Warning: Permanently added '[localhost]:32464' (ECDSA) to the list of known hosts.
2022/09/21 13:45:02 fuzzer started
2022/09/21 13:45:03 dialing manager at localhost:40289
syzkaller login: [   43.921446] cgroup: Unknown subsys name 'net'
[   44.024513] cgroup: Unknown subsys name 'rlimit'
2022/09/21 13:45:17 syscalls: 2215
2022/09/21 13:45:17 code coverage: enabled
2022/09/21 13:45:17 comparison tracing: enabled
2022/09/21 13:45:17 extra coverage: enabled
2022/09/21 13:45:17 setuid sandbox: enabled
2022/09/21 13:45:17 namespace sandbox: enabled
2022/09/21 13:45:17 Android sandbox: enabled
2022/09/21 13:45:17 fault injection: enabled
2022/09/21 13:45:17 leak checking: enabled
2022/09/21 13:45:17 net packet injection: enabled
2022/09/21 13:45:17 net device setup: enabled
2022/09/21 13:45:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/21 13:45:17 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/21 13:45:17 USB emulation: enabled
2022/09/21 13:45:17 hci packet injection: enabled
2022/09/21 13:45:17 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921                                          )
2022/09/21 13:45:17 802.15.4 emulation: enabled
2022/09/21 13:45:17 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/21 13:45:17 fetching corpus: 39, signal 22131/25629 (executing program)
2022/09/21 13:45:17 fetching corpus: 89, signal 33409/38291 (executing program)
2022/09/21 13:45:17 fetching corpus: 139, signal 46787/52718 (executing program)
2022/09/21 13:45:17 fetching corpus: 189, signal 56238/63156 (executing program)
2022/09/21 13:45:18 fetching corpus: 239, signal 62434/70381 (executing program)
2022/09/21 13:45:18 fetching corpus: 289, signal 66109/75079 (executing program)
2022/09/21 13:45:18 fetching corpus: 339, signal 69394/79409 (executing program)
2022/09/21 13:45:18 fetching corpus: 389, signal 74613/85356 (executing program)
2022/09/21 13:45:18 fetching corpus: 439, signal 78683/90192 (executing program)
2022/09/21 13:45:18 fetching corpus: 489, signal 80609/93066 (executing program)
2022/09/21 13:45:18 fetching corpus: 539, signal 82770/96128 (executing program)
2022/09/21 13:45:18 fetching corpus: 589, signal 86823/100734 (executing program)
2022/09/21 13:45:19 fetching corpus: 639, signal 89936/104501 (executing program)
2022/09/21 13:45:19 fetching corpus: 689, signal 93105/108170 (executing program)
2022/09/21 13:45:19 fetching corpus: 739, signal 97382/112739 (executing program)
2022/09/21 13:45:19 fetching corpus: 789, signal 99949/115762 (executing program)
2022/09/21 13:45:19 fetching corpus: 839, signal 102927/119135 (executing program)
2022/09/21 13:45:19 fetching corpus: 889, signal 106316/122764 (executing program)
2022/09/21 13:45:19 fetching corpus: 939, signal 109055/125772 (executing program)
2022/09/21 13:45:20 fetching corpus: 989, signal 110740/127909 (executing program)
2022/09/21 13:45:20 fetching corpus: 1039, signal 113868/131121 (executing program)
2022/09/21 13:45:20 fetching corpus: 1089, signal 115891/133456 (executing program)
2022/09/21 13:45:20 fetching corpus: 1139, signal 119156/136585 (executing program)
2022/09/21 13:45:20 fetching corpus: 1189, signal 120400/138187 (executing program)
2022/09/21 13:45:20 fetching corpus: 1239, signal 122683/140566 (executing program)
2022/09/21 13:45:20 fetching corpus: 1288, signal 123768/141977 (executing program)
2022/09/21 13:45:20 fetching corpus: 1338, signal 125259/143650 (executing program)
2022/09/21 13:45:21 fetching corpus: 1388, signal 126986/145458 (executing program)
2022/09/21 13:45:21 fetching corpus: 1438, signal 128093/146843 (executing program)
2022/09/21 13:45:21 fetching corpus: 1488, signal 129842/148647 (executing program)
2022/09/21 13:45:21 fetching corpus: 1538, signal 131527/150360 (executing program)
2022/09/21 13:45:21 fetching corpus: 1588, signal 133177/151975 (executing program)
2022/09/21 13:45:21 fetching corpus: 1638, signal 135032/153925 (executing program)
2022/09/21 13:45:21 fetching corpus: 1688, signal 135755/154947 (executing program)
2022/09/21 13:45:21 fetching corpus: 1738, signal 136636/156034 (executing program)
2022/09/21 13:45:22 fetching corpus: 1788, signal 137676/157243 (executing program)
2022/09/21 13:45:22 fetching corpus: 1838, signal 138750/158404 (executing program)
2022/09/21 13:45:22 fetching corpus: 1888, signal 139557/159359 (executing program)
2022/09/21 13:45:22 fetching corpus: 1938, signal 141526/160987 (executing program)
2022/09/21 13:45:22 fetching corpus: 1988, signal 143257/162436 (executing program)
2022/09/21 13:45:22 fetching corpus: 2038, signal 144320/163470 (executing program)
2022/09/21 13:45:22 fetching corpus: 2088, signal 145491/164489 (executing program)
2022/09/21 13:45:22 fetching corpus: 2137, signal 146335/165348 (executing program)
2022/09/21 13:45:22 fetching corpus: 2187, signal 147301/166254 (executing program)
2022/09/21 13:45:23 fetching corpus: 2237, signal 148807/167383 (executing program)
2022/09/21 13:45:23 fetching corpus: 2287, signal 149770/168300 (executing program)
2022/09/21 13:45:23 fetching corpus: 2337, signal 150281/168909 (executing program)
2022/09/21 13:45:23 fetching corpus: 2387, signal 151075/169678 (executing program)
2022/09/21 13:45:23 fetching corpus: 2437, signal 152761/170792 (executing program)
2022/09/21 13:45:23 fetching corpus: 2487, signal 154238/171823 (executing program)
2022/09/21 13:45:23 fetching corpus: 2537, signal 155061/172530 (executing program)
2022/09/21 13:45:23 fetching corpus: 2587, signal 155612/173087 (executing program)
2022/09/21 13:45:24 fetching corpus: 2637, signal 156275/173717 (executing program)
2022/09/21 13:45:24 fetching corpus: 2687, signal 157150/174424 (executing program)
2022/09/21 13:45:24 fetching corpus: 2737, signal 158368/175188 (executing program)
2022/09/21 13:45:24 fetching corpus: 2787, signal 159619/175949 (executing program)
2022/09/21 13:45:24 fetching corpus: 2837, signal 160614/176575 (executing program)
2022/09/21 13:45:24 fetching corpus: 2887, signal 161443/177130 (executing program)
2022/09/21 13:45:24 fetching corpus: 2937, signal 162432/177709 (executing program)
2022/09/21 13:45:24 fetching corpus: 2987, signal 163413/178311 (executing program)
2022/09/21 13:45:25 fetching corpus: 3037, signal 164009/178729 (executing program)
2022/09/21 13:45:25 fetching corpus: 3087, signal 164612/179159 (executing program)
2022/09/21 13:45:25 fetching corpus: 3137, signal 165171/179576 (executing program)
2022/09/21 13:45:25 fetching corpus: 3187, signal 165954/180112 (executing program)
2022/09/21 13:45:25 fetching corpus: 3237, signal 166843/180570 (executing program)
2022/09/21 13:45:25 fetching corpus: 3287, signal 167774/180986 (executing program)
2022/09/21 13:45:25 fetching corpus: 3337, signal 168724/181638 (executing program)
2022/09/21 13:45:25 fetching corpus: 3387, signal 169975/182250 (executing program)
2022/09/21 13:45:25 fetching corpus: 3437, signal 170486/182525 (executing program)
2022/09/21 13:45:26 fetching corpus: 3487, signal 171286/182831 (executing program)
2022/09/21 13:45:26 fetching corpus: 3536, signal 172486/183531 (executing program)
2022/09/21 13:45:26 fetching corpus: 3586, signal 173200/184010 (executing program)
2022/09/21 13:45:26 fetching corpus: 3636, signal 174481/184352 (executing program)
2022/09/21 13:45:26 fetching corpus: 3686, signal 175645/184664 (executing program)
2022/09/21 13:45:26 fetching corpus: 3736, signal 176301/184882 (executing program)
2022/09/21 13:45:26 fetching corpus: 3786, signal 177144/185148 (executing program)
2022/09/21 13:45:26 fetching corpus: 3836, signal 177703/185342 (executing program)
2022/09/21 13:45:27 fetching corpus: 3885, signal 178654/185530 (executing program)
2022/09/21 13:45:27 fetching corpus: 3935, signal 179822/185803 (executing program)
2022/09/21 13:45:27 fetching corpus: 3985, signal 180423/185934 (executing program)
2022/09/21 13:45:27 fetching corpus: 4035, signal 181336/186199 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186267 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186322 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186372 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186425 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186482 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186546 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186563 (executing program)
2022/09/21 13:45:27 fetching corpus: 4055, signal 181559/186563 (executing program)
2022/09/21 13:45:29 starting 8 fuzzer processes
13:45:29 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00')
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00')
r1 = socket$inet6(0xa, 0x3, 0x87)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
sendfile(r1, r0, 0x0, 0x48)

13:45:29 executing program 1:
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_io_uring_setup(0x5381, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xf2}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xb, 0x10, r0, 0x0)
syz_io_uring_setup(0x63b0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x267}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000002c0), &(0x7f0000000300))

13:45:29 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1030c2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='tra\x00\x00\x00\x00\x00\x00\x00\x00dno=', @ANYRESHEX, @ANYBLOB=',wfd\x00\x00=', @ANYRESHEX, @ANYBLOB=',\x00'])
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
sendfile(r2, 0xffffffffffffffff, &(0x7f00000001c0)=0x1, 0x3)
r4 = dup(r3)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x2}, 0x1c)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x10001})
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(0xffffffffffffffff, 0x8040942d, &(0x7f0000000200))
setsockopt$inet6_opts(r4, 0x29, 0x39, &(0x7f00000001c0)=ANY=[], 0x8)
sendmmsg$inet6(r4, &(0x7f0000002880), 0x4000101, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000003c0)='net/arp\x00')
pread64(r5, &(0x7f0000000040)=""/163, 0xa3, 0x0)
fcntl$setflags(r5, 0x2, 0x1)
getsockname$packet(r4, &(0x7f0000003ac0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000003b00)=0x14)

[   70.494025] audit: type=1400 audit(1663767929.925:6): avc:  denied  { execmem } for  pid=290 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:45:29 executing program 3:
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pipe2(0x0, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000bc0), 0x0, 0x0)
fsetxattr$security_capability(r0, &(0x7f0000000c00), &(0x7f0000000c40)=@v2, 0x14, 0x0)

13:45:29 executing program 4:
nanosleep(&(0x7f0000000000)={0x0, 0x3938700}, 0x0)

13:45:29 executing program 5:
sched_getaffinity(0xffffffffffffffff, 0x8, &(0x7f0000000040))

13:45:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:45:29 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x74, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x74}}, 0x0)

[   71.774249] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   71.776219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   71.778036] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   71.783768] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   71.785495] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   71.787718] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   71.793187] Bluetooth: hci0: HCI_REQ-0x0c1a
[   71.834161] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   71.836703] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   71.840099] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   71.841985] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   71.843649] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   71.844684] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   71.845907] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   71.847820] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   71.850941] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   71.852851] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   71.854261] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   71.857683] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   71.861103] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   71.863121] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   71.864389] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   71.865400] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   71.866826] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   71.868391] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   71.873074] Bluetooth: hci7: HCI_REQ-0x0c1a
[   71.875055] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   71.877287] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   71.878230] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   71.879252] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   71.880549] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   71.882105] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   71.883558] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   71.885962] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   71.887151] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   71.888807] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   71.889861] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   71.890937] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   71.892764] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   71.894046] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   71.895080] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   71.899400] Bluetooth: hci2: HCI_REQ-0x0c1a
[   71.902738] Bluetooth: hci5: HCI_REQ-0x0c1a
[   71.903726] Bluetooth: hci3: HCI_REQ-0x0c1a
[   71.926957] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   71.930246] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   71.931287] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   71.933228] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   71.934526] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   71.938113] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   71.946080] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.947174] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   71.948532] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   71.958679] Bluetooth: hci4: HCI_REQ-0x0c1a
[   71.983198] Bluetooth: hci1: HCI_REQ-0x0c1a
[   71.985760] Bluetooth: hci6: HCI_REQ-0x0c1a
[   73.848972] Bluetooth: hci0: command 0x0409 tx timeout
[   73.911674] Bluetooth: hci5: command 0x0409 tx timeout
[   73.912285] Bluetooth: hci7: command 0x0409 tx timeout
[   73.975690] Bluetooth: hci3: command 0x0409 tx timeout
[   73.976259] Bluetooth: hci2: command 0x0409 tx timeout
[   73.976817] Bluetooth: hci4: command 0x0409 tx timeout
[   74.040707] Bluetooth: hci6: command 0x0409 tx timeout
[   74.041289] Bluetooth: hci1: command 0x0409 tx timeout
[   75.895831] Bluetooth: hci0: command 0x041b tx timeout
[   75.959759] Bluetooth: hci7: command 0x041b tx timeout
[   75.960605] Bluetooth: hci5: command 0x041b tx timeout
[   76.023739] Bluetooth: hci4: command 0x041b tx timeout
[   76.024492] Bluetooth: hci2: command 0x041b tx timeout
[   76.025292] Bluetooth: hci3: command 0x041b tx timeout
[   76.087717] Bluetooth: hci1: command 0x041b tx timeout
[   76.088453] Bluetooth: hci6: command 0x041b tx timeout
[   77.944709] Bluetooth: hci0: command 0x040f tx timeout
[   78.008671] Bluetooth: hci5: command 0x040f tx timeout
[   78.009459] Bluetooth: hci7: command 0x040f tx timeout
[   78.071752] Bluetooth: hci3: command 0x040f tx timeout
[   78.072498] Bluetooth: hci2: command 0x040f tx timeout
[   78.073250] Bluetooth: hci4: command 0x040f tx timeout
[   78.136668] Bluetooth: hci6: command 0x040f tx timeout
[   78.137389] Bluetooth: hci1: command 0x040f tx timeout
[   79.993219] Bluetooth: hci0: command 0x0419 tx timeout
[   80.056687] Bluetooth: hci7: command 0x0419 tx timeout
[   80.057122] Bluetooth: hci5: command 0x0419 tx timeout
[   80.131702] Bluetooth: hci4: command 0x0419 tx timeout
[   80.132177] Bluetooth: hci2: command 0x0419 tx timeout
[   80.132619] Bluetooth: hci3: command 0x0419 tx timeout
[   80.183664] Bluetooth: hci1: command 0x0419 tx timeout
[   80.184121] Bluetooth: hci6: command 0x0419 tx timeout
13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

13:46:29 executing program 6:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)="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"})

[  130.730872] audit: type=1400 audit(1663767990.161:7): avc:  denied  { open } for  pid=3846 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.740102] audit: type=1400 audit(1663767990.171:8): avc:  denied  { kernel } for  pid=3846 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.750376] ------------[ cut here ]------------
[  130.750396] 
[  130.750399] ======================================================
[  130.750403] WARNING: possible circular locking dependency detected
[  130.750408] 6.0.0-rc6-next-20220921 #1 Not tainted
[  130.750414] ------------------------------------------------------
[  130.750418] syz-executor.6/3847 is trying to acquire lock:
[  130.750424] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  130.750466] 
[  130.750466] but task is already holding lock:
[  130.750469] ffff88800dffec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.750500] 
[  130.750500] which lock already depends on the new lock.
[  130.750500] 
[  130.750503] 
[  130.750503] the existing dependency chain (in reverse order) is:
[  130.750507] 
[  130.750507] -> #3 (&ctx->lock){....}-{2:2}:
[  130.750524]        _raw_spin_lock+0x2a/0x40
[  130.750545]        __perf_event_task_sched_out+0x53b/0x18d0
[  130.750558]        __schedule+0xedd/0x2470
[  130.750572]        schedule+0xda/0x1b0
[  130.750586]        exit_to_user_mode_prepare+0x114/0x1a0
[  130.750598]        syscall_exit_to_user_mode+0x19/0x40
[  130.750611]        do_syscall_64+0x48/0x90
[  130.750629]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.750642] 
[  130.750642] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  130.750656]        _raw_spin_lock_nested+0x30/0x40
[  130.750676]        raw_spin_rq_lock_nested+0x1e/0x30
[  130.750693]        task_fork_fair+0x63/0x4d0
[  130.750715]        sched_cgroup_fork+0x3d0/0x540
[  130.750731]        copy_process+0x4183/0x6e20
[  130.750742]        kernel_clone+0xe7/0x890
[  130.750752]        user_mode_thread+0xad/0xf0
[  130.750763]        rest_init+0x24/0x250
[  130.750774]        arch_call_rest_init+0xf/0x14
[  130.750792]        start_kernel+0x4c1/0x4e6
[  130.750807]        secondary_startup_64_no_verify+0xe0/0xeb
[  130.750822] 
[  130.750822] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  130.750837]        _raw_spin_lock_irqsave+0x39/0x60
[  130.750857]        try_to_wake_up+0xab/0x1930
[  130.750872]        up+0x75/0xb0
[  130.750887]        __up_console_sem+0x6e/0x80
[  130.750905]        console_unlock+0x46a/0x590
[  130.750922]        do_con_write+0xc05/0x1d50
[  130.750936]        con_write+0x21/0x40
[  130.750946]        n_tty_write+0x4d4/0xfe0
[  130.750961]        file_tty_write.constprop.0+0x49c/0x8f0
[  130.750975]        vfs_write+0x9c3/0xd90
[  130.750995]        ksys_write+0x127/0x250
[  130.751015]        do_syscall_64+0x3b/0x90
[  130.751032]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.751044] 
[  130.751044] -> #0 ((console_sem).lock){....}-{2:2}:
[  130.751059]        __lock_acquire+0x2a02/0x5e70
[  130.751078]        lock_acquire+0x1a2/0x530
[  130.751096]        _raw_spin_lock_irqsave+0x39/0x60
[  130.751116]        down_trylock+0xe/0x70
[  130.751132]        __down_trylock_console_sem+0x3b/0xd0
[  130.751149]        vprintk_emit+0x16b/0x560
[  130.751168]        vprintk+0x84/0xa0
[  130.751186]        _printk+0xba/0xf1
[  130.751197]        report_bug.cold+0x72/0xab
[  130.751215]        handle_bug+0x3c/0x70
[  130.751233]        exc_invalid_op+0x14/0x50
[  130.751251]        asm_exc_invalid_op+0x16/0x20
[  130.751262]        group_sched_out.part.0+0x2c7/0x460
[  130.751274]        ctx_sched_out+0x8f1/0xc10
[  130.751284]        __perf_event_task_sched_out+0x6d0/0x18d0
[  130.751297]        __schedule+0xedd/0x2470
[  130.751311]        schedule+0xda/0x1b0
[  130.751325]        exit_to_user_mode_prepare+0x114/0x1a0
[  130.751336]        syscall_exit_to_user_mode+0x19/0x40
[  130.751348]        do_syscall_64+0x48/0x90
[  130.751365]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.751377] 
[  130.751377] other info that might help us debug this:
[  130.751377] 
[  130.751380] Chain exists of:
[  130.751380]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  130.751380] 
[  130.751396]  Possible unsafe locking scenario:
[  130.751396] 
[  130.751399]        CPU0                    CPU1
[  130.751401]        ----                    ----
[  130.751404]   lock(&ctx->lock);
[  130.751410]                                lock(&rq->__lock);
[  130.751417]                                lock(&ctx->lock);
[  130.751423]   lock((console_sem).lock);
[  130.751430] 
[  130.751430]  *** DEADLOCK ***
[  130.751430] 
[  130.751432] 2 locks held by syz-executor.6/3847:
[  130.751439]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  130.751469]  #1: ffff88800dffec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.751499] 
[  130.751499] stack backtrace:
[  130.751502] CPU: 1 PID: 3847 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220921 #1
[  130.751515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.751524] Call Trace:
[  130.751527]  <TASK>
[  130.751531]  dump_stack_lvl+0x8b/0xb3
[  130.751550]  check_noncircular+0x263/0x2e0
[  130.751569]  ? format_decode+0x26c/0xb50
[  130.751586]  ? print_circular_bug+0x450/0x450
[  130.751605]  ? enable_ptr_key_workfn+0x20/0x20
[  130.751621]  ? __lockdep_reset_lock+0x180/0x180
[  130.751640]  ? format_decode+0x26c/0xb50
[  130.751658]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  130.751677]  __lock_acquire+0x2a02/0x5e70
[  130.751701]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  130.751725]  lock_acquire+0x1a2/0x530
[  130.751744]  ? down_trylock+0xe/0x70
[  130.751762]  ? lock_release+0x750/0x750
[  130.751781]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  130.751804]  ? vprintk+0x84/0xa0
[  130.751824]  _raw_spin_lock_irqsave+0x39/0x60
[  130.751845]  ? down_trylock+0xe/0x70
[  130.751862]  down_trylock+0xe/0x70
[  130.751878]  ? vprintk+0x84/0xa0
[  130.751897]  __down_trylock_console_sem+0x3b/0xd0
[  130.751916]  vprintk_emit+0x16b/0x560
[  130.751935]  ? lock_downgrade+0x6d0/0x6d0
[  130.751956]  vprintk+0x84/0xa0
[  130.751975]  _printk+0xba/0xf1
[  130.751986]  ? record_print_text.cold+0x16/0x16
[  130.752000]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  130.752015]  ? lock_downgrade+0x6d0/0x6d0
[  130.752035]  ? report_bug.cold+0x66/0xab
[  130.752054]  ? group_sched_out.part.0+0x2c7/0x460
[  130.752066]  report_bug.cold+0x72/0xab
[  130.752085]  handle_bug+0x3c/0x70
[  130.752104]  exc_invalid_op+0x14/0x50
[  130.752123]  asm_exc_invalid_op+0x16/0x20
[  130.752135] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.752150] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.752162] RSP: 0018:ffff888040547c48 EFLAGS: 00010006
[  130.752171] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.752179] RDX: ffff8880184c3580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  130.752187] RBP: ffff888040548000 R08: 0000000000000005 R09: 0000000000000001
[  130.752195] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800dffec00
[  130.752203] R13: ffff88806cf3d140 R14: ffffffff8547c8e0 R15: 0000000000000002
[  130.752215]  ? group_sched_out.part.0+0x2c7/0x460
[  130.752229]  ? group_sched_out.part.0+0x2c7/0x460
[  130.752242]  ctx_sched_out+0x8f1/0xc10
[  130.752256]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.752272]  ? lock_is_held_type+0xd7/0x130
[  130.752285]  ? __perf_cgroup_move+0x160/0x160
[  130.752298]  ? set_next_entity+0x304/0x550
[  130.752317]  ? update_curr+0x267/0x740
[  130.752338]  ? lock_is_held_type+0xd7/0x130
[  130.752351]  __schedule+0xedd/0x2470
[  130.752368]  ? io_schedule_timeout+0x150/0x150
[  130.752385]  ? __x64_sys_futex_time32+0x480/0x480
[  130.752400]  schedule+0xda/0x1b0
[  130.752415]  exit_to_user_mode_prepare+0x114/0x1a0
[  130.752427]  syscall_exit_to_user_mode+0x19/0x40
[  130.752440]  do_syscall_64+0x48/0x90
[  130.752459]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.752471] RIP: 0033:0x7f995b9cab19
[  130.752480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.752492] RSP: 002b:00007f9958f40218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.752503] RAX: 0000000000000001 RBX: 00007f995baddf68 RCX: 00007f995b9cab19
[  130.752511] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f995baddf6c
[  130.752519] RBP: 00007f995baddf60 R08: 000000000000000e R09: 0000000000000000
[  130.752527] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f995baddf6c
[  130.752534] R13: 00007ffdb58db57f R14: 00007f9958f40300 R15: 0000000000022000
[  130.752548]  </TASK>
[  130.810444] WARNING: CPU: 1 PID: 3847 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  130.811122] Modules linked in:
[  130.811360] CPU: 1 PID: 3847 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220921 #1
[  130.811944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.812774] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.813173] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.814502] RSP: 0018:ffff888040547c48 EFLAGS: 00010006
[  130.814902] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.815422] RDX: ffff8880184c3580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  130.815943] RBP: ffff888040548000 R08: 0000000000000005 R09: 0000000000000001
[  130.816461] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800dffec00
[  130.816978] R13: ffff88806cf3d140 R14: ffffffff8547c8e0 R15: 0000000000000002
[  130.817501] FS:  00007f9958f40700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  130.818096] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.818525] CR2: 000055cae39524c8 CR3: 000000003f7be000 CR4: 0000000000350ee0
[  130.819049] Call Trace:
[  130.819244]  <TASK>
[  130.819414]  ctx_sched_out+0x8f1/0xc10
[  130.819706]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.820090]  ? lock_is_held_type+0xd7/0x130
[  130.820414]  ? __perf_cgroup_move+0x160/0x160
[  130.820759]  ? set_next_entity+0x304/0x550
[  130.821079]  ? update_curr+0x267/0x740
[  130.821381]  ? lock_is_held_type+0xd7/0x130
[  130.821704]  __schedule+0xedd/0x2470
[  130.821989]  ? io_schedule_timeout+0x150/0x150
[  130.822338]  ? __x64_sys_futex_time32+0x480/0x480
[  130.822700]  schedule+0xda/0x1b0
[  130.822965]  exit_to_user_mode_prepare+0x114/0x1a0
[  130.823323]  syscall_exit_to_user_mode+0x19/0x40
[  130.823675]  do_syscall_64+0x48/0x90
[  130.823962]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.824343] RIP: 0033:0x7f995b9cab19
[  130.824621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.825951] RSP: 002b:00007f9958f40218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.826511] RAX: 0000000000000001 RBX: 00007f995baddf68 RCX: 00007f995b9cab19
[  130.827036] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f995baddf6c
[  130.827557] RBP: 00007f995baddf60 R08: 000000000000000e R09: 0000000000000000
[  130.828079] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f995baddf6c
[  130.828604] R13: 00007ffdb58db57f R14: 00007f9958f40300 R15: 0000000000022000
[  130.829138]  </TASK>
[  130.829313] irq event stamp: 708
[  130.829563] hardirqs last  enabled at (707): [<ffffffff8133f9d9>] exit_to_user_mode_prepare+0x109/0x1a0
[  130.830269] hardirqs last disabled at (708): [<ffffffff84259305>] __schedule+0x1225/0x2470
[  130.830881] softirqs last  enabled at (378): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  130.831505] softirqs last disabled at (249): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  130.832133] ---[ end trace 0000000000000000 ]---
13:46:30 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100))
r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4)
sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc)

13:46:30 executing program 6:
r0 = socket$netlink(0x10, 0x3, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100))
r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3, 0x1, 0xd6c3})
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000140)=0x100, 0x4)
sendmsg$NFT_MSG_GETTABLE(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4850}, 0x8041)
bind$netlink(r0, &(0x7f0000000280)={0x10, 0x0, 0x25dfdbfb, 0x400000}, 0xc)

[  131.256025] syz-executor.7 (302) used greatest stack depth: 24600 bytes left
[  131.286208] syz-executor.0 (299) used greatest stack depth: 24024 bytes left
[  133.570349] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  133.572218] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  133.573720] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  133.575790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  133.577381] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  133.578673] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  133.582460] Bluetooth: hci0: HCI_REQ-0x0c1a
[  133.630182] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  133.643065] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  133.643913] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  133.645552] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  133.646443] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  133.648162] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  133.649346] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  133.649886] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  133.651163] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  133.651862] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  133.652802] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  133.657186] Bluetooth: hci4: HCI_REQ-0x0c1a
[  133.658931] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  133.666165] Bluetooth: hci2: HCI_REQ-0x0c1a
[  133.668177] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  133.715241] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  133.720073] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  133.723993] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  133.724929] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  133.725600] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  133.734679] Bluetooth: hci1: HCI_REQ-0x0c1a
[  133.800256] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  133.802196] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  133.802735] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  133.806213] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  133.806738] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  133.807471] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  133.809833] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  133.811525] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  133.812378] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  133.829021] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  133.836990] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  133.847231] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  133.850175] Bluetooth: hci5: HCI_REQ-0x0c1a
[  133.858516] Bluetooth: hci6: HCI_REQ-0x0c1a
[  135.607628] Bluetooth: hci0: command 0x0409 tx timeout
[  135.671601] Bluetooth: hci4: command 0x0409 tx timeout
[  135.735705] Bluetooth: hci2: command 0x0409 tx timeout
[  135.799614] Bluetooth: hci7: Opcode 0x c03 failed: -110
[  135.800363] Bluetooth: hci1: command 0x0409 tx timeout
[  135.863601] Bluetooth: hci5: command 0x0409 tx timeout
[  135.927663] Bluetooth: hci6: command 0x0409 tx timeout
[  137.655626] Bluetooth: hci0: command 0x041b tx timeout
[  137.719641] Bluetooth: hci4: command 0x041b tx timeout
[  137.784650] Bluetooth: hci2: command 0x041b tx timeout
[  137.847628] Bluetooth: hci1: command 0x041b tx timeout
[  137.911605] Bluetooth: hci5: command 0x041b tx timeout
[  137.976633] Bluetooth: hci6: command 0x041b tx timeout
[  139.703614] Bluetooth: hci0: command 0x040f tx timeout
[  139.768635] Bluetooth: hci4: command 0x040f tx timeout
[  139.831598] Bluetooth: hci2: command 0x040f tx timeout
[  139.895608] Bluetooth: hci1: command 0x040f tx timeout
[  139.959585] Bluetooth: hci5: command 0x040f tx timeout
[  140.024648] Bluetooth: hci6: command 0x040f tx timeout
[  140.151592] Bluetooth: hci7: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
13:46:30  Registers:
info registers vcpu 0
RAX=0000384b6176237d RBX=26092e81ca4a7daa RCX=000000000000acf8 RDX=00000000000ae988
RSI=0000000000000000 RDI=000056134c7a3420 RBP=0000000000000029 RSP=00007ffc1be49ea0
R8 =00007ffc1be49f50 R9 =00007ffc1be49f58 R10=00007efd091e0a00 R11=0000000000003938
R12=00007ffc1be4ce6e R13=26092e81ca4a7daa R14=000056134c7a3420 R15=00007ffc1be49f50
RIP=00007efd0916f176 RFL=00000202 [-------] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007efd085eb900 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007efd07a77070 CR3=000000000dff8000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 3d3d3d3d3d3d3d3d 3d3d3d3d3d3d3d3d
YMM01=0000000000000000 0000000000000000 0000000000000000 ff00000000000000
YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 2f6c616e72756f6a 2f676f6c2f6e7572
YMM04=0000000000000000 0000000000000000 c01c5918ce4009b2 0000000000135768
YMM05=0000000000000000 0000000000000000 6b1e99b806172e3b 00000000000aea28
YMM06=0000000000000000 0000000000000000 8ca0b852b1c7c8e1 00000000000ae7b8
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000200020000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff888040547698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000069 R11=0000000000000001
R12=0000000000000069 R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80
RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f9958f40700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055cae39524c8 CR3=000000003f7be000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f995bab17c0 00007f995bab17c8
YMM02=0000000000000000 0000000000000000 00007f995bab17e0 00007f995bab17c0
YMM03=0000000000000000 0000000000000000 00007f995bab17c8 00007f995bab17c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000