Warning: Permanently added '[localhost]:49486' (ECDSA) to the list of known hosts. 2025/06/06 16:27:50 fuzzer started 2025/06/06 16:27:50 dialing manager at localhost:40003 syzkaller login: [ 105.616389] cgroup: Unknown subsys name 'net' [ 105.779957] cgroup: Unknown subsys name 'cpuset' [ 105.824194] cgroup: Unknown subsys name 'rlimit' 2025/06/06 16:28:14 syscalls: 2214 2025/06/06 16:28:14 code coverage: enabled 2025/06/06 16:28:14 comparison tracing: enabled 2025/06/06 16:28:14 extra coverage: enabled 2025/06/06 16:28:14 setuid sandbox: enabled 2025/06/06 16:28:14 namespace sandbox: enabled 2025/06/06 16:28:14 Android sandbox: enabled 2025/06/06 16:28:14 fault injection: enabled 2025/06/06 16:28:14 leak checking: enabled 2025/06/06 16:28:14 net packet injection: enabled 2025/06/06 16:28:14 net device setup: enabled 2025/06/06 16:28:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/06 16:28:14 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/06 16:28:14 USB emulation: enabled 2025/06/06 16:28:14 hci packet injection: enabled 2025/06/06 16:28:14 wifi device emulation: enabled 2025/06/06 16:28:14 802.15.4 emulation: enabled 2025/06/06 16:28:14 fetching corpus: 0, signal 0/0 (executing program) 2025/06/06 16:28:14 fetching corpus: 0, signal 0/0 (executing program) 2025/06/06 16:28:17 starting 8 fuzzer processes 16:28:17 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$BTRFS_IOC_WAIT_SYNC(r0, 0x40089416, 0x0) 16:28:17 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x40000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366ee578400080820000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610500000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f7366ee578400080820000200008000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="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", 0x120, 0x11000}, {&(0x7f0000010800)="2e20202020202020202020100057ea70325132510000ea7032510300000000002e2e202020202020202020100057ea70325132510000ea70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200057ea70325132510000ea70325104001a040000", 0x80, 0x15000}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x19000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0x1d000}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x25000}], 0x0, &(0x7f0000011000)) 16:28:17 executing program 2: waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x1950bf9a2b1ba788, 0x0) 16:28:17 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) close(r0) 16:28:17 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ppoll(&(0x7f0000000080)=[{r0}], 0x1, &(0x7f0000000140), 0x0, 0x0) 16:28:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) poll(&(0x7f00000018c0)=[{r0}], 0x1, 0x0) [ 131.845133] audit: type=1400 audit(1749227297.293:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:28:17 executing program 6: syz_emit_ethernet(0x86, &(0x7f0000000000)={@empty, @empty, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "650e6a", 0x4c, 0x2f, 0x0, @private0, @mcast2, {[@hopopts]}}}}}, 0x0) 16:28:17 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) getxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'user.', '9p\x00'}, 0x0, 0x0) [ 133.342492] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 133.342501] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 133.346253] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 133.348819] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 133.354981] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 133.360256] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 133.367109] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 133.376531] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 133.379965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 133.413642] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 133.429654] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 133.431770] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 133.437960] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 133.440680] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 133.445215] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 133.448743] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 133.454820] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 133.455236] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 133.464346] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 133.469285] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 133.470905] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 133.473050] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 133.476952] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 133.482697] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 133.490097] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 133.498025] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 133.517958] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 133.521718] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 133.528999] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 133.537954] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 133.541166] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 133.548326] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 133.548540] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 133.575243] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 133.596795] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 133.604975] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 133.609919] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 133.627016] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 133.642943] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 133.655953] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 135.472795] Bluetooth: hci1: command tx timeout [ 135.536970] Bluetooth: hci0: command tx timeout [ 135.537109] Bluetooth: hci5: command tx timeout [ 135.600757] Bluetooth: hci2: command tx timeout [ 135.600769] Bluetooth: hci4: command tx timeout [ 135.664540] Bluetooth: hci3: command tx timeout [ 135.664575] Bluetooth: hci6: command tx timeout [ 135.729458] Bluetooth: hci7: command tx timeout [ 137.520849] Bluetooth: hci1: command tx timeout [ 137.585101] Bluetooth: hci0: command tx timeout [ 137.586438] Bluetooth: hci5: command tx timeout [ 137.648616] Bluetooth: hci4: command tx timeout [ 137.649680] Bluetooth: hci2: command tx timeout [ 137.712595] Bluetooth: hci6: command tx timeout [ 137.715453] Bluetooth: hci3: command tx timeout [ 137.776518] Bluetooth: hci7: command tx timeout [ 139.568837] Bluetooth: hci1: command tx timeout [ 139.632766] Bluetooth: hci0: command tx timeout [ 139.632851] Bluetooth: hci5: command tx timeout [ 139.696531] Bluetooth: hci2: command tx timeout [ 139.696653] Bluetooth: hci4: command tx timeout [ 139.760703] Bluetooth: hci3: command tx timeout [ 139.760848] Bluetooth: hci6: command tx timeout [ 139.825550] Bluetooth: hci7: command tx timeout [ 141.616844] Bluetooth: hci1: command tx timeout [ 141.682823] Bluetooth: hci5: command tx timeout [ 141.683243] Bluetooth: hci0: command tx timeout [ 141.744476] Bluetooth: hci2: command tx timeout [ 141.745876] Bluetooth: hci4: command tx timeout [ 141.808675] Bluetooth: hci3: command tx timeout [ 141.808727] Bluetooth: hci6: command tx timeout [ 141.873492] Bluetooth: hci7: command tx timeout [ 193.311448] syz-executor.1 (282) used greatest stack depth: 25072 bytes left [ 193.412556] syz-executor.5 (284) used greatest stack depth: 24912 bytes left [ 195.845146] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 195.852107] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 195.861901] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 195.870114] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 195.877752] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 195.918957] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 195.924298] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 195.928919] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 195.936275] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 195.942143] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 196.061644] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 196.069971] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 196.073882] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 196.087113] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 196.100053] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 196.140537] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 196.160697] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 196.164179] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 196.212823] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 196.226867] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 196.242184] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 196.256162] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 196.256829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 196.266317] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 196.268530] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 196.280050] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 196.291396] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 196.295616] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 196.308480] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 196.312614] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 196.322990] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 196.329146] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 196.346843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 196.357012] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 196.372135] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 196.375493] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 196.387151] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 196.392238] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 196.416078] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 196.469271] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 197.938553] Bluetooth: hci0: command tx timeout [ 198.000698] Bluetooth: hci1: command tx timeout [ 198.193775] Bluetooth: hci2: command tx timeout [ 198.385507] Bluetooth: hci3: command tx timeout [ 198.448575] Bluetooth: hci6: command tx timeout [ 198.449359] Bluetooth: hci4: command tx timeout [ 198.512570] Bluetooth: hci7: command tx timeout [ 198.576747] Bluetooth: hci5: command tx timeout [ 199.984985] Bluetooth: hci0: command tx timeout [ 200.048792] Bluetooth: hci1: command tx timeout [ 200.240483] Bluetooth: hci2: command tx timeout [ 200.432510] Bluetooth: hci3: command tx timeout [ 200.496833] Bluetooth: hci4: command tx timeout [ 200.498544] Bluetooth: hci6: command tx timeout [ 200.560549] Bluetooth: hci7: command tx timeout [ 200.624582] Bluetooth: hci5: command tx timeout [ 202.032478] Bluetooth: hci0: command tx timeout [ 202.096489] Bluetooth: hci1: command tx timeout [ 202.288480] Bluetooth: hci2: command tx timeout [ 202.481648] Bluetooth: hci3: command tx timeout [ 202.544523] Bluetooth: hci6: command tx timeout [ 202.544974] Bluetooth: hci4: command tx timeout [ 202.608654] Bluetooth: hci7: command tx timeout [ 202.673526] Bluetooth: hci5: command tx timeout [ 204.080673] Bluetooth: hci0: command tx timeout [ 204.145438] Bluetooth: hci1: command tx timeout [ 204.336483] Bluetooth: hci2: command tx timeout [ 204.528550] Bluetooth: hci3: command tx timeout [ 204.592820] Bluetooth: hci4: command tx timeout [ 204.593302] Bluetooth: hci6: command tx timeout [ 204.656735] Bluetooth: hci7: command tx timeout [ 204.720671] Bluetooth: hci5: command tx timeout [ 258.117995] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 258.121050] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 258.124370] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 258.137390] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 258.145099] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 258.206237] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 258.211180] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 258.214969] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 258.224394] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 258.243117] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 258.305569] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 258.313010] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 258.326306] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 258.340666] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 258.359744] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 258.450760] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 258.471924] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 258.482025] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 258.484707] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 258.487705] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 258.492163] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 258.494517] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 258.494981] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 258.529328] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 258.529943] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 258.542081] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 258.544171] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 258.550688] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 258.551870] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 258.580780] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 258.601345] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 258.627721] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 258.656516] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 258.695726] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 258.704279] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 258.749908] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 258.764891] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 258.769012] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 258.784916] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 258.821907] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 260.209838] Bluetooth: hci0: command tx timeout [ 260.336689] Bluetooth: hci1: command tx timeout [ 260.400497] Bluetooth: hci2: command tx timeout [ 260.656704] Bluetooth: hci4: command tx timeout [ 260.657515] Bluetooth: hci3: command tx timeout [ 260.784507] Bluetooth: hci6: command tx timeout [ 260.785154] Bluetooth: hci5: command tx timeout [ 260.912506] Bluetooth: hci7: command tx timeout [ 262.258207] Bluetooth: hci0: command tx timeout [ 262.384658] Bluetooth: hci1: command tx timeout [ 262.448545] Bluetooth: hci2: command tx timeout [ 262.707450] Bluetooth: hci4: command tx timeout [ 262.707946] Bluetooth: hci3: command tx timeout [ 262.832505] Bluetooth: hci6: command tx timeout [ 262.832984] Bluetooth: hci5: command tx timeout [ 262.960631] Bluetooth: hci7: command tx timeout [ 264.306085] Bluetooth: hci0: command tx timeout [ 264.432496] Bluetooth: hci1: command tx timeout [ 264.496652] Bluetooth: hci2: command tx timeout [ 264.753783] Bluetooth: hci3: command tx timeout [ 264.754276] Bluetooth: hci4: command tx timeout [ 264.881479] Bluetooth: hci5: command tx timeout [ 264.882005] Bluetooth: hci6: command tx timeout [ 265.009714] Bluetooth: hci7: command tx timeout [ 266.354560] Bluetooth: hci0: command tx timeout [ 266.481472] Bluetooth: hci1: command tx timeout [ 266.545619] Bluetooth: hci2: command tx timeout [ 266.801863] Bluetooth: hci4: command tx timeout [ 266.802348] Bluetooth: hci3: command tx timeout [ 266.929558] Bluetooth: hci6: command tx timeout [ 266.930035] Bluetooth: hci5: command tx timeout [ 267.057233] Bluetooth: hci7: command tx timeout [ 320.391136] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 320.397072] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 320.403049] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 320.419960] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 320.427039] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 320.541520] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 320.545069] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 320.547789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 320.553343] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 320.559130] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 320.585268] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 320.588536] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 320.597160] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 320.607275] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 320.615304] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 320.716513] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 320.726146] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 320.759668] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 320.806552] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 320.812739] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 320.815194] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 320.819927] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 320.823063] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 320.828824] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 320.842374] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 320.846976] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 320.849319] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 320.852247] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 320.852347] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 320.858719] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 320.868867] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 320.876954] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 320.880002] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 320.901743] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 320.905111] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 320.912888] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 320.938872] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 320.963257] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 320.991321] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 320.999931] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 322.480732] Bluetooth: hci0: command tx timeout [ 322.608847] Bluetooth: hci1: command tx timeout [ 322.672507] Bluetooth: hci2: command tx timeout [ 322.929093] Bluetooth: hci3: command tx timeout [ 322.930477] Bluetooth: hci4: command tx timeout [ 322.992805] Bluetooth: hci7: command tx timeout [ 322.994067] Bluetooth: hci5: command tx timeout [ 323.056658] Bluetooth: hci6: command tx timeout [ 324.528682] Bluetooth: hci0: command tx timeout [ 324.656528] Bluetooth: hci1: command tx timeout [ 324.720504] Bluetooth: hci2: command tx timeout [ 324.976507] Bluetooth: hci4: command tx timeout [ 324.976629] Bluetooth: hci3: command tx timeout [ 325.040502] Bluetooth: hci5: command tx timeout [ 325.040748] Bluetooth: hci7: command tx timeout [ 325.105699] Bluetooth: hci6: command tx timeout [ 326.576993] Bluetooth: hci0: command tx timeout [ 326.704763] Bluetooth: hci1: command tx timeout [ 326.769875] Bluetooth: hci2: command tx timeout [ 327.025509] Bluetooth: hci3: command tx timeout [ 327.025550] Bluetooth: hci4: command tx timeout [ 327.088754] Bluetooth: hci7: command tx timeout [ 327.090248] Bluetooth: hci5: command tx timeout [ 327.152477] Bluetooth: hci6: command tx timeout [ 328.624621] Bluetooth: hci0: command tx timeout [ 328.752694] Bluetooth: hci1: command tx timeout [ 328.816634] Bluetooth: hci2: command tx timeout [ 329.072703] Bluetooth: hci3: command tx timeout [ 329.075642] Bluetooth: hci4: command tx timeout [ 329.137726] Bluetooth: hci5: command tx timeout [ 329.138166] Bluetooth: hci7: command tx timeout [ 329.200495] Bluetooth: hci6: command tx timeout [ 381.250439] syz-executor.1 (8188) used greatest stack depth: 24544 bytes left [ 383.235598] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 383.240368] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 383.245778] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 383.257089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 383.263641] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 383.499189] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 383.507158] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 383.511608] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 383.527813] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 383.537456] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 383.583042] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 383.588728] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 383.597885] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 383.624885] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 383.634797] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 383.739938] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 383.753876] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 383.757321] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 383.759376] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 383.761569] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 383.764003] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 383.766090] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 383.767947] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 383.770008] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 383.772356] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 383.773052] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 383.808614] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 383.814186] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 383.834861] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 383.847387] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 383.855858] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 383.860194] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 383.862652] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 383.885019] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 383.896988] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 384.055905] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 384.106647] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 384.123991] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 384.157915] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 384.188257] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 385.328521] Bluetooth: hci0: command tx timeout [ 385.648524] Bluetooth: hci1: command tx timeout [ 385.712790] Bluetooth: hci2: command tx timeout [ 385.968654] Bluetooth: hci5: command tx timeout [ 386.033642] Bluetooth: hci6: command tx timeout [ 386.096671] Bluetooth: hci4: command tx timeout [ 386.160745] Bluetooth: hci3: command tx timeout [ 386.480756] Bluetooth: hci7: command tx timeout [ 387.376499] Bluetooth: hci0: command tx timeout [ 387.696556] Bluetooth: hci1: command tx timeout [ 387.760516] Bluetooth: hci2: command tx timeout [ 388.017794] Bluetooth: hci5: command tx timeout [ 388.080751] Bluetooth: hci6: command tx timeout [ 388.144696] Bluetooth: hci4: command tx timeout [ 388.209490] Bluetooth: hci3: command tx timeout [ 388.528500] Bluetooth: hci7: command tx timeout [ 389.424682] Bluetooth: hci0: command tx timeout [ 389.744473] Bluetooth: hci1: command tx timeout [ 389.809521] Bluetooth: hci2: command tx timeout [ 390.064519] Bluetooth: hci5: command tx timeout [ 390.128606] Bluetooth: hci6: command tx timeout [ 390.192520] Bluetooth: hci4: command tx timeout [ 390.256658] Bluetooth: hci3: command tx timeout [ 390.576481] Bluetooth: hci7: command tx timeout [ 391.472720] Bluetooth: hci0: command tx timeout [ 391.792623] Bluetooth: hci1: command tx timeout [ 391.856511] Bluetooth: hci2: command tx timeout [ 392.112532] Bluetooth: hci5: command tx timeout [ 392.176526] Bluetooth: hci6: command tx timeout [ 392.240525] Bluetooth: hci4: command tx timeout [ 392.304524] Bluetooth: hci3: command tx timeout [ 392.624491] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 16:33:18 Registers: info registers vcpu 0 RAX=b2dfabd06a46bb00 RBX=ffff88802e785280 RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff85c1cbc0 RBP=ffffffff85c1cbc0 RSP=ffff88806ce08858 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=00000000000232fe R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=0000000000000200 RIP=ffffffff81518de6 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055557762b400 00000000 00000000 GS =0000 ffff8880e561b000 00000000 00000000 LDT=0000 fffffe1600000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0b6fb0b710 CR3=0000000032a3f000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000000000ff000000000000ff000000 XMM02=0000000000ff00000000000000000000 XMM03=0000000000ff00000000000000000000 XMM04=000000ff000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000010000 RBX=1ffff1100d9e11a5 RCX=ffffffff814b02fc RDX=ffff88802d2c0000 RSI=ffffffff8164782a RDI=ffffffff87852948 RBP=ffff88802d2c0000 RSP=ffff88806cf08d20 R8 =0000000000000000 R9 =fffffbfff0f0a529 R10=ffffffff8785294b R11=0000000000000001 R12=dffffc0000000000 R13=0000000000000000 R14=ffff88806cf289c0 R15=0000000000000000 RIP=ffffffff8164782a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e571b000 00000000 00000000 LDT=0000 fffffe2300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f43c5f7b438 CR3=000000002cc52000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff0000000000000000000000ff0000 XMM01=4700352e322e325f4342494c4700362e XMM02=ff00ffffffffffffffffffffff000000 XMM03=000000000000000000312e325f434249 XMM04=494c470037312e325f4342494c470036 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000