Warning: Permanently added '[localhost]:17873' (ECDSA) to the list of known hosts. 2025/06/03 17:22:21 fuzzer started 2025/06/03 17:22:21 dialing manager at localhost:39055 syzkaller login: [ 94.267622] cgroup: Unknown subsys name 'net' [ 94.406226] cgroup: Unknown subsys name 'cpuset' [ 94.457034] cgroup: Unknown subsys name 'rlimit' 2025/06/03 17:22:38 syscalls: 2214 2025/06/03 17:22:38 code coverage: enabled 2025/06/03 17:22:38 comparison tracing: enabled 2025/06/03 17:22:38 extra coverage: enabled 2025/06/03 17:22:38 setuid sandbox: enabled 2025/06/03 17:22:38 namespace sandbox: enabled 2025/06/03 17:22:38 Android sandbox: enabled 2025/06/03 17:22:38 fault injection: enabled 2025/06/03 17:22:38 leak checking: enabled 2025/06/03 17:22:38 net packet injection: enabled 2025/06/03 17:22:38 net device setup: enabled 2025/06/03 17:22:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/03 17:22:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/03 17:22:38 USB emulation: enabled 2025/06/03 17:22:38 hci packet injection: enabled 2025/06/03 17:22:38 wifi device emulation: enabled 2025/06/03 17:22:38 802.15.4 emulation: enabled 2025/06/03 17:22:38 fetching corpus: 0, signal 0/0 (executing program) 2025/06/03 17:22:38 fetching corpus: 0, signal 0/0 (executing program) 2025/06/03 17:22:41 starting 8 fuzzer processes 17:22:41 executing program 0: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1000}], 0x0, 0x0) 17:22:41 executing program 1: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$BLKROSET(r0, 0x125d, &(0x7f0000000040)=0x1a) 17:22:41 executing program 2: rt_tgsigqueueinfo(0xffffffffffffffff, 0xffffffffffffffff, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x40}) [ 113.427464] audit: type=1400 audit(1748971361.284:7): avc: denied { execmem } for pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:22:41 executing program 3: openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) socketpair(0x10, 0x0, 0x800, &(0x7f0000000640)) 17:22:41 executing program 4: openat2(0xffffffffffffffff, 0x0, 0x0, 0x0) 17:22:41 executing program 5: r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x0, 0x0) flistxattr(r0, &(0x7f0000000100)=""/36, 0x24) 17:22:41 executing program 6: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)={[{@session}, {@unhide}, {@hide}, {@gid}, {@overriderock}]}) 17:22:41 executing program 7: lremovexattr(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=@known='security.apparmor\x00') [ 114.981423] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 114.988431] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 114.989639] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 114.990218] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 114.992600] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 114.993417] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 114.995192] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 115.007329] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 115.008075] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 115.010353] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 115.012321] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 115.022093] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 115.022271] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 115.028779] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 115.034212] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 115.036374] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 115.041043] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 115.043699] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 115.051888] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 115.059531] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 115.065782] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 115.074207] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 115.078590] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 115.083007] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 115.087441] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 115.093539] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 115.099125] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 115.109814] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 115.110447] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 115.112772] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 115.114497] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 115.132033] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 115.135263] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 115.141127] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 115.142544] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 115.145444] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 115.150808] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 115.154139] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 115.165465] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 115.175251] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 117.051495] Bluetooth: hci0: command tx timeout [ 117.115510] Bluetooth: hci2: command tx timeout [ 117.179018] Bluetooth: hci4: command tx timeout [ 117.179137] Bluetooth: hci3: command tx timeout [ 117.180232] Bluetooth: hci1: command tx timeout [ 117.244660] Bluetooth: hci6: command tx timeout [ 117.246317] Bluetooth: hci7: command tx timeout [ 117.247386] Bluetooth: hci5: command tx timeout [ 119.099936] Bluetooth: hci0: command tx timeout [ 119.164039] Bluetooth: hci2: command tx timeout [ 119.227142] Bluetooth: hci3: command tx timeout [ 119.227624] Bluetooth: hci1: command tx timeout [ 119.228144] Bluetooth: hci4: command tx timeout [ 119.290989] Bluetooth: hci7: command tx timeout [ 119.291459] Bluetooth: hci6: command tx timeout [ 119.291965] Bluetooth: hci5: command tx timeout [ 121.147152] Bluetooth: hci0: command tx timeout [ 121.212076] Bluetooth: hci2: command tx timeout [ 121.276043] Bluetooth: hci4: command tx timeout [ 121.276482] Bluetooth: hci1: command tx timeout [ 121.276948] Bluetooth: hci3: command tx timeout [ 121.340234] Bluetooth: hci5: command tx timeout [ 121.340671] Bluetooth: hci6: command tx timeout [ 121.340830] Bluetooth: hci7: command tx timeout [ 123.194987] Bluetooth: hci0: command tx timeout [ 123.259611] Bluetooth: hci2: command tx timeout [ 123.323175] Bluetooth: hci3: command tx timeout [ 123.323239] Bluetooth: hci1: command tx timeout [ 123.323580] Bluetooth: hci4: command tx timeout [ 123.386934] Bluetooth: hci7: command tx timeout [ 123.389051] Bluetooth: hci5: command tx timeout [ 123.389166] Bluetooth: hci6: command tx timeout [ 174.785946] syz-executor.5 (286) used greatest stack depth: 25072 bytes left [ 174.907405] syz-executor.3 (285) used greatest stack depth: 24880 bytes left [ 177.094463] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 177.098106] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 177.100574] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 177.107365] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 177.112181] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 177.170144] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 177.172571] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 177.174755] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 177.180196] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 177.183654] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 177.239167] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 177.246123] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 177.251292] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 177.254042] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 177.255271] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 177.256150] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 177.261183] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 177.265487] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 177.278155] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 177.283247] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 177.294312] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 177.307468] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 177.312411] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 177.348336] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 177.364699] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 177.506318] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 177.521437] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 177.545293] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 177.575913] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 177.581410] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 177.600428] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 177.629825] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 177.632563] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 177.640298] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 177.680339] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 177.696351] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 177.702342] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 177.708129] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 177.741640] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 177.767603] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 179.195118] Bluetooth: hci0: command tx timeout [ 179.259063] Bluetooth: hci1: command tx timeout [ 179.387459] Bluetooth: hci2: command tx timeout [ 179.451100] Bluetooth: hci3: command tx timeout [ 179.580254] Bluetooth: hci4: command tx timeout [ 179.707239] Bluetooth: hci5: command tx timeout [ 179.835037] Bluetooth: hci7: command tx timeout [ 179.836025] Bluetooth: hci6: command tx timeout [ 181.242969] Bluetooth: hci0: command tx timeout [ 181.309016] Bluetooth: hci1: command tx timeout [ 181.435012] Bluetooth: hci2: command tx timeout [ 181.498895] Bluetooth: hci3: command tx timeout [ 181.628893] Bluetooth: hci4: command tx timeout [ 181.754916] Bluetooth: hci5: command tx timeout [ 181.882951] Bluetooth: hci6: command tx timeout [ 181.883436] Bluetooth: hci7: command tx timeout [ 183.291021] Bluetooth: hci0: command tx timeout [ 183.355256] Bluetooth: hci1: command tx timeout [ 183.483747] Bluetooth: hci2: command tx timeout [ 183.546934] Bluetooth: hci3: command tx timeout [ 183.675942] Bluetooth: hci4: command tx timeout [ 183.805284] Bluetooth: hci5: command tx timeout [ 183.930942] Bluetooth: hci7: command tx timeout [ 183.931432] Bluetooth: hci6: command tx timeout [ 185.339221] Bluetooth: hci0: command tx timeout [ 185.404040] Bluetooth: hci1: command tx timeout [ 185.531611] Bluetooth: hci2: command tx timeout [ 185.594952] Bluetooth: hci3: command tx timeout [ 185.722994] Bluetooth: hci4: command tx timeout [ 185.850964] Bluetooth: hci5: command tx timeout [ 185.979272] Bluetooth: hci6: command tx timeout [ 185.980194] Bluetooth: hci7: command tx timeout [ 237.543809] syz-executor.0 (2904) used greatest stack depth: 24544 bytes left [ 239.373810] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 239.376991] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 239.381542] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 239.393241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 239.398753] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 239.507316] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 239.512398] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 239.515514] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 239.530656] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 239.537393] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 239.587553] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 239.591543] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 239.594378] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 239.600222] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 239.604456] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 239.687616] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 239.709395] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 239.714400] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 239.734385] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 239.753434] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 239.815497] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 239.829416] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 239.844742] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 239.847235] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 239.859170] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 239.862138] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 239.882806] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 239.885941] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 239.921255] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 239.930182] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 240.060952] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 240.082627] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 240.088199] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 240.098038] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 240.108397] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 240.254824] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 240.268696] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 240.319819] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 240.329190] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 240.336181] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 241.468901] Bluetooth: hci0: command tx timeout [ 241.594965] Bluetooth: hci1: command tx timeout [ 241.723237] Bluetooth: hci2: command tx timeout [ 241.914982] Bluetooth: hci3: command tx timeout [ 242.042968] Bluetooth: hci5: command tx timeout [ 242.171253] Bluetooth: hci4: command tx timeout [ 242.364019] Bluetooth: hci6: command tx timeout [ 242.426989] Bluetooth: hci7: command tx timeout [ 243.514932] Bluetooth: hci0: command tx timeout [ 243.643908] Bluetooth: hci1: command tx timeout [ 243.770985] Bluetooth: hci2: command tx timeout [ 243.963164] Bluetooth: hci3: command tx timeout [ 244.091313] Bluetooth: hci5: command tx timeout [ 244.220946] Bluetooth: hci4: command tx timeout [ 244.411082] Bluetooth: hci6: command tx timeout [ 244.474923] Bluetooth: hci7: command tx timeout [ 245.563119] Bluetooth: hci0: command tx timeout [ 245.691175] Bluetooth: hci1: command tx timeout [ 245.818939] Bluetooth: hci2: command tx timeout [ 246.011962] Bluetooth: hci3: command tx timeout [ 246.139183] Bluetooth: hci5: command tx timeout [ 246.266928] Bluetooth: hci4: command tx timeout [ 246.458967] Bluetooth: hci6: command tx timeout [ 246.523175] Bluetooth: hci7: command tx timeout [ 247.612898] Bluetooth: hci0: command tx timeout [ 247.739516] Bluetooth: hci1: command tx timeout [ 247.869125] Bluetooth: hci2: command tx timeout [ 248.059179] Bluetooth: hci3: command tx timeout [ 248.187268] Bluetooth: hci5: command tx timeout [ 248.315225] Bluetooth: hci4: command tx timeout [ 248.506912] Bluetooth: hci6: command tx timeout [ 248.570968] Bluetooth: hci7: command tx timeout [ 302.034426] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 302.037753] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 302.047048] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 302.058511] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 302.067604] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 302.104160] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 302.108481] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 302.113537] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 302.121173] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 302.127129] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 302.164332] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 302.176052] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 302.180507] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 302.195392] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 302.199802] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 302.524524] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 302.533790] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 302.542352] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 302.550143] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 302.554107] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 302.600095] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 302.608552] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 302.615408] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 302.635500] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 302.637350] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 302.639779] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 302.643172] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 302.649339] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 302.654359] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 302.674423] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 302.679123] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 302.686418] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 302.692122] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 302.708100] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 302.715311] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 302.732107] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 302.769309] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 302.775550] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 302.847572] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 302.868709] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 304.124079] Bluetooth: hci0: command tx timeout [ 304.187110] Bluetooth: hci1: command tx timeout [ 304.315122] Bluetooth: hci2: command tx timeout [ 304.634991] Bluetooth: hci3: command tx timeout [ 304.827392] Bluetooth: hci5: command tx timeout [ 304.827523] Bluetooth: hci7: command tx timeout [ 304.891044] Bluetooth: hci6: command tx timeout [ 304.955129] Bluetooth: hci4: command tx timeout [ 306.171939] Bluetooth: hci0: command tx timeout [ 306.234953] Bluetooth: hci1: command tx timeout [ 306.365191] Bluetooth: hci2: command tx timeout [ 306.682949] Bluetooth: hci3: command tx timeout [ 306.875182] Bluetooth: hci7: command tx timeout [ 306.875688] Bluetooth: hci5: command tx timeout [ 306.939188] Bluetooth: hci6: command tx timeout [ 307.005040] Bluetooth: hci4: command tx timeout [ 308.219265] Bluetooth: hci0: command tx timeout [ 308.283074] Bluetooth: hci1: command tx timeout [ 308.411143] Bluetooth: hci2: command tx timeout [ 308.730947] Bluetooth: hci3: command tx timeout [ 308.922955] Bluetooth: hci7: command tx timeout [ 308.922974] Bluetooth: hci5: command tx timeout [ 308.987025] Bluetooth: hci6: command tx timeout [ 309.051883] Bluetooth: hci4: command tx timeout [ 310.267093] Bluetooth: hci0: command tx timeout [ 310.331004] Bluetooth: hci1: command tx timeout [ 310.458951] Bluetooth: hci2: command tx timeout [ 310.780972] Bluetooth: hci3: command tx timeout [ 310.970961] Bluetooth: hci7: command tx timeout [ 310.972182] Bluetooth: hci5: command tx timeout [ 311.035898] Bluetooth: hci6: command tx timeout [ 311.099955] Bluetooth: hci4: command tx timeout [ 364.304488] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 364.307634] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 364.317950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 364.328719] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 364.332223] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 364.499393] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 364.503379] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 364.506560] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 364.519788] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 364.532435] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 364.608111] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 364.615019] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 364.618658] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 364.630474] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 364.632613] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 364.636958] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 364.640652] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 364.644017] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 364.663810] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 364.674319] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 364.776772] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 364.782508] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 364.802371] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 364.831755] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 364.860545] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 364.923119] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 364.964173] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 364.972574] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 365.019767] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 365.032337] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 365.034785] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 365.060920] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 365.082647] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 365.095777] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 365.100594] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 365.116677] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 365.137230] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 365.151462] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 365.178473] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 365.193571] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 366.395020] Bluetooth: hci0: command tx timeout [ 366.650971] Bluetooth: hci1: command tx timeout [ 366.778971] Bluetooth: hci2: command tx timeout [ 366.842943] Bluetooth: hci3: command tx timeout [ 367.036209] Bluetooth: hci5: command tx timeout [ 367.163050] Bluetooth: hci4: command tx timeout [ 367.291158] Bluetooth: hci6: command tx timeout [ 367.355197] Bluetooth: hci7: command tx timeout [ 368.442954] Bluetooth: hci0: command tx timeout [ 368.701112] Bluetooth: hci1: command tx timeout [ 368.827149] Bluetooth: hci2: command tx timeout [ 368.892133] Bluetooth: hci3: command tx timeout [ 369.083907] Bluetooth: hci5: command tx timeout [ 369.211107] Bluetooth: hci4: command tx timeout [ 369.339027] Bluetooth: hci6: command tx timeout [ 369.403138] Bluetooth: hci7: command tx timeout [ 370.492028] Bluetooth: hci0: command tx timeout [ 370.747087] Bluetooth: hci1: command tx timeout [ 370.875091] Bluetooth: hci2: command tx timeout [ 370.939091] Bluetooth: hci3: command tx timeout [ 371.132067] Bluetooth: hci5: command tx timeout [ 371.260320] Bluetooth: hci4: command tx timeout [ 371.389306] Bluetooth: hci6: command tx timeout [ 371.451137] Bluetooth: hci7: command tx timeout [ 372.540026] Bluetooth: hci0: command tx timeout [ 372.796156] Bluetooth: hci1: command tx timeout [ 372.923973] Bluetooth: hci2: command tx timeout [ 372.989871] Bluetooth: hci3: command tx timeout [ 373.180314] Bluetooth: hci5: command tx timeout [ 373.309275] Bluetooth: hci4: command tx timeout [ 373.435953] Bluetooth: hci6: command tx timeout [ 373.498948] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 17:27:50 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=000000001c3d7067 RCX=ffffffff81a121fc RDX=ffff88800f75d280 RSI=ffffffff81a12882 RDI=0000000000000007 RBP=ffff88800ceb4ff8 RSP=ffff888029bff988 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000043 R11=0000000000000001 R12=ffff88801c3d7ff0 R13=1ffff1100537ff35 R14=dffffc0000000000 R15=00007fffffffefb4 RIP=ffffffff81a12887 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e561b000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff8dafa9e60 CR3=000000002b71f000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000004005 RBX=ffff88802bc0d280 RCX=00000000ffffffff RDX=0000000000000008 RSI=ffff88802bc0dcd8 RDI=00000000fffffffe RBP=ffff88802bc0dcd8 RSP=ffff888028ec7a90 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffff88802bc0dcd8 R13=ffffffffffffffff R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81519469 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e571b000 00000000 00000000 LDT=0000 fffffe3d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb7351888e0 CR3=000000002d28f000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000ff00000000000000ff0000000000 XMM02=ff000000000000ff0000000000000000 XMM03=ff0000000000000000ff000000000000 XMM04=0000000000ff00000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000