Warning: Permanently added '[localhost]:53099' (ECDSA) to the list of known hosts. 2025/02/14 15:46:36 fuzzer started 2025/02/14 15:46:36 dialing manager at localhost:37949 syzkaller login: [ 136.438356] cgroup: Unknown subsys name 'net' [ 136.630429] cgroup: Unknown subsys name 'cpuset' [ 136.680646] cgroup: Unknown subsys name 'rlimit' 2025/02/14 15:46:53 syscalls: 2217 2025/02/14 15:46:53 code coverage: enabled 2025/02/14 15:46:53 comparison tracing: enabled 2025/02/14 15:46:53 extra coverage: enabled 2025/02/14 15:46:53 setuid sandbox: enabled 2025/02/14 15:46:53 namespace sandbox: enabled 2025/02/14 15:46:53 Android sandbox: enabled 2025/02/14 15:46:53 fault injection: enabled 2025/02/14 15:46:53 leak checking: enabled 2025/02/14 15:46:53 net packet injection: enabled 2025/02/14 15:46:53 net device setup: enabled 2025/02/14 15:46:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/02/14 15:46:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/02/14 15:46:53 USB emulation: enabled 2025/02/14 15:46:53 hci packet injection: enabled 2025/02/14 15:46:53 wifi device emulation: enabled 2025/02/14 15:46:53 802.15.4 emulation: enabled 2025/02/14 15:46:53 fetching corpus: 0, signal 0/0 (executing program) 2025/02/14 15:46:53 fetching corpus: 0, signal 0/0 (executing program) 15:46:55 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEV(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0) 2025/02/14 15:46:55 starting 8 fuzzer processes 15:46:55 executing program 1: memfd_create(0x0, 0x0) 15:46:55 executing program 2: munlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000) 15:46:55 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x44}}, 0x0) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36) nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380)) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e) nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480)) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void}, 0x28) 15:46:55 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000b80)={0xa, 0x0, 0x0, @local}, 0x1c) [ 155.207088] audit: type=1400 audit(1739548015.987:7): avc: denied { execmem } for pid=286 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:46:56 executing program 5: setgroups(0x3, &(0x7f0000006d40)=[0xee01, 0x0, 0xee01]) 15:46:56 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x3d, 0x0, &(0x7f0000000140)=0x47) 15:46:56 executing program 7: pipe2(&(0x7f0000000400)={0xffffffffffffffff}, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, 0x0) [ 156.696016] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 156.702363] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 156.707297] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 156.713635] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 156.719166] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 156.720658] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 156.769456] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 156.771454] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 156.777376] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 156.785374] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 156.786310] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 156.798159] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 156.802265] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 156.809932] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 156.816924] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 156.818538] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 156.852221] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 156.857340] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 156.880083] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 156.887957] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 156.894131] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 156.896169] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 156.897187] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 156.905458] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 156.913915] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 156.917523] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.921831] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.925234] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.944363] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.952324] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.953973] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 156.963166] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.964855] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 156.971037] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 156.988034] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.989289] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.992298] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 157.002302] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 157.004286] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 157.007277] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 157.008496] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 157.009460] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 157.028393] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 157.044395] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 157.050236] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 157.083781] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 157.085901] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 157.100339] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 158.772322] Bluetooth: hci0: command tx timeout [ 158.836310] Bluetooth: hci2: command tx timeout [ 158.964266] Bluetooth: hci1: command tx timeout [ 159.092139] Bluetooth: hci4: command tx timeout [ 159.155956] Bluetooth: hci5: command tx timeout [ 159.156685] Bluetooth: hci3: command tx timeout [ 159.220015] Bluetooth: hci7: command tx timeout [ 159.221574] Bluetooth: hci6: command tx timeout [ 160.819898] Bluetooth: hci0: command tx timeout [ 160.884516] Bluetooth: hci2: command tx timeout [ 161.011912] Bluetooth: hci1: command tx timeout [ 161.140903] Bluetooth: hci4: command tx timeout [ 161.204083] Bluetooth: hci3: command tx timeout [ 161.204600] Bluetooth: hci5: command tx timeout [ 161.268910] Bluetooth: hci6: command tx timeout [ 161.269461] Bluetooth: hci7: command tx timeout [ 162.868199] Bluetooth: hci0: command tx timeout [ 162.931878] Bluetooth: hci2: command tx timeout [ 163.060834] Bluetooth: hci1: command tx timeout [ 163.189779] Bluetooth: hci4: command tx timeout [ 163.252519] Bluetooth: hci5: command tx timeout [ 163.253121] Bluetooth: hci3: command tx timeout [ 163.315926] Bluetooth: hci6: command tx timeout [ 163.316521] Bluetooth: hci7: command tx timeout [ 164.916833] Bluetooth: hci0: command tx timeout [ 164.979999] Bluetooth: hci2: command tx timeout [ 165.108356] Bluetooth: hci1: command tx timeout [ 165.236650] Bluetooth: hci4: command tx timeout [ 165.302052] Bluetooth: hci3: command tx timeout [ 165.302611] Bluetooth: hci5: command tx timeout [ 165.364234] Bluetooth: hci6: command tx timeout [ 165.365373] Bluetooth: hci7: command tx timeout [ 216.976540] syz-executor.7 (299) used greatest stack depth: 24160 bytes left [ 219.373535] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 219.381781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 219.384616] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 219.405430] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 219.417988] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 219.421315] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 219.674080] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 219.678140] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 219.680474] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 219.694743] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 219.699140] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 219.702154] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 219.706212] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 219.706412] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 219.709266] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 219.742976] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 219.748936] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 219.767197] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 219.770936] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 219.772301] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 219.775037] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 219.785121] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 219.787757] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 219.788030] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 219.790182] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 219.792256] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 219.817530] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 219.832606] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 219.843642] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 219.845109] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 219.848205] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 219.852449] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 219.861154] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 219.863509] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 219.888932] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 219.892627] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 219.894663] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 219.897348] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 219.908501] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 219.915605] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 219.919295] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 219.920521] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 219.960806] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 219.969620] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 219.979640] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 219.982471] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 219.984476] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 219.988616] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 221.494042] Bluetooth: hci0: command tx timeout [ 221.811836] Bluetooth: hci1: command tx timeout [ 221.877605] Bluetooth: hci2: command tx timeout [ 222.004106] Bluetooth: hci6: command tx timeout [ 222.004349] Bluetooth: hci3: command tx timeout [ 222.068161] Bluetooth: hci4: command tx timeout [ 222.131867] Bluetooth: hci7: command tx timeout [ 222.132541] Bluetooth: hci5: command tx timeout [ 223.540814] Bluetooth: hci0: command tx timeout [ 223.861909] Bluetooth: hci1: command tx timeout [ 223.924121] Bluetooth: hci2: command tx timeout [ 224.051866] Bluetooth: hci6: command tx timeout [ 224.051945] Bluetooth: hci3: command tx timeout [ 224.116719] Bluetooth: hci4: command tx timeout [ 224.179973] Bluetooth: hci5: command tx timeout [ 224.180136] Bluetooth: hci7: command tx timeout [ 225.587795] Bluetooth: hci0: command tx timeout [ 225.909016] Bluetooth: hci1: command tx timeout [ 225.971789] Bluetooth: hci2: command tx timeout [ 226.100787] Bluetooth: hci6: command tx timeout [ 226.100932] Bluetooth: hci3: command tx timeout [ 226.163836] Bluetooth: hci4: command tx timeout [ 226.227884] Bluetooth: hci7: command tx timeout [ 226.228365] Bluetooth: hci5: command tx timeout [ 227.636805] Bluetooth: hci0: command tx timeout [ 227.956797] Bluetooth: hci1: command tx timeout [ 228.020794] Bluetooth: hci2: command tx timeout [ 228.148132] Bluetooth: hci6: command tx timeout [ 228.148483] Bluetooth: hci3: command tx timeout [ 228.212210] Bluetooth: hci4: command tx timeout [ 228.276451] Bluetooth: hci5: command tx timeout [ 228.277583] Bluetooth: hci7: command tx timeout [ 282.011595] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 282.015317] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 282.032441] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 282.063423] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 282.084222] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 282.089148] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 282.182282] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 282.189160] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 282.197834] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 282.208519] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 282.218152] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 282.226147] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 282.452451] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 282.459104] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 282.461184] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 282.473908] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 282.480145] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 282.487112] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 282.513468] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 282.528046] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 282.537440] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 282.540340] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 282.553928] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 282.560562] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 282.563126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 282.571531] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 282.576220] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 282.578309] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 282.593313] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 282.598298] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 282.602170] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 282.606846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 282.609134] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 282.611113] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 282.615247] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 282.617724] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 282.619638] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 282.621786] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 282.626672] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 282.657815] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 282.661588] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 282.663611] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 282.666778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 282.677934] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 282.681914] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 282.688075] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 282.694644] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 282.707425] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 284.148274] Bluetooth: hci0: command tx timeout [ 284.275900] Bluetooth: hci1: command tx timeout [ 284.597103] Bluetooth: hci2: command tx timeout [ 284.787941] Bluetooth: hci3: command tx timeout [ 284.789849] Bluetooth: hci5: command tx timeout [ 284.791108] Bluetooth: hci7: command tx timeout [ 284.792363] Bluetooth: hci4: command tx timeout [ 284.916192] Bluetooth: hci6: command tx timeout [ 286.196734] Bluetooth: hci0: command tx timeout [ 286.324230] Bluetooth: hci1: command tx timeout [ 286.644954] Bluetooth: hci2: command tx timeout [ 286.835959] Bluetooth: hci7: command tx timeout [ 286.836509] Bluetooth: hci3: command tx timeout [ 286.837839] Bluetooth: hci4: command tx timeout [ 286.838307] Bluetooth: hci5: command tx timeout [ 286.963813] Bluetooth: hci6: command tx timeout [ 288.245882] Bluetooth: hci0: command tx timeout [ 288.371774] Bluetooth: hci1: command tx timeout [ 288.691854] Bluetooth: hci2: command tx timeout [ 288.884383] Bluetooth: hci3: command tx timeout [ 288.885418] Bluetooth: hci5: command tx timeout [ 288.886214] Bluetooth: hci4: command tx timeout [ 288.886966] Bluetooth: hci7: command tx timeout [ 289.012275] Bluetooth: hci6: command tx timeout [ 290.291839] Bluetooth: hci0: command tx timeout [ 290.419832] Bluetooth: hci1: command tx timeout [ 290.739802] Bluetooth: hci2: command tx timeout [ 290.931940] Bluetooth: hci7: command tx timeout [ 290.933851] Bluetooth: hci3: command tx timeout [ 290.935548] Bluetooth: hci4: command tx timeout [ 290.936431] Bluetooth: hci5: command tx timeout [ 291.060850] Bluetooth: hci6: command tx timeout [ 343.164389] syz-executor.1 (3797) used greatest stack depth: 23896 bytes left [ 345.013945] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 345.024066] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 345.032612] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 345.039630] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 345.050131] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 345.052377] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 345.289065] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 345.290985] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 345.298327] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 345.304294] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 345.314066] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 345.315608] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 345.350283] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 345.370232] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 345.372446] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 345.380422] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 345.386557] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 345.388464] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 345.411963] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 345.416364] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 345.418500] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 345.423647] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 345.426383] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 345.429727] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 345.479855] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 345.513609] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 345.518107] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 345.556728] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 345.598644] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 345.602794] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 345.650542] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 345.657895] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 345.664079] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 345.670488] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 345.675594] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 345.681325] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 345.684059] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 345.692182] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 345.704123] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 345.765598] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 345.774243] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 345.781898] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 345.787078] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 345.795339] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 345.807554] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 345.811228] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 345.814152] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 345.820391] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 347.126801] Bluetooth: hci0: command tx timeout [ 347.379824] Bluetooth: hci1: command tx timeout [ 347.443975] Bluetooth: hci2: command tx timeout [ 347.508156] Bluetooth: hci3: command tx timeout [ 347.635860] Bluetooth: hci4: command tx timeout [ 347.764733] Bluetooth: hci5: command tx timeout [ 347.892094] Bluetooth: hci6: command tx timeout [ 347.894306] Bluetooth: hci7: command tx timeout [ 349.172388] Bluetooth: hci0: command tx timeout [ 349.428270] Bluetooth: hci1: command tx timeout [ 349.491860] Bluetooth: hci2: command tx timeout [ 349.556759] Bluetooth: hci3: command tx timeout [ 349.683912] Bluetooth: hci4: command tx timeout [ 349.812719] Bluetooth: hci5: command tx timeout [ 349.939958] Bluetooth: hci7: command tx timeout [ 349.941435] Bluetooth: hci6: command tx timeout [ 351.220888] Bluetooth: hci0: command tx timeout [ 351.476537] Bluetooth: hci1: command tx timeout [ 351.539968] Bluetooth: hci2: command tx timeout [ 351.604157] Bluetooth: hci3: command tx timeout [ 351.733889] Bluetooth: hci4: command tx timeout [ 351.859821] Bluetooth: hci5: command tx timeout [ 351.987955] Bluetooth: hci6: command tx timeout [ 351.989375] Bluetooth: hci7: command tx timeout [ 353.267907] Bluetooth: hci0: command tx timeout [ 353.525136] Bluetooth: hci1: command tx timeout [ 353.588063] Bluetooth: hci2: command tx timeout [ 353.652300] Bluetooth: hci3: command tx timeout [ 353.780420] Bluetooth: hci4: command tx timeout [ 353.907804] Bluetooth: hci5: command tx timeout [ 354.036427] Bluetooth: hci6: command tx timeout [ 354.037894] Bluetooth: hci7: command tx timeout [ 407.631179] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 407.633362] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 407.638283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 407.648616] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 407.659180] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 407.661076] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 407.816447] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 407.819879] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 407.822349] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 407.827822] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 407.831107] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 407.832922] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 408.021738] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 408.027204] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 408.029265] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 408.037228] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 408.044873] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 408.047853] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 408.084507] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 408.087243] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 408.091106] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 408.197020] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 408.197550] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 408.201288] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 408.204270] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 408.209588] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 408.217085] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 408.223569] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 408.224714] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 408.237945] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 408.239826] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 408.243930] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 408.251447] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 408.254099] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 408.257214] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 408.261108] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 408.300551] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 408.330110] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 408.350348] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 408.401946] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 408.411607] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 408.414533] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 408.499307] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 408.521601] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 408.546619] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 408.593209] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 408.626002] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 408.632904] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 409.717534] Bluetooth: hci0: command tx timeout [ 409.908785] Bluetooth: hci1: command tx timeout [ 410.100035] Bluetooth: hci2: command tx timeout [ 410.292840] Bluetooth: hci3: command tx timeout [ 410.483787] Bluetooth: hci4: command tx timeout [ 410.675804] Bluetooth: hci5: command tx timeout [ 410.676466] Bluetooth: hci6: command tx timeout [ 410.805064] Bluetooth: hci7: command tx timeout [ 411.763852] Bluetooth: hci0: command tx timeout [ 411.956789] Bluetooth: hci1: command tx timeout [ 412.147759] Bluetooth: hci2: command tx timeout [ 412.341730] Bluetooth: hci3: command tx timeout [ 412.532436] Bluetooth: hci4: command tx timeout [ 412.723825] Bluetooth: hci5: command tx timeout [ 412.724330] Bluetooth: hci6: command tx timeout [ 412.851736] Bluetooth: hci7: command tx timeout [ 413.812153] Bluetooth: hci0: command tx timeout [ 414.004630] Bluetooth: hci1: command tx timeout [ 414.195806] Bluetooth: hci2: command tx timeout [ 414.388140] Bluetooth: hci3: command tx timeout [ 414.580702] Bluetooth: hci4: command tx timeout [ 414.772143] Bluetooth: hci6: command tx timeout [ 414.772718] Bluetooth: hci5: command tx timeout [ 414.899981] Bluetooth: hci7: command tx timeout [ 415.860438] Bluetooth: hci0: command tx timeout [ 416.052962] Bluetooth: hci1: command tx timeout [ 416.244090] Bluetooth: hci2: command tx timeout [ 416.435768] Bluetooth: hci3: command tx timeout [ 416.628805] Bluetooth: hci4: command tx timeout [ 416.821142] Bluetooth: hci5: command tx timeout [ 416.822333] Bluetooth: hci6: command tx timeout [ 416.948092] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 15:52:05 Registers: info registers vcpu 0 RAX=00000000ffffffff RBX=1ffff1100134de6b RCX=1ffff1100134de50 RDX=1ffff1100134b4c1 RSI=0000000000000001 RDI=00000000db79cd36 RBP=0000000000000000 RSP=ffff888009a6f318 R8 =0000000000000000 R9 =fffffbfff0fe25d0 R10=ffffffff87f12e87 R11=0000000000000000 R12=0000000000000002 R13=0000000000000000 R14=ffffffff85c19780 R15=0000000000000000 RIP=ffffffff815070c0 RFL=00000092 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f49c6524ec0 CR3=0000000031b90000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000ff000000000000000000000000 XMM02=000000ff000000000000000000000000 XMM03=0000000000ff00000000000000000000 XMM04=ff000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000 RSI=ffffffff85c19720 RDI=ffff888024b8c1d0 RBP=ffffffff85c19720 RSP=ffff888027be7990 R8 =00000000ffffffff R9 =ffffed1005b88bdd R10=000000000000005b R11=0000000000000000 R12=ffff888024b8b780 R13=ffff888024b8c1d0 R14=00000000ffffffff R15=ffff888024b8c1d0 RIP=ffffffff84a96f50 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe3600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055d40f0634c8 CR3=0000000016694000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0070656474666f732e73656c75646f6d XMM01=0070656474666f732e73656c75646f6d XMM02=00000000000000000000ffffffffffff XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000