Warning: Permanently added '[localhost]:17747' (ECDSA) to the list of known hosts. 2025/02/24 16:08:28 fuzzer started 2025/02/24 16:08:29 dialing manager at localhost:40755 syzkaller login: [ 127.590979] cgroup: Unknown subsys name 'net' [ 127.771119] cgroup: Unknown subsys name 'cpuset' [ 127.824557] cgroup: Unknown subsys name 'rlimit' 2025/02/24 16:08:47 syscalls: 2217 2025/02/24 16:08:47 code coverage: enabled 2025/02/24 16:08:47 comparison tracing: enabled 2025/02/24 16:08:47 extra coverage: enabled 2025/02/24 16:08:47 setuid sandbox: enabled 2025/02/24 16:08:47 namespace sandbox: enabled 2025/02/24 16:08:47 Android sandbox: enabled 2025/02/24 16:08:47 fault injection: enabled 2025/02/24 16:08:47 leak checking: enabled 2025/02/24 16:08:47 net packet injection: enabled 2025/02/24 16:08:47 net device setup: enabled 2025/02/24 16:08:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/02/24 16:08:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/02/24 16:08:47 USB emulation: enabled 2025/02/24 16:08:47 hci packet injection: enabled 2025/02/24 16:08:47 wifi device emulation: enabled 2025/02/24 16:08:47 802.15.4 emulation: enabled 2025/02/24 16:08:47 fetching corpus: 0, signal 0/0 (executing program) 2025/02/24 16:08:47 fetching corpus: 0, signal 0/0 (executing program) 2025/02/24 16:08:49 starting 8 fuzzer processes 16:08:49 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendto$inet(r1, &(0x7f0000000080)='\x00'/10, 0xa, 0x0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) recvfrom(r0, &(0x7f0000000100)=""/10, 0xa, 0x0, 0x0, 0x0) 16:08:49 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0x34, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x26, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x12, 0x0, @opaque='\x00'/10}}}}}, 0x0) recvfrom(r0, &(0x7f00000000c0)=""/10, 0xa, 0x0, 0x0, 0x0) 16:08:49 executing program 2: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x1, 0xfa, 0x41b}}}, 0x7) 16:08:49 executing program 3: syz_emit_ethernet(0x0, 0x0, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) [ 147.736725] audit: type=1400 audit(1740413329.979:7): avc: denied { execmem } for pid=281 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:08:50 executing program 4: syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x97, 0xff, 0x82, 0x8, 0x2058, 0x1005, 0xc19b, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x8f, 0x0, 0x0, 0xbf, 0x57, 0x5a}}]}}]}}, 0x0) 16:08:50 executing program 5: r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000080)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f0000000000)=@ready={0x0, 0x0, 0x8, 'BBBB'}) 16:08:50 executing program 6: r0 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello') 16:08:50 executing program 7: r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello') [ 149.256396] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 149.260206] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 149.262979] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 149.271314] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 149.279125] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 149.281002] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 149.323425] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 149.345465] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 149.350217] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 149.353632] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 149.355419] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 149.358799] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 149.361968] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 149.364618] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 149.370263] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 149.373836] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 149.375397] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 149.382057] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 149.394134] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 149.401433] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 149.404648] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 149.405740] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 149.407652] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 149.414802] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 149.416507] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 149.419368] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 149.420940] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 149.422348] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 149.423221] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 149.428385] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 149.437091] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 149.442391] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 149.447080] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 149.460995] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 149.464255] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 149.466091] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 149.468256] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 149.497096] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 149.499138] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 149.500216] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 149.542108] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 149.552296] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 149.560838] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 149.578243] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 149.579331] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 149.587258] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 149.592242] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 149.600243] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 151.340704] Bluetooth: hci0: command tx timeout [ 151.466712] Bluetooth: hci3: command tx timeout [ 151.467741] Bluetooth: hci4: command tx timeout [ 151.530939] Bluetooth: hci2: command tx timeout [ 151.595747] Bluetooth: hci1: command tx timeout [ 151.658752] Bluetooth: hci6: command tx timeout [ 151.659487] Bluetooth: hci5: command tx timeout [ 151.723136] Bluetooth: hci7: command tx timeout [ 153.387751] Bluetooth: hci0: command tx timeout [ 153.516331] Bluetooth: hci4: command tx timeout [ 153.517106] Bluetooth: hci3: command tx timeout [ 153.578848] Bluetooth: hci2: command tx timeout [ 153.643661] Bluetooth: hci1: command tx timeout [ 153.707988] Bluetooth: hci5: command tx timeout [ 153.708517] Bluetooth: hci6: command tx timeout [ 153.772367] Bluetooth: hci7: command tx timeout [ 155.435060] Bluetooth: hci0: command tx timeout [ 155.563387] Bluetooth: hci3: command tx timeout [ 155.565184] Bluetooth: hci4: command tx timeout [ 155.628046] Bluetooth: hci2: command tx timeout [ 155.690785] Bluetooth: hci1: command tx timeout [ 155.755221] Bluetooth: hci6: command tx timeout [ 155.756855] Bluetooth: hci5: command tx timeout [ 155.820193] Bluetooth: hci7: command tx timeout [ 157.484575] Bluetooth: hci0: command tx timeout [ 157.612918] Bluetooth: hci4: command tx timeout [ 157.614483] Bluetooth: hci3: command tx timeout [ 157.674708] Bluetooth: hci2: command tx timeout [ 157.739186] Bluetooth: hci1: command tx timeout [ 157.803783] Bluetooth: hci6: command tx timeout [ 157.805695] Bluetooth: hci5: command tx timeout [ 157.867687] Bluetooth: hci7: command tx timeout [ 209.333984] syz-executor.0 (290) used greatest stack depth: 24016 bytes left [ 212.294706] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.312887] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.327543] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.358901] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.360001] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.364079] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.366851] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.380570] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.386803] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.401266] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.404876] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.418151] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.497342] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.500491] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.503731] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.507900] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.509535] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.511711] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 212.513121] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.513513] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.514206] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.517294] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.519287] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 212.528973] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 212.531178] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.533173] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.540089] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.544169] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 212.545551] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.547209] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.549056] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.550850] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.559047] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 212.565153] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 212.566386] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.568902] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.595165] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 212.619032] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 212.658234] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 212.682430] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 212.698413] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 212.707740] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 212.952014] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 212.962961] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 212.965462] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 212.984679] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 212.992238] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 212.994776] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 214.443188] Bluetooth: hci1: command tx timeout [ 214.444101] Bluetooth: hci0: command tx timeout [ 214.634741] Bluetooth: hci2: command tx timeout [ 214.699813] Bluetooth: hci3: command tx timeout [ 214.763793] Bluetooth: hci5: command tx timeout [ 214.764446] Bluetooth: hci6: command tx timeout [ 214.828118] Bluetooth: hci4: command tx timeout [ 215.083001] Bluetooth: hci7: command tx timeout [ 216.490842] Bluetooth: hci1: command tx timeout [ 216.491363] Bluetooth: hci0: command tx timeout [ 216.682691] Bluetooth: hci2: command tx timeout [ 216.747839] Bluetooth: hci3: command tx timeout [ 216.810793] Bluetooth: hci6: command tx timeout [ 216.811318] Bluetooth: hci5: command tx timeout [ 216.875145] Bluetooth: hci4: command tx timeout [ 217.131649] Bluetooth: hci7: command tx timeout [ 218.538893] Bluetooth: hci1: command tx timeout [ 218.539414] Bluetooth: hci0: command tx timeout [ 218.731014] Bluetooth: hci2: command tx timeout [ 218.794924] Bluetooth: hci3: command tx timeout [ 218.859530] Bluetooth: hci5: command tx timeout [ 218.860396] Bluetooth: hci6: command tx timeout [ 218.922681] Bluetooth: hci4: command tx timeout [ 219.179068] Bluetooth: hci7: command tx timeout [ 220.588482] Bluetooth: hci0: command tx timeout [ 220.589716] Bluetooth: hci1: command tx timeout [ 220.779710] Bluetooth: hci2: command tx timeout [ 220.842679] Bluetooth: hci3: command tx timeout [ 220.907905] Bluetooth: hci6: command tx timeout [ 220.908867] Bluetooth: hci5: command tx timeout [ 220.970743] Bluetooth: hci4: command tx timeout [ 221.226740] Bluetooth: hci7: command tx timeout [ 274.693457] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 274.699270] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 274.704069] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 274.722335] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 274.733321] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 274.743312] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 274.946151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 274.948313] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 274.950006] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 274.954646] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 274.957131] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 274.958894] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 275.267488] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 275.271249] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 275.274363] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 275.287043] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 275.291398] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 275.300297] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 275.347271] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 275.356028] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 275.357720] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 275.379972] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 275.387066] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 275.404217] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 275.406877] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 275.413081] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 275.419802] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 275.459340] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 275.469038] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 275.474919] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 275.486413] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 275.487459] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 275.497841] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 275.500671] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 275.503017] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 275.504842] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 275.535572] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 275.538158] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 275.543041] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 275.548294] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 275.551161] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 275.565105] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 275.580822] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 275.589029] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 275.595460] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 275.597194] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 275.602873] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 275.606011] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 276.778847] Bluetooth: hci0: command tx timeout [ 276.970710] Bluetooth: hci1: command tx timeout [ 277.355760] Bluetooth: hci2: command tx timeout [ 277.483818] Bluetooth: hci3: command tx timeout [ 277.548649] Bluetooth: hci7: command tx timeout [ 277.674714] Bluetooth: hci5: command tx timeout [ 277.738876] Bluetooth: hci6: command tx timeout [ 277.740048] Bluetooth: hci4: command tx timeout [ 278.827191] Bluetooth: hci0: command tx timeout [ 279.021727] Bluetooth: hci1: command tx timeout [ 279.403688] Bluetooth: hci2: command tx timeout [ 279.532638] Bluetooth: hci3: command tx timeout [ 279.594684] Bluetooth: hci7: command tx timeout [ 279.723977] Bluetooth: hci5: command tx timeout [ 279.788906] Bluetooth: hci4: command tx timeout [ 279.789497] Bluetooth: hci6: command tx timeout [ 280.874714] Bluetooth: hci0: command tx timeout [ 281.066714] Bluetooth: hci1: command tx timeout [ 281.452256] Bluetooth: hci2: command tx timeout [ 281.579123] Bluetooth: hci3: command tx timeout [ 281.643190] Bluetooth: hci7: command tx timeout [ 281.771171] Bluetooth: hci5: command tx timeout [ 281.861693] Bluetooth: hci4: command tx timeout [ 281.862296] Bluetooth: hci6: command tx timeout [ 282.922695] Bluetooth: hci0: command tx timeout [ 283.114730] Bluetooth: hci1: command tx timeout [ 283.498960] Bluetooth: hci2: command tx timeout [ 283.626816] Bluetooth: hci3: command tx timeout [ 283.690833] Bluetooth: hci7: command tx timeout [ 283.818743] Bluetooth: hci5: command tx timeout [ 283.882905] Bluetooth: hci4: command tx timeout [ 283.883730] Bluetooth: hci6: command tx timeout [ 337.819356] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 337.830651] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 337.842283] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 337.864822] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 337.870166] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 337.872089] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 338.048869] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 338.051166] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 338.053073] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 338.060524] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 338.064105] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 338.070918] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 338.127971] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 338.135352] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 338.138431] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 338.151062] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 338.159997] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 338.162252] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 338.179900] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 338.192311] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 338.196721] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 338.216201] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 338.221327] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 338.241065] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 338.330919] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 338.333014] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 338.355121] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 338.361311] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 338.368117] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 338.371062] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 338.372438] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 338.375193] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 338.376752] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 338.378255] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 338.387088] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 338.403885] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 338.410997] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 338.415435] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 338.421904] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 338.430018] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 338.438684] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 338.444453] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 338.467324] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 338.504046] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 338.511011] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 338.514353] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 338.518760] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 338.529016] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 339.946786] Bluetooth: hci0: command tx timeout [ 340.139679] Bluetooth: hci1: command tx timeout [ 340.266938] Bluetooth: hci3: command tx timeout [ 340.268459] Bluetooth: hci2: command tx timeout [ 340.522761] Bluetooth: hci6: command tx timeout [ 340.523720] Bluetooth: hci4: command tx timeout [ 340.650955] Bluetooth: hci7: command tx timeout [ 340.714714] Bluetooth: hci5: command tx timeout [ 341.997855] Bluetooth: hci0: command tx timeout [ 342.188748] Bluetooth: hci1: command tx timeout [ 342.317098] Bluetooth: hci3: command tx timeout [ 342.318005] Bluetooth: hci2: command tx timeout [ 342.571639] Bluetooth: hci4: command tx timeout [ 342.572173] Bluetooth: hci6: command tx timeout [ 342.699809] Bluetooth: hci7: command tx timeout [ 342.765649] Bluetooth: hci5: command tx timeout [ 344.042716] Bluetooth: hci0: command tx timeout [ 344.235231] Bluetooth: hci1: command tx timeout [ 344.364661] Bluetooth: hci2: command tx timeout [ 344.365224] Bluetooth: hci3: command tx timeout [ 344.619078] Bluetooth: hci6: command tx timeout [ 344.620820] Bluetooth: hci4: command tx timeout [ 344.748098] Bluetooth: hci7: command tx timeout [ 344.810741] Bluetooth: hci5: command tx timeout [ 346.091711] Bluetooth: hci0: command tx timeout [ 346.284921] Bluetooth: hci1: command tx timeout [ 346.411781] Bluetooth: hci3: command tx timeout [ 346.412343] Bluetooth: hci2: command tx timeout [ 346.668254] Bluetooth: hci6: command tx timeout [ 346.669475] Bluetooth: hci4: command tx timeout [ 346.795749] Bluetooth: hci7: command tx timeout [ 346.859799] Bluetooth: hci5: command tx timeout [ 398.456862] syz-executor.4 (6018) used greatest stack depth: 23488 bytes left [ 400.515647] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 400.527643] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 400.536147] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 400.550104] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 400.556043] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 400.558064] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 400.772001] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 400.780469] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 400.784110] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 400.788277] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 400.798478] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 400.801686] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 401.029947] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 401.031854] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 401.039933] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 401.050018] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 401.056396] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 401.062943] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 401.107494] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 401.121683] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 401.124491] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 401.130057] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 401.141006] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 401.150663] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 401.154961] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 401.157138] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 401.167331] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 401.174887] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 401.232130] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 401.249340] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 401.257148] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 401.263378] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 401.282983] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 401.289345] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 401.319311] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 401.320473] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 401.323395] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 401.332026] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 401.341109] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 401.342438] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 401.353541] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 401.353575] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 401.366426] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 401.378459] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 401.381369] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 401.400198] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 401.414108] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 401.421306] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 402.602759] Bluetooth: hci0: command tx timeout [ 402.858939] Bluetooth: hci1: command tx timeout [ 403.114788] Bluetooth: hci2: command tx timeout [ 403.243275] Bluetooth: hci3: command tx timeout [ 403.307843] Bluetooth: hci4: command tx timeout [ 403.434958] Bluetooth: hci7: command tx timeout [ 403.435799] Bluetooth: hci6: command tx timeout [ 403.498684] Bluetooth: hci5: command tx timeout [ 404.650754] Bluetooth: hci0: command tx timeout [ 404.907734] Bluetooth: hci1: command tx timeout [ 405.162832] Bluetooth: hci2: command tx timeout [ 405.291334] Bluetooth: hci3: command tx timeout [ 405.354692] Bluetooth: hci4: command tx timeout [ 405.484658] Bluetooth: hci7: command tx timeout [ 405.485154] Bluetooth: hci6: command tx timeout [ 405.546673] Bluetooth: hci5: command tx timeout [ 406.698750] Bluetooth: hci0: command tx timeout [ 406.955533] Bluetooth: hci1: command tx timeout [ 407.212256] Bluetooth: hci2: command tx timeout [ 407.338812] Bluetooth: hci3: command tx timeout [ 407.402932] Bluetooth: hci4: command tx timeout [ 407.531310] Bluetooth: hci7: command tx timeout [ 407.532180] Bluetooth: hci6: command tx timeout [ 407.595221] Bluetooth: hci5: command tx timeout [ 408.747104] Bluetooth: hci0: command tx timeout [ 409.002690] Bluetooth: hci1: command tx timeout [ 409.258817] Bluetooth: hci2: command tx timeout [ 409.386790] Bluetooth: hci3: command tx timeout [ 409.450969] Bluetooth: hci4: command tx timeout [ 409.580939] Bluetooth: hci6: command tx timeout [ 409.582921] Bluetooth: hci7: command tx timeout [ 409.642768] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 16:13:58 Registers: info registers vcpu 0 RAX=ffff8880153fc1f1 RBX=ffff8880153fc1d0 RCX=ffffffff81501e39 RDX=ffff8880153fc1f1 RSI=0000000000000000 RDI=ffffffff87f1470d RBP=ffff8880153fc1f8 RSP=ffff888025067538 R8 =dffffc0000000000 R9 =fffffbfff0fe27c8 R10=ffffffff87f13e47 R11=000000000000822a R12=ffff8880153fb780 R13=0000000000000000 R14=0000000000000001 R15=ffff8880153fc1f1 RIP=ffffffff81501f46 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fffc34dfff8 CR3=000000002a63c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00ff0000000000000000000000ff0000 XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff87f13e48 RBX=0000000000000005 RCX=ffffffff815027ea RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff87f13e40 RBP=ffff88800dabc1f8 RSP=ffff88802501f268 R8 =0000000000000000 R9 =fffffbfff0fe27c8 R10=ffffffff87f13e47 R11=0000000000000000 R12=ffff88800dabb780 R13=0000000000000004 R14=dffffc0000000000 R15=0000000000000000 RIP=ffffffff81ac270b RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc2bf1da540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe6100000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4ee80471f0 CR3=000000000e418000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00ffffffffffff0000000000000000 XMM01=0100010001000000ffffffffffffffff XMM02=0500050005000000455441564952505f XMM03=0000000000000000000000564952505f XMM04=00030005000500050005000000455441 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000