] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 222.758890] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 222.763317] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 222.765443] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 222.767485] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 222.774127] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 222.779903] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 222.781972] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 222.785245] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 222.789510] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 222.797511] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 222.799363] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 222.834056] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 224.699960] Bluetooth: hci0: command tx timeout [ 224.762950] Bluetooth: hci2: command tx timeout [ 224.764365] Bluetooth: hci3: command tx timeout [ 224.765203] Bluetooth: hci1: command tx timeout [ 224.827881] Bluetooth: hci6: command tx timeout [ 224.891178] Bluetooth: hci4: command tx timeout [ 224.891878] Bluetooth: hci7: command tx timeout [ 224.892159] Bluetooth: hci5: command tx timeout [ 226.746964] Bluetooth: hci0: command tx timeout [ 226.810931] Bluetooth: hci3: command tx timeout [ 226.811443] Bluetooth: hci1: command tx timeout [ 226.811987] Bluetooth: hci2: command tx timeout [ 226.876769] Bluetooth: hci6: command tx timeout [ 226.938837] Bluetooth: hci4: command tx timeout [ 226.939127] Bluetooth: hci5: command tx timeout [ 226.939325] Bluetooth: hci7: command tx timeout [ 228.798491] Bluetooth: hci0: command tx timeout [ 228.859318] Bluetooth: hci2: command tx timeout [ 228.859634] Bluetooth: hci3: command tx timeout [ 228.860338] Bluetooth: hci1: command tx timeout [ 228.925551] Bluetooth: hci6: command tx timeout [ 228.987291] Bluetooth: hci7: command tx timeout [ 228.987637] Bluetooth: hci5: command tx timeout [ 228.987937] Bluetooth: hci4: command tx timeout [ 230.844131] Bluetooth: hci0: command tx timeout [ 230.907982] Bluetooth: hci3: command tx timeout [ 230.908435] Bluetooth: hci2: command tx timeout [ 230.908474] Bluetooth: hci1: command tx timeout [ 230.971364] Bluetooth: hci6: command tx timeout [ 231.035116] Bluetooth: hci5: command tx timeout [ 231.035492] Bluetooth: hci7: command tx timeout [ 231.036187] Bluetooth: hci4: command tx timeout [ 285.098265] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 285.113903] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 285.117523] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 285.131635] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 285.143520] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 285.146030] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 285.385944] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 285.390780] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 285.402966] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 285.414372] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 285.422094] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 285.426136] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 285.461293] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 285.469557] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 285.473349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 285.480001] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 285.483528] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 285.496156] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 285.527427] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 285.557082] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 285.565464] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 285.576854] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 285.580108] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 285.583238] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 285.593440] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 285.595638] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 285.600228] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 285.602505] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 285.607725] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 285.609854] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 285.748240] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 285.752458] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 285.764680] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 285.770963] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 285.776839] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 285.782147] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 285.820071] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 285.825351] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 285.828183] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 285.868759] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 285.875900] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 285.880145] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 285.925054] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 286.025033] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 286.056410] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 286.065410] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 286.074608] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 286.078596] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 287.226807] Bluetooth: hci0: command tx timeout [ 287.483795] Bluetooth: hci1: command tx timeout [ 287.546819] Bluetooth: hci2: command tx timeout [ 287.674814] Bluetooth: hci4: command tx timeout [ 287.738819] Bluetooth: hci3: command tx timeout [ 287.868029] Bluetooth: hci5: command tx timeout [ 287.995362] Bluetooth: hci7: command tx timeout [ 288.193937] Bluetooth: hci6: command tx timeout [ 289.275916] Bluetooth: hci0: command tx timeout [ 289.530857] Bluetooth: hci1: command tx timeout [ 289.596788] Bluetooth: hci2: command tx timeout [ 289.725081] Bluetooth: hci4: command tx timeout [ 289.789088] Bluetooth: hci3: command tx timeout [ 289.914991] Bluetooth: hci5: command tx timeout [ 290.044926] Bluetooth: hci7: command tx timeout [ 290.235460] Bluetooth: hci6: command tx timeout [ 291.323964] Bluetooth: hci0: command tx timeout [ 291.581019] Bluetooth: hci1: command tx timeout [ 291.643129] Bluetooth: hci2: command tx timeout [ 291.771800] Bluetooth: hci4: command tx timeout [ 291.834810] Bluetooth: hci3: command tx timeout [ 291.963868] Bluetooth: hci5: command tx timeout [ 292.091836] Bluetooth: hci7: command tx timeout [ 292.284914] Bluetooth: hci6: command tx timeout [ 293.372284] Bluetooth: hci0: command tx timeout [ 293.626946] Bluetooth: hci1: command tx timeout [ 293.692924] Bluetooth: hci2: command tx timeout [ 293.819818] Bluetooth: hci4: command tx timeout [ 293.882859] Bluetooth: hci3: command tx timeout [ 294.011778] Bluetooth: hci5: command tx timeout [ 294.140203] Bluetooth: hci7: command tx timeout [ 294.331818] Bluetooth: hci6: command tx timeout [ 346.016356] syz-executor.4 (3789) used greatest stack depth: 23896 bytes left [ 347.929828] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 347.956462] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 347.971933] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 347.984286] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 348.004108] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 348.005889] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 348.175619] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 348.187344] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 348.189106] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 348.192987] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 348.195346] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 348.196794] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 348.324437] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 348.327020] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 348.328467] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 348.333119] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 348.335605] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 348.337455] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 348.357474] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 348.359252] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 348.360917] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 348.366051] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 348.368776] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 348.370217] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 348.471121] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 348.476364] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 348.479394] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 348.508533] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 348.515144] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 348.521425] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 348.541172] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 348.543233] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 348.551139] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 348.606345] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 348.613415] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 348.619491] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 348.744417] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 348.751080] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 348.755337] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 348.756500] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 348.770361] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 348.778211] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 348.823143] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 348.831533] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 348.832453] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 348.855293] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 348.857134] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 348.871065] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 350.075109] Bluetooth: hci0: command tx timeout [ 350.266883] Bluetooth: hci1: command tx timeout [ 350.395765] Bluetooth: hci4: command tx timeout [ 350.459499] Bluetooth: hci2: command tx timeout [ 350.650794] Bluetooth: hci5: command tx timeout [ 350.715140] Bluetooth: hci3: command tx timeout [ 350.970828] Bluetooth: hci6: command tx timeout [ 351.035824] Bluetooth: hci7: command tx timeout [ 352.123202] Bluetooth: hci0: command tx timeout [ 352.314809] Bluetooth: hci1: command tx timeout [ 352.442945] Bluetooth: hci4: command tx timeout [ 352.507337] Bluetooth: hci2: command tx timeout [ 352.699099] Bluetooth: hci5: command tx timeout [ 352.763123] Bluetooth: hci3: command tx timeout [ 353.019123] Bluetooth: hci6: command tx timeout [ 353.083164] Bluetooth: hci7: command tx timeout [ 354.170817] Bluetooth: hci0: command tx timeout [ 354.364969] Bluetooth: hci1: command tx timeout [ 354.490766] Bluetooth: hci4: command tx timeout [ 354.555712] Bluetooth: hci2: command tx timeout [ 354.746857] Bluetooth: hci5: command tx timeout [ 354.811875] Bluetooth: hci3: command tx timeout [ 355.068163] Bluetooth: hci6: command tx timeout [ 355.130854] Bluetooth: hci7: command tx timeout [ 356.219346] Bluetooth: hci0: command tx timeout [ 356.410778] Bluetooth: hci1: command tx timeout [ 356.539086] Bluetooth: hci4: command tx timeout [ 356.603381] Bluetooth: hci2: command tx timeout [ 356.795460] Bluetooth: hci5: command tx timeout [ 356.858808] Bluetooth: hci3: command tx timeout [ 357.114850] Bluetooth: hci6: command tx timeout [ 357.178993] Bluetooth: hci7: command tx timeout [ 410.843579] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 410.851633] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 410.860744] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 410.884412] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 410.893134] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 410.899360] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 411.042189] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 411.046007] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 411.048544] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 411.056592] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 411.062430] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 411.065497] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 411.168136] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 411.182953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 411.188093] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 411.197639] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 411.203121] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 411.205237] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 411.494543] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 411.505153] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 411.519165] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 411.542097] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 411.549532] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 411.553912] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 411.626283] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 411.628627] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 411.630508] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 411.636054] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 411.640737] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 411.644393] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 411.675392] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 411.686472] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 411.691331] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 411.693623] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 411.699425] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 411.723208] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 411.735538] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 411.740122] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 411.757457] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 411.761300] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 411.764100] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 411.767102] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 411.769338] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 411.809407] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 411.811466] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 411.855308] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 411.874324] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 411.897205] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 412.986842] Bluetooth: hci0: command tx timeout [ 413.115187] Bluetooth: hci1: command tx timeout [ 413.242824] Bluetooth: hci2: command tx timeout [ 413.628793] Bluetooth: hci3: command tx timeout [ 413.818804] Bluetooth: hci4: command tx timeout [ 413.947223] Bluetooth: hci6: command tx timeout [ 414.011270] Bluetooth: hci5: command tx timeout [ 414.075379] Bluetooth: hci7: command tx timeout [ 415.035089] Bluetooth: hci0: command tx timeout [ 415.165217] Bluetooth: hci1: command tx timeout [ 415.291188] Bluetooth: hci2: command tx timeout [ 415.674782] Bluetooth: hci3: command tx timeout [ 415.866798] Bluetooth: hci4: command tx timeout [ 415.995740] Bluetooth: hci6: command tx timeout [ 416.059112] Bluetooth: hci5: command tx timeout [ 416.122784] Bluetooth: hci7: command tx timeout [ 417.083140] Bluetooth: hci0: command tx timeout [ 417.211722] Bluetooth: hci1: command tx timeout [ 417.339088] Bluetooth: hci2: command tx timeout [ 417.724392] Bluetooth: hci3: command tx timeout [ 417.915744] Bluetooth: hci4: command tx timeout [ 418.042914] Bluetooth: hci6: command tx timeout [ 418.106983] Bluetooth: hci5: command tx timeout [ 418.171338] Bluetooth: hci7: command tx timeout [ 419.131230] Bluetooth: hci0: command tx timeout [ 419.258849] Bluetooth: hci1: command tx timeout [ 419.386836] Bluetooth: hci2: command tx timeout [ 419.770769] Bluetooth: hci3: command tx timeout [ 419.963259] Bluetooth: hci4: command tx timeout [ 420.090826] Bluetooth: hci6: command tx timeout [ 420.155723] Bluetooth: hci5: command tx timeout [ 420.219889] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 11:42:06 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=0000000000000005 RCX=ffffffff814f7e7e RDX=fffffbfff0fe2fd9 RSI=0000000000000008 RDI=ffffffff87f17ec0 RBP=ffff888007078000 RSP=ffff8880151c6f18 R8 =0000000000000000 R9 =fffffbfff0fe2fd8 R10=ffffffff87f17ec7 R11=0000000000000000 R12=0000000000000009 R13=0000000000000200 R14=ffff888007078a78 R15=0000000000000004 RIP=ffffffff814f7e86 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1556f3a6f4 CR3=000000002c976000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000ff000000000000000000000000 XMM02=000000ff000000000000000000000000 XMM03=0000000000ff00000000000000000000 XMM04=ff000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000020000 RCX=ffffffff815017a9 RDX=fffffbfff0fe2fd9 RSI=0000000000000008 RDI=ffffffff87f17ec0 RBP=ffff888032642610 RSP=ffff88802e217370 R8 =0000000000000000 R9 =fffffbfff0fe2fd8 R10=ffffffff87f17ec7 R11=0000000000025a85 R12=ffff888032641bc0 R13=ffffffff85c175c0 R14=0000000000000005 R15=0000000000000003 RIP=ffffffff815017b1 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007feec51a9540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe5d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007faad2100260 CR3=000000002acee000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000ffff000000000000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000