Warning: Permanently added '[localhost]:45662' (ECDSA) to the list of known hosts. 2025/06/16 19:22:34 fuzzer started 2025/06/16 19:22:35 dialing manager at localhost:32817 syzkaller login: [ 98.536314] cgroup: Unknown subsys name 'net' [ 98.646606] cgroup: Unknown subsys name 'cpuset' [ 98.685193] cgroup: Unknown subsys name 'rlimit' 2025/06/16 19:22:52 syscalls: 2214 2025/06/16 19:22:52 code coverage: enabled 2025/06/16 19:22:52 comparison tracing: enabled 2025/06/16 19:22:52 extra coverage: enabled 2025/06/16 19:22:52 setuid sandbox: enabled 2025/06/16 19:22:52 namespace sandbox: enabled 2025/06/16 19:22:52 Android sandbox: enabled 2025/06/16 19:22:52 fault injection: enabled 2025/06/16 19:22:52 leak checking: enabled 2025/06/16 19:22:52 net packet injection: enabled 2025/06/16 19:22:52 net device setup: enabled 2025/06/16 19:22:52 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/16 19:22:52 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/16 19:22:52 USB emulation: enabled 2025/06/16 19:22:52 hci packet injection: enabled 2025/06/16 19:22:52 wifi device emulation: enabled 2025/06/16 19:22:52 802.15.4 emulation: enabled 2025/06/16 19:22:52 fetching corpus: 0, signal 0/0 (executing program) 2025/06/16 19:22:52 fetching corpus: 0, signal 0/0 (executing program) 2025/06/16 19:22:54 starting 8 fuzzer processes 19:22:54 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35393638303238373300"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000003bf48e55190e4cca80d5ddff88e7b6a1010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000d0fadacdd0fadacd00000000d7f4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000d7f4655fd7f4655fd7f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b7a4e9e000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000d7f4655fd7f4655fd7f4655f00000000000001000400000000000000010000002100000022000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009f52167000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000d7f4655fd7f4655fd7f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3539363830323837332f66696c65302f66696c6530000000000000000000000000000000000000000000008d6390c800000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004d37571e00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d7f4655fd7f4655fd7f4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b000000000000000000000000000000000000000000000000000000b964ab4600000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cc2ee83da00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900)) 19:22:54 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lremovexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='security.selinux\x00') 19:22:54 executing program 2: capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000180)={0x3f}) [ 118.106887] audit: type=1400 audit(1750101774.908:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:22:54 executing program 3: syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1, &(0x7f0000001300)=[{&(0x7f0000000080)="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", 0x120, 0x3}], 0x2000040, &(0x7f0000001380)={[{@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, 0xee00}}, {@mode={'mode', 0x3d, 0x42e3}}, {@huge_always}], [{@smackfsroot={'smackfsroot', 0x3d, '$'}}, {@subj_role={'subj_role', 0x3d, ']-'}}, {@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@obj_type}, {@smackfshat={'smackfshat', 0x3d, ']*%'}}]}) syz_mount_image$tmpfs(&(0x7f0000001740), &(0x7f0000001780)='./file0\x00', 0xfffffffffffffff9, 0x2, &(0x7f0000001900)=[{&(0x7f00000017c0)="3503fc4021d91193b34130d81aae3bfb80811889ce4be5bdeb19087e940dd387095cd44a18facaf4462a611dea4b7bbd18d60c2ac367d2c9b4723624f8e9eeb147e75f6c2478", 0x46, 0xffffffffffff8000}, {&(0x7f0000001840)="6f7bed572ed4ac95bd6792c1206ee6272f722aecb63a63633281bf546b92155bc0f370dffa5f906ead0ddea19887be9a93258d5db80f8b698ac5ab35d6f415bd9369e10d9ed88dc48a3232b822fcd44a17564ea95b984a079882bdc3d066ae6d53bc5e8c2fbc5cc4b302cfe8f126b1a3ab228b0d5b5285ef832a54b44179422da1406670b0ad081ac6b64761860e1ee3bc3d15fc1d3e3b", 0x97, 0xff}], 0x2010010, &(0x7f0000001940)={[{@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x2d]}}, {@mode}], [{@measure}, {@euid_eq}, {@obj_type={'obj_type', 0x3d, '$'}}, {@fowner_lt}, {@dont_hash}, {@permit_directio}]}) openat$vcs(0xffffffffffffff9c, &(0x7f0000001a80), 0x20040, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 19:22:54 executing program 4: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) mq_notify(r0, &(0x7f0000000200)) 19:22:54 executing program 5: lchown(0x0, 0xffffffffffffffff, 0xffffffffffffffff) 19:22:54 executing program 6: syz_mount_image$msdos(&(0x7f0000001480), &(0x7f00000014c0)='./file0\x00', 0x0, 0x0, 0x0, 0x3814004, &(0x7f0000001600)={[{@fat=@check_normal}]}) 19:22:55 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35333334383534323200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000dced220ba9804d58a8dffc387fa17f8a010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="20000000181166091811660900000000d7f4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000d8f4655fd8f4655fd8f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c65310000000000000000000000000000000000000000000000000000007782994400000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000d8f4655fd8f4655fd8f4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000567a372d00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3533333438353432322f66696c65302f66696c653000000000000000000000000000000000000000000000ae16d32f00000000000000000000000000000000000000000000000020000000181166091811660918116609d8f4655f181166090000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) [ 119.555855] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 119.557443] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 119.558870] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 119.563557] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 119.565769] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 119.629030] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 119.635599] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 119.639164] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 119.641483] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 119.644743] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 119.646756] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 119.652667] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 119.654497] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 119.656708] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 119.658515] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 119.661892] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 119.674257] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 119.679479] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 119.689541] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 119.692467] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 119.694921] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 119.707315] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 119.712449] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 119.743192] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 119.748381] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 119.750941] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 119.752387] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 119.759309] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 119.767638] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 119.769789] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 119.772145] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 119.775369] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 119.778700] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 119.813922] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 119.818335] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 119.827227] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 119.846485] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 119.879678] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 119.926554] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 119.972483] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 121.654484] Bluetooth: hci0: command tx timeout [ 121.717375] Bluetooth: hci3: command tx timeout [ 121.717463] Bluetooth: hci1: command tx timeout [ 121.781185] Bluetooth: hci2: command tx timeout [ 121.845430] Bluetooth: hci7: command tx timeout [ 121.909289] Bluetooth: hci5: command tx timeout [ 121.909316] Bluetooth: hci4: command tx timeout [ 122.101352] Bluetooth: hci6: command tx timeout [ 123.703292] Bluetooth: hci0: command tx timeout [ 123.765072] Bluetooth: hci3: command tx timeout [ 123.765109] Bluetooth: hci1: command tx timeout [ 123.829410] Bluetooth: hci2: command tx timeout [ 123.893135] Bluetooth: hci7: command tx timeout [ 123.958072] Bluetooth: hci5: command tx timeout [ 123.958497] Bluetooth: hci4: command tx timeout [ 124.149042] Bluetooth: hci6: command tx timeout [ 125.749304] Bluetooth: hci0: command tx timeout [ 125.813403] Bluetooth: hci1: command tx timeout [ 125.813588] Bluetooth: hci3: command tx timeout [ 125.877404] Bluetooth: hci2: command tx timeout [ 125.943089] Bluetooth: hci7: command tx timeout [ 126.005322] Bluetooth: hci4: command tx timeout [ 126.005772] Bluetooth: hci5: command tx timeout [ 126.199039] Bluetooth: hci6: command tx timeout [ 127.799045] Bluetooth: hci0: command tx timeout [ 127.861261] Bluetooth: hci1: command tx timeout [ 127.861863] Bluetooth: hci3: command tx timeout [ 127.925151] Bluetooth: hci2: command tx timeout [ 127.989346] Bluetooth: hci7: command tx timeout [ 128.053375] Bluetooth: hci4: command tx timeout [ 128.053585] Bluetooth: hci5: command tx timeout [ 128.246021] Bluetooth: hci6: command tx timeout [ 179.433204] syz-executor.0 (281) used greatest stack depth: 24832 bytes left [ 182.028934] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 182.035599] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 182.044129] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 182.052351] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 182.053665] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 182.055053] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 182.068709] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 182.072324] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 182.089884] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 182.092258] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 182.107889] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 182.109869] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 182.111444] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 182.118382] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 182.120887] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 182.151106] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 182.156394] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 182.161361] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 182.165803] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 182.167782] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 182.225476] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 182.237296] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 182.239961] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 182.268544] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 182.274397] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 182.275219] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 182.280214] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 182.281735] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 182.284428] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 182.286502] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 182.309219] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 182.321247] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 182.325428] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 182.331068] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 182.336702] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 182.370750] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 182.374448] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 182.382698] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 182.387561] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 182.407972] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 184.117327] Bluetooth: hci1: command tx timeout [ 184.118110] Bluetooth: hci0: command tx timeout [ 184.181345] Bluetooth: hci3: command tx timeout [ 184.184118] Bluetooth: hci2: command tx timeout [ 184.312069] Bluetooth: hci5: command tx timeout [ 184.373169] Bluetooth: hci4: command tx timeout [ 184.502118] Bluetooth: hci7: command tx timeout [ 184.502902] Bluetooth: hci6: command tx timeout [ 186.165347] Bluetooth: hci0: command tx timeout [ 186.165822] Bluetooth: hci1: command tx timeout [ 186.229149] Bluetooth: hci2: command tx timeout [ 186.229603] Bluetooth: hci3: command tx timeout [ 186.357101] Bluetooth: hci5: command tx timeout [ 186.421064] Bluetooth: hci4: command tx timeout [ 186.549423] Bluetooth: hci6: command tx timeout [ 186.549903] Bluetooth: hci7: command tx timeout [ 188.213365] Bluetooth: hci1: command tx timeout [ 188.213852] Bluetooth: hci0: command tx timeout [ 188.277596] Bluetooth: hci2: command tx timeout [ 188.278085] Bluetooth: hci3: command tx timeout [ 188.406289] Bluetooth: hci5: command tx timeout [ 188.469291] Bluetooth: hci4: command tx timeout [ 188.597093] Bluetooth: hci6: command tx timeout [ 188.597570] Bluetooth: hci7: command tx timeout [ 190.262177] Bluetooth: hci0: command tx timeout [ 190.262644] Bluetooth: hci1: command tx timeout [ 190.325245] Bluetooth: hci3: command tx timeout [ 190.325509] Bluetooth: hci2: command tx timeout [ 190.453085] Bluetooth: hci5: command tx timeout [ 190.517201] Bluetooth: hci4: command tx timeout [ 190.645095] Bluetooth: hci7: command tx timeout [ 190.645546] Bluetooth: hci6: command tx timeout [ 244.297566] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 244.300411] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 244.304605] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 244.313163] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 244.317602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 244.363462] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 244.368592] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 244.373491] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 244.382649] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 244.388764] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 244.625259] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 244.629277] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 244.631820] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 244.650939] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 244.658902] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 244.661740] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 244.663280] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 244.670937] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 244.674332] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 244.750577] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 244.763625] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 244.767862] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 244.771722] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 244.772773] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 244.780530] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 244.785853] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 244.790323] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 244.791488] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 244.796680] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 244.817887] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 244.820359] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 244.820648] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 244.864860] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 244.866324] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 244.868504] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 244.872647] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 244.873070] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 244.880490] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 244.884656] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 244.911390] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 246.389091] Bluetooth: hci0: command tx timeout [ 246.453195] Bluetooth: hci1: command tx timeout [ 246.773263] Bluetooth: hci2: command tx timeout [ 246.837124] Bluetooth: hci3: command tx timeout [ 246.965128] Bluetooth: hci6: command tx timeout [ 246.965160] Bluetooth: hci5: command tx timeout [ 246.966074] Bluetooth: hci7: command tx timeout [ 247.029286] Bluetooth: hci4: command tx timeout [ 248.439124] Bluetooth: hci0: command tx timeout [ 248.501074] Bluetooth: hci1: command tx timeout [ 248.821056] Bluetooth: hci2: command tx timeout [ 248.885323] Bluetooth: hci3: command tx timeout [ 249.013244] Bluetooth: hci6: command tx timeout [ 249.013746] Bluetooth: hci7: command tx timeout [ 249.014072] Bluetooth: hci5: command tx timeout [ 249.079055] Bluetooth: hci4: command tx timeout [ 250.485289] Bluetooth: hci0: command tx timeout [ 250.550215] Bluetooth: hci1: command tx timeout [ 250.869351] Bluetooth: hci2: command tx timeout [ 250.935067] Bluetooth: hci3: command tx timeout [ 251.061099] Bluetooth: hci5: command tx timeout [ 251.061585] Bluetooth: hci6: command tx timeout [ 251.062060] Bluetooth: hci7: command tx timeout [ 251.126105] Bluetooth: hci4: command tx timeout [ 252.533081] Bluetooth: hci0: command tx timeout [ 252.597264] Bluetooth: hci1: command tx timeout [ 252.918294] Bluetooth: hci2: command tx timeout [ 252.983287] Bluetooth: hci3: command tx timeout [ 253.109177] Bluetooth: hci6: command tx timeout [ 253.109662] Bluetooth: hci5: command tx timeout [ 253.110522] Bluetooth: hci7: command tx timeout [ 253.174236] Bluetooth: hci4: command tx timeout [ 304.650636] syz-executor.7 (5540) used greatest stack depth: 24784 bytes left [ 306.636351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 306.640169] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 306.644743] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 306.659193] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 306.665835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 306.830442] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 306.833552] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 306.838565] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 306.857956] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 306.864579] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 306.926664] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 306.939449] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 306.947745] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 306.966852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 306.972763] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 307.045242] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 307.051442] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 307.069709] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 307.085524] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 307.093625] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 307.220807] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 307.235750] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 307.241717] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 307.265579] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 307.284923] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 307.412286] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 307.424263] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 307.429054] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 307.439615] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 307.456855] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 307.463245] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 307.471729] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 307.473342] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 307.485541] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 307.504723] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 307.509511] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 307.515399] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 307.532503] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 307.543274] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 307.595505] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 308.725146] Bluetooth: hci0: command tx timeout [ 308.918854] Bluetooth: hci1: command tx timeout [ 309.046331] Bluetooth: hci2: command tx timeout [ 309.237485] Bluetooth: hci4: command tx timeout [ 309.367413] Bluetooth: hci3: command tx timeout [ 309.622467] Bluetooth: hci7: command tx timeout [ 309.749199] Bluetooth: hci6: command tx timeout [ 309.749193] Bluetooth: hci5: command tx timeout [ 310.773286] Bluetooth: hci0: command tx timeout [ 310.965221] Bluetooth: hci1: command tx timeout [ 311.093345] Bluetooth: hci2: command tx timeout [ 311.285161] Bluetooth: hci4: command tx timeout [ 311.415210] Bluetooth: hci3: command tx timeout [ 311.670250] Bluetooth: hci7: command tx timeout [ 311.797152] Bluetooth: hci5: command tx timeout [ 311.798106] Bluetooth: hci6: command tx timeout [ 312.822293] Bluetooth: hci0: command tx timeout [ 313.014072] Bluetooth: hci1: command tx timeout [ 313.142167] Bluetooth: hci2: command tx timeout [ 313.334218] Bluetooth: hci4: command tx timeout [ 313.461065] Bluetooth: hci3: command tx timeout [ 313.718093] Bluetooth: hci7: command tx timeout [ 313.846199] Bluetooth: hci6: command tx timeout [ 313.846242] Bluetooth: hci5: command tx timeout [ 314.870381] Bluetooth: hci0: command tx timeout [ 315.063073] Bluetooth: hci1: command tx timeout [ 315.189374] Bluetooth: hci2: command tx timeout [ 315.383023] Bluetooth: hci4: command tx timeout [ 315.510252] Bluetooth: hci3: command tx timeout [ 315.768141] Bluetooth: hci7: command tx timeout [ 315.893386] Bluetooth: hci6: command tx timeout [ 315.893854] Bluetooth: hci5: command tx timeout [ 367.398129] syz-executor.0 (8118) used greatest stack depth: 24544 bytes left [ 369.490048] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 369.494540] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 369.499724] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 369.512704] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 369.519106] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 369.743811] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 369.747725] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 369.751385] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 369.762826] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 369.771257] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 369.815784] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 369.820623] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 369.823157] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 369.831318] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 369.845705] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 369.948574] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 369.951315] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 369.958428] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 369.967887] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 369.980871] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 369.985326] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 369.993676] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 370.004771] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 370.006776] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 370.017249] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 370.031569] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 370.034945] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 370.037556] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 370.045602] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 370.047832] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 370.054597] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 370.108266] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 370.116542] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 370.122195] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 370.125652] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 370.127744] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 370.147417] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 370.152406] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 370.209555] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 370.215455] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 371.575036] Bluetooth: hci0: command tx timeout [ 371.829080] Bluetooth: hci1: command tx timeout [ 371.893065] Bluetooth: hci2: command tx timeout [ 372.085266] Bluetooth: hci3: command tx timeout [ 372.149109] Bluetooth: hci4: command tx timeout [ 372.213121] Bluetooth: hci5: command tx timeout [ 372.277171] Bluetooth: hci6: command tx timeout [ 372.343072] Bluetooth: hci7: command tx timeout [ 373.622046] Bluetooth: hci0: command tx timeout [ 373.877442] Bluetooth: hci1: command tx timeout [ 373.941112] Bluetooth: hci2: command tx timeout [ 374.133137] Bluetooth: hci3: command tx timeout [ 374.198513] Bluetooth: hci4: command tx timeout [ 374.262463] Bluetooth: hci5: command tx timeout [ 374.325392] Bluetooth: hci6: command tx timeout [ 374.389863] Bluetooth: hci7: command tx timeout [ 375.669101] Bluetooth: hci0: command tx timeout [ 375.926133] Bluetooth: hci1: command tx timeout [ 375.990409] Bluetooth: hci2: command tx timeout [ 376.181186] Bluetooth: hci3: command tx timeout [ 376.245355] Bluetooth: hci4: command tx timeout [ 376.309157] Bluetooth: hci5: command tx timeout [ 376.373381] Bluetooth: hci6: command tx timeout [ 376.437267] Bluetooth: hci7: command tx timeout [ 377.717319] Bluetooth: hci0: command tx timeout [ 377.974070] Bluetooth: hci1: command tx timeout [ 378.037400] Bluetooth: hci2: command tx timeout [ 378.229263] Bluetooth: hci3: command tx timeout [ 378.293074] Bluetooth: hci4: command tx timeout [ 378.357083] Bluetooth: hci5: command tx timeout [ 378.421245] Bluetooth: hci6: command tx timeout [ 378.487129] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 19:28:03 Registers: info registers vcpu 0 RAX=ffff888016132678 RBX=ffff88802f21fc88 RCX=ffff88806ce089cc RDX=0000000000000005 RSI=ffffffff85c1cc40 RDI=ffff888016132678 RBP=ffffffff85c1cc40 RSP=ffff88806ce089c0 R8 =0000000000000001 R9 =ffff88806ce08ab8 R10=000000000003b53d R11=00000000000231b3 R12=ffffffff81354012 R13=0000000000000202 R14=ffff888016131b80 R15=0000000000000005 RIP=ffffffff8151ac7b RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fdcf4da2540 00000000 00000000 GS =0000 ffff8880e5630000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fdcf4f8c810 CR3=0000000029f8b000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=0000000000000000 RCX=bde53094b5b1327e RDX=00000000db688f6a RSI=000000000b6dc639 RDI=00000000d61cd15b RBP=ffffffff85c1cc40 RSP=ffff88806cf089b0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000002 R13=0000000000000000 R14=0000000000000000 R15=0000000000000200 RIP=ffffffff8151af5b RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5730000 00000000 00000000 LDT=0000 fffffe6300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd6530f2028 CR3=000000001ab94000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6f732e616d7a6c62696c2f756e672d78 XMM02=00352e6f732e616d7a6c62696c2f756e XMM03=672d78756e696c2d34365f3638782f62 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000