Warning: Permanently added '[localhost]:34124' (ECDSA) to the list of known hosts. 2025/06/23 17:50:35 fuzzer started 2025/06/23 17:50:35 dialing manager at localhost:37113 syzkaller login: [ 103.243711] cgroup: Unknown subsys name 'net' [ 103.381922] cgroup: Unknown subsys name 'cpuset' [ 103.427735] cgroup: Unknown subsys name 'rlimit' 2025/06/23 17:50:58 syscalls: 2214 2025/06/23 17:50:58 code coverage: enabled 2025/06/23 17:50:58 comparison tracing: enabled 2025/06/23 17:50:58 extra coverage: enabled 2025/06/23 17:50:58 setuid sandbox: enabled 2025/06/23 17:50:58 namespace sandbox: enabled 2025/06/23 17:50:58 Android sandbox: enabled 2025/06/23 17:50:58 fault injection: enabled 2025/06/23 17:50:58 leak checking: enabled 2025/06/23 17:50:58 net packet injection: enabled 2025/06/23 17:50:58 net device setup: enabled 2025/06/23 17:50:58 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/23 17:50:58 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/23 17:50:58 USB emulation: enabled 2025/06/23 17:50:58 hci packet injection: enabled 2025/06/23 17:50:58 wifi device emulation: enabled 2025/06/23 17:50:58 802.15.4 emulation: enabled 2025/06/23 17:50:58 fetching corpus: 0, signal 0/0 (executing program) 2025/06/23 17:50:58 fetching corpus: 0, signal 0/0 (executing program) 2025/06/23 17:50:59 starting 8 fuzzer processes 17:50:59 executing program 0: open_tree(0xffffffffffffff9c, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000001340), 0x0, 0x0) 17:50:59 executing program 1: syz_open_dev$sg(&(0x7f0000000000), 0x1, 0x111000) syz_open_dev$sg(&(0x7f00000000c0), 0xffffffff, 0x0) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, &(0x7f0000000280)={0x9}, &(0x7f0000000300)={0x0, r0+60000000}, &(0x7f0000000380)={&(0x7f0000000340)={[0xfc]}, 0x8}) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000440)) syz_genetlink_get_family_id$l2tp(&(0x7f0000000480), 0xffffffffffffffff) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000740), 0x0, 0x8, 0x0, 0x0, &(0x7f0000000800)}) 17:50:59 executing program 2: syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', &(0x7f0000000080)=@default_ibss_ssid, 0x6, 0x0) syz_80211_inject_frame(&(0x7f00000000c0), &(0x7f0000000100)=@mgmt_frame=@beacon={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}, 0x36) 17:50:59 executing program 3: io_submit(0x0, 0x0, 0x0) [ 127.144927] audit: type=1400 audit(1750701059.958:7): avc: denied { execmem } for pid=281 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:50:59 executing program 5: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) fsetxattr$security_evm(r0, &(0x7f00000003c0), 0x0, 0x0, 0x3) 17:51:00 executing program 4: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0) 17:51:00 executing program 6: pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffff5b3) 17:51:00 executing program 7: ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x4840, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, 0x0, 0x20000080) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) [ 128.433169] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 128.438090] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 128.441063] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 128.448402] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 128.452930] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 128.571096] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 128.574802] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 128.588763] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 128.591702] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 128.597935] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 128.601008] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 128.605800] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 128.619279] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 128.636024] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 128.639727] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 128.651994] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 128.663123] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 128.664879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 128.702983] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 128.714624] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 128.718757] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 128.723160] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 128.726552] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 128.728458] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 128.731688] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 128.803606] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 128.807136] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 128.809794] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 128.843205] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 128.848677] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 128.859927] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 128.860174] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 128.875574] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 128.884738] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 128.894967] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 128.903029] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 128.912434] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 128.925516] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 128.927525] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 128.942013] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 130.509908] Bluetooth: hci0: command tx timeout [ 130.703290] Bluetooth: hci1: command tx timeout [ 130.765367] Bluetooth: hci2: command tx timeout [ 130.829325] Bluetooth: hci4: command tx timeout [ 130.830649] Bluetooth: hci3: command tx timeout [ 130.959597] Bluetooth: hci5: command tx timeout [ 131.085412] Bluetooth: hci7: command tx timeout [ 131.085986] Bluetooth: hci6: command tx timeout [ 132.558324] Bluetooth: hci0: command tx timeout [ 132.750456] Bluetooth: hci1: command tx timeout [ 132.815923] Bluetooth: hci2: command tx timeout [ 132.879752] Bluetooth: hci3: command tx timeout [ 132.880189] Bluetooth: hci4: command tx timeout [ 133.007515] Bluetooth: hci5: command tx timeout [ 133.134331] Bluetooth: hci6: command tx timeout [ 133.134793] Bluetooth: hci7: command tx timeout [ 134.605599] Bluetooth: hci0: command tx timeout [ 134.799301] Bluetooth: hci1: command tx timeout [ 134.861326] Bluetooth: hci2: command tx timeout [ 134.928275] Bluetooth: hci4: command tx timeout [ 134.928700] Bluetooth: hci3: command tx timeout [ 135.054340] Bluetooth: hci5: command tx timeout [ 135.182575] Bluetooth: hci7: command tx timeout [ 135.183031] Bluetooth: hci6: command tx timeout [ 136.654460] Bluetooth: hci0: command tx timeout [ 136.846566] Bluetooth: hci1: command tx timeout [ 136.910311] Bluetooth: hci2: command tx timeout [ 136.974333] Bluetooth: hci3: command tx timeout [ 136.974764] Bluetooth: hci4: command tx timeout [ 137.102521] Bluetooth: hci5: command tx timeout [ 137.229475] Bluetooth: hci7: command tx timeout [ 137.230365] Bluetooth: hci6: command tx timeout [ 188.413060] syz-executor.0 (294) used greatest stack depth: 25024 bytes left [ 191.140484] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 191.148072] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 191.151191] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 191.163928] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 191.169697] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 191.232359] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 191.238811] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 191.242370] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 191.250411] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 191.254840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 191.259549] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 191.277819] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 191.280368] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 191.287878] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 191.293766] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 191.357912] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 191.373181] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 191.382524] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 191.409825] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 191.416303] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 191.574715] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 191.580183] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 191.588087] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 191.589786] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 191.595419] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 191.602817] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 191.608298] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 191.616135] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 191.619441] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 191.621888] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 191.625970] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 191.629812] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 191.636898] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 191.648418] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 191.652791] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 191.670532] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 191.711771] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 191.729152] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 191.733135] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 191.779744] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 193.230502] Bluetooth: hci0: command tx timeout [ 193.358382] Bluetooth: hci1: command tx timeout [ 193.358969] Bluetooth: hci2: command tx timeout [ 193.549464] Bluetooth: hci4: command tx timeout [ 193.679304] Bluetooth: hci6: command tx timeout [ 193.742655] Bluetooth: hci3: command tx timeout [ 193.869431] Bluetooth: hci5: command tx timeout [ 193.870151] Bluetooth: hci7: command tx timeout [ 195.279300] Bluetooth: hci0: command tx timeout [ 195.405444] Bluetooth: hci1: command tx timeout [ 195.405973] Bluetooth: hci2: command tx timeout [ 195.600265] Bluetooth: hci4: command tx timeout [ 195.726404] Bluetooth: hci6: command tx timeout [ 195.789308] Bluetooth: hci3: command tx timeout [ 195.917616] Bluetooth: hci7: command tx timeout [ 195.918088] Bluetooth: hci5: command tx timeout [ 197.327321] Bluetooth: hci0: command tx timeout [ 197.453593] Bluetooth: hci1: command tx timeout [ 197.453633] Bluetooth: hci2: command tx timeout [ 197.647307] Bluetooth: hci4: command tx timeout [ 197.773318] Bluetooth: hci6: command tx timeout [ 197.837518] Bluetooth: hci3: command tx timeout [ 197.966373] Bluetooth: hci5: command tx timeout [ 197.966412] Bluetooth: hci7: command tx timeout [ 199.373332] Bluetooth: hci0: command tx timeout [ 199.501344] Bluetooth: hci2: command tx timeout [ 199.501854] Bluetooth: hci1: command tx timeout [ 199.693322] Bluetooth: hci4: command tx timeout [ 199.821867] Bluetooth: hci6: command tx timeout [ 199.886364] Bluetooth: hci3: command tx timeout [ 200.013487] Bluetooth: hci5: command tx timeout [ 200.013930] Bluetooth: hci7: command tx timeout [ 250.827402] syz-executor.2 (2919) used greatest stack depth: 24912 bytes left [ 253.156952] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 253.163377] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 253.169567] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 253.181523] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 253.189091] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 253.292715] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 253.298515] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 253.304750] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 253.312686] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 253.326661] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 253.470280] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 253.486590] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 253.490086] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 253.514881] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 253.526309] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 253.592635] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 253.596735] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 253.599363] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 253.605409] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 253.609545] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 253.759806] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 253.778722] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 253.794515] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 253.800723] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 253.804136] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 253.811862] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 253.814059] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 253.819781] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 253.822070] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 253.848755] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 253.859018] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 253.860486] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 253.879772] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 253.880680] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 253.901731] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 253.925720] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 253.927888] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 253.969051] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 253.975752] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 254.017045] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 255.246323] Bluetooth: hci0: command tx timeout [ 255.373323] Bluetooth: hci1: command tx timeout [ 255.630350] Bluetooth: hci2: command tx timeout [ 255.631041] Bluetooth: hci3: command tx timeout [ 255.949729] Bluetooth: hci5: command tx timeout [ 256.141401] Bluetooth: hci7: command tx timeout [ 256.205325] Bluetooth: hci4: command tx timeout [ 256.525498] Bluetooth: hci6: command tx timeout [ 257.293310] Bluetooth: hci0: command tx timeout [ 257.421482] Bluetooth: hci1: command tx timeout [ 257.677449] Bluetooth: hci3: command tx timeout [ 257.677497] Bluetooth: hci2: command tx timeout [ 257.999321] Bluetooth: hci5: command tx timeout [ 258.189325] Bluetooth: hci7: command tx timeout [ 258.253397] Bluetooth: hci4: command tx timeout [ 258.573417] Bluetooth: hci6: command tx timeout [ 259.342324] Bluetooth: hci0: command tx timeout [ 259.469304] Bluetooth: hci1: command tx timeout [ 259.725373] Bluetooth: hci2: command tx timeout [ 259.725404] Bluetooth: hci3: command tx timeout [ 260.045311] Bluetooth: hci5: command tx timeout [ 260.237301] Bluetooth: hci7: command tx timeout [ 260.301653] Bluetooth: hci4: command tx timeout [ 260.621575] Bluetooth: hci6: command tx timeout [ 261.389442] Bluetooth: hci0: command tx timeout [ 261.517332] Bluetooth: hci1: command tx timeout [ 261.773477] Bluetooth: hci2: command tx timeout [ 261.773500] Bluetooth: hci3: command tx timeout [ 262.095292] Bluetooth: hci5: command tx timeout [ 262.287596] Bluetooth: hci7: command tx timeout [ 262.349553] Bluetooth: hci4: command tx timeout [ 262.669670] Bluetooth: hci6: command tx timeout [ 315.746408] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 315.751686] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 315.756442] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 315.765559] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 315.773152] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 315.833101] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 315.838510] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 315.842145] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 315.853310] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 315.858540] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 315.966848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 316.006468] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 316.016532] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 316.023617] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 316.042838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 316.050725] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 316.081554] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 316.087721] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 316.089964] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 316.090070] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 316.111026] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 316.111528] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 316.119668] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 316.125466] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 316.127588] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 316.140102] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 316.142189] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 316.175854] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 316.179931] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 316.182787] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 316.184862] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 316.188056] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 316.189849] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 316.198114] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 316.212855] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 316.218141] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 316.218803] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 316.220103] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 316.226447] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 316.269584] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 317.837906] Bluetooth: hci0: command tx timeout [ 317.965468] Bluetooth: hci1: command tx timeout [ 318.221866] Bluetooth: hci3: command tx timeout [ 318.223573] Bluetooth: hci2: command tx timeout [ 318.285325] Bluetooth: hci5: command tx timeout [ 318.349343] Bluetooth: hci7: command tx timeout [ 318.350036] Bluetooth: hci4: command tx timeout [ 318.350568] Bluetooth: hci6: command tx timeout [ 319.885346] Bluetooth: hci0: command tx timeout [ 320.013306] Bluetooth: hci1: command tx timeout [ 320.269655] Bluetooth: hci3: command tx timeout [ 320.270126] Bluetooth: hci2: command tx timeout [ 320.333735] Bluetooth: hci5: command tx timeout [ 320.397771] Bluetooth: hci6: command tx timeout [ 320.398854] Bluetooth: hci4: command tx timeout [ 320.399291] Bluetooth: hci7: command tx timeout [ 321.933763] Bluetooth: hci0: command tx timeout [ 322.062295] Bluetooth: hci1: command tx timeout [ 322.317546] Bluetooth: hci2: command tx timeout [ 322.318018] Bluetooth: hci3: command tx timeout [ 322.381554] Bluetooth: hci5: command tx timeout [ 322.445510] Bluetooth: hci4: command tx timeout [ 322.445966] Bluetooth: hci7: command tx timeout [ 322.447029] Bluetooth: hci6: command tx timeout [ 323.981312] Bluetooth: hci0: command tx timeout [ 324.109347] Bluetooth: hci1: command tx timeout [ 324.365637] Bluetooth: hci3: command tx timeout [ 324.366083] Bluetooth: hci2: command tx timeout [ 324.429498] Bluetooth: hci5: command tx timeout [ 324.493407] Bluetooth: hci6: command tx timeout [ 324.493823] Bluetooth: hci7: command tx timeout [ 324.493868] Bluetooth: hci4: command tx timeout [ 375.571816] syz-executor.1 (8193) used greatest stack depth: 24784 bytes left [ 377.888771] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 377.896116] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 377.899691] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 377.911115] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 377.919154] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 378.077796] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 378.082123] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 378.084946] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 378.092901] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 378.098589] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 378.160991] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 378.166012] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 378.173624] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 378.183954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 378.197129] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 378.242423] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 378.290503] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 378.293011] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 378.301872] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 378.316845] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 378.326176] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 378.329180] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 378.331847] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 378.333956] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 378.345866] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 378.351536] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 378.353835] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 378.377111] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 378.404420] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 378.407803] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 378.421755] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 378.422484] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 378.423401] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 378.472420] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 378.488809] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 378.517921] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 378.525178] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 378.564938] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 378.568174] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 378.578917] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 379.982284] Bluetooth: hci0: command tx timeout [ 380.173560] Bluetooth: hci1: command tx timeout [ 380.302321] Bluetooth: hci2: command tx timeout [ 380.429477] Bluetooth: hci3: command tx timeout [ 380.493368] Bluetooth: hci5: command tx timeout [ 380.493944] Bluetooth: hci4: command tx timeout [ 380.686618] Bluetooth: hci7: command tx timeout [ 380.687391] Bluetooth: hci6: command tx timeout [ 382.030339] Bluetooth: hci0: command tx timeout [ 382.223468] Bluetooth: hci1: command tx timeout [ 382.350621] Bluetooth: hci2: command tx timeout [ 382.478676] Bluetooth: hci3: command tx timeout [ 382.542549] Bluetooth: hci5: command tx timeout [ 382.542984] Bluetooth: hci4: command tx timeout [ 382.733549] Bluetooth: hci6: command tx timeout [ 382.734009] Bluetooth: hci7: command tx timeout [ 384.078326] Bluetooth: hci0: command tx timeout [ 384.269602] Bluetooth: hci1: command tx timeout [ 384.398721] Bluetooth: hci2: command tx timeout [ 384.525463] Bluetooth: hci3: command tx timeout [ 384.589336] Bluetooth: hci4: command tx timeout [ 384.589786] Bluetooth: hci5: command tx timeout [ 384.782497] Bluetooth: hci7: command tx timeout [ 384.782876] Bluetooth: hci6: command tx timeout [ 386.128399] Bluetooth: hci0: command tx timeout [ 386.318895] Bluetooth: hci1: command tx timeout [ 386.446492] Bluetooth: hci2: command tx timeout [ 386.574315] Bluetooth: hci3: command tx timeout [ 386.637826] Bluetooth: hci5: command tx timeout [ 386.638518] Bluetooth: hci4: command tx timeout [ 386.829378] Bluetooth: hci6: command tx timeout [ 386.832314] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 17:56:03 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806ce08b60 RCX=ffff88806ce0897c RDX=0000000000000003 RSI=ffffffff85c1cc40 RDI=ffff888036e49b80 RBP=ffffffff85c1cc40 RSP=ffff88806ce08958 R8 =ffffffff867fc9f8 R9 =ffff88806ce08a68 R10=000000000003b53d R11=0000000000012b30 R12=ffffffff81354012 R13=ffff88806ce0897c R14=0000000000000003 R15=0000000000000003 RIP=ffffffff81513eca RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5630000 00000000 00000000 LDT=0000 fffffe7c00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff2987cb288 CR3=000000002ab4b000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00ffffffffffffffffffffffffffff00 XMM02=ffffffffffffffff00ffff000000ff00 XMM03=ffffffffffffffff00ffff000000ff00 XMM04=ffffffffffff00000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=000000000000000a RCX=ffffffff818c48e0 RDX=ffff888015e4d280 RSI=ffffffff818c48ef RDI=0000000000000001 RBP=ffff8880340c7c40 RSP=ffff8880340c7ab8 R8 =0000000000000001 R9 =fffff94000367686 R10=000000000000000a R11=0000000000000001 R12=000000000000000a R13=000000000000000f R14=ffff888009371080 R15=dffffc0000000000 RIP=ffffffff81738d98 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5730000 00000000 00000000 LDT=0000 fffffe3d00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fae272ac820 CR3=000000001aa75000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00362e6f732e6362696c2f756e672d78 XMM02=ffff0000000000ffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000