Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:48607' (ECDSA) to the list of known hosts. 2025/06/26 15:45:55 fuzzer started 2025/06/26 15:45:56 dialing manager at localhost:45637 syzkaller login: [ 101.124477] cgroup: Unknown subsys name 'net' [ 101.271112] cgroup: Unknown subsys name 'cpuset' [ 101.316903] cgroup: Unknown subsys name 'rlimit' 2025/06/26 15:46:18 syscalls: 2214 2025/06/26 15:46:18 code coverage: enabled 2025/06/26 15:46:18 comparison tracing: enabled 2025/06/26 15:46:18 extra coverage: enabled 2025/06/26 15:46:18 setuid sandbox: enabled 2025/06/26 15:46:18 namespace sandbox: enabled 2025/06/26 15:46:18 Android sandbox: enabled 2025/06/26 15:46:18 fault injection: enabled 2025/06/26 15:46:18 leak checking: enabled 2025/06/26 15:46:18 net packet injection: enabled 2025/06/26 15:46:18 net device setup: enabled 2025/06/26 15:46:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/06/26 15:46:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/06/26 15:46:18 USB emulation: enabled 2025/06/26 15:46:18 hci packet injection: enabled 2025/06/26 15:46:18 wifi device emulation: enabled 2025/06/26 15:46:18 802.15.4 emulation: enabled 2025/06/26 15:46:18 fetching corpus: 0, signal 0/0 (executing program) 2025/06/26 15:46:18 fetching corpus: 0, signal 0/0 (executing program) 2025/06/26 15:46:21 starting 8 fuzzer processes 15:46:21 executing program 0: request_key(&(0x7f0000000380)='cifs.spnego\x00', &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0) 15:46:21 executing program 3: rt_sigsuspend(&(0x7f0000000600)={[0x80000001]}, 0x8) 15:46:21 executing program 1: r0 = io_uring_setup(0x46f6, &(0x7f00000000c0)={0x0, 0xf4dd}) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)=[0xffffffffffffffff]}, 0x1) 15:46:21 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x44, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x44}}, 0x0) syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={@wo_ht={{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void, @void, @void, @void, @void, @void}, 0x36) nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, &(0x7f0000000380)) syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=@mgmt_frame=@auth={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e) nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480)) syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=@mgmt_frame=@assoc_resp={@wo_ht={{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x1, 0x0, @default, @val={0x1, 0x8, [{0x2, 0x1}, {0x4, 0x1}, {0xb, 0x1}, {0x16, 0x1}, {0xc}, {0x12}, {0x18}, {0x24}]}, @void}, 0x28) 15:46:21 executing program 4: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0xfffff531}) 15:46:21 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x1b, 0x0, 0x0) [ 125.556515] audit: type=1400 audit(1750952781.168:7): avc: denied { execmem } for pid=282 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:46:21 executing program 7: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x2c, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001000008000000d2420100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e37343139313330323700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e7e1fc40a6de4c28a2c3627f6ec42b47010040000c00000000000000daf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000004600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0300000004000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000daf4655fdaf4655fdaf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011600)="ed41000000080000daf4655fddf4655fddf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011700)="20000000541597055415970500000000daf4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000030000000", 0x40, 0x2200}, {&(0x7f0000011900)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011a00)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000040000000", 0x40, 0x2300}, {&(0x7f0000011b00)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2380}, {&(0x7f0000011c00)="c041000000400000daf4655fdaf4655fdaf4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2a00}, {&(0x7f0000011d00)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2a80}, {&(0x7f0000011e00)="ed41000000080000ddf4655fddf4655fddf4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000eb7155bc00000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2b00}, {&(0x7f0000011f00)="ed8100001a040000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000060000000000000000000000000000000000000000000000000000000000000000000000000000000af6989a500000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2c00}, {&(0x7f0000012000)="ffa1000026000000ddf4655fddf4655fddf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3734313931333032372f66696c65302f66696c653000000000000000000000000000000000000000000000725ed7c600000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2d00}, {&(0x7f0000012100)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000700000000000000000000000000000000000000000000000000000000000000000000000000000006bb7ad8500000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000000002ea06015400000000000600000000000000786174747231000006014c0000000000060000000000000078617474723200000000000000000000000000000000000000000000000000000000000078617474723200007861747472310000ed81000028230000ddf4655fddf4655fddf4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000080000000000000000000000000000000000000000000000000000000000000000000000000000000b712b64f00000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0x1a0, 0x2e00}, {&(0x7f0000012300)="ed81000064000000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000900000000000000000000000000000000000000000000000000000000000000000000000000000003e5e55c600000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x3000}, {&(0x7f0000012400)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012500)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012800)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012a00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012b00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012c00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x18000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x18400}, {&(0x7f0000012f00)="0300"/32, 0x20, 0x18800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x18c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x19000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x19400}, {&(0x7f0000013300)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x20000}, {&(0x7f0000013400)="0200"/32, 0x20, 0x20400}, {&(0x7f0000013500)="0300"/32, 0x20, 0x20800}, {&(0x7f0000013600)="0400"/32, 0x20, 0x20c00}, {&(0x7f0000013700)="0500"/32, 0x20, 0x21000}, {&(0x7f0000013800)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x21400}, {&(0x7f0000013900)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000013a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}, {&(0x7f0000013f00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000014000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x48000}], 0x0, &(0x7f0000014100)) 15:46:21 executing program 6: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) mmap$binder(&(0x7f00000a0000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0) mmap$binder(&(0x7f00000c0000)=nil, 0x2000, 0x1, 0x11, r1, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000100)={0x4c, 0x0, &(0x7f0000000140)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f00000001c0)={@flat, @fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000240)=""/10, 0xa}}, &(0x7f0000000280)={0x0, 0x18, 0x30}}, 0x10}], 0x0, 0x0, &(0x7f00000002c0)}) [ 126.902856] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 126.920323] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 126.924259] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 126.927417] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 126.933669] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 126.935937] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 126.939377] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 126.943022] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 126.956008] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 126.959154] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 126.963504] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 126.971132] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 126.974663] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 127.002527] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 127.017303] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 127.054189] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 127.061019] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 127.065981] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 127.078370] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 127.088130] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 127.098243] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 127.102572] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 127.110014] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 127.132321] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 127.135140] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 127.140092] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 127.146988] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 127.148343] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 127.165302] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 127.169974] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 127.173641] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 127.196314] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 127.196952] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 127.207660] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 127.210946] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 127.219766] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 127.223910] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 127.244194] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 127.256433] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 127.267405] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 128.974428] Bluetooth: hci1: command tx timeout [ 129.038068] Bluetooth: hci0: command tx timeout [ 129.101973] Bluetooth: hci2: command tx timeout [ 129.166257] Bluetooth: hci4: command tx timeout [ 129.229850] Bluetooth: hci3: command tx timeout [ 129.293982] Bluetooth: hci6: command tx timeout [ 129.358018] Bluetooth: hci7: command tx timeout [ 129.358291] Bluetooth: hci5: command tx timeout [ 131.022174] Bluetooth: hci1: command tx timeout [ 131.086816] Bluetooth: hci0: command tx timeout [ 131.149896] Bluetooth: hci2: command tx timeout [ 131.214690] Bluetooth: hci4: command tx timeout [ 131.277939] Bluetooth: hci3: command tx timeout [ 131.343820] Bluetooth: hci6: command tx timeout [ 131.406112] Bluetooth: hci7: command tx timeout [ 131.406510] Bluetooth: hci5: command tx timeout [ 133.069905] Bluetooth: hci1: command tx timeout [ 133.134191] Bluetooth: hci0: command tx timeout [ 133.198052] Bluetooth: hci2: command tx timeout [ 133.261805] Bluetooth: hci4: command tx timeout [ 133.326352] Bluetooth: hci3: command tx timeout [ 133.390911] Bluetooth: hci6: command tx timeout [ 133.453891] Bluetooth: hci7: command tx timeout [ 133.456734] Bluetooth: hci5: command tx timeout [ 135.118233] Bluetooth: hci1: command tx timeout [ 135.181930] Bluetooth: hci0: command tx timeout [ 135.247296] Bluetooth: hci2: command tx timeout [ 135.310088] Bluetooth: hci4: command tx timeout [ 135.374141] Bluetooth: hci3: command tx timeout [ 135.438427] Bluetooth: hci6: command tx timeout [ 135.501902] Bluetooth: hci5: command tx timeout [ 135.502782] Bluetooth: hci7: command tx timeout [ 190.051100] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 190.055556] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 190.061361] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 190.072581] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 190.076497] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 190.138778] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 190.144621] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 190.149266] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 190.150104] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 190.156405] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 190.162232] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 190.165199] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 190.170641] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 190.188979] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 190.199816] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 190.215116] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 190.229817] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 190.241767] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 190.253378] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 190.259386] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 190.345793] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 190.371997] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 190.383629] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 190.411812] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 190.425087] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 190.611819] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 190.620360] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 190.621129] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 190.626678] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 190.627293] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 190.632363] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 190.637287] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 190.638961] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 190.686562] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 190.688155] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 190.712316] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 190.726241] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 190.727343] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 190.768470] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 190.824757] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 192.142991] Bluetooth: hci0: command tx timeout [ 192.271756] Bluetooth: hci1: command tx timeout [ 192.334828] Bluetooth: hci3: command tx timeout [ 192.462841] Bluetooth: hci2: command tx timeout [ 192.525810] Bluetooth: hci6: command tx timeout [ 192.910314] Bluetooth: hci5: command tx timeout [ 192.911971] Bluetooth: hci7: command tx timeout [ 192.974542] Bluetooth: hci4: command tx timeout [ 194.192067] Bluetooth: hci0: command tx timeout [ 194.318291] Bluetooth: hci1: command tx timeout [ 194.381911] Bluetooth: hci3: command tx timeout [ 194.511289] Bluetooth: hci2: command tx timeout [ 194.574059] Bluetooth: hci6: command tx timeout [ 194.960246] Bluetooth: hci5: command tx timeout [ 194.961160] Bluetooth: hci7: command tx timeout [ 195.021845] Bluetooth: hci4: command tx timeout [ 196.237851] Bluetooth: hci0: command tx timeout [ 196.365876] Bluetooth: hci1: command tx timeout [ 196.430020] Bluetooth: hci3: command tx timeout [ 196.557900] Bluetooth: hci2: command tx timeout [ 196.622113] Bluetooth: hci6: command tx timeout [ 197.006315] Bluetooth: hci7: command tx timeout [ 197.007340] Bluetooth: hci5: command tx timeout [ 197.070183] Bluetooth: hci4: command tx timeout [ 198.286790] Bluetooth: hci0: command tx timeout [ 198.413801] Bluetooth: hci1: command tx timeout [ 198.477792] Bluetooth: hci3: command tx timeout [ 198.606774] Bluetooth: hci2: command tx timeout [ 198.670124] Bluetooth: hci6: command tx timeout [ 199.053832] Bluetooth: hci5: command tx timeout [ 199.054324] Bluetooth: hci7: command tx timeout [ 199.119070] Bluetooth: hci4: command tx timeout [ 252.067980] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 252.071284] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 252.074677] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 252.083048] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 252.090666] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 252.320392] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 252.327528] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 252.330082] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 252.348209] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 252.362333] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 252.414330] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 252.426392] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 252.439211] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 252.458350] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 252.467032] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 252.472494] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 252.479634] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 252.487530] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 252.489855] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 252.505830] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 252.571148] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 252.607025] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 252.613995] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 252.619208] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 252.624986] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 252.627184] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 252.631802] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 252.632279] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 252.638664] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 252.642931] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 252.647558] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 252.652367] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 252.654344] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 252.660226] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 252.662948] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 252.694196] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 252.704493] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 252.706432] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 252.717404] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 252.721197] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 254.158047] Bluetooth: hci0: command tx timeout [ 254.413811] Bluetooth: hci1: command tx timeout [ 254.541916] Bluetooth: hci2: command tx timeout [ 254.605795] Bluetooth: hci3: command tx timeout [ 254.735005] Bluetooth: hci4: command tx timeout [ 254.799217] Bluetooth: hci7: command tx timeout [ 254.862922] Bluetooth: hci5: command tx timeout [ 254.926120] Bluetooth: hci6: command tx timeout [ 256.205905] Bluetooth: hci0: command tx timeout [ 256.462751] Bluetooth: hci1: command tx timeout [ 256.589853] Bluetooth: hci2: command tx timeout [ 256.653994] Bluetooth: hci3: command tx timeout [ 256.781979] Bluetooth: hci4: command tx timeout [ 256.847992] Bluetooth: hci7: command tx timeout [ 256.910577] Bluetooth: hci5: command tx timeout [ 256.974037] Bluetooth: hci6: command tx timeout [ 258.254139] Bluetooth: hci0: command tx timeout [ 258.510558] Bluetooth: hci1: command tx timeout [ 258.637797] Bluetooth: hci2: command tx timeout [ 258.701829] Bluetooth: hci3: command tx timeout [ 258.831735] Bluetooth: hci4: command tx timeout [ 258.893796] Bluetooth: hci7: command tx timeout [ 258.958235] Bluetooth: hci5: command tx timeout [ 259.022063] Bluetooth: hci6: command tx timeout [ 260.302001] Bluetooth: hci0: command tx timeout [ 260.557806] Bluetooth: hci1: command tx timeout [ 260.685832] Bluetooth: hci2: command tx timeout [ 260.750733] Bluetooth: hci3: command tx timeout [ 260.878668] Bluetooth: hci4: command tx timeout [ 260.941781] Bluetooth: hci7: command tx timeout [ 261.006009] Bluetooth: hci5: command tx timeout [ 261.069918] Bluetooth: hci6: command tx timeout [ 314.404928] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 314.412432] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 314.415543] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 314.426046] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 314.433031] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 314.535165] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 314.542102] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 314.545206] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 314.557471] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 314.565202] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 314.800722] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 314.808558] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 314.811191] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 314.816684] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 314.818656] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 314.826039] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 314.836283] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 314.922374] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 314.925356] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 314.928027] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 314.932588] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 314.942278] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 314.947421] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 314.959521] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 314.962221] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 314.968149] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 314.982597] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 314.993321] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 314.993469] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 315.003274] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 315.013971] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 315.020387] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 315.033643] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 315.042276] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 315.073183] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 315.227499] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 315.294355] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 315.308199] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 315.385607] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 315.432462] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 316.493779] Bluetooth: hci0: command tx timeout [ 316.622017] Bluetooth: hci1: command tx timeout [ 317.070027] Bluetooth: hci3: command tx timeout [ 317.133825] Bluetooth: hci5: command tx timeout [ 317.261931] Bluetooth: hci4: command tx timeout [ 317.262826] Bluetooth: hci6: command tx timeout [ 317.263334] Bluetooth: hci2: command tx timeout [ 317.517835] Bluetooth: hci7: command tx timeout [ 318.541786] Bluetooth: hci0: command tx timeout [ 318.670034] Bluetooth: hci1: command tx timeout [ 319.117805] Bluetooth: hci3: command tx timeout [ 319.183902] Bluetooth: hci5: command tx timeout [ 319.309838] Bluetooth: hci2: command tx timeout [ 319.310346] Bluetooth: hci6: command tx timeout [ 319.310829] Bluetooth: hci4: command tx timeout [ 319.565857] Bluetooth: hci7: command tx timeout [ 320.590222] Bluetooth: hci0: command tx timeout [ 320.717781] Bluetooth: hci1: command tx timeout [ 321.166163] Bluetooth: hci3: command tx timeout [ 321.229786] Bluetooth: hci5: command tx timeout [ 321.359836] Bluetooth: hci2: command tx timeout [ 321.360330] Bluetooth: hci4: command tx timeout [ 321.360923] Bluetooth: hci6: command tx timeout [ 321.613768] Bluetooth: hci7: command tx timeout [ 322.637848] Bluetooth: hci0: command tx timeout [ 322.765797] Bluetooth: hci1: command tx timeout [ 323.215135] Bluetooth: hci3: command tx timeout [ 323.277790] Bluetooth: hci5: command tx timeout [ 323.407235] Bluetooth: hci6: command tx timeout [ 323.408640] Bluetooth: hci4: command tx timeout [ 323.409101] Bluetooth: hci2: command tx timeout [ 323.663743] Bluetooth: hci7: command tx timeout [ 376.941580] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 376.945534] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 376.948480] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 376.957612] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 376.963193] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 377.186727] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 377.190517] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 377.197215] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 377.209377] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 377.225238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 377.315057] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 377.320163] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 377.330838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 377.340019] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 377.360094] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 377.413484] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 377.442115] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 377.445267] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 377.453427] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 377.472320] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 377.475900] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 377.478286] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 377.481965] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 377.487586] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 377.505295] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 377.509194] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 377.514265] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 377.515919] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 377.531564] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 377.546525] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 377.576055] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 377.582273] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 377.593041] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 377.610268] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 377.624357] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 377.767756] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 377.775292] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 377.805240] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 377.897637] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 377.923190] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 379.021906] Bluetooth: hci0: command tx timeout [ 379.277839] Bluetooth: hci1: command tx timeout [ 379.405991] Bluetooth: hci2: command tx timeout [ 379.597888] Bluetooth: hci5: command tx timeout [ 379.598787] Bluetooth: hci4: command tx timeout [ 379.661970] Bluetooth: hci3: command tx timeout [ 379.662955] Bluetooth: hci6: command tx timeout [ 380.046101] Bluetooth: hci7: command tx timeout [ 381.069963] Bluetooth: hci0: command tx timeout [ 381.325760] Bluetooth: hci1: command tx timeout [ 381.453787] Bluetooth: hci2: command tx timeout [ 381.645910] Bluetooth: hci5: command tx timeout [ 381.646347] Bluetooth: hci4: command tx timeout [ 381.709820] Bluetooth: hci3: command tx timeout [ 381.710251] Bluetooth: hci6: command tx timeout [ 382.093787] Bluetooth: hci7: command tx timeout [ 383.117761] Bluetooth: hci0: command tx timeout [ 383.375794] Bluetooth: hci1: command tx timeout [ 383.501838] Bluetooth: hci2: command tx timeout [ 383.694013] Bluetooth: hci5: command tx timeout [ 383.694894] Bluetooth: hci4: command tx timeout [ 383.757904] Bluetooth: hci6: command tx timeout [ 383.759261] Bluetooth: hci3: command tx timeout [ 384.141915] Bluetooth: hci7: command tx timeout [ 385.166088] Bluetooth: hci0: command tx timeout [ 385.421817] Bluetooth: hci1: command tx timeout [ 385.550115] Bluetooth: hci2: command tx timeout [ 385.742168] Bluetooth: hci4: command tx timeout [ 385.742643] Bluetooth: hci5: command tx timeout [ 385.807096] Bluetooth: hci3: command tx timeout [ 385.807573] Bluetooth: hci6: command tx timeout [ 386.190013] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 15:51:24 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88800e888e40 RCX=ffffffff819b4730 RDX=ffffed1005aa46e4 RSI=0000000000000004 RDI=ffff88802d523718 RBP=0000000040000001 RSP=ffff8880340ef9e8 R8 =0000000000000001 R9 =ffffed1005aa46e3 R10=ffff88802d52371b R11=0000000000000001 R12=ffff88800e888dc0 R13=ffff88802d523700 R14=dffffc0000000000 R15=ffff88802d523700 RIP=ffffffff819b4739 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e55f6000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffe49a58de0 CR3=000000002c2fd000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00ff0000000000000000000000ff0000 XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000089800 RCX=ffffea0000266d00 RDX=0000000000000000 RSI=ffff8880099b4cb8 RDI=ffffed1001336997 RBP=ffffffff815c4cd8 RSP=ffff888009747c38 R8 =0000000000000001 R9 =0000000000000128 R10=ffffffff86437a57 R11=0000000000000001 R12=ffff8880099b4cb8 R13=ffffea0000266d00 R14=0000000000000000 R15=ffff8880099b4cb8 RIP=ffffffff81ae94e0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff8880e56f6000 00000000 00000000 LDT=0000 fffffe6000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc61f58c98 CR3=0000000031187000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0070656474666f732e73656c75646f6d XMM01=0070656474666f732e73656c75646f6d XMM02=00000000000000000000ffffffffffff XMM03=00000000000000000000ff00000000ff XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=676f6c206d6f74737563000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000