Warning: Permanently added '[localhost]:36942' (ECDSA) to the list of known hosts. 2025/06/13 16:32:08 fuzzer started 2025/06/13 16:32:08 dialing manager at localhost:42061 syzkaller login: [ 101.180007] cgroup: Unknown subsys name 'net' [ 101.335693] cgroup: Unknown subsys name 'cpuset' [ 101.382675] cgroup: Unknown subsys name 'rlimit' 2025/06/13 16:32:26 syscalls: 2214 2025/06/13 16:32:26 code coverage: enabled 2025/06/13 16:32:26 comparison tracing: enabled 2025/06/13 16:32:26 extra coverage: enabled 2025/06/13 16:32:26 setuid sandbox: enabled 2025/06/13 16:32:26 namespace sandbox: enabled 2025/06/13 16:32:26 Android sandbox: enabled 2025/06/13 16:32:26 fault injection: enabled 2025/06/13 16:32:26 leak checking: enabled 2025/06/13 16:32:26 net packet injection: enabled 2025/06/13 16:32:26 net device setup: enabled 2025/06/13 16:32:26 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/13 16:32:26 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/13 16:32:26 USB emulation: enabled 2025/06/13 16:32:26 hci packet injection: enabled 2025/06/13 16:32:26 wifi device emulation: enabled 2025/06/13 16:32:26 802.15.4 emulation: enabled 2025/06/13 16:32:26 fetching corpus: 0, signal 0/0 (executing program) 2025/06/13 16:32:26 fetching corpus: 0, signal 0/0 (executing program) 2025/06/13 16:32:28 starting 8 fuzzer processes 16:32:28 executing program 0: r0 = memfd_create(&(0x7f0000000140)='/dev/nvram\x00', 0x0) pwritev2(r0, &(0x7f00000014c0)=[{0x0}, {&(0x7f0000001400)="c8", 0x1}], 0x2, 0x0, 0x0, 0x0) 16:32:28 executing program 1: unlink(0x0) 16:32:28 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSETLED(r0, 0x4b32, 0x0) [ 120.968627] audit: type=1400 audit(1749832348.799:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:32:28 executing program 4: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0x401070c9, 0x0) 16:32:28 executing program 5: fremovexattr(0xffffffffffffffff, 0x0) 16:32:28 executing program 3: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) fsetxattr$security_evm(r0, &(0x7f00000003c0), 0x0, 0x0, 0x3) 16:32:28 executing program 6: prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) 16:32:28 executing program 7: rt_sigtimedwait(&(0x7f0000001600), 0x0, &(0x7f00000016c0)={0x0, 0x989680}, 0x8) [ 122.252056] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 122.258361] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 122.262212] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 122.268696] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 122.272897] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 122.419940] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 122.428532] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 122.432179] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 122.437167] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 122.439137] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 122.442950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 122.448080] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 122.448872] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 122.449950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 122.454847] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 122.456110] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 122.489685] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 122.491715] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 122.494036] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 122.500077] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 122.509191] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 122.510540] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 122.513707] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 122.527442] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 122.532000] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 122.557756] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 122.574839] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 122.582124] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 122.586275] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 122.588639] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 122.590616] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 122.593099] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 122.595652] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 122.602032] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 122.604858] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 122.604945] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 122.606465] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 122.613145] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 122.621089] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 122.622892] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 124.328041] Bluetooth: hci0: command tx timeout [ 124.519332] Bluetooth: hci3: command tx timeout [ 124.519951] Bluetooth: hci1: command tx timeout [ 124.583360] Bluetooth: hci4: command tx timeout [ 124.584339] Bluetooth: hci2: command tx timeout [ 124.652390] Bluetooth: hci5: command tx timeout [ 124.711795] Bluetooth: hci6: command tx timeout [ 124.712514] Bluetooth: hci7: command tx timeout [ 126.375323] Bluetooth: hci0: command tx timeout [ 126.568493] Bluetooth: hci3: command tx timeout [ 126.568970] Bluetooth: hci1: command tx timeout [ 126.631415] Bluetooth: hci2: command tx timeout [ 126.631847] Bluetooth: hci4: command tx timeout [ 126.695361] Bluetooth: hci5: command tx timeout [ 126.759318] Bluetooth: hci7: command tx timeout [ 126.759745] Bluetooth: hci6: command tx timeout [ 128.423326] Bluetooth: hci0: command tx timeout [ 128.615731] Bluetooth: hci1: command tx timeout [ 128.616189] Bluetooth: hci3: command tx timeout [ 128.679556] Bluetooth: hci4: command tx timeout [ 128.679984] Bluetooth: hci2: command tx timeout [ 128.744261] Bluetooth: hci5: command tx timeout [ 128.807334] Bluetooth: hci6: command tx timeout [ 128.807755] Bluetooth: hci7: command tx timeout [ 130.471431] Bluetooth: hci0: command tx timeout [ 130.663360] Bluetooth: hci1: command tx timeout [ 130.663806] Bluetooth: hci3: command tx timeout [ 130.727767] Bluetooth: hci2: command tx timeout [ 130.728198] Bluetooth: hci4: command tx timeout [ 130.792266] Bluetooth: hci5: command tx timeout [ 130.856950] Bluetooth: hci7: command tx timeout [ 130.857776] Bluetooth: hci6: command tx timeout [ 182.527335] syz-executor.1 (289) used greatest stack depth: 24784 bytes left [ 184.889372] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 184.892988] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 184.895764] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 184.904324] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 184.908821] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 185.023404] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 185.026439] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 185.028983] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 185.037100] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 185.042177] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 185.083198] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 185.088931] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 185.098456] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 185.105058] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 185.110886] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 185.131564] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 185.139549] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 185.148893] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 185.177411] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 185.183628] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 185.244756] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 185.249467] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 185.255405] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 185.256264] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 185.264921] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 185.267256] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 185.272632] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 185.277666] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 185.291070] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 185.300053] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 185.301455] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 185.309192] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 185.313719] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 185.339941] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 185.355827] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 185.368635] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 185.369949] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 185.397954] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 185.401801] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 185.409175] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 186.984310] Bluetooth: hci0: command tx timeout [ 187.111830] Bluetooth: hci1: command tx timeout [ 187.176553] Bluetooth: hci2: command tx timeout [ 187.240272] Bluetooth: hci3: command tx timeout [ 187.431368] Bluetooth: hci4: command tx timeout [ 187.431411] Bluetooth: hci6: command tx timeout [ 187.432154] Bluetooth: hci5: command tx timeout [ 187.495516] Bluetooth: hci7: command tx timeout [ 189.032599] Bluetooth: hci0: command tx timeout [ 189.159558] Bluetooth: hci1: command tx timeout [ 189.223324] Bluetooth: hci2: command tx timeout [ 189.288518] Bluetooth: hci3: command tx timeout [ 189.481288] Bluetooth: hci6: command tx timeout [ 189.481336] Bluetooth: hci4: command tx timeout [ 189.481763] Bluetooth: hci5: command tx timeout [ 189.544487] Bluetooth: hci7: command tx timeout [ 191.079733] Bluetooth: hci0: command tx timeout [ 191.209444] Bluetooth: hci1: command tx timeout [ 191.271362] Bluetooth: hci2: command tx timeout [ 191.335340] Bluetooth: hci3: command tx timeout [ 191.527466] Bluetooth: hci6: command tx timeout [ 191.527923] Bluetooth: hci5: command tx timeout [ 191.529286] Bluetooth: hci4: command tx timeout [ 191.591316] Bluetooth: hci7: command tx timeout [ 193.127325] Bluetooth: hci0: command tx timeout [ 193.255296] Bluetooth: hci1: command tx timeout [ 193.320200] Bluetooth: hci2: command tx timeout [ 193.383311] Bluetooth: hci3: command tx timeout [ 193.575345] Bluetooth: hci4: command tx timeout [ 193.575805] Bluetooth: hci5: command tx timeout [ 193.576266] Bluetooth: hci6: command tx timeout [ 193.639281] Bluetooth: hci7: command tx timeout [ 247.485500] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 247.499784] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 247.504599] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 247.515040] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 247.524032] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 247.630532] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 247.639761] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 247.642796] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 247.655486] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 247.660828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 247.710448] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 247.717753] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 247.725338] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 247.732814] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 247.736695] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 247.906608] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 247.923837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 247.932846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 247.959912] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 247.966880] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 247.991195] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 248.010025] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 248.024950] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 248.030866] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 248.040902] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 248.046995] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 248.049019] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 248.053001] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 248.054936] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 248.069842] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 248.073529] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 248.093975] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 248.109751] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 248.111929] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 248.121183] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 248.148721] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 248.152071] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 248.162168] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 248.166717] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 248.175676] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 249.575392] Bluetooth: hci0: command tx timeout [ 249.703373] Bluetooth: hci1: command tx timeout [ 249.767650] Bluetooth: hci2: command tx timeout [ 250.151555] Bluetooth: hci3: command tx timeout [ 250.151732] Bluetooth: hci4: command tx timeout [ 250.215365] Bluetooth: hci7: command tx timeout [ 250.279369] Bluetooth: hci5: command tx timeout [ 250.279404] Bluetooth: hci6: command tx timeout [ 251.623520] Bluetooth: hci0: command tx timeout [ 251.752509] Bluetooth: hci1: command tx timeout [ 251.816293] Bluetooth: hci2: command tx timeout [ 252.201312] Bluetooth: hci4: command tx timeout [ 252.201781] Bluetooth: hci3: command tx timeout [ 252.263522] Bluetooth: hci7: command tx timeout [ 252.327420] Bluetooth: hci6: command tx timeout [ 252.327454] Bluetooth: hci5: command tx timeout [ 253.672608] Bluetooth: hci0: command tx timeout [ 253.800308] Bluetooth: hci1: command tx timeout [ 253.863490] Bluetooth: hci2: command tx timeout [ 254.247471] Bluetooth: hci3: command tx timeout [ 254.247585] Bluetooth: hci4: command tx timeout [ 254.311356] Bluetooth: hci7: command tx timeout [ 254.376297] Bluetooth: hci5: command tx timeout [ 254.376334] Bluetooth: hci6: command tx timeout [ 255.719295] Bluetooth: hci0: command tx timeout [ 255.848436] Bluetooth: hci1: command tx timeout [ 255.912569] Bluetooth: hci2: command tx timeout [ 256.296074] Bluetooth: hci4: command tx timeout [ 256.296591] Bluetooth: hci3: command tx timeout [ 256.359832] Bluetooth: hci7: command tx timeout [ 256.425379] Bluetooth: hci5: command tx timeout [ 256.425801] Bluetooth: hci6: command tx timeout [ 309.946641] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 309.949010] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 309.956983] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 309.971268] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 309.976422] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 310.203394] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 310.210406] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 310.215815] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 310.232779] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 310.234766] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 310.238770] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 310.241265] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 310.242901] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 310.259921] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 310.267556] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 310.270079] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 310.288865] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 310.306989] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 310.330940] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 310.341992] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 310.396245] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 310.419721] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 310.434658] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 310.439896] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 310.447326] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 310.450685] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 310.452195] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 310.454466] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 310.460605] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 310.460739] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 310.478616] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 310.482977] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 310.486967] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 310.490939] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 310.505924] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 310.651305] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 310.683466] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 310.738916] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 310.786323] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 310.818482] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 312.040462] Bluetooth: hci0: command tx timeout [ 312.359480] Bluetooth: hci2: command tx timeout [ 312.359601] Bluetooth: hci1: command tx timeout [ 312.423305] Bluetooth: hci3: command tx timeout [ 312.551545] Bluetooth: hci4: command tx timeout [ 312.807582] Bluetooth: hci6: command tx timeout [ 312.807600] Bluetooth: hci5: command tx timeout [ 312.936464] Bluetooth: hci7: command tx timeout [ 314.088843] Bluetooth: hci0: command tx timeout [ 314.408306] Bluetooth: hci2: command tx timeout [ 314.408802] Bluetooth: hci1: command tx timeout [ 314.471902] Bluetooth: hci3: command tx timeout [ 314.599398] Bluetooth: hci4: command tx timeout [ 314.855505] Bluetooth: hci6: command tx timeout [ 314.856298] Bluetooth: hci5: command tx timeout [ 314.984403] Bluetooth: hci7: command tx timeout [ 316.135665] Bluetooth: hci0: command tx timeout [ 316.455322] Bluetooth: hci1: command tx timeout [ 316.456462] Bluetooth: hci2: command tx timeout [ 316.519279] Bluetooth: hci3: command tx timeout [ 316.647303] Bluetooth: hci4: command tx timeout [ 316.903328] Bluetooth: hci5: command tx timeout [ 316.903354] Bluetooth: hci6: command tx timeout [ 317.032583] Bluetooth: hci7: command tx timeout [ 318.183292] Bluetooth: hci0: command tx timeout [ 318.503324] Bluetooth: hci2: command tx timeout [ 318.503431] Bluetooth: hci1: command tx timeout [ 318.567326] Bluetooth: hci3: command tx timeout [ 318.695634] Bluetooth: hci4: command tx timeout [ 318.951577] Bluetooth: hci5: command tx timeout [ 318.952729] Bluetooth: hci6: command tx timeout [ 319.080330] Bluetooth: hci7: command tx timeout [ 370.225169] syz-executor.4 (8080) used greatest stack depth: 24544 bytes left [ 372.279069] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 372.282727] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 372.286138] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 372.296557] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 372.302120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 372.427820] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 372.433776] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 372.439173] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 372.449957] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 372.463744] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 372.618809] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 372.628828] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 372.632788] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 372.642189] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 372.651052] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 372.708781] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 372.735113] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 372.746744] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 372.769826] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 372.772161] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 372.782886] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 372.785529] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 372.787804] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 372.791100] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 372.800761] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 372.802772] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 372.805194] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 372.810918] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 372.813689] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 372.817294] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 372.819748] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 372.822855] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 372.846423] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 372.850740] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 372.885517] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 372.993557] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 373.016673] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 373.023821] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 373.033670] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 373.041751] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 374.375399] Bluetooth: hci0: command tx timeout [ 374.567673] Bluetooth: hci1: command tx timeout [ 374.695306] Bluetooth: hci2: command tx timeout [ 374.951304] Bluetooth: hci5: command tx timeout [ 374.951423] Bluetooth: hci3: command tx timeout [ 374.952090] Bluetooth: hci6: command tx timeout [ 375.015509] Bluetooth: hci4: command tx timeout [ 375.144346] Bluetooth: hci7: command tx timeout [ 376.426269] Bluetooth: hci0: command tx timeout [ 376.616291] Bluetooth: hci1: command tx timeout [ 376.744276] Bluetooth: hci2: command tx timeout [ 376.999356] Bluetooth: hci6: command tx timeout [ 376.999855] Bluetooth: hci3: command tx timeout [ 376.999884] Bluetooth: hci5: command tx timeout [ 377.064436] Bluetooth: hci4: command tx timeout [ 377.192325] Bluetooth: hci7: command tx timeout [ 378.473284] Bluetooth: hci0: command tx timeout [ 378.663530] Bluetooth: hci1: command tx timeout [ 378.792435] Bluetooth: hci2: command tx timeout [ 379.048349] Bluetooth: hci5: command tx timeout [ 379.048592] Bluetooth: hci6: command tx timeout [ 379.048779] Bluetooth: hci3: command tx timeout [ 379.111596] Bluetooth: hci4: command tx timeout [ 379.239492] Bluetooth: hci7: command tx timeout [ 380.520507] Bluetooth: hci0: command tx timeout [ 380.711873] Bluetooth: hci1: command tx timeout [ 380.839489] Bluetooth: hci2: command tx timeout [ 381.096482] Bluetooth: hci3: command tx timeout [ 381.096956] Bluetooth: hci5: command tx timeout [ 381.097269] Bluetooth: hci6: command tx timeout [ 381.160272] Bluetooth: hci4: command tx timeout [ 381.287690] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 16:37:36 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88803781f720 RCX=ffff888037820000 RDX=ffff88803781f688 RSI=0000000000000001 RDI=ffff88803781f638 RBP=ffff888033751b80 RSP=ffff88803781f638 R8 =0000000000000000 R9 =0000000000000000 R10=ffff88803781f688 R11=0000000000000000 R12=ffff88803781f6a8 R13=ffff88803781f6b0 R14=ffff88803781f6d0 R15=ffff88803781f688 RIP=ffffffff8135665c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e562f000 00000000 00000000 LDT=0000 fffffe2300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7e6f8f2000 CR3=0000000029ad0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff00000000000000000000000000ff XMM01=ff00ffffffffffffffffffffffffff00 XMM02=315f315f4c53534e45504f00315f315f XMM03=00000000000000775f4d4550006e7073 XMM04=69625f646165725f4d45500065746972 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff888029a1fab8 RCX=ffff888029a1f934 RDX=0000000000000000 RSI=ffffffff81a5b717 RDI=ffff88806cf31850 RBP=ffffffff85cf5e60 RSP=ffff888029a1f928 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffffff81a5b717 R13=ffff888029a1fad4 R14=ffff888029a1fa88 R15=ffff888029a1fac0 RIP=ffffffff8151ad69 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f842a7e0540 00000000 00000000 GS =0000 ffff8880e572f000 00000000 00000000 LDT=0000 fffffe7c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f842aca1008 CR3=000000002ddd4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff00ffffffffffffffffffffff00ff XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000