Warning: Permanently added '[localhost]:48226' (ECDSA) to the list of known hosts. 2025/05/30 20:42:30 fuzzer started 2025/05/30 20:42:30 dialing manager at localhost:34361 syzkaller login: [ 92.267655] cgroup: Unknown subsys name 'net' [ 92.419830] cgroup: Unknown subsys name 'cpuset' [ 92.461987] cgroup: Unknown subsys name 'rlimit' 2025/05/30 20:42:56 syscalls: 2214 2025/05/30 20:42:56 code coverage: enabled 2025/05/30 20:42:56 comparison tracing: enabled 2025/05/30 20:42:56 extra coverage: enabled 2025/05/30 20:42:56 setuid sandbox: enabled 2025/05/30 20:42:56 namespace sandbox: enabled 2025/05/30 20:42:56 Android sandbox: enabled 2025/05/30 20:42:56 fault injection: enabled 2025/05/30 20:42:56 leak checking: enabled 2025/05/30 20:42:56 net packet injection: enabled 2025/05/30 20:42:56 net device setup: enabled 2025/05/30 20:42:56 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/05/30 20:42:56 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/05/30 20:42:56 USB emulation: enabled 2025/05/30 20:42:56 hci packet injection: enabled 2025/05/30 20:42:56 wifi device emulation: enabled 2025/05/30 20:42:56 802.15.4 emulation: enabled 2025/05/30 20:42:56 fetching corpus: 0, signal 0/0 (executing program) 2025/05/30 20:42:56 fetching corpus: 0, signal 0/0 (executing program) 2025/05/30 20:42:58 starting 8 fuzzer processes 20:42:58 executing program 0: syz_mount_image$nfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000ec0)='./file0\x00', &(0x7f0000000f00)='system.posix_acl_default\x00', &(0x7f0000001040), 0x24, 0x0) 20:42:58 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000294fc266f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aa5252614100"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="0000000072724161450000001a000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="eb58906d6b66732e66617400020120000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000294fc266f153595a4b414c4c4552202046415433322020200e1fbe777cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a0000000000", 0xe0, 0xc00}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0fffffff0f0500000006000000ffffff0fffffff0f090000000a0000000b0000000c0000000d0000000e0000000f00000010000000110000001200000013000000140000001500000016000000170000001800000019000000ffffff0fffffff0f00"/128, 0x80, 0x4000}, {&(0x7f0000010600)="f8ffff0fffffff0ff8ffff0fffffff0f0500000006000000ffffff0fffffff0f090000000a0000000b0000000c0000000d0000000e0000000f00000010000000110000001200000013000000140000001500000016000000170000001800000019000000ffffff0fffffff0f00"/128, 0x80, 0x4200}, {&(0x7f0000010700)="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", 0x120, 0x4400}, {&(0x7f0000010900)="2e20202020202020202020100076e970325132510000e97032510300000000002e2e202020202020202020100076e970325132510000e970325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200076e970325132510000e970325104001a040000", 0x80, 0x4600}, {&(0x7f0000010a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x4800}, {&(0x7f0000010f00)='syzkallers\x00'/32, 0x20, 0x4e00}, {&(0x7f0000011000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x7400}], 0x0, &(0x7f0000011100)) 20:42:58 executing program 2: open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) 20:42:58 executing program 3: timer_create(0x0, 0x0, &(0x7f0000000780)) timer_create(0x0, &(0x7f0000000240)={0x0, 0x0, 0x5e539dbfa0cb17c, @tid=0xffffffffffffffff}, 0x0) 20:42:58 executing program 4: pkey_mprotect(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff) mlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000) [ 119.981560] audit: type=1400 audit(1748637778.895:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:42:58 executing program 5: mlockall(0x5) 20:42:58 executing program 6: shmat(0xffffffffffffffff, &(0x7f0000ffc000/0x3000)=nil, 0x0) 20:42:58 executing program 7: syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x1, &(0x7f0000000f00)=[{&(0x7f0000000dc0)="9b85", 0x2, 0xffff}], 0x0, 0x0) [ 121.437528] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 121.442827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 121.445630] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 121.452674] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 121.456027] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 121.501940] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 121.506303] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 121.509845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 121.518520] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 121.523690] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 121.536176] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 121.544312] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 121.552559] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 121.561970] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 121.563686] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 121.565953] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 121.570730] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 121.576118] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 121.580214] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 121.584273] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 121.585967] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 121.590642] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 121.595594] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 121.607571] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 121.611228] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 121.616567] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 121.620146] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 121.622009] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 121.625429] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 121.628640] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 121.650400] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 121.650479] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 121.667385] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 121.668390] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 121.684461] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 121.693928] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 121.710698] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 121.715793] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 121.734857] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 121.756385] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 123.522245] Bluetooth: hci0: command tx timeout [ 123.648444] Bluetooth: hci1: command tx timeout [ 123.712172] Bluetooth: hci3: command tx timeout [ 123.712743] Bluetooth: hci6: command tx timeout [ 123.713273] Bluetooth: hci2: command tx timeout [ 123.776406] Bluetooth: hci4: command tx timeout [ 123.840158] Bluetooth: hci7: command tx timeout [ 123.840674] Bluetooth: hci5: command tx timeout [ 125.570267] Bluetooth: hci0: command tx timeout [ 125.697150] Bluetooth: hci1: command tx timeout [ 125.761553] Bluetooth: hci2: command tx timeout [ 125.761992] Bluetooth: hci6: command tx timeout [ 125.762557] Bluetooth: hci3: command tx timeout [ 125.825390] Bluetooth: hci4: command tx timeout [ 125.889177] Bluetooth: hci5: command tx timeout [ 125.889605] Bluetooth: hci7: command tx timeout [ 127.617154] Bluetooth: hci0: command tx timeout [ 127.745178] Bluetooth: hci1: command tx timeout [ 127.809180] Bluetooth: hci6: command tx timeout [ 127.809635] Bluetooth: hci3: command tx timeout [ 127.810286] Bluetooth: hci2: command tx timeout [ 127.873347] Bluetooth: hci4: command tx timeout [ 127.936166] Bluetooth: hci5: command tx timeout [ 127.936605] Bluetooth: hci7: command tx timeout [ 129.666019] Bluetooth: hci0: command tx timeout [ 129.793378] Bluetooth: hci1: command tx timeout [ 129.857496] Bluetooth: hci3: command tx timeout [ 129.857932] Bluetooth: hci6: command tx timeout [ 129.859175] Bluetooth: hci2: command tx timeout [ 129.921148] Bluetooth: hci4: command tx timeout [ 129.985148] Bluetooth: hci5: command tx timeout [ 129.985592] Bluetooth: hci7: command tx timeout [ 181.177482] syz-executor.7 (288) used greatest stack depth: 25080 bytes left [ 181.292221] syz-executor.2 (283) used greatest stack depth: 25072 bytes left [ 183.891268] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 183.894934] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 183.898422] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 183.906955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 183.912231] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 183.969628] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 183.981236] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 183.987562] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 183.989481] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 183.993985] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 183.999673] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 184.015867] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 184.021399] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 184.028828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 184.038430] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 184.040775] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 184.045036] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 184.046528] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 184.050704] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 184.052915] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 184.076612] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 184.085708] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 184.089623] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 184.091291] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 184.101639] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 184.111650] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 184.114934] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 184.118976] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 184.122576] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 184.127499] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 184.147764] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 184.154745] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 184.168285] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 184.172034] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 184.200652] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 184.217772] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 184.243756] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 184.248989] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 184.275728] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 184.277769] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 185.986158] Bluetooth: hci0: command tx timeout [ 186.112201] Bluetooth: hci1: command tx timeout [ 186.176173] Bluetooth: hci2: command tx timeout [ 186.240675] Bluetooth: hci4: command tx timeout [ 186.241694] Bluetooth: hci5: command tx timeout [ 186.242526] Bluetooth: hci6: command tx timeout [ 186.368305] Bluetooth: hci3: command tx timeout [ 186.368449] Bluetooth: hci7: command tx timeout [ 188.032130] Bluetooth: hci0: command tx timeout [ 188.160361] Bluetooth: hci1: command tx timeout [ 188.225077] Bluetooth: hci2: command tx timeout [ 188.288334] Bluetooth: hci6: command tx timeout [ 188.288950] Bluetooth: hci4: command tx timeout [ 188.289003] Bluetooth: hci5: command tx timeout [ 188.416206] Bluetooth: hci7: command tx timeout [ 188.416700] Bluetooth: hci3: command tx timeout [ 190.081148] Bluetooth: hci0: command tx timeout [ 190.210222] Bluetooth: hci1: command tx timeout [ 190.272294] Bluetooth: hci2: command tx timeout [ 190.336178] Bluetooth: hci4: command tx timeout [ 190.336666] Bluetooth: hci6: command tx timeout [ 190.336688] Bluetooth: hci5: command tx timeout [ 190.464535] Bluetooth: hci3: command tx timeout [ 190.464564] Bluetooth: hci7: command tx timeout [ 192.128149] Bluetooth: hci0: command tx timeout [ 192.256155] Bluetooth: hci1: command tx timeout [ 192.320149] Bluetooth: hci2: command tx timeout [ 192.384348] Bluetooth: hci5: command tx timeout [ 192.385776] Bluetooth: hci4: command tx timeout [ 192.385846] Bluetooth: hci6: command tx timeout [ 192.512257] Bluetooth: hci3: command tx timeout [ 192.512378] Bluetooth: hci7: command tx timeout [ 246.101403] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 246.108384] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 246.113135] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 246.123826] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 246.130246] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 246.183428] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 246.186819] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 246.189363] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 246.197456] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 246.201778] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 246.322819] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 246.341595] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 246.344533] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 246.350699] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 246.355817] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 246.392506] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 246.411946] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 246.418699] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 246.427557] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 246.464641] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 246.468544] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 246.474827] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 246.477919] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 246.484723] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 246.488917] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 246.558541] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 246.563840] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 246.574451] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 246.585930] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 246.588795] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 246.591007] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 246.595685] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 246.600837] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 246.605179] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 246.622479] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 246.635701] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 246.644950] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 246.679441] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 246.709981] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 246.730564] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 248.192498] Bluetooth: hci0: command tx timeout [ 248.256575] Bluetooth: hci1: command tx timeout [ 248.513809] Bluetooth: hci4: command tx timeout [ 248.515627] Bluetooth: hci2: command tx timeout [ 248.576202] Bluetooth: hci3: command tx timeout [ 248.768279] Bluetooth: hci5: command tx timeout [ 248.769490] Bluetooth: hci6: command tx timeout [ 248.896582] Bluetooth: hci7: command tx timeout [ 250.240430] Bluetooth: hci0: command tx timeout [ 250.305294] Bluetooth: hci1: command tx timeout [ 250.560523] Bluetooth: hci4: command tx timeout [ 250.561475] Bluetooth: hci2: command tx timeout [ 250.624229] Bluetooth: hci3: command tx timeout [ 250.817526] Bluetooth: hci6: command tx timeout [ 250.818462] Bluetooth: hci5: command tx timeout [ 250.944472] Bluetooth: hci7: command tx timeout [ 252.288136] Bluetooth: hci0: command tx timeout [ 252.354174] Bluetooth: hci1: command tx timeout [ 252.609300] Bluetooth: hci4: command tx timeout [ 252.609804] Bluetooth: hci2: command tx timeout [ 252.672166] Bluetooth: hci3: command tx timeout [ 252.864210] Bluetooth: hci5: command tx timeout [ 252.864708] Bluetooth: hci6: command tx timeout [ 252.994527] Bluetooth: hci7: command tx timeout [ 254.336218] Bluetooth: hci0: command tx timeout [ 254.401143] Bluetooth: hci1: command tx timeout [ 254.656417] Bluetooth: hci4: command tx timeout [ 254.656913] Bluetooth: hci2: command tx timeout [ 254.721151] Bluetooth: hci3: command tx timeout [ 254.912149] Bluetooth: hci5: command tx timeout [ 254.912645] Bluetooth: hci6: command tx timeout [ 255.041123] Bluetooth: hci7: command tx timeout [ 308.373669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 308.377546] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 308.382872] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 308.392029] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 308.398538] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 308.634517] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 308.640087] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 308.642489] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 308.654021] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 308.659418] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 308.662962] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 308.667725] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 308.670032] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 308.690532] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 308.698021] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 308.905709] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 308.918984] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 308.926354] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 308.929704] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 308.931340] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 308.969215] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 308.995565] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 309.002866] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 309.008542] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 309.011724] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 309.026373] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 309.034874] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 309.058030] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 309.061320] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 309.064439] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 309.076965] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 309.078566] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 309.086778] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 309.095804] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 309.111185] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 309.142585] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 309.183283] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 309.192368] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 309.200162] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 309.235427] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 310.464148] Bluetooth: hci0: command tx timeout [ 310.786329] Bluetooth: hci2: command tx timeout [ 310.787301] Bluetooth: hci1: command tx timeout [ 311.104205] Bluetooth: hci5: command tx timeout [ 311.232417] Bluetooth: hci4: command tx timeout [ 311.234139] Bluetooth: hci3: command tx timeout [ 311.360221] Bluetooth: hci7: command tx timeout [ 311.360992] Bluetooth: hci6: command tx timeout [ 312.512436] Bluetooth: hci0: command tx timeout [ 312.832276] Bluetooth: hci1: command tx timeout [ 312.832778] Bluetooth: hci2: command tx timeout [ 313.152195] Bluetooth: hci5: command tx timeout [ 313.280920] Bluetooth: hci3: command tx timeout [ 313.281619] Bluetooth: hci4: command tx timeout [ 313.410207] Bluetooth: hci6: command tx timeout [ 313.410651] Bluetooth: hci7: command tx timeout [ 314.560455] Bluetooth: hci0: command tx timeout [ 314.880175] Bluetooth: hci1: command tx timeout [ 314.880654] Bluetooth: hci2: command tx timeout [ 315.200287] Bluetooth: hci5: command tx timeout [ 315.328154] Bluetooth: hci3: command tx timeout [ 315.328601] Bluetooth: hci4: command tx timeout [ 315.456144] Bluetooth: hci6: command tx timeout [ 315.456592] Bluetooth: hci7: command tx timeout [ 316.608296] Bluetooth: hci0: command tx timeout [ 316.928624] Bluetooth: hci2: command tx timeout [ 316.929144] Bluetooth: hci1: command tx timeout [ 317.248129] Bluetooth: hci5: command tx timeout [ 317.376322] Bluetooth: hci4: command tx timeout [ 317.376768] Bluetooth: hci3: command tx timeout [ 317.506128] Bluetooth: hci7: command tx timeout [ 317.506583] Bluetooth: hci6: command tx timeout [ 368.884022] syz-executor.3 (8178) used greatest stack depth: 24544 bytes left [ 370.967658] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 370.972161] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 370.976714] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 370.986848] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 370.992714] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 371.044305] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 371.049184] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 371.051793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 371.060388] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 371.066688] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 371.256737] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 371.265707] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 371.284095] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 371.309873] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 371.314971] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 371.319975] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 371.324501] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 371.341735] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 371.378770] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 371.393871] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 371.403918] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 371.440606] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 371.453951] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 371.454901] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 371.462486] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 371.472716] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 371.477428] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 371.497631] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 371.519987] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 371.523442] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 371.568513] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 371.572758] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 371.603563] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 371.621748] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 371.637095] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 371.651659] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 371.682324] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 371.696757] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 371.716574] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 371.720518] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 373.058147] Bluetooth: hci0: command tx timeout [ 373.120179] Bluetooth: hci1: command tx timeout [ 373.568409] Bluetooth: hci2: command tx timeout [ 373.568529] Bluetooth: hci5: command tx timeout [ 373.632665] Bluetooth: hci3: command tx timeout [ 373.760775] Bluetooth: hci7: command tx timeout [ 373.760850] Bluetooth: hci4: command tx timeout [ 373.824168] Bluetooth: hci6: command tx timeout [ 375.106237] Bluetooth: hci0: command tx timeout [ 375.169560] Bluetooth: hci1: command tx timeout [ 375.616183] Bluetooth: hci5: command tx timeout [ 375.617240] Bluetooth: hci2: command tx timeout [ 375.681882] Bluetooth: hci3: command tx timeout [ 375.808132] Bluetooth: hci7: command tx timeout [ 375.808177] Bluetooth: hci4: command tx timeout [ 375.872352] Bluetooth: hci6: command tx timeout [ 377.152446] Bluetooth: hci0: command tx timeout [ 377.217486] Bluetooth: hci1: command tx timeout [ 377.666252] Bluetooth: hci2: command tx timeout [ 377.666275] Bluetooth: hci5: command tx timeout [ 377.729267] Bluetooth: hci3: command tx timeout [ 377.856125] Bluetooth: hci7: command tx timeout [ 377.858168] Bluetooth: hci4: command tx timeout [ 377.921098] Bluetooth: hci6: command tx timeout [ 379.200153] Bluetooth: hci0: command tx timeout [ 379.266104] Bluetooth: hci1: command tx timeout [ 379.712184] Bluetooth: hci2: command tx timeout [ 379.712677] Bluetooth: hci5: command tx timeout [ 379.777277] Bluetooth: hci3: command tx timeout [ 379.904375] Bluetooth: hci4: command tx timeout [ 379.904432] Bluetooth: hci7: command tx timeout [ 379.968394] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 20:47:59 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff888033da7280 RCX=ffffffff8680a690 RDX=0000000000000000 RSI=0000000000000000 RDI=0000000000000001 RBP=ffffffff85c1d1c0 RSP=ffff888033da7090 R8 =ffffffff8680a694 R9 =ffff888033da7188 R10=000000000003b6bd R11=0000000000012b77 R12=ffffffff81354102 R13=0000000000000202 R14=ffff8880382fd280 R15=ffff888033da7148 RIP=ffffffff8151ae17 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e561b000 00000000 00000000 LDT=0000 fffffe3a00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f5bd3ace028 CR3=000000000d767000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6f732e616d7a6c62696c2f756e672d78 XMM02=00352e6f732e616d7a6c62696c2f756e XMM03=672d78756e696c2d34365f3638782f62 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88802aab7ec0 RCX=ffff88802aab7814 RDX=0000000000000000 RSI=ffffffff85c1d1c0 RDI=ffff8880373f3afc RBP=ffff88802aab0000 RSP=ffff88802aab7888 R8 =0000000000000001 R9 =ffff88802aab7900 R10=000000000003b6bd R11=0000000000027b1a R12=ffff88802aab7901 R13=ffff88802aab7908 R14=ffff88802aab7e90 R15=ffff88802aab78c0 RIP=ffffffff81353d94 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e571b000 00000000 00000000 LDT=0000 fffffe2500000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7e6b2dd1f0 CR3=000000003914c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6461657268747062696c2f756e672d78 XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000