Warning: Permanently added '[localhost]:34124' (ECDSA) to the list of known hosts. 2025/06/17 17:50:07 fuzzer started 2025/06/17 17:50:07 dialing manager at localhost:34087 syzkaller login: [ 98.262025] cgroup: Unknown subsys name 'net' [ 98.422646] cgroup: Unknown subsys name 'cpuset' [ 98.461189] cgroup: Unknown subsys name 'rlimit' 2025/06/17 17:50:32 syscalls: 2214 2025/06/17 17:50:32 code coverage: enabled 2025/06/17 17:50:32 comparison tracing: enabled 2025/06/17 17:50:32 extra coverage: enabled 2025/06/17 17:50:32 setuid sandbox: enabled 2025/06/17 17:50:32 namespace sandbox: enabled 2025/06/17 17:50:32 Android sandbox: enabled 2025/06/17 17:50:32 fault injection: enabled 2025/06/17 17:50:32 leak checking: enabled 2025/06/17 17:50:32 net packet injection: enabled 2025/06/17 17:50:32 net device setup: enabled 2025/06/17 17:50:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/17 17:50:32 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/17 17:50:32 USB emulation: enabled 2025/06/17 17:50:32 hci packet injection: enabled 2025/06/17 17:50:32 wifi device emulation: enabled 2025/06/17 17:50:32 802.15.4 emulation: enabled 2025/06/17 17:50:32 fetching corpus: 0, signal 0/0 (executing program) 2025/06/17 17:50:33 fetching corpus: 0, signal 0/0 (executing program) 2025/06/17 17:50:35 starting 8 fuzzer processes 17:50:35 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ppoll(&(0x7f0000000080)=[{r0}], 0x1, &(0x7f0000000140), 0x0, 0x0) 17:50:35 executing program 2: sched_getaffinity(0x0, 0x8, &(0x7f00000000c0)) 17:50:35 executing program 1: syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0) syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000100)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36) [ 125.624124] audit: type=1400 audit(1750182635.291:7): avc: denied { execmem } for pid=280 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:50:35 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) fsetxattr$system_posix_acl(r0, &(0x7f0000000300)='system.posix_acl_access\x00', 0x0, 0x0, 0x0) 17:50:35 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x20000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73665df41100080120000200004000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="0000000072724161140000000b000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f73665df41100080120000200004000f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f0700000008000000090000000a000000ffffff0fffffff0f00"/64, 0x40, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0f0700000008000000090000000a000000ffffff0fffffff0f00"/64, 0x40, 0x10800}, {&(0x7f0000010600)="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", 0x120, 0x11000}, {&(0x7f0000010800)="2e202020202020202020201000bde670325132510000e67032510300000000002e2e2020202020202020201000bde670325132510000e670325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020202000bde670325132510000e670325104001a040000", 0x80, 0x11800}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x12000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0x12800}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x15800}], 0x0, &(0x7f0000011000)) 17:50:35 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x880, 0x0) fadvise64(r0, 0x0, 0x0, 0x5) 17:50:35 executing program 6: openat$procfs(0xffffffffffffff9c, &(0x7f0000001c40)='/proc/bus/input/devices\x00', 0x0, 0x0) 17:50:35 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x45, 0x0, &(0x7f0000000140)=0x47) [ 127.029346] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 127.034312] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 127.036988] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 127.049377] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 127.053977] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 127.177697] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 127.181066] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 127.182691] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 127.191486] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 127.194348] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 127.199472] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 127.208119] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 127.214537] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 127.218005] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 127.246165] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 127.260417] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 127.267466] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 127.275367] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 127.277444] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 127.281012] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 127.283949] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 127.285779] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 127.289829] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 127.291516] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 127.292620] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 127.295554] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 127.297442] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 127.300340] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 127.311702] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 127.312749] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 127.324916] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 127.331277] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 127.339382] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 127.342242] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 127.350492] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 127.358317] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 127.402263] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 127.408187] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 127.413689] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 127.427181] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 129.112287] Bluetooth: hci0: command tx timeout [ 129.303821] Bluetooth: hci1: command tx timeout [ 129.367681] Bluetooth: hci5: command tx timeout [ 129.367749] Bluetooth: hci2: command tx timeout [ 129.433065] Bluetooth: hci6: command tx timeout [ 129.495830] Bluetooth: hci4: command tx timeout [ 129.495862] Bluetooth: hci3: command tx timeout [ 129.559784] Bluetooth: hci7: command tx timeout [ 131.159679] Bluetooth: hci0: command tx timeout [ 131.352087] Bluetooth: hci1: command tx timeout [ 131.416804] Bluetooth: hci2: command tx timeout [ 131.416868] Bluetooth: hci5: command tx timeout [ 131.480654] Bluetooth: hci6: command tx timeout [ 131.543822] Bluetooth: hci3: command tx timeout [ 131.544295] Bluetooth: hci4: command tx timeout [ 131.607654] Bluetooth: hci7: command tx timeout [ 133.207889] Bluetooth: hci0: command tx timeout [ 133.399669] Bluetooth: hci1: command tx timeout [ 133.463668] Bluetooth: hci5: command tx timeout [ 133.465754] Bluetooth: hci2: command tx timeout [ 133.527835] Bluetooth: hci6: command tx timeout [ 133.591876] Bluetooth: hci4: command tx timeout [ 133.591925] Bluetooth: hci3: command tx timeout [ 133.655697] Bluetooth: hci7: command tx timeout [ 135.256660] Bluetooth: hci0: command tx timeout [ 135.448616] Bluetooth: hci1: command tx timeout [ 135.512704] Bluetooth: hci2: command tx timeout [ 135.512790] Bluetooth: hci5: command tx timeout [ 135.576123] Bluetooth: hci6: command tx timeout [ 135.639726] Bluetooth: hci3: command tx timeout [ 135.641691] Bluetooth: hci4: command tx timeout [ 135.703915] Bluetooth: hci7: command tx timeout [ 187.355429] syz-executor.4 (295) used greatest stack depth: 24576 bytes left [ 189.868469] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 189.875888] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 189.878445] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 189.890506] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 189.898654] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 189.955842] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 189.960898] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 189.964480] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 189.973138] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 189.978355] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 189.985468] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 189.988088] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 189.988254] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 189.999103] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 190.005314] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 190.066276] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 190.071332] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 190.082725] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 190.093090] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 190.114156] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 190.215563] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 190.228234] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 190.243280] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 190.269544] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 190.293783] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 190.302649] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 190.304055] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 190.315364] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 190.335036] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 190.345063] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 190.350786] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 190.370181] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 190.375852] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 190.381087] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 190.388094] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 190.399711] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 190.405278] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 190.423080] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 190.445037] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 190.449059] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 191.960659] Bluetooth: hci0: command tx timeout [ 192.087752] Bluetooth: hci2: command tx timeout [ 192.087776] Bluetooth: hci1: command tx timeout [ 192.280877] Bluetooth: hci3: command tx timeout [ 192.417800] Bluetooth: hci5: command tx timeout [ 192.472649] Bluetooth: hci4: command tx timeout [ 192.535859] Bluetooth: hci6: command tx timeout [ 192.599653] Bluetooth: hci7: command tx timeout [ 194.008665] Bluetooth: hci0: command tx timeout [ 194.135918] Bluetooth: hci2: command tx timeout [ 194.135952] Bluetooth: hci1: command tx timeout [ 194.327820] Bluetooth: hci3: command tx timeout [ 194.455693] Bluetooth: hci5: command tx timeout [ 194.519755] Bluetooth: hci4: command tx timeout [ 194.584713] Bluetooth: hci6: command tx timeout [ 194.648641] Bluetooth: hci7: command tx timeout [ 196.055764] Bluetooth: hci0: command tx timeout [ 196.184402] Bluetooth: hci2: command tx timeout [ 196.185193] Bluetooth: hci1: command tx timeout [ 196.376695] Bluetooth: hci3: command tx timeout [ 196.505638] Bluetooth: hci5: command tx timeout [ 196.567924] Bluetooth: hci4: command tx timeout [ 196.633609] Bluetooth: hci6: command tx timeout [ 196.696815] Bluetooth: hci7: command tx timeout [ 198.104644] Bluetooth: hci0: command tx timeout [ 198.231838] Bluetooth: hci1: command tx timeout [ 198.233447] Bluetooth: hci2: command tx timeout [ 198.425167] Bluetooth: hci3: command tx timeout [ 198.552760] Bluetooth: hci5: command tx timeout [ 198.616859] Bluetooth: hci4: command tx timeout [ 198.680739] Bluetooth: hci6: command tx timeout [ 198.744744] Bluetooth: hci7: command tx timeout [ 252.142280] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 252.147701] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 252.153175] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 252.164143] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 252.170406] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 252.326299] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 252.333134] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 252.336898] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 252.347285] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 252.351075] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 252.427120] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 252.434269] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 252.457191] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 252.476273] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 252.483203] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 252.483530] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 252.490368] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 252.518193] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 252.542435] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 252.595099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 252.630649] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 252.635516] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 252.639403] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 252.654133] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 252.679891] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 252.684242] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 252.687005] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 252.692332] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 252.695761] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 252.701294] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 252.711653] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 252.721714] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 252.729395] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 252.734880] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 252.763990] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 252.791102] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 252.803174] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 252.819451] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 252.855364] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 252.859770] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 254.231705] Bluetooth: hci0: command tx timeout [ 254.423677] Bluetooth: hci1: command tx timeout [ 254.551986] Bluetooth: hci2: command tx timeout [ 254.679715] Bluetooth: hci3: command tx timeout [ 254.807773] Bluetooth: hci5: command tx timeout [ 254.871717] Bluetooth: hci6: command tx timeout [ 254.935674] Bluetooth: hci4: command tx timeout [ 255.063891] Bluetooth: hci7: command tx timeout [ 256.280058] Bluetooth: hci0: command tx timeout [ 256.473002] Bluetooth: hci1: command tx timeout [ 256.599815] Bluetooth: hci2: command tx timeout [ 256.727638] Bluetooth: hci3: command tx timeout [ 256.858802] Bluetooth: hci5: command tx timeout [ 256.920677] Bluetooth: hci6: command tx timeout [ 256.984632] Bluetooth: hci4: command tx timeout [ 257.112658] Bluetooth: hci7: command tx timeout [ 258.327735] Bluetooth: hci0: command tx timeout [ 258.519767] Bluetooth: hci1: command tx timeout [ 258.649648] Bluetooth: hci2: command tx timeout [ 258.775715] Bluetooth: hci3: command tx timeout [ 258.903681] Bluetooth: hci5: command tx timeout [ 258.968850] Bluetooth: hci6: command tx timeout [ 259.031750] Bluetooth: hci4: command tx timeout [ 259.159960] Bluetooth: hci7: command tx timeout [ 260.375746] Bluetooth: hci0: command tx timeout [ 260.567710] Bluetooth: hci1: command tx timeout [ 260.695789] Bluetooth: hci2: command tx timeout [ 260.824756] Bluetooth: hci3: command tx timeout [ 260.953160] Bluetooth: hci5: command tx timeout [ 261.016067] Bluetooth: hci6: command tx timeout [ 261.080929] Bluetooth: hci4: command tx timeout [ 261.207739] Bluetooth: hci7: command tx timeout [ 312.305408] syz-executor.1 (5609) used greatest stack depth: 24544 bytes left [ 314.411113] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 314.416146] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 314.420720] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 314.431161] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 314.435832] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 314.600549] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 314.603426] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 314.606004] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 314.618061] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 314.627088] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 314.873120] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 314.883072] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 314.887618] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 314.900438] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 314.917867] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 314.940241] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 314.944814] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 314.949946] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 314.964003] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 314.977080] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 314.977501] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 314.988032] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 314.990934] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 315.009271] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 315.012482] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 315.115053] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 315.123751] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 315.127291] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 315.144157] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 315.151167] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 315.261330] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 315.267847] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 315.273938] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 315.282738] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 315.288125] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 315.463083] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 315.504627] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 315.526216] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 315.593323] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 315.598209] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 316.504697] Bluetooth: hci0: command tx timeout [ 316.696032] Bluetooth: hci1: command tx timeout [ 317.016443] Bluetooth: hci2: command tx timeout [ 317.079846] Bluetooth: hci3: command tx timeout [ 317.079877] Bluetooth: hci4: command tx timeout [ 317.400652] Bluetooth: hci5: command tx timeout [ 317.466758] Bluetooth: hci6: command tx timeout [ 317.720691] Bluetooth: hci7: command tx timeout [ 318.551697] Bluetooth: hci0: command tx timeout [ 318.743727] Bluetooth: hci1: command tx timeout [ 319.063671] Bluetooth: hci2: command tx timeout [ 319.128311] Bluetooth: hci3: command tx timeout [ 319.129074] Bluetooth: hci4: command tx timeout [ 319.447696] Bluetooth: hci5: command tx timeout [ 319.511989] Bluetooth: hci6: command tx timeout [ 319.768024] Bluetooth: hci7: command tx timeout [ 320.601924] Bluetooth: hci0: command tx timeout [ 320.791764] Bluetooth: hci1: command tx timeout [ 321.111658] Bluetooth: hci2: command tx timeout [ 321.175890] Bluetooth: hci4: command tx timeout [ 321.176317] Bluetooth: hci3: command tx timeout [ 321.495655] Bluetooth: hci5: command tx timeout [ 321.559720] Bluetooth: hci6: command tx timeout [ 321.815663] Bluetooth: hci7: command tx timeout [ 322.648753] Bluetooth: hci0: command tx timeout [ 322.839774] Bluetooth: hci1: command tx timeout [ 323.159928] Bluetooth: hci2: command tx timeout [ 323.226674] Bluetooth: hci3: command tx timeout [ 323.226724] Bluetooth: hci4: command tx timeout [ 323.543655] Bluetooth: hci5: command tx timeout [ 323.607758] Bluetooth: hci6: command tx timeout [ 323.863884] Bluetooth: hci7: command tx timeout [ 377.005890] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 377.012186] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 377.017153] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 377.028079] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 377.033433] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 377.093866] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 377.101442] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 377.108095] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 377.121341] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 377.133982] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 377.147081] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 377.152072] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 377.163349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 377.199495] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 377.213119] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 377.298083] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 377.303434] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 377.308352] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 377.309878] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 377.323062] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 377.326145] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 377.328918] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 377.336145] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 377.341093] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 377.357294] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 377.444830] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 377.447737] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 377.455136] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 377.455357] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 377.466145] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 377.486097] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 377.506387] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 377.506419] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 377.511023] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 377.515101] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 377.519117] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 377.527082] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 377.543452] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 377.560142] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 377.567099] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 379.095852] Bluetooth: hci0: command tx timeout [ 379.224088] Bluetooth: hci1: command tx timeout [ 379.289059] Bluetooth: hci2: command tx timeout [ 379.416954] Bluetooth: hci4: command tx timeout [ 379.417538] Bluetooth: hci3: command tx timeout [ 379.608301] Bluetooth: hci5: command tx timeout [ 379.672871] Bluetooth: hci7: command tx timeout [ 379.673430] Bluetooth: hci6: command tx timeout [ 381.145633] Bluetooth: hci0: command tx timeout [ 381.273621] Bluetooth: hci1: command tx timeout [ 381.336741] Bluetooth: hci2: command tx timeout [ 381.463813] Bluetooth: hci3: command tx timeout [ 381.465119] Bluetooth: hci4: command tx timeout [ 381.656662] Bluetooth: hci5: command tx timeout [ 381.721670] Bluetooth: hci6: command tx timeout [ 381.722433] Bluetooth: hci7: command tx timeout [ 383.193075] Bluetooth: hci0: command tx timeout [ 383.321083] Bluetooth: hci1: command tx timeout [ 383.384144] Bluetooth: hci2: command tx timeout [ 383.512708] Bluetooth: hci4: command tx timeout [ 383.513497] Bluetooth: hci3: command tx timeout [ 383.704157] Bluetooth: hci5: command tx timeout [ 383.767728] Bluetooth: hci7: command tx timeout [ 383.768506] Bluetooth: hci6: command tx timeout [ 385.240709] Bluetooth: hci0: command tx timeout [ 385.368320] Bluetooth: hci1: command tx timeout [ 385.433030] Bluetooth: hci2: command tx timeout [ 385.561534] Bluetooth: hci4: command tx timeout [ 385.563131] Bluetooth: hci3: command tx timeout [ 385.752671] Bluetooth: hci5: command tx timeout [ 385.816225] Bluetooth: hci7: command tx timeout [ 385.817997] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 17:55:35 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff8880e5630000 RCX=0000000000000001 RDX=0000000000000000 RSI=ffffffff81354012 RDI=ffff88806ce31850 RBP=ffffffff85c1cc40 RSP=ffff88802a1570d0 R8 =0000000000000001 R9 =ffff88802a157228 R10=000000000003b53d R11=0000000000006bd3 R12=ffffffff81354012 R13=ffff88802a157230 R14=ffff88802a1571b8 R15=ffff88802a1571e8 RIP=ffffffff815ab920 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5630000 00000000 00000000 LDT=0000 fffffe3300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f76dee03438 CR3=000000002c7c7000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00ff0000000000000000000000ff0000 XMM01=4700352e322e325f4342494c4700362e XMM02=ff00ffffffffffffffffffffff000000 XMM03=000000000000000000312e325f434249 XMM04=494c470037312e325f4342494c470036 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffffffff85c28680 RCX=ffffffff814d07ee RDX=0000000000000003 RSI=0000000000000000 RDI=ffffffff85c286f0 RBP=0000000000000002 RSP=ffff88806cf08c68 R8 =0000000000000000 R9 =fffffbfff0c828ca R10=ffffffff86414657 R11=ffff88806cf37058 R12=0000000000000001 R13=0000000000000001 R14=ffff8880156c0140 R15=ffff88806cf37138 RIP=ffffffff815aca86 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5730000 00000000 00000000 LDT=0000 fffffe6d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f57174a2028 CR3=00000000275e3000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6f732e616d7a6c62696c2f756e672d78 XMM02=00352e6f732e616d7a6c62696c2f756e XMM03=672d78756e696c2d34365f3638782f62 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000