Warning: Permanently added '[localhost]:39340' (ECDSA) to the list of known hosts. 2025/05/28 17:39:41 fuzzer started 2025/05/28 17:39:42 dialing manager at localhost:36815 syzkaller login: [ 105.559450] cgroup: Unknown subsys name 'net' [ 105.724399] cgroup: Unknown subsys name 'cpuset' [ 105.777677] cgroup: Unknown subsys name 'rlimit' 2025/05/28 17:40:04 syscalls: 2214 2025/05/28 17:40:04 code coverage: enabled 2025/05/28 17:40:04 comparison tracing: enabled 2025/05/28 17:40:04 extra coverage: enabled 2025/05/28 17:40:04 setuid sandbox: enabled 2025/05/28 17:40:04 namespace sandbox: enabled 2025/05/28 17:40:04 Android sandbox: enabled 2025/05/28 17:40:04 fault injection: enabled 2025/05/28 17:40:04 leak checking: enabled 2025/05/28 17:40:04 net packet injection: enabled 2025/05/28 17:40:04 net device setup: enabled 2025/05/28 17:40:04 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/05/28 17:40:04 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/05/28 17:40:04 USB emulation: enabled 2025/05/28 17:40:04 hci packet injection: enabled 2025/05/28 17:40:04 wifi device emulation: enabled 2025/05/28 17:40:04 802.15.4 emulation: enabled 2025/05/28 17:40:04 fetching corpus: 0, signal 0/0 (executing program) 2025/05/28 17:40:04 fetching corpus: 0, signal 0/0 (executing program) 2025/05/28 17:40:07 starting 8 fuzzer processes 17:40:07 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_xen(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, 0x0) 17:40:07 executing program 1: syz_mount_image$nfs4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) link(&(0x7f0000000080)='./file0\x00', 0x0) 17:40:07 executing program 2: pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 17:40:07 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x3, 0x0, 0x0) [ 130.589592] audit: type=1400 audit(1748454007.626:7): avc: denied { execmem } for pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:40:07 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x2, 0x0, 0x0) 17:40:07 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) ioctl$FIOCLEX(r1, 0x5451) 17:40:07 executing program 5: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) 17:40:07 executing program 7: syz_io_uring_setup(0x346e, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x1d7}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000006a80)) [ 131.979424] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 131.983905] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 131.989475] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 131.997146] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 132.004934] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 132.051625] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 132.055969] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 132.058539] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 132.065162] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 132.075072] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 132.076935] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 132.088756] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 132.111396] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 132.116818] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 132.118958] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 132.121025] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 132.128468] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 132.135145] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 132.177810] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 132.186575] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 132.218962] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 132.225850] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 132.227825] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 132.241656] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 132.257093] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 132.260429] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 132.288887] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 132.292368] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 132.297993] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 132.315070] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 132.318794] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 132.324290] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 132.334042] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 132.359769] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 132.362495] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 132.366779] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 132.377411] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 132.382205] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 132.392545] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 132.397640] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 134.067470] Bluetooth: hci0: command tx timeout [ 134.132699] Bluetooth: hci1: command tx timeout [ 134.194401] Bluetooth: hci3: command tx timeout [ 134.322830] Bluetooth: hci2: command tx timeout [ 134.386451] Bluetooth: hci5: command tx timeout [ 134.387967] Bluetooth: hci4: command tx timeout [ 134.514468] Bluetooth: hci6: command tx timeout [ 134.515670] Bluetooth: hci7: command tx timeout [ 136.114449] Bluetooth: hci0: command tx timeout [ 136.178449] Bluetooth: hci1: command tx timeout [ 136.244319] Bluetooth: hci3: command tx timeout [ 136.370381] Bluetooth: hci2: command tx timeout [ 136.434759] Bluetooth: hci4: command tx timeout [ 136.435672] Bluetooth: hci5: command tx timeout [ 136.562487] Bluetooth: hci6: command tx timeout [ 136.563094] Bluetooth: hci7: command tx timeout [ 138.162380] Bluetooth: hci0: command tx timeout [ 138.227527] Bluetooth: hci1: command tx timeout [ 138.290731] Bluetooth: hci3: command tx timeout [ 138.419293] Bluetooth: hci2: command tx timeout [ 138.482466] Bluetooth: hci5: command tx timeout [ 138.482996] Bluetooth: hci4: command tx timeout [ 138.610511] Bluetooth: hci7: command tx timeout [ 138.611062] Bluetooth: hci6: command tx timeout [ 140.211531] Bluetooth: hci0: command tx timeout [ 140.274531] Bluetooth: hci1: command tx timeout [ 140.338517] Bluetooth: hci3: command tx timeout [ 140.467326] Bluetooth: hci2: command tx timeout [ 140.530402] Bluetooth: hci4: command tx timeout [ 140.531084] Bluetooth: hci5: command tx timeout [ 140.659528] Bluetooth: hci6: command tx timeout [ 140.660184] Bluetooth: hci7: command tx timeout [ 192.093939] syz-executor.2 (300) used greatest stack depth: 24912 bytes left [ 192.259064] syz-executor.4 (298) used greatest stack depth: 24784 bytes left [ 194.390960] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 194.398793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 194.401870] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 194.405813] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 194.413156] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 194.416723] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 194.420522] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 194.425694] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 194.430764] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 194.443002] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 194.628215] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 194.634045] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 194.642864] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 194.676859] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 194.695038] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 194.701310] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 194.707917] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 194.710775] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 194.718387] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 194.721526] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 194.728847] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 194.749968] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 194.757442] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 194.764813] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 194.774955] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 194.779915] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 194.781867] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 194.789248] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 194.796615] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 194.797468] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 194.803662] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 194.805674] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 194.809099] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 194.815455] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 194.821819] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 194.876809] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 194.879847] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 194.885566] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 194.899793] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 194.905355] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 196.466383] Bluetooth: hci0: command tx timeout [ 196.530664] Bluetooth: hci1: command tx timeout [ 196.850528] Bluetooth: hci2: command tx timeout [ 196.916491] Bluetooth: hci3: command tx timeout [ 196.917330] Bluetooth: hci5: command tx timeout [ 196.917833] Bluetooth: hci7: command tx timeout [ 196.979416] Bluetooth: hci4: command tx timeout [ 197.043329] Bluetooth: hci6: command tx timeout [ 198.514511] Bluetooth: hci0: command tx timeout [ 198.578583] Bluetooth: hci1: command tx timeout [ 198.898569] Bluetooth: hci2: command tx timeout [ 198.964539] Bluetooth: hci7: command tx timeout [ 198.964612] Bluetooth: hci5: command tx timeout [ 198.965777] Bluetooth: hci3: command tx timeout [ 199.026366] Bluetooth: hci4: command tx timeout [ 199.090389] Bluetooth: hci6: command tx timeout [ 200.562641] Bluetooth: hci0: command tx timeout [ 200.628294] Bluetooth: hci1: command tx timeout [ 200.947379] Bluetooth: hci2: command tx timeout [ 201.012315] Bluetooth: hci7: command tx timeout [ 201.012777] Bluetooth: hci3: command tx timeout [ 201.013188] Bluetooth: hci5: command tx timeout [ 201.074478] Bluetooth: hci4: command tx timeout [ 201.139308] Bluetooth: hci6: command tx timeout [ 202.613435] Bluetooth: hci0: command tx timeout [ 202.674472] Bluetooth: hci1: command tx timeout [ 202.994311] Bluetooth: hci2: command tx timeout [ 203.058737] Bluetooth: hci5: command tx timeout [ 203.059097] Bluetooth: hci3: command tx timeout [ 203.059455] Bluetooth: hci7: command tx timeout [ 203.122320] Bluetooth: hci4: command tx timeout [ 203.186508] Bluetooth: hci6: command tx timeout [ 256.455794] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 256.464094] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 256.470087] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 256.481506] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 256.491888] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 256.579436] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 256.584000] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 256.591820] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 256.604372] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 256.609006] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 256.785373] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 256.789797] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 256.796661] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 256.807751] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 256.818072] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 256.900802] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 256.906393] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 256.918779] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 256.932174] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 256.945977] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 257.169677] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 257.176792] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 257.179773] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 257.193822] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 257.201771] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 257.219163] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 257.227589] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 257.233517] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 257.235234] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 257.237628] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 257.239231] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 257.243225] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 257.251561] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 257.260622] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 257.271807] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 257.278131] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 257.281377] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 257.289581] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 257.313441] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 257.332802] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 258.546379] Bluetooth: hci0: command tx timeout [ 258.674447] Bluetooth: hci1: command tx timeout [ 258.867369] Bluetooth: hci2: command tx timeout [ 259.186570] Bluetooth: hci3: command tx timeout [ 259.314344] Bluetooth: hci5: command tx timeout [ 259.315440] Bluetooth: hci4: command tx timeout [ 259.443995] Bluetooth: hci7: command tx timeout [ 259.445093] Bluetooth: hci6: command tx timeout [ 260.595387] Bluetooth: hci0: command tx timeout [ 260.722792] Bluetooth: hci1: command tx timeout [ 260.915729] Bluetooth: hci2: command tx timeout [ 261.234457] Bluetooth: hci3: command tx timeout [ 261.364313] Bluetooth: hci4: command tx timeout [ 261.364813] Bluetooth: hci5: command tx timeout [ 261.490445] Bluetooth: hci7: command tx timeout [ 261.490640] Bluetooth: hci6: command tx timeout [ 262.644310] Bluetooth: hci0: command tx timeout [ 262.771328] Bluetooth: hci1: command tx timeout [ 262.963325] Bluetooth: hci2: command tx timeout [ 263.282404] Bluetooth: hci3: command tx timeout [ 263.410373] Bluetooth: hci4: command tx timeout [ 263.410870] Bluetooth: hci5: command tx timeout [ 263.539158] Bluetooth: hci7: command tx timeout [ 263.539320] Bluetooth: hci6: command tx timeout [ 264.691279] Bluetooth: hci0: command tx timeout [ 264.818345] Bluetooth: hci1: command tx timeout [ 265.010399] Bluetooth: hci2: command tx timeout [ 265.330310] Bluetooth: hci3: command tx timeout [ 265.458631] Bluetooth: hci5: command tx timeout [ 265.459123] Bluetooth: hci4: command tx timeout [ 265.587333] Bluetooth: hci7: command tx timeout [ 265.587481] Bluetooth: hci6: command tx timeout [ 319.046985] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 319.051443] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 319.057677] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 319.074172] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 319.084964] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 319.150422] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 319.159509] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 319.165527] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 319.180216] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 319.193435] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 319.316081] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 319.332037] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 319.339080] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 319.347104] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 319.351541] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 319.449723] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 319.459982] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 319.463541] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 319.490768] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 319.494572] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 319.508906] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 319.519204] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 319.524652] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 319.544477] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 319.570562] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 319.573019] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 319.589441] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 319.611921] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 319.612965] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 319.623570] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 319.626662] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 319.631111] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 319.636190] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 319.637000] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 319.641714] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 319.669563] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 319.690640] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 319.697172] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 319.742841] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 319.781126] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 321.138349] Bluetooth: hci0: command tx timeout [ 321.266490] Bluetooth: hci1: command tx timeout [ 321.458377] Bluetooth: hci2: command tx timeout [ 321.651539] Bluetooth: hci4: command tx timeout [ 321.715661] Bluetooth: hci3: command tx timeout [ 322.098454] Bluetooth: hci5: command tx timeout [ 322.162379] Bluetooth: hci6: command tx timeout [ 322.291427] Bluetooth: hci7: command tx timeout [ 323.186542] Bluetooth: hci0: command tx timeout [ 323.314389] Bluetooth: hci1: command tx timeout [ 323.506450] Bluetooth: hci2: command tx timeout [ 323.698358] Bluetooth: hci4: command tx timeout [ 323.763471] Bluetooth: hci3: command tx timeout [ 324.146850] Bluetooth: hci5: command tx timeout [ 324.210322] Bluetooth: hci6: command tx timeout [ 324.338719] Bluetooth: hci7: command tx timeout [ 325.235033] Bluetooth: hci0: command tx timeout [ 325.362601] Bluetooth: hci1: command tx timeout [ 325.554335] Bluetooth: hci2: command tx timeout [ 325.746454] Bluetooth: hci4: command tx timeout [ 325.810527] Bluetooth: hci3: command tx timeout [ 326.196276] Bluetooth: hci5: command tx timeout [ 326.259295] Bluetooth: hci6: command tx timeout [ 326.386516] Bluetooth: hci7: command tx timeout [ 327.282487] Bluetooth: hci0: command tx timeout [ 327.410326] Bluetooth: hci1: command tx timeout [ 327.602559] Bluetooth: hci2: command tx timeout [ 327.795486] Bluetooth: hci4: command tx timeout [ 327.858311] Bluetooth: hci3: command tx timeout [ 328.242433] Bluetooth: hci5: command tx timeout [ 328.306690] Bluetooth: hci6: command tx timeout [ 328.434317] Bluetooth: hci7: command tx timeout [ 379.435968] syz-executor.2 (8169) used greatest stack depth: 24544 bytes left [ 381.383469] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 381.390676] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 381.394755] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 381.403992] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 381.408064] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 381.523188] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 381.530578] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 381.536734] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 381.554896] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 381.563175] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 381.652705] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 381.661538] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 381.668064] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 381.673547] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 381.677311] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 381.782007] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 381.795322] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 381.801728] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 381.814683] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 381.824174] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 381.834706] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 381.841564] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 381.845526] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 381.847876] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 381.850012] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 381.856623] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 381.862705] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 381.898652] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 381.898708] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 381.943897] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 381.954494] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 381.958101] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 381.991961] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 382.001646] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 382.048457] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 382.068941] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 382.077814] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 382.097966] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 382.180142] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 382.211696] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 383.474446] Bluetooth: hci0: command tx timeout [ 383.603351] Bluetooth: hci1: command tx timeout [ 383.731365] Bluetooth: hci2: command tx timeout [ 383.922430] Bluetooth: hci6: command tx timeout [ 384.115602] Bluetooth: hci5: command tx timeout [ 384.242401] Bluetooth: hci3: command tx timeout [ 384.244259] Bluetooth: hci4: command tx timeout [ 384.754319] Bluetooth: hci7: command tx timeout [ 385.523502] Bluetooth: hci0: command tx timeout [ 385.651465] Bluetooth: hci1: command tx timeout [ 385.779837] Bluetooth: hci2: command tx timeout [ 385.971575] Bluetooth: hci6: command tx timeout [ 386.163301] Bluetooth: hci5: command tx timeout [ 386.293484] Bluetooth: hci4: command tx timeout [ 386.293917] Bluetooth: hci3: command tx timeout [ 386.804360] Bluetooth: hci7: command tx timeout [ 387.571329] Bluetooth: hci0: command tx timeout [ 387.699330] Bluetooth: hci1: command tx timeout [ 387.829361] Bluetooth: hci2: command tx timeout [ 388.019319] Bluetooth: hci6: command tx timeout [ 388.212332] Bluetooth: hci5: command tx timeout [ 388.338328] Bluetooth: hci3: command tx timeout [ 388.339333] Bluetooth: hci4: command tx timeout [ 388.851040] Bluetooth: hci7: command tx timeout [ 389.618434] Bluetooth: hci0: command tx timeout [ 389.746649] Bluetooth: hci1: command tx timeout [ 389.874363] Bluetooth: hci2: command tx timeout [ 390.066702] Bluetooth: hci6: command tx timeout [ 390.260169] Bluetooth: hci5: command tx timeout [ 390.388318] Bluetooth: hci4: command tx timeout [ 390.388674] Bluetooth: hci3: command tx timeout [ 390.898442] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 17:45:10 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffff88803862faa0 RCX=ffff88803862f9f4 RDX=1ffff110070c5f5f RSI=ffffffff85c1d1c0 RDI=ffffffff8140342f RBP=ffff88803862faf8 RSP=ffff88803862fa88 R8 =0000000000000001 R9 =ffff88803862fae0 R10=000000000003b6ad R11=0000000000027b7a R12=ffff88803862fb68 R13=0000000000000000 R14=ffff88802fc33700 R15=ffff88801c775c00 RIP=ffffffff8135396b RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e561b000 00000000 00000000 LDT=0000 fffffe2500000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fffc9f648b9 CR3=000000002aabb000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff00ffffffffffffffffffffff00ff XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88802a99fb10 RCX=ffffffff82269f7f RDX=ffff88802a80d280 RSI=ffffffff8226a076 RDI=0000000000000005 RBP=0000000000000001 RSP=ffff88802a99fa88 R8 =000000000617ffff R9 =00000001fdffffff R10=0000000000000001 R11=0000000000000001 R12=0000000000000007 R13=0000000000004002 R14=0000000000000005 R15=0000000000000001 RIP=ffffffff815ab820 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e571b000 00000000 00000000 LDT=0000 fffffe3a00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3c74dff1f0 CR3=000000001c4b5000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6461657268747062696c2f756e672d78 XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000