Warning: Permanently added '[localhost]:62764' (ECDSA) to the list of known hosts. 2025/04/28 21:42:23 fuzzer started 2025/04/28 21:42:24 dialing manager at localhost:36753 syzkaller login: [ 101.745739] cgroup: Unknown subsys name 'net' [ 101.873528] cgroup: Unknown subsys name 'cpuset' [ 101.923225] cgroup: Unknown subsys name 'rlimit' 2025/04/28 21:42:47 syscalls: 2214 2025/04/28 21:42:47 code coverage: enabled 2025/04/28 21:42:47 comparison tracing: enabled 2025/04/28 21:42:47 extra coverage: enabled 2025/04/28 21:42:47 setuid sandbox: enabled 2025/04/28 21:42:47 namespace sandbox: enabled 2025/04/28 21:42:47 Android sandbox: enabled 2025/04/28 21:42:47 fault injection: enabled 2025/04/28 21:42:47 leak checking: enabled 2025/04/28 21:42:47 net packet injection: enabled 2025/04/28 21:42:47 net device setup: enabled 2025/04/28 21:42:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/04/28 21:42:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/04/28 21:42:47 USB emulation: enabled 2025/04/28 21:42:47 hci packet injection: enabled 2025/04/28 21:42:47 wifi device emulation: enabled 2025/04/28 21:42:47 802.15.4 emulation: enabled 2025/04/28 21:42:47 fetching corpus: 0, signal 0/0 (executing program) 2025/04/28 21:42:47 fetching corpus: 0, signal 0/0 (executing program) 2025/04/28 21:42:48 starting 8 fuzzer processes 21:42:48 executing program 0: mincore(&(0x7f0000ffb000/0x4000)=nil, 0x4000, &(0x7f0000000000)) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) mprotect(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1) pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0xffffffffffffffff) 21:42:48 executing program 1: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000040)) 21:42:48 executing program 2: fsopen(&(0x7f0000000000)='9p\x00', 0x0) [ 126.045588] audit: type=1400 audit(1745876568.912:7): avc: denied { execmem } for pid=283 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 21:42:48 executing program 3: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x80000, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029f2118df153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001000000000000000200000001000600000000000000000000000000800029f2118df153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4200}, {&(0x7f0000010700)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4400}, {&(0x7f0000010800)="f8ffff0fffffff0ff8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x4600}, {&(0x7f0000010900)="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", 0x120, 0x4800}, {&(0x7f0000010b00)="2e20202020202020202020100088ea70325132510000ea7032510300000000002e2e202020202020202020100088ea70325132510000ea70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200088ea70325132510000ea70325104001a040000", 0x80, 0x14800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x24800}, {&(0x7f0000011100)='syzkallers\x00'/32, 0x20, 0x34800}, {&(0x7f0000011200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x54800}], 0x0, &(0x7f0000011300)) 21:42:48 executing program 4: syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000001300), 0x0, 0x0) 21:42:48 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) fadvise64(r0, 0xfffffffffffffffb, 0x4, 0x0) 21:42:49 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000b80)={0xa, 0x0, 0x0, @local}, 0x1c) 21:42:49 executing program 7: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000100)={0x30000006}) [ 127.413264] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 127.420695] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 127.425165] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 127.428581] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 127.435458] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 127.441405] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 127.445349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 127.463411] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 127.480880] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 127.494212] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 127.504606] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 127.520701] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 127.523118] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 127.538414] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 127.546310] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 127.554198] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 127.557623] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 127.562358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 127.576410] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 127.583419] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 127.642068] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 127.650470] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 127.653276] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 127.664437] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 127.670352] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 127.674723] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 127.678143] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 127.682457] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 127.685567] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 127.687541] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 127.689753] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 127.693449] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 127.697049] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 127.701529] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 127.710324] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 127.718332] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 127.723864] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 127.725321] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 127.741357] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 127.748704] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 129.497592] Bluetooth: hci1: command tx timeout [ 129.562092] Bluetooth: hci0: command tx timeout [ 129.625004] Bluetooth: hci2: command tx timeout [ 129.689882] Bluetooth: hci3: command tx timeout [ 129.817021] Bluetooth: hci7: command tx timeout [ 129.817943] Bluetooth: hci5: command tx timeout [ 129.818512] Bluetooth: hci4: command tx timeout [ 129.883199] Bluetooth: hci6: command tx timeout [ 131.545715] Bluetooth: hci1: command tx timeout [ 131.609317] Bluetooth: hci0: command tx timeout [ 131.673849] Bluetooth: hci2: command tx timeout [ 131.737143] Bluetooth: hci3: command tx timeout [ 131.865000] Bluetooth: hci4: command tx timeout [ 131.865472] Bluetooth: hci5: command tx timeout [ 131.867200] Bluetooth: hci7: command tx timeout [ 131.929852] Bluetooth: hci6: command tx timeout [ 133.593043] Bluetooth: hci1: command tx timeout [ 133.658135] Bluetooth: hci0: command tx timeout [ 133.721596] Bluetooth: hci2: command tx timeout [ 133.786403] Bluetooth: hci3: command tx timeout [ 133.913025] Bluetooth: hci4: command tx timeout [ 133.914463] Bluetooth: hci7: command tx timeout [ 133.916043] Bluetooth: hci5: command tx timeout [ 133.977073] Bluetooth: hci6: command tx timeout [ 135.641935] Bluetooth: hci1: command tx timeout [ 135.706144] Bluetooth: hci0: command tx timeout [ 135.768944] Bluetooth: hci2: command tx timeout [ 135.833980] Bluetooth: hci3: command tx timeout [ 135.962951] Bluetooth: hci5: command tx timeout [ 135.963127] Bluetooth: hci7: command tx timeout [ 135.963460] Bluetooth: hci4: command tx timeout [ 136.025901] Bluetooth: hci6: command tx timeout [ 177.310771] modprobe (2271) used greatest stack depth: 25368 bytes left [ 188.091928] syz-executor.2 (293) used greatest stack depth: 25224 bytes left [ 188.361143] syz-executor.7 (296) used greatest stack depth: 25192 bytes left [ 191.041753] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 191.047401] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 191.056773] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 191.060913] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 191.063581] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 191.070425] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 191.072192] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 191.075356] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 191.079324] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 191.097110] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 191.099138] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 191.104161] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 191.109577] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 191.116583] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 191.124697] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 191.161157] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 191.165952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 191.168066] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 191.171957] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 191.173557] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 191.176723] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 191.178080] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 191.183863] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 191.186070] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 191.189874] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 191.192233] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 191.194446] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 191.198376] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 191.198472] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 191.200195] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 191.202456] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 191.205867] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 191.209983] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 191.216326] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 191.228759] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 191.231900] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 191.246678] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 191.249283] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 191.259527] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 191.282296] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 193.177275] Bluetooth: hci1: command tx timeout [ 193.178240] Bluetooth: hci0: command tx timeout [ 193.178443] Bluetooth: hci2: command tx timeout [ 193.241086] Bluetooth: hci6: command tx timeout [ 193.304912] Bluetooth: hci3: command tx timeout [ 193.304966] Bluetooth: hci5: command tx timeout [ 193.306474] Bluetooth: hci4: command tx timeout [ 193.369937] Bluetooth: hci7: command tx timeout [ 195.225084] Bluetooth: hci1: command tx timeout [ 195.225594] Bluetooth: hci2: command tx timeout [ 195.225628] Bluetooth: hci0: command tx timeout [ 195.290859] Bluetooth: hci6: command tx timeout [ 195.353001] Bluetooth: hci5: command tx timeout [ 195.353456] Bluetooth: hci3: command tx timeout [ 195.353915] Bluetooth: hci4: command tx timeout [ 195.416954] Bluetooth: hci7: command tx timeout [ 197.273323] Bluetooth: hci0: command tx timeout [ 197.273898] Bluetooth: hci1: command tx timeout [ 197.274316] Bluetooth: hci2: command tx timeout [ 197.337102] Bluetooth: hci6: command tx timeout [ 197.402845] Bluetooth: hci4: command tx timeout [ 197.402895] Bluetooth: hci3: command tx timeout [ 197.403330] Bluetooth: hci5: command tx timeout [ 197.465131] Bluetooth: hci7: command tx timeout [ 199.320967] Bluetooth: hci1: command tx timeout [ 199.321482] Bluetooth: hci0: command tx timeout [ 199.322001] Bluetooth: hci2: command tx timeout [ 199.385924] Bluetooth: hci6: command tx timeout [ 199.448962] Bluetooth: hci3: command tx timeout [ 199.449483] Bluetooth: hci4: command tx timeout [ 199.450974] Bluetooth: hci5: command tx timeout [ 199.514086] Bluetooth: hci7: command tx timeout [ 252.841059] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 252.844435] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 252.849201] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 252.857790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 252.862591] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 253.104639] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 253.108482] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 253.113754] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 253.122547] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 253.126418] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 253.165294] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 253.167965] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 253.171255] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 253.183041] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 253.189511] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 253.230773] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 253.241852] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 253.245859] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 253.247391] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 253.250368] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 253.252577] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 253.264741] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 253.266305] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 253.283468] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 253.288763] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 253.298497] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 253.305956] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 253.309572] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 253.325121] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 253.329666] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 253.337213] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 253.346012] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 253.373184] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 253.374962] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 253.380292] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 253.396578] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 253.401324] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 253.448441] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 253.510086] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 253.620999] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 254.938676] Bluetooth: hci0: command tx timeout [ 255.193110] Bluetooth: hci1: command tx timeout [ 255.257083] Bluetooth: hci2: command tx timeout [ 255.320899] Bluetooth: hci4: command tx timeout [ 255.385938] Bluetooth: hci3: command tx timeout [ 255.448888] Bluetooth: hci6: command tx timeout [ 255.448920] Bluetooth: hci5: command tx timeout [ 255.704929] Bluetooth: hci7: command tx timeout [ 256.984867] Bluetooth: hci0: command tx timeout [ 257.240919] Bluetooth: hci1: command tx timeout [ 257.305092] Bluetooth: hci2: command tx timeout [ 257.369003] Bluetooth: hci4: command tx timeout [ 257.433224] Bluetooth: hci3: command tx timeout [ 257.498908] Bluetooth: hci5: command tx timeout [ 257.499374] Bluetooth: hci6: command tx timeout [ 257.753189] Bluetooth: hci7: command tx timeout [ 259.033851] Bluetooth: hci0: command tx timeout [ 259.288900] Bluetooth: hci1: command tx timeout [ 259.353164] Bluetooth: hci2: command tx timeout [ 259.416968] Bluetooth: hci4: command tx timeout [ 259.480998] Bluetooth: hci3: command tx timeout [ 259.545853] Bluetooth: hci6: command tx timeout [ 259.545895] Bluetooth: hci5: command tx timeout [ 259.801060] Bluetooth: hci7: command tx timeout [ 261.080913] Bluetooth: hci0: command tx timeout [ 261.337849] Bluetooth: hci1: command tx timeout [ 261.401848] Bluetooth: hci2: command tx timeout [ 261.464899] Bluetooth: hci4: command tx timeout [ 261.528879] Bluetooth: hci3: command tx timeout [ 261.593108] Bluetooth: hci6: command tx timeout [ 261.593263] Bluetooth: hci5: command tx timeout [ 261.850464] Bluetooth: hci7: command tx timeout [ 313.052064] syz-executor.1 (5098) used greatest stack depth: 25064 bytes left [ 315.178332] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 315.183628] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 315.186685] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 315.194644] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 315.208667] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 315.368338] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 315.372260] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 315.375138] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 315.390459] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 315.397596] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 315.400087] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 315.403398] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 315.405994] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 315.420575] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 315.429362] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 315.575304] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 315.609105] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 315.617310] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 315.630334] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 315.641370] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 315.680146] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 315.693861] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 315.771082] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 315.773598] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 315.783661] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 315.791131] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 315.798160] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 315.809698] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 315.810585] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 315.812419] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 315.817968] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 315.836357] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 315.841712] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 315.847601] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 315.857250] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 315.860539] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 315.865307] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 315.880622] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 315.884501] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 315.888326] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 317.273323] Bluetooth: hci0: command tx timeout [ 317.465906] Bluetooth: hci2: command tx timeout [ 317.465931] Bluetooth: hci1: command tx timeout [ 317.721888] Bluetooth: hci3: command tx timeout [ 317.977212] Bluetooth: hci4: command tx timeout [ 317.977668] Bluetooth: hci5: command tx timeout [ 317.979140] Bluetooth: hci6: command tx timeout [ 318.040951] Bluetooth: hci7: command tx timeout [ 319.321396] Bluetooth: hci0: command tx timeout [ 319.513181] Bluetooth: hci2: command tx timeout [ 319.513686] Bluetooth: hci1: command tx timeout [ 319.770453] Bluetooth: hci3: command tx timeout [ 320.025055] Bluetooth: hci4: command tx timeout [ 320.025557] Bluetooth: hci5: command tx timeout [ 320.026939] Bluetooth: hci6: command tx timeout [ 320.089869] Bluetooth: hci7: command tx timeout [ 321.370861] Bluetooth: hci0: command tx timeout [ 321.561910] Bluetooth: hci1: command tx timeout [ 321.562392] Bluetooth: hci2: command tx timeout [ 321.816949] Bluetooth: hci3: command tx timeout [ 322.073115] Bluetooth: hci5: command tx timeout [ 322.073752] Bluetooth: hci4: command tx timeout [ 322.074860] Bluetooth: hci6: command tx timeout [ 322.137914] Bluetooth: hci7: command tx timeout [ 323.416946] Bluetooth: hci0: command tx timeout [ 323.610864] Bluetooth: hci2: command tx timeout [ 323.611340] Bluetooth: hci1: command tx timeout [ 323.865084] Bluetooth: hci3: command tx timeout [ 324.120956] Bluetooth: hci5: command tx timeout [ 324.121444] Bluetooth: hci6: command tx timeout [ 324.121913] Bluetooth: hci4: command tx timeout [ 324.185879] Bluetooth: hci7: command tx timeout [ 377.998786] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 378.002585] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 378.011216] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 378.012964] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 378.017481] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 378.021483] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 378.032543] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 378.045403] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 378.047620] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 378.049601] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 378.055379] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 378.060464] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 378.063239] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 378.065452] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 378.082453] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 378.089431] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 378.101154] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 378.108102] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 378.138882] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 378.142011] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 378.163188] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 378.197359] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 378.212624] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 378.231330] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 378.231755] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 378.241119] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 378.244356] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 378.256655] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 378.273594] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 378.287993] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 378.289420] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 378.292437] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 378.297616] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 378.300457] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 378.315690] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 378.322378] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 378.324277] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 378.337552] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 378.343212] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 378.347123] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 380.185348] Bluetooth: hci2: command tx timeout [ 380.186352] Bluetooth: hci3: command tx timeout [ 380.187066] Bluetooth: hci1: command tx timeout [ 380.187488] Bluetooth: hci0: command tx timeout [ 380.313939] Bluetooth: hci4: command tx timeout [ 380.376890] Bluetooth: hci5: command tx timeout [ 380.442854] Bluetooth: hci6: command tx timeout [ 380.442902] Bluetooth: hci7: command tx timeout [ 382.232964] Bluetooth: hci0: command tx timeout [ 382.233620] Bluetooth: hci3: command tx timeout [ 382.234103] Bluetooth: hci1: command tx timeout [ 382.234606] Bluetooth: hci2: command tx timeout [ 382.360871] Bluetooth: hci4: command tx timeout [ 382.425083] Bluetooth: hci5: command tx timeout [ 382.489158] Bluetooth: hci6: command tx timeout [ 382.489884] Bluetooth: hci7: command tx timeout [ 384.281779] Bluetooth: hci3: command tx timeout [ 384.282419] Bluetooth: hci0: command tx timeout [ 384.282540] Bluetooth: hci2: command tx timeout [ 384.283335] Bluetooth: hci1: command tx timeout [ 384.408923] Bluetooth: hci4: command tx timeout [ 384.473096] Bluetooth: hci5: command tx timeout [ 384.536903] Bluetooth: hci7: command tx timeout [ 384.537346] Bluetooth: hci6: command tx timeout [ 386.329603] Bluetooth: hci2: command tx timeout [ 386.330900] Bluetooth: hci0: command tx timeout [ 386.330949] Bluetooth: hci3: command tx timeout [ 386.331307] Bluetooth: hci1: command tx timeout [ 386.457944] Bluetooth: hci4: command tx timeout [ 386.521845] Bluetooth: hci5: command tx timeout [ 386.586137] Bluetooth: hci7: command tx timeout [ 386.586587] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 21:47:52 Registers: info registers vcpu 0 RAX=ffff888039115340 RBX=0000000000000202 RCX=0000000000000000 RDX=ffffffff877f3930 RSI=ffffffff81a69fd3 RDI=ffff88806ce3b950 RBP=ffff888032947a20 RSP=ffff888032947940 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000001 R11=ffff88806ce3b950 R12=ffff88806ce3b950 R13=ffffea0000334640 R14=ffff888008c4b780 R15=ffff88800cd19b90 RIP=ffffffff81518216 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5648000 00000000 00000000 LDT=0000 fffffe2300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0a1328b260 CR3=000000001718c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=2e6f747079726362696c2f756e672d78 XMM02=00312e312e6f732e6f74707972636269 XMM03=6c2f756e672d78756e696c2d34365f36 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff888036bf5340 RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff85c1bac0 RBP=0000000000000000 RSP=ffff88806cf08860 R8 =0000000000000000 R9 =ffffffff87a285c8 R10=0000000000000000 R11=000000000000031f R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=0000000000000200 RIP=ffffffff815163a7 RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f8d3a4d4540 00000000 00000000 GS =0000 ffff8880e5748000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8d3a66f4a1 CR3=00000000306e8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000ff0000000000000000 XMM02=ffffffffffffffff0f0e0d0c0b0a0908 XMM03=65006463682d69636865203a65727020 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000