syzkaller login: [ 43.406564] sshd (243) used greatest stack depth: 24624 bytes left Warning: Permanently added '[localhost]:31474' (ECDSA) to the list of known hosts. 2022/09/12 16:37:27 fuzzer started 2022/09/12 16:37:27 dialing manager at localhost:38027 [ 45.414662] cgroup: Unknown subsys name 'net' [ 45.497218] cgroup: Unknown subsys name 'rlimit' 2022/09/12 16:37:42 syscalls: 2215 2022/09/12 16:37:42 code coverage: enabled 2022/09/12 16:37:42 comparison tracing: enabled 2022/09/12 16:37:42 extra coverage: enabled 2022/09/12 16:37:42 setuid sandbox: enabled 2022/09/12 16:37:42 namespace sandbox: enabled 2022/09/12 16:37:42 Android sandbox: enabled 2022/09/12 16:37:42 fault injection: enabled 2022/09/12 16:37:42 leak checking: enabled 2022/09/12 16:37:42 net packet injection: enabled 2022/09/12 16:37:42 net device setup: enabled 2022/09/12 16:37:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 16:37:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 16:37:42 USB emulation: enabled 2022/09/12 16:37:42 hci packet injection: enabled 2022/09/12 16:37:42 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 16:37:42 802.15.4 emulation: enabled 2022/09/12 16:37:42 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 16:37:42 fetching corpus: 50, signal 19702/23402 (executing program) 2022/09/12 16:37:42 fetching corpus: 100, signal 43973/48922 (executing program) 2022/09/12 16:37:42 fetching corpus: 150, signal 51477/57787 (executing program) 2022/09/12 16:37:43 fetching corpus: 200, signal 61981/69457 (executing program) 2022/09/12 16:37:43 fetching corpus: 250, signal 68625/77251 (executing program) 2022/09/12 16:37:43 fetching corpus: 300, signal 74244/83991 (executing program) 2022/09/12 16:37:43 fetching corpus: 350, signal 79373/90187 (executing program) 2022/09/12 16:37:43 fetching corpus: 400, signal 83908/95692 (executing program) 2022/09/12 16:37:43 fetching corpus: 450, signal 88117/100868 (executing program) 2022/09/12 16:37:44 fetching corpus: 500, signal 92631/106238 (executing program) 2022/09/12 16:37:44 fetching corpus: 550, signal 95205/109805 (executing program) 2022/09/12 16:37:44 fetching corpus: 600, signal 98040/113522 (executing program) 2022/09/12 16:37:44 fetching corpus: 650, signal 101007/117364 (executing program) 2022/09/12 16:37:44 fetching corpus: 700, signal 104101/121203 (executing program) 2022/09/12 16:37:44 fetching corpus: 750, signal 107132/124960 (executing program) 2022/09/12 16:37:44 fetching corpus: 800, signal 109908/128529 (executing program) 2022/09/12 16:37:45 fetching corpus: 850, signal 113989/133103 (executing program) 2022/09/12 16:37:45 fetching corpus: 900, signal 116544/136393 (executing program) 2022/09/12 16:37:45 fetching corpus: 950, signal 118626/139155 (executing program) 2022/09/12 16:37:45 fetching corpus: 1000, signal 120907/142107 (executing program) 2022/09/12 16:37:45 fetching corpus: 1050, signal 122984/144838 (executing program) 2022/09/12 16:37:45 fetching corpus: 1100, signal 125636/148025 (executing program) 2022/09/12 16:37:45 fetching corpus: 1150, signal 127122/150214 (executing program) 2022/09/12 16:37:45 fetching corpus: 1200, signal 129309/152872 (executing program) 2022/09/12 16:37:45 fetching corpus: 1250, signal 131230/155313 (executing program) 2022/09/12 16:37:46 fetching corpus: 1300, signal 133662/158124 (executing program) 2022/09/12 16:37:46 fetching corpus: 1350, signal 135325/160331 (executing program) 2022/09/12 16:37:46 fetching corpus: 1400, signal 137041/162576 (executing program) 2022/09/12 16:37:46 fetching corpus: 1450, signal 138515/164556 (executing program) 2022/09/12 16:37:46 fetching corpus: 1500, signal 140215/166753 (executing program) 2022/09/12 16:37:46 fetching corpus: 1550, signal 142923/169651 (executing program) 2022/09/12 16:37:46 fetching corpus: 1600, signal 143911/171246 (executing program) 2022/09/12 16:37:46 fetching corpus: 1650, signal 145331/173082 (executing program) 2022/09/12 16:37:46 fetching corpus: 1700, signal 146803/174962 (executing program) 2022/09/12 16:37:46 fetching corpus: 1750, signal 147775/176489 (executing program) 2022/09/12 16:37:47 fetching corpus: 1800, signal 149297/178412 (executing program) 2022/09/12 16:37:47 fetching corpus: 1850, signal 151446/180653 (executing program) 2022/09/12 16:37:47 fetching corpus: 1900, signal 153921/183119 (executing program) 2022/09/12 16:37:47 fetching corpus: 1950, signal 154993/184604 (executing program) 2022/09/12 16:37:47 fetching corpus: 2000, signal 156655/186441 (executing program) 2022/09/12 16:37:47 fetching corpus: 2050, signal 157624/187864 (executing program) 2022/09/12 16:37:47 fetching corpus: 2100, signal 159356/189701 (executing program) 2022/09/12 16:37:47 fetching corpus: 2150, signal 160716/191272 (executing program) 2022/09/12 16:37:47 fetching corpus: 2200, signal 161799/192697 (executing program) 2022/09/12 16:37:47 fetching corpus: 2250, signal 163416/194428 (executing program) 2022/09/12 16:37:48 fetching corpus: 2300, signal 164556/195822 (executing program) 2022/09/12 16:37:48 fetching corpus: 2350, signal 166112/197381 (executing program) 2022/09/12 16:37:48 fetching corpus: 2400, signal 168081/199190 (executing program) 2022/09/12 16:37:48 fetching corpus: 2450, signal 169248/200581 (executing program) 2022/09/12 16:37:48 fetching corpus: 2500, signal 170659/202054 (executing program) 2022/09/12 16:37:48 fetching corpus: 2550, signal 171408/203067 (executing program) 2022/09/12 16:37:48 fetching corpus: 2600, signal 172613/204361 (executing program) 2022/09/12 16:37:48 fetching corpus: 2650, signal 174106/205848 (executing program) 2022/09/12 16:37:49 fetching corpus: 2700, signal 175127/206978 (executing program) 2022/09/12 16:37:49 fetching corpus: 2750, signal 175960/207973 (executing program) 2022/09/12 16:37:49 fetching corpus: 2800, signal 176895/209045 (executing program) 2022/09/12 16:37:49 fetching corpus: 2850, signal 178047/210133 (executing program) 2022/09/12 16:37:49 fetching corpus: 2900, signal 178981/211167 (executing program) 2022/09/12 16:37:49 fetching corpus: 2950, signal 179729/212093 (executing program) 2022/09/12 16:37:49 fetching corpus: 3000, signal 180351/212948 (executing program) 2022/09/12 16:37:50 fetching corpus: 3050, signal 181280/213936 (executing program) 2022/09/12 16:37:50 fetching corpus: 3100, signal 181906/214739 (executing program) 2022/09/12 16:37:50 fetching corpus: 3150, signal 183538/216059 (executing program) 2022/09/12 16:37:50 fetching corpus: 3200, signal 184767/217165 (executing program) 2022/09/12 16:37:50 fetching corpus: 3250, signal 185525/218007 (executing program) 2022/09/12 16:37:50 fetching corpus: 3300, signal 186426/218949 (executing program) 2022/09/12 16:37:50 fetching corpus: 3350, signal 187287/219817 (executing program) 2022/09/12 16:37:51 fetching corpus: 3400, signal 189429/221293 (executing program) 2022/09/12 16:37:51 fetching corpus: 3450, signal 190183/222034 (executing program) 2022/09/12 16:37:51 fetching corpus: 3500, signal 190961/222822 (executing program) 2022/09/12 16:37:51 fetching corpus: 3550, signal 191724/223558 (executing program) 2022/09/12 16:37:51 fetching corpus: 3600, signal 192932/224533 (executing program) 2022/09/12 16:37:51 fetching corpus: 3650, signal 193778/225284 (executing program) 2022/09/12 16:37:52 fetching corpus: 3700, signal 194582/226014 (executing program) 2022/09/12 16:37:52 fetching corpus: 3750, signal 195569/226811 (executing program) 2022/09/12 16:37:52 fetching corpus: 3800, signal 196281/227484 (executing program) 2022/09/12 16:37:52 fetching corpus: 3850, signal 197177/228245 (executing program) 2022/09/12 16:37:52 fetching corpus: 3900, signal 198141/228999 (executing program) 2022/09/12 16:37:52 fetching corpus: 3950, signal 199097/229737 (executing program) 2022/09/12 16:37:52 fetching corpus: 4000, signal 199976/230453 (executing program) 2022/09/12 16:37:53 fetching corpus: 4050, signal 200732/231081 (executing program) 2022/09/12 16:37:53 fetching corpus: 4100, signal 201722/231738 (executing program) 2022/09/12 16:37:53 fetching corpus: 4150, signal 202374/232312 (executing program) 2022/09/12 16:37:53 fetching corpus: 4200, signal 203495/233001 (executing program) 2022/09/12 16:37:53 fetching corpus: 4250, signal 203987/233477 (executing program) 2022/09/12 16:37:53 fetching corpus: 4300, signal 204493/234034 (executing program) 2022/09/12 16:37:53 fetching corpus: 4350, signal 205021/234521 (executing program) 2022/09/12 16:37:54 fetching corpus: 4400, signal 205613/235019 (executing program) 2022/09/12 16:37:54 fetching corpus: 4450, signal 206579/235616 (executing program) 2022/09/12 16:37:54 fetching corpus: 4500, signal 207218/236091 (executing program) 2022/09/12 16:37:54 fetching corpus: 4550, signal 207994/236611 (executing program) 2022/09/12 16:37:54 fetching corpus: 4600, signal 208611/237064 (executing program) 2022/09/12 16:37:54 fetching corpus: 4650, signal 210051/237757 (executing program) 2022/09/12 16:37:54 fetching corpus: 4700, signal 210976/238224 (executing program) 2022/09/12 16:37:55 fetching corpus: 4750, signal 211360/238592 (executing program) 2022/09/12 16:37:55 fetching corpus: 4800, signal 212144/239060 (executing program) 2022/09/12 16:37:55 fetching corpus: 4850, signal 212612/239420 (executing program) 2022/09/12 16:37:55 fetching corpus: 4900, signal 213343/239789 (executing program) 2022/09/12 16:37:55 fetching corpus: 4950, signal 213898/240136 (executing program) 2022/09/12 16:37:55 fetching corpus: 5000, signal 214400/240524 (executing program) 2022/09/12 16:37:56 fetching corpus: 5050, signal 214897/240867 (executing program) 2022/09/12 16:37:56 fetching corpus: 5100, signal 215871/241281 (executing program) 2022/09/12 16:37:56 fetching corpus: 5150, signal 217055/241689 (executing program) 2022/09/12 16:37:56 fetching corpus: 5200, signal 217637/242014 (executing program) 2022/09/12 16:37:56 fetching corpus: 5250, signal 218467/242341 (executing program) 2022/09/12 16:37:56 fetching corpus: 5300, signal 218852/242648 (executing program) 2022/09/12 16:37:56 fetching corpus: 5350, signal 219574/243043 (executing program) 2022/09/12 16:37:57 fetching corpus: 5400, signal 220136/243317 (executing program) 2022/09/12 16:37:57 fetching corpus: 5450, signal 220688/243572 (executing program) 2022/09/12 16:37:57 fetching corpus: 5500, signal 221003/243802 (executing program) 2022/09/12 16:37:57 fetching corpus: 5550, signal 221591/244121 (executing program) 2022/09/12 16:37:57 fetching corpus: 5600, signal 222348/244393 (executing program) 2022/09/12 16:37:57 fetching corpus: 5650, signal 222880/244714 (executing program) 2022/09/12 16:37:57 fetching corpus: 5700, signal 223342/244920 (executing program) 2022/09/12 16:37:57 fetching corpus: 5750, signal 224056/245179 (executing program) 2022/09/12 16:37:58 fetching corpus: 5800, signal 224916/245517 (executing program) 2022/09/12 16:37:58 fetching corpus: 5850, signal 225592/245717 (executing program) 2022/09/12 16:37:58 fetching corpus: 5900, signal 226082/245883 (executing program) 2022/09/12 16:37:58 fetching corpus: 5950, signal 226355/245977 (executing program) 2022/09/12 16:37:58 fetching corpus: 6000, signal 227047/245982 (executing program) 2022/09/12 16:37:58 fetching corpus: 6050, signal 227717/246020 (executing program) 2022/09/12 16:37:58 fetching corpus: 6100, signal 228235/246031 (executing program) 2022/09/12 16:37:58 fetching corpus: 6150, signal 228767/246042 (executing program) 2022/09/12 16:37:58 fetching corpus: 6200, signal 229226/246042 (executing program) 2022/09/12 16:37:59 fetching corpus: 6250, signal 229600/246051 (executing program) 2022/09/12 16:37:59 fetching corpus: 6300, signal 230111/246091 (executing program) 2022/09/12 16:37:59 fetching corpus: 6350, signal 230473/246107 (executing program) 2022/09/12 16:37:59 fetching corpus: 6400, signal 230797/246126 (executing program) 2022/09/12 16:37:59 fetching corpus: 6450, signal 231361/246126 (executing program) 2022/09/12 16:37:59 fetching corpus: 6500, signal 231753/246128 (executing program) 2022/09/12 16:37:59 fetching corpus: 6550, signal 232360/246176 (executing program) 2022/09/12 16:37:59 fetching corpus: 6600, signal 232689/246228 (executing program) 2022/09/12 16:38:00 fetching corpus: 6650, signal 233067/246251 (executing program) 2022/09/12 16:38:00 fetching corpus: 6700, signal 233554/246289 (executing program) 2022/09/12 16:38:00 fetching corpus: 6750, signal 234155/246298 (executing program) 2022/09/12 16:38:00 fetching corpus: 6800, signal 234545/246298 (executing program) 2022/09/12 16:38:00 fetching corpus: 6850, signal 234998/246307 (executing program) 2022/09/12 16:38:00 fetching corpus: 6900, signal 235659/246335 (executing program) 2022/09/12 16:38:00 fetching corpus: 6950, signal 236068/246335 (executing program) 2022/09/12 16:38:00 fetching corpus: 6992, signal 236409/246344 (executing program) 2022/09/12 16:38:00 fetching corpus: 6992, signal 236409/246344 (executing program) 2022/09/12 16:38:03 starting 8 fuzzer processes 16:38:03 executing program 0: process_madvise(0xffffffffffffffff, &(0x7f0000001c40)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0) 16:38:03 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) close(r0) syz_io_uring_setup(0xaaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) 16:38:03 executing program 4: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0) 16:38:03 executing program 2: stat(0x0, 0x0) stat(0x0, 0x0) mount$9p_unix(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) writev(r0, 0x0, 0x0) [ 80.903166] audit: type=1400 audit(1663000683.306:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:38:03 executing program 3: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, 0x0, 0x0) 16:38:03 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCADDRT(r0, 0x8923, &(0x7f0000007480)={0x0, @rc, @can, @ethernet={0x0, @link_local}}) 16:38:03 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000006c0), &(0x7f0000000000)='./file0\x00', 0xfffffefb}, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) 16:38:03 executing program 7: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev, r3}, 0x14) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000100)={@private=0xa010102, @local, r3}, 0xc) r4 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FITHAW(r0, 0xc0045878) ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000040)={'macsec0\x00'}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000080), 0xc}, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="94e91b855deb"}, 0x14) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) [ 82.168824] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.169805] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.171454] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.172465] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.173221] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.173954] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.174806] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.175542] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.176903] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.178031] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.179471] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.180064] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.180989] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 82.182138] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.182788] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.183766] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.184480] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.185475] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.188196] Bluetooth: hci1: HCI_REQ-0x0c1a [ 82.204313] Bluetooth: hci2: HCI_REQ-0x0c1a [ 82.204752] Bluetooth: hci0: HCI_REQ-0x0c1a [ 82.244180] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.250543] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.281395] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.283081] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.287777] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.303498] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.304143] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.305385] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.307172] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.316934] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.326151] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.327791] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.341086] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 82.347775] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 82.349289] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.377920] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 82.378673] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 82.379213] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 82.380168] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.381534] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.382584] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.383825] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.384672] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.386330] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.387313] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.388020] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 82.388884] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 82.389642] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.390392] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.394885] Bluetooth: hci7: HCI_REQ-0x0c1a [ 82.397708] Bluetooth: hci5: HCI_REQ-0x0c1a [ 82.403342] Bluetooth: hci4: HCI_REQ-0x0c1a [ 82.420718] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.423783] Bluetooth: hci6: HCI_REQ-0x0c1a [ 82.428434] Bluetooth: hci3: HCI_REQ-0x0c1a [ 84.246999] Bluetooth: hci0: command 0x0409 tx timeout [ 84.248184] Bluetooth: hci2: command 0x0409 tx timeout [ 84.248951] Bluetooth: hci1: command 0x0409 tx timeout [ 84.438486] Bluetooth: hci3: command 0x0409 tx timeout [ 84.438979] Bluetooth: hci6: command 0x0409 tx timeout [ 84.439413] Bluetooth: hci7: command 0x0409 tx timeout [ 84.439808] Bluetooth: hci4: command 0x0409 tx timeout [ 84.440221] Bluetooth: hci5: command 0x0409 tx timeout [ 86.294367] Bluetooth: hci1: command 0x041b tx timeout [ 86.295377] Bluetooth: hci2: command 0x041b tx timeout [ 86.296216] Bluetooth: hci0: command 0x041b tx timeout [ 86.486471] Bluetooth: hci5: command 0x041b tx timeout [ 86.487781] Bluetooth: hci4: command 0x041b tx timeout [ 86.489511] Bluetooth: hci7: command 0x041b tx timeout [ 86.490420] Bluetooth: hci6: command 0x041b tx timeout [ 86.491753] Bluetooth: hci3: command 0x041b tx timeout [ 88.342462] Bluetooth: hci0: command 0x040f tx timeout [ 88.344628] Bluetooth: hci2: command 0x040f tx timeout [ 88.345327] Bluetooth: hci1: command 0x040f tx timeout [ 88.534356] Bluetooth: hci3: command 0x040f tx timeout [ 88.535969] Bluetooth: hci6: command 0x040f tx timeout [ 88.536958] Bluetooth: hci7: command 0x040f tx timeout [ 88.538369] Bluetooth: hci4: command 0x040f tx timeout [ 88.539205] Bluetooth: hci5: command 0x040f tx timeout [ 90.390362] Bluetooth: hci1: command 0x0419 tx timeout [ 90.391185] Bluetooth: hci2: command 0x0419 tx timeout [ 90.391975] Bluetooth: hci0: command 0x0419 tx timeout [ 90.582352] Bluetooth: hci5: command 0x0419 tx timeout [ 90.583189] Bluetooth: hci4: command 0x0419 tx timeout [ 90.583985] Bluetooth: hci7: command 0x0419 tx timeout [ 90.586123] Bluetooth: hci6: command 0x0419 tx timeout [ 90.587107] Bluetooth: hci3: command 0x0419 tx timeout 16:38:59 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000140)=0x2, 0x4) 16:39:00 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000140)=0x2, 0x4) 16:39:00 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000140)=0x2, 0x4) 16:39:00 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000140)=0x2, 0x4) 16:39:00 executing program 3: mkdir(&(0x7f0000000540)='./file0\x00', 0x0) mount$9p_tcp(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000440)) [ 138.414861] 9pnet_fd: p9_fd_create_tcp (3739): problem connecting socket to 127.0.0.1 16:39:00 executing program 3: mkdir(&(0x7f0000000540)='./file0\x00', 0x0) mount$9p_tcp(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000440)) [ 138.605271] 9pnet_fd: p9_fd_create_tcp (3750): problem connecting socket to 127.0.0.1 16:39:01 executing program 3: mkdir(&(0x7f0000000540)='./file0\x00', 0x0) mount$9p_tcp(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000440)) [ 138.825103] 9pnet_fd: p9_fd_create_tcp (3759): problem connecting socket to 127.0.0.1 16:39:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCADDRT(r0, 0x8923, &(0x7f0000007480)={0x0, @rc, @can, @ethernet={0x0, @link_local}}) [ 140.859577] audit: type=1400 audit(1663000743.262:7): avc: denied { open } for pid=3846 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 140.863846] audit: type=1400 audit(1663000743.262:8): avc: denied { kernel } for pid=3846 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 140.881286] ------------[ cut here ]------------ [ 140.881319] [ 140.881323] ====================================================== [ 140.881328] WARNING: possible circular locking dependency detected [ 140.881333] 6.0.0-rc5-next-20220912 #1 Not tainted [ 140.881343] ------------------------------------------------------ [ 140.881348] syz-executor.7/3851 is trying to acquire lock: [ 140.881361] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 140.881409] [ 140.881409] but task is already holding lock: [ 140.881413] ffff888042082420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 140.881453] [ 140.881453] which lock already depends on the new lock. [ 140.881453] [ 140.881458] [ 140.881458] the existing dependency chain (in reverse order) is: [ 140.881462] [ 140.881462] -> #3 (&ctx->lock){....}-{2:2}: [ 140.881483] _raw_spin_lock+0x2a/0x40 [ 140.881506] __perf_event_task_sched_out+0x53b/0x18d0 [ 140.881523] __schedule+0xedd/0x2470 [ 140.881537] schedule+0xda/0x1b0 [ 140.881551] exit_to_user_mode_prepare+0x114/0x1a0 [ 140.881580] irqentry_exit_to_user_mode+0x5/0x30 [ 140.881607] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 140.881634] [ 140.881634] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 140.881655] _raw_spin_lock_nested+0x30/0x40 [ 140.881676] raw_spin_rq_lock_nested+0x1e/0x30 [ 140.881694] task_fork_fair+0x63/0x4d0 [ 140.881717] sched_cgroup_fork+0x3d0/0x540 [ 140.881736] copy_process+0x3f9e/0x6df0 [ 140.881751] kernel_clone+0xe7/0x890 [ 140.881765] user_mode_thread+0xad/0xf0 [ 140.881780] rest_init+0x24/0x250 [ 140.881803] arch_call_rest_init+0xf/0x14 [ 140.881830] start_kernel+0x4c1/0x4e6 [ 140.881854] secondary_startup_64_no_verify+0xe0/0xeb [ 140.881874] [ 140.881874] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 140.881907] _raw_spin_lock_irqsave+0x39/0x60 [ 140.881929] try_to_wake_up+0xab/0x1920 [ 140.881948] up+0x75/0xb0 [ 140.881965] __up_console_sem+0x6e/0x80 [ 140.881987] console_unlock+0x46a/0x590 [ 140.882009] vt_ioctl+0x2822/0x2ca0 [ 140.882027] tty_ioctl+0x7c4/0x1700 [ 140.882043] __x64_sys_ioctl+0x19a/0x210 [ 140.882064] do_syscall_64+0x3b/0x90 [ 140.882083] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 140.882108] [ 140.882108] -> #0 ((console_sem).lock){....}-{2:2}: [ 140.882127] __lock_acquire+0x2a02/0x5e70 [ 140.882149] lock_acquire+0x1a2/0x530 [ 140.882172] _raw_spin_lock_irqsave+0x39/0x60 [ 140.882194] down_trylock+0xe/0x70 [ 140.882212] __down_trylock_console_sem+0x3b/0xd0 [ 140.882235] vprintk_emit+0x16b/0x560 [ 140.882259] vprintk+0x84/0xa0 [ 140.882284] _printk+0xba/0xf1 [ 140.882309] report_bug.cold+0x72/0xab [ 140.882327] handle_bug+0x3c/0x70 [ 140.882346] exc_invalid_op+0x14/0x50 [ 140.882364] asm_exc_invalid_op+0x16/0x20 [ 140.882387] group_sched_out.part.0+0x2c7/0x460 [ 140.882401] ctx_sched_out+0x8f1/0xc10 [ 140.882415] __perf_event_task_sched_out+0x6d0/0x18d0 [ 140.882433] __schedule+0xedd/0x2470 [ 140.882447] schedule+0xda/0x1b0 [ 140.882460] exit_to_user_mode_prepare+0x114/0x1a0 [ 140.882488] irqentry_exit_to_user_mode+0x5/0x30 [ 140.882513] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 140.882543] [ 140.882543] other info that might help us debug this: [ 140.882543] [ 140.882548] Chain exists of: [ 140.882548] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 140.882548] [ 140.882576] Possible unsafe locking scenario: [ 140.882576] [ 140.882579] CPU0 CPU1 [ 140.882582] ---- ---- [ 140.882585] lock(&ctx->lock); [ 140.882593] lock(&rq->__lock); [ 140.882603] lock(&ctx->lock); [ 140.882612] lock((console_sem).lock); [ 140.882621] [ 140.882621] *** DEADLOCK *** [ 140.882621] [ 140.882623] 2 locks held by syz-executor.7/3851: [ 140.882634] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 140.882670] #1: ffff888042082420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 140.882711] [ 140.882711] stack backtrace: [ 140.882715] CPU: 1 PID: 3851 Comm: syz-executor.7 Not tainted 6.0.0-rc5-next-20220912 #1 [ 140.882733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 140.882744] Call Trace: [ 140.882749] [ 140.882755] dump_stack_lvl+0x8b/0xb3 [ 140.882776] check_noncircular+0x263/0x2e0 [ 140.882802] ? format_decode+0x26c/0xb50 [ 140.882824] ? print_circular_bug+0x450/0x450 [ 140.882850] ? enable_ptr_key_workfn+0x20/0x20 [ 140.882870] ? __lockdep_reset_lock+0x180/0x180 [ 140.882895] ? format_decode+0x26c/0xb50 [ 140.882916] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 140.882942] __lock_acquire+0x2a02/0x5e70 [ 140.882975] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 140.883008] lock_acquire+0x1a2/0x530 [ 140.883034] ? down_trylock+0xe/0x70 [ 140.883057] ? rcu_read_unlock+0x40/0x40 [ 140.883086] ? find_held_lock+0x2c/0x110 [ 140.883111] ? vprintk+0x84/0xa0 [ 140.883139] _raw_spin_lock_irqsave+0x39/0x60 [ 140.883162] ? down_trylock+0xe/0x70 [ 140.883183] down_trylock+0xe/0x70 [ 140.883203] ? vprintk+0x84/0xa0 [ 140.883228] __down_trylock_console_sem+0x3b/0xd0 [ 140.883255] vprintk_emit+0x16b/0x560 [ 140.883284] vprintk+0x84/0xa0 [ 140.883311] _printk+0xba/0xf1 [ 140.883338] ? record_print_text.cold+0x16/0x16 [ 140.883368] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 140.883389] ? lock_downgrade+0x6d0/0x6d0 [ 140.883416] ? report_bug.cold+0x66/0xab [ 140.883436] ? group_sched_out.part.0+0x2c7/0x460 [ 140.883453] report_bug.cold+0x72/0xab [ 140.883475] handle_bug+0x3c/0x70 [ 140.883495] exc_invalid_op+0x14/0x50 [ 140.883517] asm_exc_invalid_op+0x16/0x20 [ 140.883543] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 140.883563] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 140.883580] RSP: 0000:ffff8880427b7c68 EFLAGS: 00010006 [ 140.883594] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 140.883605] RDX: ffff888018318000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 140.883617] RBP: ffff8880427a8000 R08: 0000000000000005 R09: 0000000000000001 [ 140.883628] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888042082400 [ 140.883639] R13: ffff88806cf3d100 R14: ffffffff8547bfc0 R15: 0000000000000002 [ 140.883656] ? group_sched_out.part.0+0x2c7/0x460 [ 140.883676] ? group_sched_out.part.0+0x2c7/0x460 [ 140.883695] ctx_sched_out+0x8f1/0xc10 [ 140.883714] __perf_event_task_sched_out+0x6d0/0x18d0 [ 140.883737] ? lock_is_held_type+0xd7/0x130 [ 140.883764] ? __perf_cgroup_move+0x160/0x160 [ 140.883782] ? set_next_entity+0x304/0x550 [ 140.883808] ? update_curr+0x267/0x740 [ 140.883837] ? lock_is_held_type+0xd7/0x130 [ 140.883865] __schedule+0xedd/0x2470 [ 140.883885] ? io_schedule_timeout+0x150/0x150 [ 140.883907] schedule+0xda/0x1b0 [ 140.883924] exit_to_user_mode_prepare+0x114/0x1a0 [ 140.883955] irqentry_exit_to_user_mode+0x5/0x30 [ 140.883981] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 140.884009] RIP: 0033:0x7ffed26778f1 [ 140.884024] Code: 48 8d 15 b2 e7 ff ff 81 3d ac b7 ff ff ff ff ff 7f 48 0f 44 c2 48 8b 40 20 48 85 ff 74 03 48 89 07 c3 0f 1f 80 00 00 00 00 55 <48> 89 e5 41 54 53 48 83 ec 10 83 ff 0f 0f 87 b2 00 00 00 b8 01 00 [ 140.884040] RSP: 002b:00007f6cea46e170 EFLAGS: 00000206 [ 140.884054] RAX: 00007ffed26778f0 RBX: 0000000000000007 RCX: 000000000000932f [ 140.884066] RDX: 0000000000000000 RSI: 00007f6cea46e1f0 RDI: 0000000000000001 [ 140.884076] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 140.884087] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f6cea46e1f0 [ 140.884098] R13: 00007ffed26602bf R14: 00007f6cea46e300 R15: 0000000000022000 [ 140.884118] [ 140.960926] WARNING: CPU: 1 PID: 3851 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 140.961753] Modules linked in: [ 140.962066] CPU: 1 PID: 3851 Comm: syz-executor.7 Not tainted 6.0.0-rc5-next-20220912 #1 [ 140.962794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 140.963806] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 140.964327] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 140.966006] RSP: 0000:ffff8880427b7c68 EFLAGS: 00010006 [ 140.966500] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 140.967143] RDX: ffff888018318000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 140.967798] RBP: ffff8880427a8000 R08: 0000000000000005 R09: 0000000000000001 [ 140.968454] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888042082400 [ 140.969108] R13: ffff88806cf3d100 R14: ffffffff8547bfc0 R15: 0000000000000002 [ 140.969748] FS: 00007f6cea46e700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 140.970493] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 140.970981] CR2: 00007f763c0be310 CR3: 000000004161e000 CR4: 0000000000350ee0 [ 140.971575] Call Trace: [ 140.971826] [ 140.972049] ctx_sched_out+0x8f1/0xc10 [ 140.972427] __perf_event_task_sched_out+0x6d0/0x18d0 [ 140.972920] ? lock_is_held_type+0xd7/0x130 [ 140.973344] ? __perf_cgroup_move+0x160/0x160 [ 140.973776] ? set_next_entity+0x304/0x550 [ 140.974228] ? update_curr+0x267/0x740 [ 140.974613] ? lock_is_held_type+0xd7/0x130 [ 140.975029] __schedule+0xedd/0x2470 [ 140.975393] ? io_schedule_timeout+0x150/0x150 [ 140.975841] schedule+0xda/0x1b0 [ 140.976170] exit_to_user_mode_prepare+0x114/0x1a0 [ 140.976651] irqentry_exit_to_user_mode+0x5/0x30 [ 140.977104] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 140.977591] RIP: 0033:0x7ffed26778f1 [ 140.977957] Code: 48 8d 15 b2 e7 ff ff 81 3d ac b7 ff ff ff ff ff 7f 48 0f 44 c2 48 8b 40 20 48 85 ff 74 03 48 89 07 c3 0f 1f 80 00 00 00 00 55 <48> 89 e5 41 54 53 48 83 ec 10 83 ff 0f 0f 87 b2 00 00 00 b8 01 00 [ 140.979581] RSP: 002b:00007f6cea46e170 EFLAGS: 00000206 [ 140.980078] RAX: 00007ffed26778f0 RBX: 0000000000000007 RCX: 000000000000932f [ 140.980727] RDX: 0000000000000000 RSI: 00007f6cea46e1f0 RDI: 0000000000000001 [ 140.981511] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000 [ 140.982212] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f6cea46e1f0 [ 140.982880] R13: 00007ffed26602bf R14: 00007f6cea46e300 R15: 0000000000022000 [ 140.983502] [ 140.983719] irq event stamp: 2566 [ 140.984023] hardirqs last enabled at (2565): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 140.984892] hardirqs last disabled at (2566): [] __schedule+0x1225/0x2470 [ 140.985606] softirqs last enabled at (2562): [] __irq_exit_rcu+0x11b/0x180 [ 140.986381] softirqs last disabled at (461): [] __irq_exit_rcu+0x11b/0x180 [ 140.987136] ---[ end trace 0000000000000000 ]--- [ 141.016506] device lo entered promiscuous mode [ 141.279329] device lo left promiscuous mode [ 141.280855] device lo entered promiscuous mode [ 143.872318] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 143.872963] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 143.876412] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 143.877205] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 143.891762] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 143.892728] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 143.895850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 143.898826] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 143.899775] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 143.900392] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 143.900461] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 143.901084] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 143.902497] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 143.903728] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 143.904658] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 143.905137] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 143.906050] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 143.906093] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 143.907764] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 143.907808] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 143.910212] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 143.910797] Bluetooth: hci2: HCI_REQ-0x0c1a [ 143.910951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 143.913643] Bluetooth: hci0: HCI_REQ-0x0c1a [ 143.918277] Bluetooth: hci1: HCI_REQ-0x0c1a [ 143.924560] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 143.925964] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 143.926877] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 143.929708] Bluetooth: hci4: HCI_REQ-0x0c1a [ 143.947474] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 143.948314] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 143.971053] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 143.972063] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 143.973381] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 143.976413] Bluetooth: hci7: HCI_REQ-0x0c1a [ 145.942321] Bluetooth: hci0: command 0x0409 tx timeout [ 145.942321] Bluetooth: hci4: command 0x0409 tx timeout [ 145.942410] Bluetooth: hci1: command 0x0409 tx timeout [ 145.944963] Bluetooth: hci2: command 0x0409 tx timeout [ 146.006381] Bluetooth: hci7: command 0x0409 tx timeout [ 147.990370] Bluetooth: hci2: command 0x041b tx timeout [ 147.992030] Bluetooth: hci1: command 0x041b tx timeout [ 147.997901] Bluetooth: hci0: command 0x041b tx timeout [ 147.999509] Bluetooth: hci4: command 0x041b tx timeout [ 148.054281] Bluetooth: hci7: command 0x041b tx timeout [ 150.039355] Bluetooth: hci4: command 0x040f tx timeout [ 150.039938] Bluetooth: hci0: command 0x040f tx timeout [ 150.041808] Bluetooth: hci1: command 0x040f tx timeout [ 150.042989] Bluetooth: hci2: command 0x040f tx timeout [ 150.102276] Bluetooth: hci7: command 0x040f tx timeout VM DIAGNOSIS: 16:39:03 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffff888042147358 RCX=0000000000000000 RDX=1ffff11008428e76 RSI=ffff888042147ec8 RDI=ffffffff816c0530 RBP=ffff8880421473b0 RSP=ffff888042147340 R8 =ffffffff85ebe5fa R9 =ffffffff85ebe5fe R10=ffffed1008428e78 R11=ffff888042147398 R12=ffff888042147420 R13=0000000000000000 R14=ffff888040da8000 R15=ffff88801f76cc00 RIP=ffffffff8111b0b5 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fdc990ab368 CR3=000000004164e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff8880427b76b8 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000074 R11=0000000000000001 R12=0000000000000074 R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6cea46e700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f763c0be310 CR3=000000004161e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f6ced0007c0 00007f6ced0007c8 YMM02=0000000000000000 0000000000000000 00007f6ced0007e0 00007f6ced0007c0 YMM03=0000000000000000 0000000000000000 00007f6ced0007c8 00007f6ced0007c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000