syzkaller login: [ 129.278245] scp (246) used greatest stack depth: 24168 bytes left Warning: Permanently added '[localhost]:3767' (ECDSA) to the list of known hosts. 2025/03/03 14:51:30 fuzzer started 2025/03/03 14:51:31 dialing manager at localhost:34015 [ 133.663460] cgroup: Unknown subsys name 'net' [ 133.815966] cgroup: Unknown subsys name 'cpuset' [ 133.866363] cgroup: Unknown subsys name 'rlimit' 2025/03/03 14:51:55 syscalls: 2217 2025/03/03 14:51:55 code coverage: enabled 2025/03/03 14:51:55 comparison tracing: enabled 2025/03/03 14:51:55 extra coverage: enabled 2025/03/03 14:51:55 setuid sandbox: enabled 2025/03/03 14:51:55 namespace sandbox: enabled 2025/03/03 14:51:55 Android sandbox: enabled 2025/03/03 14:51:55 fault injection: enabled 2025/03/03 14:51:55 leak checking: enabled 2025/03/03 14:51:55 net packet injection: enabled 2025/03/03 14:51:55 net device setup: enabled 2025/03/03 14:51:55 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/03/03 14:51:55 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/03/03 14:51:55 USB emulation: enabled 2025/03/03 14:51:55 hci packet injection: enabled 2025/03/03 14:51:55 wifi device emulation: enabled 2025/03/03 14:51:55 802.15.4 emulation: enabled 2025/03/03 14:51:55 fetching corpus: 0, signal 0/0 (executing program) 2025/03/03 14:51:55 fetching corpus: 0, signal 0/0 (executing program) 2025/03/03 14:51:58 starting 8 fuzzer processes 14:51:58 executing program 0: close(0x3) close(0x4) close(0x5) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) close(0x3) close(0x4) close(0x5) 14:51:58 executing program 1: setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0) [ 159.964437] audit: type=1400 audit(1741013518.290:7): avc: denied { execmem } for pid=281 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:51:58 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = timerfd_create(0x0, 0x0) poll(&(0x7f00000018c0)=[{r0}, {r1}, {r2}], 0x3, 0x1) 14:51:58 executing program 3: openat$bsg(0xffffffffffffff9c, &(0x7f000000b200), 0x4040, 0x0) 14:51:58 executing program 4: r0 = timerfd_create(0x0, 0x0) poll(&(0x7f00000018c0)=[{r0}], 0x1, 0x1) 14:51:58 executing program 6: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) fallocate(r0, 0x0, 0x0, 0x100000001) 14:51:58 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x5, 0x0, 0x0) 14:51:58 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$sock(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)='4', 0x1}], 0x1}, 0x0) [ 161.589615] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.593140] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.596788] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.603250] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.611608] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.616507] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 161.663255] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 161.696742] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 161.706063] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 161.710984] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 161.726592] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 161.728314] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 161.748815] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 161.759927] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 161.766267] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 161.767246] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 161.772961] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 161.783033] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 161.807869] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 161.813867] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 161.819202] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 161.820552] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 161.829603] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 161.831983] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 161.864084] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 161.891178] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 161.904180] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 161.916931] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 161.919655] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 161.921192] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 161.922185] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 161.931224] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 161.933378] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 161.937007] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 161.937289] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 161.941039] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 161.941047] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 161.947064] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 161.961770] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 161.963988] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 161.965635] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 161.983867] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 162.003697] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 162.013901] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 162.020648] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 162.022515] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 162.022938] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 162.024860] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 163.664261] Bluetooth: hci0: command tx timeout [ 163.792029] Bluetooth: hci1: command tx timeout [ 163.922025] Bluetooth: hci2: command tx timeout [ 163.923782] Bluetooth: hci3: command tx timeout [ 163.995088] Bluetooth: hci5: command tx timeout [ 164.048097] Bluetooth: hci4: command tx timeout [ 164.112861] Bluetooth: hci6: command tx timeout [ 164.113965] Bluetooth: hci7: command tx timeout [ 165.712838] Bluetooth: hci0: command tx timeout [ 165.842233] Bluetooth: hci1: command tx timeout [ 165.967649] Bluetooth: hci2: command tx timeout [ 165.969369] Bluetooth: hci3: command tx timeout [ 166.034795] Bluetooth: hci5: command tx timeout [ 166.095689] Bluetooth: hci4: command tx timeout [ 166.159629] Bluetooth: hci7: command tx timeout [ 166.160194] Bluetooth: hci6: command tx timeout [ 167.760607] Bluetooth: hci0: command tx timeout [ 167.888885] Bluetooth: hci1: command tx timeout [ 168.016356] Bluetooth: hci3: command tx timeout [ 168.017513] Bluetooth: hci2: command tx timeout [ 168.080602] Bluetooth: hci5: command tx timeout [ 168.143543] Bluetooth: hci4: command tx timeout [ 168.208445] Bluetooth: hci6: command tx timeout [ 168.208884] Bluetooth: hci7: command tx timeout [ 169.808978] Bluetooth: hci0: command tx timeout [ 169.936940] Bluetooth: hci1: command tx timeout [ 170.063846] Bluetooth: hci2: command tx timeout [ 170.064341] Bluetooth: hci3: command tx timeout [ 170.127520] Bluetooth: hci5: command tx timeout [ 170.191836] Bluetooth: hci4: command tx timeout [ 170.255985] Bluetooth: hci6: command tx timeout [ 170.257678] Bluetooth: hci7: command tx timeout [ 222.110179] syz-executor.1 (291) used greatest stack depth: 24016 bytes left [ 224.696537] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 224.716041] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 224.718987] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 224.753737] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 224.768820] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 224.772018] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 224.858005] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 224.883565] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 224.887100] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 224.892479] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 224.896044] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 224.900602] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 224.904517] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 224.916143] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 224.929953] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 224.933804] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 224.936272] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 224.937672] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 224.939710] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 224.951295] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 224.954889] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 224.957864] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 224.960051] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 224.968289] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 224.986247] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 224.993372] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 224.994922] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 225.004226] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 225.009624] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 225.011266] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 225.127599] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 225.139086] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 225.144840] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 225.150966] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 225.159742] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 225.164567] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 225.187699] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 225.204727] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 225.211015] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 225.230748] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 225.278269] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 225.283888] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 225.284985] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 225.330621] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 225.389825] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 225.421840] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 225.434773] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 225.446174] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 226.895801] Bluetooth: hci0: command tx timeout [ 226.962089] Bluetooth: hci1: command tx timeout [ 227.088776] Bluetooth: hci4: command tx timeout [ 227.152552] Bluetooth: hci2: command tx timeout [ 227.215561] Bluetooth: hci3: command tx timeout [ 227.407620] Bluetooth: hci5: command tx timeout [ 227.473860] Bluetooth: hci7: command tx timeout [ 227.535585] Bluetooth: hci6: command tx timeout [ 228.943510] Bluetooth: hci0: command tx timeout [ 229.008443] Bluetooth: hci1: command tx timeout [ 229.136129] Bluetooth: hci4: command tx timeout [ 229.199787] Bluetooth: hci2: command tx timeout [ 229.263925] Bluetooth: hci3: command tx timeout [ 229.456063] Bluetooth: hci5: command tx timeout [ 229.519744] Bluetooth: hci7: command tx timeout [ 229.583516] Bluetooth: hci6: command tx timeout [ 230.992219] Bluetooth: hci0: command tx timeout [ 231.055528] Bluetooth: hci1: command tx timeout [ 231.183744] Bluetooth: hci4: command tx timeout [ 231.255514] Bluetooth: hci2: command tx timeout [ 231.312857] Bluetooth: hci3: command tx timeout [ 231.523750] Bluetooth: hci5: command tx timeout [ 231.568462] Bluetooth: hci7: command tx timeout [ 231.631548] Bluetooth: hci6: command tx timeout [ 233.053554] Bluetooth: hci0: command tx timeout [ 233.112548] Bluetooth: hci1: command tx timeout [ 233.231526] Bluetooth: hci4: command tx timeout [ 233.295921] Bluetooth: hci2: command tx timeout [ 233.359973] Bluetooth: hci3: command tx timeout [ 233.551510] Bluetooth: hci5: command tx timeout [ 233.615548] Bluetooth: hci7: command tx timeout [ 233.679567] Bluetooth: hci6: command tx timeout [ 287.464587] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 287.467900] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 287.469608] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 287.475586] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 287.482149] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 287.486253] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 287.781104] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 287.785705] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 287.788175] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 287.795803] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 287.801809] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 287.805274] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 288.062279] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 288.065137] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 288.072681] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 288.072800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 288.083713] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 288.083752] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 288.103887] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 288.109058] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 288.124624] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 288.133079] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 288.134038] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 288.135902] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 288.154368] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 288.166325] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 288.172632] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 288.182941] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 288.187913] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 288.196971] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 288.236241] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 288.246898] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 288.259844] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 288.269871] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 288.271823] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 288.285505] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 288.292629] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 288.295860] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 288.297521] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 288.298964] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 288.335217] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 288.336998] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 288.370686] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 288.386289] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 288.388938] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 288.409931] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 288.426154] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 288.431028] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 289.551527] Bluetooth: hci0: command tx timeout [ 289.872561] Bluetooth: hci1: command tx timeout [ 290.192600] Bluetooth: hci3: command tx timeout [ 290.193725] Bluetooth: hci2: command tx timeout [ 290.319554] Bluetooth: hci5: command tx timeout [ 290.320783] Bluetooth: hci4: command tx timeout [ 290.385048] Bluetooth: hci6: command tx timeout [ 290.515571] Bluetooth: hci7: command tx timeout [ 291.599528] Bluetooth: hci0: command tx timeout [ 291.919568] Bluetooth: hci1: command tx timeout [ 292.239614] Bluetooth: hci2: command tx timeout [ 292.240177] Bluetooth: hci3: command tx timeout [ 292.367771] Bluetooth: hci5: command tx timeout [ 292.368653] Bluetooth: hci4: command tx timeout [ 292.432453] Bluetooth: hci6: command tx timeout [ 292.614553] Bluetooth: hci7: command tx timeout [ 293.647846] Bluetooth: hci0: command tx timeout [ 293.967526] Bluetooth: hci1: command tx timeout [ 294.288211] Bluetooth: hci3: command tx timeout [ 294.288869] Bluetooth: hci2: command tx timeout [ 294.415544] Bluetooth: hci5: command tx timeout [ 294.415584] Bluetooth: hci4: command tx timeout [ 294.479489] Bluetooth: hci6: command tx timeout [ 294.671530] Bluetooth: hci7: command tx timeout [ 295.696011] Bluetooth: hci0: command tx timeout [ 296.015881] Bluetooth: hci1: command tx timeout [ 296.336660] Bluetooth: hci2: command tx timeout [ 296.338709] Bluetooth: hci3: command tx timeout [ 296.463502] Bluetooth: hci4: command tx timeout [ 296.463543] Bluetooth: hci5: command tx timeout [ 296.529171] Bluetooth: hci6: command tx timeout [ 296.721524] Bluetooth: hci7: command tx timeout [ 350.250078] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 350.257356] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 350.267883] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 350.279867] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 350.293285] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 350.298747] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 350.581326] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 350.600061] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 350.606139] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 350.631271] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 350.635657] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 350.644861] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 350.849719] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 350.852794] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 350.859877] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 350.873037] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 350.877715] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 350.881323] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 350.941871] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 350.960124] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 350.974288] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 350.993086] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 351.001294] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 351.059049] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 351.060747] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 351.079291] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 351.080840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 351.084963] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 351.087373] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 351.090489] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 351.111265] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 351.117779] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 351.120777] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 351.167913] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 351.186847] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 351.192463] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 351.197906] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 351.199768] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 351.202311] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 351.221886] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 351.232197] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 351.235758] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 351.239830] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 351.248247] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 351.248473] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 351.261086] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 351.262559] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 351.280819] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 352.335634] Bluetooth: hci0: command tx timeout [ 352.719976] Bluetooth: hci1: command tx timeout [ 352.911933] Bluetooth: hci2: command tx timeout [ 353.233729] Bluetooth: hci3: command tx timeout [ 353.296595] Bluetooth: hci5: command tx timeout [ 353.359783] Bluetooth: hci7: command tx timeout [ 353.360858] Bluetooth: hci4: command tx timeout [ 353.423590] Bluetooth: hci6: command tx timeout [ 354.383519] Bluetooth: hci0: command tx timeout [ 354.768518] Bluetooth: hci1: command tx timeout [ 354.961499] Bluetooth: hci2: command tx timeout [ 355.279720] Bluetooth: hci3: command tx timeout [ 355.346474] Bluetooth: hci5: command tx timeout [ 355.407948] Bluetooth: hci7: command tx timeout [ 355.408994] Bluetooth: hci4: command tx timeout [ 355.471521] Bluetooth: hci6: command tx timeout [ 356.431545] Bluetooth: hci0: command tx timeout [ 356.815486] Bluetooth: hci1: command tx timeout [ 357.010360] Bluetooth: hci2: command tx timeout [ 357.328516] Bluetooth: hci3: command tx timeout [ 357.391652] Bluetooth: hci5: command tx timeout [ 357.455636] Bluetooth: hci4: command tx timeout [ 357.457324] Bluetooth: hci7: command tx timeout [ 357.520465] Bluetooth: hci6: command tx timeout [ 358.480150] Bluetooth: hci0: command tx timeout [ 358.864072] Bluetooth: hci1: command tx timeout [ 359.055725] Bluetooth: hci2: command tx timeout [ 359.376016] Bluetooth: hci3: command tx timeout [ 359.446469] Bluetooth: hci5: command tx timeout [ 359.503777] Bluetooth: hci7: command tx timeout [ 359.504314] Bluetooth: hci4: command tx timeout [ 359.567579] Bluetooth: hci6: command tx timeout [ 411.339241] syz-executor.0 (5873) used greatest stack depth: 23896 bytes left [ 413.281562] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 413.284830] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 413.289667] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 413.295101] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 413.298932] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 413.301147] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 413.800662] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 413.802704] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 413.804348] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 413.809682] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 413.812313] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 413.814858] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 414.183170] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 414.186883] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 414.189002] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 414.200969] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 414.209859] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 414.218033] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 414.281267] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 414.292973] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 414.319233] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 414.326705] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 414.332001] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 414.345054] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 414.350089] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 414.366925] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 414.368324] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 414.375853] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 414.393765] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 414.400787] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 414.402424] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 414.406089] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 414.411845] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 414.414977] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 414.417951] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 414.419766] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 414.428908] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 414.432973] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 414.435214] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 414.439275] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 414.448157] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 414.456113] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 414.457537] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 414.466039] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 414.471082] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 414.537633] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 414.550797] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 414.567699] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 415.375962] Bluetooth: hci0: command tx timeout [ 415.888582] Bluetooth: hci1: command tx timeout [ 416.271717] Bluetooth: hci2: command tx timeout [ 416.463612] Bluetooth: hci3: command tx timeout [ 416.528793] Bluetooth: hci5: command tx timeout [ 416.592504] Bluetooth: hci6: command tx timeout [ 416.592516] Bluetooth: hci4: command tx timeout [ 416.657500] Bluetooth: hci7: command tx timeout [ 417.443436] Bluetooth: hci0: command tx timeout [ 417.935586] Bluetooth: hci1: command tx timeout [ 418.319895] Bluetooth: hci2: command tx timeout [ 418.511640] Bluetooth: hci3: command tx timeout [ 418.575794] Bluetooth: hci5: command tx timeout [ 418.639530] Bluetooth: hci6: command tx timeout [ 418.642497] Bluetooth: hci4: command tx timeout [ 418.703914] Bluetooth: hci7: command tx timeout [ 419.505448] Bluetooth: hci0: command tx timeout [ 419.983530] Bluetooth: hci1: command tx timeout [ 420.368109] Bluetooth: hci2: command tx timeout [ 420.559572] Bluetooth: hci3: command tx timeout [ 420.623698] Bluetooth: hci5: command tx timeout [ 420.687565] Bluetooth: hci4: command tx timeout [ 420.687599] Bluetooth: hci6: command tx timeout [ 420.752821] Bluetooth: hci7: command tx timeout [ 421.519614] Bluetooth: hci0: command tx timeout [ 422.033202] Bluetooth: hci1: command tx timeout [ 422.418540] Bluetooth: hci2: command tx timeout [ 422.607668] Bluetooth: hci3: command tx timeout [ 422.671734] Bluetooth: hci5: command tx timeout [ 422.737490] Bluetooth: hci4: command tx timeout [ 422.737521] Bluetooth: hci6: command tx timeout [ 422.801492] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 14:56:59 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84a11334 RDX=ffff888035979bc0 RSI=ffffffff84a11341 RDI=0000000000000005 RBP=00007f955a27f000 RSP=ffff888037857c68 R8 =0000000000000001 R9 =fffffbfff0fe27c8 R10=0000000000000001 R11=0000000000000000 R12=ffff88803785ba00 R13=000000000000000b R14=ffff88802abb3c60 R15=00007f955a2c8fff RIP=ffffffff8171e3e8 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f955a0e6540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f955a2814a1 CR3=000000002edc6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000ff0000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=65006463682d69636865203a65727020 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=84000000249d7065 RCX=ffffffff819d80fb RDX=0000000000000040 RSI=ffffffff819d8138 RDI=0000000000000007 RBP=84000000249d7025 RSP=ffff88802ecdf9f0 R8 =0000000000000001 R9 =ffffed100334f454 R10=0000000000000002 R11=0000000000000001 R12=80000000249d7067 R13=dffffc0000000000 R14=00007f03b6455000 R15=0000000000000000 RIP=ffffffff8171e3e8 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f03b5fa4540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f03b647e000 CR3=000000002b2fa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff00000000000000000000000000ff XMM01=ff00ffffffffffffffffffffffffff00 XMM02=4f0063305f315f315f4c53534e45504f XMM03=000000000000000000656d69745f6f73 XMM04=65675f6b636f6c635f6f7364765f5f00 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000