Warning: Permanently added '[localhost]:27804' (ECDSA) to the list of known hosts. 2025/06/24 19:39:00 fuzzer started 2025/06/24 19:39:01 dialing manager at localhost:42423 syzkaller login: [ 100.723999] cgroup: Unknown subsys name 'net' [ 100.874996] cgroup: Unknown subsys name 'cpuset' [ 100.913506] cgroup: Unknown subsys name 'rlimit' 2025/06/24 19:39:16 syscalls: 2214 2025/06/24 19:39:16 code coverage: enabled 2025/06/24 19:39:16 comparison tracing: enabled 2025/06/24 19:39:16 extra coverage: enabled 2025/06/24 19:39:16 setuid sandbox: enabled 2025/06/24 19:39:16 namespace sandbox: enabled 2025/06/24 19:39:16 Android sandbox: enabled 2025/06/24 19:39:16 fault injection: enabled 2025/06/24 19:39:16 leak checking: enabled 2025/06/24 19:39:16 net packet injection: enabled 2025/06/24 19:39:16 net device setup: enabled 2025/06/24 19:39:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/24 19:39:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/24 19:39:16 USB emulation: enabled 2025/06/24 19:39:16 hci packet injection: enabled 2025/06/24 19:39:16 wifi device emulation: enabled 2025/06/24 19:39:16 802.15.4 emulation: enabled 2025/06/24 19:39:16 fetching corpus: 0, signal 0/0 (executing program) 2025/06/24 19:39:16 fetching corpus: 0, signal 0/0 (executing program) 2025/06/24 19:39:18 starting 8 fuzzer processes 19:39:18 executing program 0: syz_mount_image$tmpfs(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) rmdir(&(0x7f0000000580)='./file0\x00') 19:39:18 executing program 1: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x114, &(0x7f0000000180)=0x1, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000200)={0x42}, &(0x7f0000000240)='./file1\x00', 0x18, 0x0, 0x12345}, 0x0) io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0) r3 = syz_io_uring_complete(r1) close(r3) 19:39:18 executing program 2: pipe(&(0x7f0000000e40)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(0xffffffffffffffff, r0, 0x0, 0x0) 19:39:18 executing program 3: openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) clone3(&(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, {}, &(0x7f0000000400)=""/9, 0x9, &(0x7f0000000440)=""/162, &(0x7f0000000500)=[0x0], 0x1}, 0x58) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000001c40)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) openat$hwrng(0xffffffffffffff9c, 0x0, 0x450a01, 0x0) [ 117.564628] audit: type=1400 audit(1750793958.125:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:39:18 executing program 4: openat$ptp0(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0) 19:39:18 executing program 5: r0 = shmget$private(0x0, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil) shmctl$IPC_SET(r0, 0x1, &(0x7f00000002c0)={{0x1, 0xffffffffffffffff, 0xee01, 0xffffffffffffffff}}) 19:39:18 executing program 7: getpid() exit_group(0x1) getpid() 19:39:18 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f73661fe41100080101000240002000f801002000400000000000000000008000"/64, 0x40}, {&(0x7f0000010100)="f8ffff00f0ffffffff07800009a000ffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffff07800009a000ffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="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", 0x120, 0x1800}, {&(0x7f0000010500)="2e20202020202020202020100098e670325132510000e67032510300000000002e2e202020202020202020100098e670325132510000e670325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200098e670325132510000e670325104001a040000", 0x80, 0x2800}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x3000}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0x3800}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x6800}], 0x0, &(0x7f0000010d00)) [ 118.990059] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 118.993679] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 118.997314] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 119.005680] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 119.012557] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 119.275581] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 119.279171] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 119.287283] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 119.296533] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 119.302852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 119.305662] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 119.316335] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 119.320866] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 119.328449] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 119.334152] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 119.337780] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 119.340446] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 119.353582] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 119.356311] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 119.366516] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 119.368509] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 119.371248] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 119.374528] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 119.424978] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 119.446868] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 119.475433] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 119.481122] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 119.483693] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 119.486004] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 119.497512] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 119.508859] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 119.511782] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 119.521320] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 119.563309] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 119.565892] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 119.570437] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 119.601523] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 119.606779] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 119.614609] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 119.622428] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 121.075116] Bluetooth: hci0: command tx timeout [ 121.458198] Bluetooth: hci3: command tx timeout [ 121.459414] Bluetooth: hci1: command tx timeout [ 121.460105] Bluetooth: hci2: command tx timeout [ 121.522142] Bluetooth: hci4: command tx timeout [ 121.586128] Bluetooth: hci6: command tx timeout [ 121.650226] Bluetooth: hci5: command tx timeout [ 121.714128] Bluetooth: hci7: command tx timeout [ 123.123177] Bluetooth: hci0: command tx timeout [ 123.506105] Bluetooth: hci2: command tx timeout [ 123.506600] Bluetooth: hci1: command tx timeout [ 123.507055] Bluetooth: hci3: command tx timeout [ 123.570115] Bluetooth: hci4: command tx timeout [ 123.634652] Bluetooth: hci6: command tx timeout [ 123.698335] Bluetooth: hci5: command tx timeout [ 123.762335] Bluetooth: hci7: command tx timeout [ 125.170499] Bluetooth: hci0: command tx timeout [ 125.554240] Bluetooth: hci3: command tx timeout [ 125.554298] Bluetooth: hci2: command tx timeout [ 125.554742] Bluetooth: hci1: command tx timeout [ 125.618849] Bluetooth: hci4: command tx timeout [ 125.683094] Bluetooth: hci6: command tx timeout [ 125.746746] Bluetooth: hci5: command tx timeout [ 125.810179] Bluetooth: hci7: command tx timeout [ 127.218344] Bluetooth: hci0: command tx timeout [ 127.602433] Bluetooth: hci1: command tx timeout [ 127.603329] Bluetooth: hci2: command tx timeout [ 127.603754] Bluetooth: hci3: command tx timeout [ 127.667290] Bluetooth: hci4: command tx timeout [ 127.730269] Bluetooth: hci6: command tx timeout [ 127.795133] Bluetooth: hci5: command tx timeout [ 127.860343] Bluetooth: hci7: command tx timeout [ 179.559721] syz-executor.2 (284) used greatest stack depth: 24912 bytes left [ 181.904960] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 181.911524] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 181.929811] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 181.939896] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 181.943843] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 181.977913] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 181.986351] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 181.990978] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 181.994405] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 182.008329] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 182.018345] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 182.030399] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 182.031806] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 182.041832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 182.043133] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 182.046342] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 182.048815] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 182.064990] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 182.070537] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 182.085994] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 182.093209] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 182.094415] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 182.098487] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 182.107674] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 182.114716] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 182.123825] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 182.125218] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 182.127531] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 182.135882] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 182.141940] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 182.143914] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 182.146567] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 182.153576] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 182.173551] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 182.189294] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 182.263348] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 182.288508] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 182.301336] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 182.320820] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 182.328305] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 184.051182] Bluetooth: hci0: command tx timeout [ 184.114579] Bluetooth: hci1: command tx timeout [ 184.178530] Bluetooth: hci4: command tx timeout [ 184.179587] Bluetooth: hci2: command tx timeout [ 184.242203] Bluetooth: hci5: command tx timeout [ 184.243559] Bluetooth: hci3: command tx timeout [ 184.370863] Bluetooth: hci7: command tx timeout [ 184.372597] Bluetooth: hci6: command tx timeout [ 186.098348] Bluetooth: hci0: command tx timeout [ 186.162361] Bluetooth: hci1: command tx timeout [ 186.226966] Bluetooth: hci2: command tx timeout [ 186.227494] Bluetooth: hci4: command tx timeout [ 186.290985] Bluetooth: hci3: command tx timeout [ 186.291510] Bluetooth: hci5: command tx timeout [ 186.418328] Bluetooth: hci7: command tx timeout [ 186.419314] Bluetooth: hci6: command tx timeout [ 188.146878] Bluetooth: hci0: command tx timeout [ 188.210592] Bluetooth: hci1: command tx timeout [ 188.275574] Bluetooth: hci2: command tx timeout [ 188.276585] Bluetooth: hci4: command tx timeout [ 188.338157] Bluetooth: hci3: command tx timeout [ 188.338816] Bluetooth: hci5: command tx timeout [ 188.467081] Bluetooth: hci6: command tx timeout [ 188.467751] Bluetooth: hci7: command tx timeout [ 190.194095] Bluetooth: hci0: command tx timeout [ 190.258116] Bluetooth: hci1: command tx timeout [ 190.322260] Bluetooth: hci4: command tx timeout [ 190.322737] Bluetooth: hci2: command tx timeout [ 190.386328] Bluetooth: hci5: command tx timeout [ 190.386806] Bluetooth: hci3: command tx timeout [ 190.515151] Bluetooth: hci7: command tx timeout [ 190.515634] Bluetooth: hci6: command tx timeout [ 244.602701] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 244.605513] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 244.607857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 244.613544] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 244.617396] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 244.749983] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 244.769845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 244.782276] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 244.796970] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 244.803332] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 244.808556] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 244.813394] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 244.821671] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 244.824312] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 244.830112] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 244.976393] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 244.979820] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 244.987592] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 244.995617] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 245.013245] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 245.014755] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 245.018654] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 245.026121] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 245.036786] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 245.039914] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 245.040241] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 245.063500] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 245.066913] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 245.067836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 245.090236] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 245.127686] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 245.138751] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 245.162330] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 245.172545] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 245.193719] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 245.209570] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 245.211714] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 245.222490] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 245.225812] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 245.229811] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 246.642683] Bluetooth: hci0: command tx timeout [ 246.899288] Bluetooth: hci2: command tx timeout [ 246.899403] Bluetooth: hci1: command tx timeout [ 247.156122] Bluetooth: hci4: command tx timeout [ 247.156158] Bluetooth: hci3: command tx timeout [ 247.219164] Bluetooth: hci5: command tx timeout [ 247.283103] Bluetooth: hci7: command tx timeout [ 247.347607] Bluetooth: hci6: command tx timeout [ 248.691405] Bluetooth: hci0: command tx timeout [ 248.948223] Bluetooth: hci1: command tx timeout [ 248.948247] Bluetooth: hci2: command tx timeout [ 249.202083] Bluetooth: hci3: command tx timeout [ 249.203256] Bluetooth: hci4: command tx timeout [ 249.267113] Bluetooth: hci5: command tx timeout [ 249.330173] Bluetooth: hci7: command tx timeout [ 249.394137] Bluetooth: hci6: command tx timeout [ 250.740040] Bluetooth: hci0: command tx timeout [ 250.994072] Bluetooth: hci2: command tx timeout [ 250.994137] Bluetooth: hci1: command tx timeout [ 251.250598] Bluetooth: hci4: command tx timeout [ 251.250677] Bluetooth: hci3: command tx timeout [ 251.314074] Bluetooth: hci5: command tx timeout [ 251.378276] Bluetooth: hci7: command tx timeout [ 251.442478] Bluetooth: hci6: command tx timeout [ 252.786288] Bluetooth: hci0: command tx timeout [ 253.042539] Bluetooth: hci2: command tx timeout [ 253.042682] Bluetooth: hci1: command tx timeout [ 253.298179] Bluetooth: hci4: command tx timeout [ 253.298978] Bluetooth: hci3: command tx timeout [ 253.364053] Bluetooth: hci5: command tx timeout [ 253.426325] Bluetooth: hci7: command tx timeout [ 253.490281] Bluetooth: hci6: command tx timeout [ 307.075487] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 307.081577] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 307.085638] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 307.100773] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 307.110118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 307.161825] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 307.168113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 307.170507] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 307.179559] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 307.186647] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 307.258686] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 307.262329] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 307.265397] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 307.284805] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 307.291631] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 307.293616] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 307.302155] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 307.328556] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 307.337983] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 307.357424] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 307.770114] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 307.772666] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 307.808568] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 307.809593] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 307.820201] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 307.839140] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 307.858584] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 307.858800] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 307.860663] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 307.863943] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 307.864103] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 307.864796] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 307.871757] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 307.888779] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 307.905726] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 307.906033] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 307.907263] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 307.923796] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 308.013296] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 308.044142] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 309.171306] Bluetooth: hci0: command tx timeout [ 309.234129] Bluetooth: hci1: command tx timeout [ 309.363312] Bluetooth: hci2: command tx timeout [ 309.490130] Bluetooth: hci3: command tx timeout [ 310.066204] Bluetooth: hci7: command tx timeout [ 310.067467] Bluetooth: hci5: command tx timeout [ 310.130186] Bluetooth: hci6: command tx timeout [ 310.516085] Bluetooth: hci4: command tx timeout [ 311.218241] Bluetooth: hci0: command tx timeout [ 311.282134] Bluetooth: hci1: command tx timeout [ 311.410181] Bluetooth: hci2: command tx timeout [ 311.538145] Bluetooth: hci3: command tx timeout [ 312.114263] Bluetooth: hci5: command tx timeout [ 312.114761] Bluetooth: hci7: command tx timeout [ 312.178304] Bluetooth: hci6: command tx timeout [ 312.562342] Bluetooth: hci4: command tx timeout [ 313.266202] Bluetooth: hci0: command tx timeout [ 313.331280] Bluetooth: hci1: command tx timeout [ 313.458347] Bluetooth: hci2: command tx timeout [ 313.586338] Bluetooth: hci3: command tx timeout [ 314.162424] Bluetooth: hci5: command tx timeout [ 314.162889] Bluetooth: hci7: command tx timeout [ 314.226293] Bluetooth: hci6: command tx timeout [ 314.610253] Bluetooth: hci4: command tx timeout [ 315.314106] Bluetooth: hci0: command tx timeout [ 315.378278] Bluetooth: hci1: command tx timeout [ 315.506129] Bluetooth: hci2: command tx timeout [ 315.634117] Bluetooth: hci3: command tx timeout [ 316.210271] Bluetooth: hci7: command tx timeout [ 316.210750] Bluetooth: hci5: command tx timeout [ 316.274579] Bluetooth: hci6: command tx timeout [ 316.659066] Bluetooth: hci4: command tx timeout [ 367.752135] syz-executor.4 (7347) used greatest stack depth: 24792 bytes left [ 369.929414] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 369.933597] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 369.939580] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 369.947173] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 369.951793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 370.078218] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 370.081226] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 370.083658] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 370.094258] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 370.111693] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 370.219281] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 370.229704] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 370.231715] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 370.237565] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 370.243729] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 370.246920] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 370.251610] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 370.264968] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 370.273449] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 370.279229] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 370.352886] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 370.358483] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 370.360575] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 370.370543] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 370.380572] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 370.380607] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 370.384670] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 370.387627] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 370.397861] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 370.407627] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 370.414515] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 370.418398] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 370.422355] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 370.426520] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 370.428947] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 370.620293] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 370.634703] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 370.658524] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 370.665790] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 370.675972] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 372.018140] Bluetooth: hci0: command tx timeout [ 372.147296] Bluetooth: hci1: command tx timeout [ 372.338382] Bluetooth: hci2: command tx timeout [ 372.339089] Bluetooth: hci3: command tx timeout [ 372.530203] Bluetooth: hci6: command tx timeout [ 372.530234] Bluetooth: hci4: command tx timeout [ 372.786301] Bluetooth: hci7: command tx timeout [ 372.914117] Bluetooth: hci5: command tx timeout [ 374.066138] Bluetooth: hci0: command tx timeout [ 374.195476] Bluetooth: hci1: command tx timeout [ 374.386867] Bluetooth: hci3: command tx timeout [ 374.387431] Bluetooth: hci2: command tx timeout [ 374.578297] Bluetooth: hci6: command tx timeout [ 374.581055] Bluetooth: hci4: command tx timeout [ 374.834211] Bluetooth: hci7: command tx timeout [ 374.962283] Bluetooth: hci5: command tx timeout [ 376.114355] Bluetooth: hci0: command tx timeout [ 376.242686] Bluetooth: hci1: command tx timeout [ 376.434076] Bluetooth: hci3: command tx timeout [ 376.436053] Bluetooth: hci2: command tx timeout [ 376.626345] Bluetooth: hci4: command tx timeout [ 376.626812] Bluetooth: hci6: command tx timeout [ 376.883274] Bluetooth: hci7: command tx timeout [ 377.011958] Bluetooth: hci5: command tx timeout [ 378.164359] Bluetooth: hci0: command tx timeout [ 378.291069] Bluetooth: hci1: command tx timeout [ 378.482381] Bluetooth: hci2: command tx timeout [ 378.483179] Bluetooth: hci3: command tx timeout [ 378.674606] Bluetooth: hci6: command tx timeout [ 378.675628] Bluetooth: hci4: command tx timeout [ 378.931274] Bluetooth: hci7: command tx timeout [ 379.058454] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 19:44:19 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffffffff819fc825 RCX=ffff88802b61748c RDX=1ffff110056c2eb2 RSI=ffffffff85c1cc40 RDI=ffffffff819fc825 RBP=ffff88802b617590 RSP=ffff88802b617510 R8 =0000000000000001 R9 =ffff88802b617578 R10=000000000003b53d R11=00000000000225db R12=ffff88802b617600 R13=0000000000000000 R14=ffff88802e4d1b80 R15=0000000000000004 RIP=ffffffff8142fb51 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3bb1158540 00000000 00000000 GS =0000 ffff8880e5630000 00000000 00000000 LDT=0000 fffffe3d00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3bb1229710 CR3=000000002a989000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000ff0000000000000000000000ff XMM01=ffffff0000ff00ffffffffffffffff00 XMM02=494c4700362e322e325f4342494c4700 XMM03=00000000000000000000000000004700 XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81859d2c RDX=ffff88802a20d280 RSI=ffffffff81859d35 RDI=0000000000000000 RBP=0000000000000000 RSP=ffff88806cf08ce8 R8 =0000000000000000 R9 =ffffed100d9e6de0 R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=ffff88806cf311a0 RIP=ffffffff81859d37 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e5730000 00000000 00000000 LDT=0000 fffffe5300000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000558ad93154c8 CR3=00000000337c7000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6f732e616d7a6c62696c2f756e672d78 XMM02=00352e6f732e616d7a6c62696c2f756e XMM03=672d78756e696c2d34365f3638782f62 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000