Warning: Permanently added '[localhost]:27917' (ECDSA) to the list of known hosts. 2025/06/11 15:42:27 fuzzer started 2025/06/11 15:42:27 dialing manager at localhost:45945 syzkaller login: [ 94.057836] cgroup: Unknown subsys name 'net' [ 94.196596] cgroup: Unknown subsys name 'cpuset' [ 94.246892] cgroup: Unknown subsys name 'rlimit' 2025/06/11 15:42:45 syscalls: 2214 2025/06/11 15:42:45 code coverage: enabled 2025/06/11 15:42:45 comparison tracing: enabled 2025/06/11 15:42:45 extra coverage: enabled 2025/06/11 15:42:45 setuid sandbox: enabled 2025/06/11 15:42:45 namespace sandbox: enabled 2025/06/11 15:42:45 Android sandbox: enabled 2025/06/11 15:42:45 fault injection: enabled 2025/06/11 15:42:45 leak checking: enabled 2025/06/11 15:42:45 net packet injection: enabled 2025/06/11 15:42:45 net device setup: enabled 2025/06/11 15:42:45 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/11 15:42:45 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/11 15:42:45 USB emulation: enabled 2025/06/11 15:42:45 hci packet injection: enabled 2025/06/11 15:42:45 wifi device emulation: enabled 2025/06/11 15:42:45 802.15.4 emulation: enabled 2025/06/11 15:42:45 fetching corpus: 0, signal 0/0 (executing program) 2025/06/11 15:42:45 fetching corpus: 0, signal 0/0 (executing program) 2025/06/11 15:42:47 starting 8 fuzzer processes 15:42:47 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f8000020004000000000000000001901", 0x25}, {0x0, 0x0, 0x9e0}], 0x0, &(0x7f0000011000)) 15:42:47 executing program 1: syz_mount_image$msdos(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={[{@nodots}, {@fat=@tz_utc}, {@fat=@usefree}, {@fat=@uid={'uid', 0x3d, 0xffffffffffffffff}}]}) 15:42:47 executing program 2: openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x28182, 0x0) [ 113.885373] audit: type=1400 audit(1749656567.754:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:42:47 executing program 3: mount_setattr(0xffffffffffffffff, 0x0, 0x1800, &(0x7f0000001800)={0x0, 0xb}, 0x20) 15:42:47 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$sock(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000080)='4', 0x1}], 0x1, &(0x7f0000000280)=[@timestamping={{0x14}}, @mark={{0x14}}], 0x30}, 0x0) 15:42:47 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) accept4$inet6(r0, 0x0, 0x0, 0x180c00) 15:42:47 executing program 6: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) getsockname$unix(r0, 0x0, &(0x7f0000001480)) 15:42:47 executing program 7: clone3(&(0x7f0000000340)={0xa084180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 115.351179] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 115.355564] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 115.361097] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 115.367375] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 115.373624] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 115.420532] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 115.423625] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 115.429241] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 115.439523] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 115.449275] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 115.468651] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 115.474815] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 115.479029] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 115.488516] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 115.493198] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 115.548723] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 115.555629] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 115.561855] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 115.566328] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 115.567307] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 115.568973] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 115.578253] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 115.589467] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 115.591507] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 115.595529] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 115.599159] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 115.609242] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 115.609280] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 115.613473] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 115.616743] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 115.619196] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 115.632073] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 115.640461] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 115.640686] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 115.644973] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 115.654959] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 115.661419] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 115.683507] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 115.691293] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 115.698583] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 117.434541] Bluetooth: hci0: command tx timeout [ 117.497928] Bluetooth: hci1: command tx timeout [ 117.562816] Bluetooth: hci2: command tx timeout [ 117.689939] Bluetooth: hci4: command tx timeout [ 117.690907] Bluetooth: hci5: command tx timeout [ 117.754839] Bluetooth: hci3: command tx timeout [ 117.755465] Bluetooth: hci7: command tx timeout [ 117.819871] Bluetooth: hci6: command tx timeout [ 119.481945] Bluetooth: hci0: command tx timeout [ 119.545989] Bluetooth: hci1: command tx timeout [ 119.610124] Bluetooth: hci2: command tx timeout [ 119.737902] Bluetooth: hci5: command tx timeout [ 119.738390] Bluetooth: hci4: command tx timeout [ 119.801872] Bluetooth: hci7: command tx timeout [ 119.802340] Bluetooth: hci3: command tx timeout [ 119.865853] Bluetooth: hci6: command tx timeout [ 121.531038] Bluetooth: hci0: command tx timeout [ 121.593837] Bluetooth: hci1: command tx timeout [ 121.657925] Bluetooth: hci2: command tx timeout [ 121.785963] Bluetooth: hci4: command tx timeout [ 121.786425] Bluetooth: hci5: command tx timeout [ 121.849968] Bluetooth: hci7: command tx timeout [ 121.850419] Bluetooth: hci3: command tx timeout [ 121.913881] Bluetooth: hci6: command tx timeout [ 123.578180] Bluetooth: hci0: command tx timeout [ 123.642112] Bluetooth: hci1: command tx timeout [ 123.705977] Bluetooth: hci2: command tx timeout [ 123.835029] Bluetooth: hci5: command tx timeout [ 123.835798] Bluetooth: hci4: command tx timeout [ 123.898893] Bluetooth: hci3: command tx timeout [ 123.899335] Bluetooth: hci7: command tx timeout [ 123.962079] Bluetooth: hci6: command tx timeout [ 176.050008] syz-executor.6 (286) used greatest stack depth: 24912 bytes left [ 176.185837] syz-executor.2 (285) used greatest stack depth: 24576 bytes left [ 178.250083] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 178.253481] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 178.258468] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 178.265127] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 178.269433] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 178.325165] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 178.331907] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 178.336698] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 178.349300] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 178.355150] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 178.465237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 178.472590] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 178.487620] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 178.512651] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 178.515113] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 178.519688] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 178.532596] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 178.532924] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 178.539597] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 178.543210] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 178.549386] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 178.550145] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 178.588122] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 178.590613] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 178.593492] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 178.595135] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 178.602028] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 178.603275] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 178.609694] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 178.617346] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 178.617418] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 178.619671] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 178.621655] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 178.629603] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 178.643154] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 178.652639] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 178.659082] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 178.669455] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 178.671324] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 178.687653] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 180.345857] Bluetooth: hci0: command tx timeout [ 180.411194] Bluetooth: hci1: command tx timeout [ 180.601945] Bluetooth: hci2: command tx timeout [ 180.665894] Bluetooth: hci3: command tx timeout [ 180.730886] Bluetooth: hci5: command tx timeout [ 180.794210] Bluetooth: hci7: command tx timeout [ 180.795438] Bluetooth: hci4: command tx timeout [ 180.796204] Bluetooth: hci6: command tx timeout [ 182.394219] Bluetooth: hci0: command tx timeout [ 182.458979] Bluetooth: hci1: command tx timeout [ 182.651015] Bluetooth: hci2: command tx timeout [ 182.713885] Bluetooth: hci3: command tx timeout [ 182.778083] Bluetooth: hci5: command tx timeout [ 182.841874] Bluetooth: hci7: command tx timeout [ 182.843088] Bluetooth: hci6: command tx timeout [ 182.843969] Bluetooth: hci4: command tx timeout [ 184.442788] Bluetooth: hci0: command tx timeout [ 184.507281] Bluetooth: hci1: command tx timeout [ 184.698991] Bluetooth: hci2: command tx timeout [ 184.762320] Bluetooth: hci3: command tx timeout [ 184.826085] Bluetooth: hci5: command tx timeout [ 184.890112] Bluetooth: hci4: command tx timeout [ 184.890145] Bluetooth: hci7: command tx timeout [ 184.891289] Bluetooth: hci6: command tx timeout [ 186.490858] Bluetooth: hci0: command tx timeout [ 186.554093] Bluetooth: hci1: command tx timeout [ 186.746800] Bluetooth: hci2: command tx timeout [ 186.809968] Bluetooth: hci3: command tx timeout [ 186.873993] Bluetooth: hci5: command tx timeout [ 186.938143] Bluetooth: hci7: command tx timeout [ 186.938606] Bluetooth: hci6: command tx timeout [ 186.938938] Bluetooth: hci4: command tx timeout [ 240.391333] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 240.393208] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 240.394795] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 240.398927] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 240.401252] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 240.528859] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 240.534305] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 240.538105] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 240.545416] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 240.549325] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 240.593294] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 240.599522] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 240.602016] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 240.604944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 240.611155] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 240.613299] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 240.619008] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 240.621029] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 240.632024] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 240.634909] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 240.694281] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 240.696733] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 240.698477] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 240.701407] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 240.703678] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 240.773245] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 240.791073] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 240.798547] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 240.802729] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 240.805426] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 240.824221] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 240.825492] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 240.828090] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 240.831080] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 240.834111] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 240.932816] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 241.009455] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 241.018153] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 241.104797] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 241.158203] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 242.490100] Bluetooth: hci0: command tx timeout [ 242.618187] Bluetooth: hci1: command tx timeout [ 242.681863] Bluetooth: hci3: command tx timeout [ 242.682508] Bluetooth: hci2: command tx timeout [ 242.746567] Bluetooth: hci4: command tx timeout [ 242.873898] Bluetooth: hci6: command tx timeout [ 242.874647] Bluetooth: hci5: command tx timeout [ 243.258069] Bluetooth: hci7: command tx timeout [ 244.537852] Bluetooth: hci0: command tx timeout [ 244.665979] Bluetooth: hci1: command tx timeout [ 244.732014] Bluetooth: hci3: command tx timeout [ 244.732468] Bluetooth: hci2: command tx timeout [ 244.794105] Bluetooth: hci4: command tx timeout [ 244.922108] Bluetooth: hci6: command tx timeout [ 244.922578] Bluetooth: hci5: command tx timeout [ 245.306429] Bluetooth: hci7: command tx timeout [ 246.586201] Bluetooth: hci0: command tx timeout [ 246.713855] Bluetooth: hci1: command tx timeout [ 246.777855] Bluetooth: hci2: command tx timeout [ 246.778298] Bluetooth: hci3: command tx timeout [ 246.841835] Bluetooth: hci4: command tx timeout [ 246.969872] Bluetooth: hci5: command tx timeout [ 246.970335] Bluetooth: hci6: command tx timeout [ 247.355107] Bluetooth: hci7: command tx timeout [ 248.635071] Bluetooth: hci0: command tx timeout [ 248.761867] Bluetooth: hci1: command tx timeout [ 248.825864] Bluetooth: hci3: command tx timeout [ 248.826311] Bluetooth: hci2: command tx timeout [ 248.889900] Bluetooth: hci4: command tx timeout [ 249.017906] Bluetooth: hci6: command tx timeout [ 249.018374] Bluetooth: hci5: command tx timeout [ 249.403015] Bluetooth: hci7: command tx timeout [ 302.860286] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 302.864588] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 302.867316] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 302.878232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 302.887301] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 302.956388] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 302.962456] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 302.967941] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 302.974290] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 302.977043] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 302.978565] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 302.987192] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 303.004005] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 303.022703] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 303.080550] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 303.132356] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 303.135594] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 303.139614] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 303.158439] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 303.193021] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 303.196307] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 303.239417] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 303.247553] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 303.271301] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 303.295835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 303.309655] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 303.316552] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 303.346046] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 303.394011] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 303.411049] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 303.431296] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 303.458306] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 303.461231] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 303.471327] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 303.483949] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 303.518443] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 303.552551] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 303.583740] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 303.616605] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 303.621728] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 304.953929] Bluetooth: hci0: command tx timeout [ 305.081998] Bluetooth: hci1: command tx timeout [ 305.145978] Bluetooth: hci2: command tx timeout [ 305.273958] Bluetooth: hci3: command tx timeout [ 305.404214] Bluetooth: hci4: command tx timeout [ 305.529882] Bluetooth: hci5: command tx timeout [ 305.657950] Bluetooth: hci6: command tx timeout [ 305.722593] Bluetooth: hci7: command tx timeout [ 307.003820] Bluetooth: hci0: command tx timeout [ 307.129928] Bluetooth: hci1: command tx timeout [ 307.194465] Bluetooth: hci2: command tx timeout [ 307.322326] Bluetooth: hci3: command tx timeout [ 307.449927] Bluetooth: hci4: command tx timeout [ 307.578837] Bluetooth: hci5: command tx timeout [ 307.705932] Bluetooth: hci6: command tx timeout [ 307.771211] Bluetooth: hci7: command tx timeout [ 309.050905] Bluetooth: hci0: command tx timeout [ 309.178710] Bluetooth: hci1: command tx timeout [ 309.242081] Bluetooth: hci2: command tx timeout [ 309.370284] Bluetooth: hci3: command tx timeout [ 309.498820] Bluetooth: hci4: command tx timeout [ 309.625993] Bluetooth: hci5: command tx timeout [ 309.754816] Bluetooth: hci6: command tx timeout [ 309.818358] Bluetooth: hci7: command tx timeout [ 311.100040] Bluetooth: hci0: command tx timeout [ 311.225865] Bluetooth: hci1: command tx timeout [ 311.291040] Bluetooth: hci2: command tx timeout [ 311.417842] Bluetooth: hci3: command tx timeout [ 311.547982] Bluetooth: hci4: command tx timeout [ 311.673897] Bluetooth: hci5: command tx timeout [ 311.802239] Bluetooth: hci6: command tx timeout [ 311.866463] Bluetooth: hci7: command tx timeout [ 363.024052] syz-executor.0 (7967) used greatest stack depth: 24544 bytes left [ 365.198915] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 365.206361] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 365.212340] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 365.221559] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 365.229876] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 365.586011] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 365.593113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 365.601311] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 365.625491] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 365.627445] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 365.632163] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 365.635202] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 365.637054] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 365.646341] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 365.652609] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 365.745671] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 365.755297] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 365.766386] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 365.768173] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 365.782732] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 365.792815] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 365.799519] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 365.802658] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 365.806248] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 365.812108] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 365.821252] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 365.821617] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 365.825607] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 365.825841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 365.829489] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 365.833458] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 365.837207] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 365.840611] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 365.847275] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 365.879274] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 365.883552] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 365.892475] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 365.898489] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 365.902311] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 365.905023] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 367.291493] Bluetooth: hci0: command tx timeout [ 367.738129] Bluetooth: hci1: command tx timeout [ 367.738954] Bluetooth: hci2: command tx timeout [ 367.930012] Bluetooth: hci3: command tx timeout [ 367.930185] Bluetooth: hci4: command tx timeout [ 367.994035] Bluetooth: hci7: command tx timeout [ 368.059552] Bluetooth: hci6: command tx timeout [ 368.122539] Bluetooth: hci5: command tx timeout [ 369.337837] Bluetooth: hci0: command tx timeout [ 369.785867] Bluetooth: hci2: command tx timeout [ 369.786340] Bluetooth: hci1: command tx timeout [ 369.977959] Bluetooth: hci4: command tx timeout [ 369.978081] Bluetooth: hci3: command tx timeout [ 370.041988] Bluetooth: hci7: command tx timeout [ 370.105809] Bluetooth: hci6: command tx timeout [ 370.170015] Bluetooth: hci5: command tx timeout [ 371.386049] Bluetooth: hci0: command tx timeout [ 371.834084] Bluetooth: hci1: command tx timeout [ 371.834553] Bluetooth: hci2: command tx timeout [ 372.025830] Bluetooth: hci3: command tx timeout [ 372.026401] Bluetooth: hci4: command tx timeout [ 372.090830] Bluetooth: hci7: command tx timeout [ 372.153822] Bluetooth: hci6: command tx timeout [ 372.218018] Bluetooth: hci5: command tx timeout [ 373.433895] Bluetooth: hci0: command tx timeout [ 373.881830] Bluetooth: hci1: command tx timeout [ 373.884026] Bluetooth: hci2: command tx timeout [ 374.073842] Bluetooth: hci4: command tx timeout [ 374.074310] Bluetooth: hci3: command tx timeout [ 374.137975] Bluetooth: hci7: command tx timeout [ 374.202972] Bluetooth: hci6: command tx timeout [ 374.267216] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 15:47:56 Registers: info registers vcpu 0 RAX=ffffc90000660000 RBX=ffff88800a5e8c40 RCX=1ffff110014bd27e RDX=1ffff110014bd1ce RSI=0000000000000004 RDI=ffff88800a5e93f0 RBP=1ffff11002d9ff62 RSP=ffff888016cffa98 R8 =0000000000000001 R9 =ffffed1002d9ff41 R10=0000000000000003 R11=0000000000000001 R12=ffff88800a5e8e58 R13=0000000000000000 R14=ffff88800a5e8000 R15=ffff88800a5e8c40 RIP=ffffffff83518220 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5630000 00000000 00000000 LDT=0000 fffffe7c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f476d1bc610 CR3=000000002f8aa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00362e6f732e6362696c2f756e672d78 XMM02=ffff0000000000ffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000 RSI=ffffffff81353d2d RDI=fffffbfff0b83978 RBP=ffffffff85c1cbc0 RSP=ffff888028f1edc8 R8 =0000000000000000 R9 =0000000000000000 R10=000000000003b4bd R11=00000000000227ce R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=ffff888028f1eeb0 RIP=ffffffff8151aff2 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5730000 00000000 00000000 LDT=0000 fffffe2c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc53585fa8 CR3=0000000033ddc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00000000000000000000ffffffffffff XMM02=00000000000000000000ffffffffffff XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000