Warning: Permanently added '[localhost]:52575' (ECDSA) to the list of known hosts. 2022/09/30 02:30:52 fuzzer started 2022/09/30 02:30:52 dialing manager at localhost:40535 syzkaller login: [ 41.094650] cgroup: Unknown subsys name 'net' [ 41.188142] cgroup: Unknown subsys name 'rlimit' 2022/09/30 02:31:07 syscalls: 2215 2022/09/30 02:31:07 code coverage: enabled 2022/09/30 02:31:07 comparison tracing: enabled 2022/09/30 02:31:07 extra coverage: enabled 2022/09/30 02:31:07 setuid sandbox: enabled 2022/09/30 02:31:07 namespace sandbox: enabled 2022/09/30 02:31:07 Android sandbox: enabled 2022/09/30 02:31:07 fault injection: enabled 2022/09/30 02:31:07 leak checking: enabled 2022/09/30 02:31:07 net packet injection: enabled 2022/09/30 02:31:07 net device setup: enabled 2022/09/30 02:31:07 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 02:31:07 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 02:31:07 USB emulation: enabled 2022/09/30 02:31:07 hci packet injection: enabled 2022/09/30 02:31:07 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 02:31:07 802.15.4 emulation: enabled 2022/09/30 02:31:07 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/30 02:31:07 fetching corpus: 50, signal 25604/28639 (executing program) 2022/09/30 02:31:07 fetching corpus: 100, signal 40802/44508 (executing program) 2022/09/30 02:31:08 fetching corpus: 150, signal 46164/50706 (executing program) 2022/09/30 02:31:08 fetching corpus: 200, signal 51944/57138 (executing program) 2022/09/30 02:31:08 fetching corpus: 250, signal 58215/63758 (executing program) 2022/09/30 02:31:08 fetching corpus: 300, signal 62723/68578 (executing program) 2022/09/30 02:31:08 fetching corpus: 350, signal 69347/75066 (executing program) 2022/09/30 02:31:08 fetching corpus: 400, signal 72565/78475 (executing program) 2022/09/30 02:31:09 fetching corpus: 450, signal 74954/81103 (executing program) 2022/09/30 02:31:09 fetching corpus: 500, signal 77618/83878 (executing program) 2022/09/30 02:31:09 fetching corpus: 550, signal 79907/86241 (executing program) 2022/09/30 02:31:09 fetching corpus: 600, signal 82869/88959 (executing program) 2022/09/30 02:31:09 fetching corpus: 650, signal 86227/91998 (executing program) 2022/09/30 02:31:09 fetching corpus: 700, signal 88220/93869 (executing program) 2022/09/30 02:31:10 fetching corpus: 750, signal 90818/96050 (executing program) 2022/09/30 02:31:10 fetching corpus: 800, signal 93216/98164 (executing program) 2022/09/30 02:31:10 fetching corpus: 850, signal 95760/100116 (executing program) 2022/09/30 02:31:10 fetching corpus: 900, signal 98004/102016 (executing program) 2022/09/30 02:31:10 fetching corpus: 950, signal 99395/103136 (executing program) 2022/09/30 02:31:10 fetching corpus: 1000, signal 102026/104917 (executing program) 2022/09/30 02:31:10 fetching corpus: 1050, signal 103430/105903 (executing program) 2022/09/30 02:31:11 fetching corpus: 1100, signal 105209/107063 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/107723 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/107786 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/107851 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/107910 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/107955 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108005 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108071 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108130 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108189 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108240 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108309 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108368 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108430 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108483 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108544 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108604 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108678 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108750 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108813 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108893 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/108961 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109018 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109096 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109153 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109204 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109263 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109322 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109381 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109450 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109507 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109550 (executing program) 2022/09/30 02:31:11 fetching corpus: 1128, signal 106258/109550 (executing program) 2022/09/30 02:31:14 starting 8 fuzzer processes 02:31:14 executing program 0: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10800, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="ff43443030310100"/32, 0x20, 0x8800}, {&(0x7f0000010700)="01001700000001000000050018000000010046494c4530000000000000000000", 0x20, 0x9800}, {&(0x7f0000010800)="01000000001700010000050000000018000146494c4530000000000000000000", 0x20, 0xa800}, {&(0x7f0000010900)="2200170000000000001700080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012c00190000000000001964000000000000647809140b2a3a08000000010000010a46494c452e434f4c3b31002600180000000000001800080000000008007809140b2a3a08020000010000010546494c45302a001a0000000000001a0a0000000000000a7809140b2a3a08000000010000010846494c45312e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45322e3b31002a001b0000000000001b28230000000023287809140b2a3a08000000010000010846494c45332e3b3100"/288, 0x120, 0xb800}, {&(0x7f0000010b00)="2200180000000000001800080000000008007809140b2a3a080200000100000101002200170000000000001700080000000008007809140b2a3a080200000100000101012a0020000000000000201a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xc000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xc800}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0xd000}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x10000}], 0x0, &(0x7f0000011300)) 02:31:14 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@remote, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x3c}, 0x0, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x3c}, 0x0, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0xe8) 02:31:14 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:31:14 executing program 2: syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x34, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x20004800) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r2, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x84022000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x60, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x1}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0xff}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000804) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000c00), r0) 02:31:14 executing program 3: socketpair(0x10, 0x0, 0xffff209a, &(0x7f00000015c0)) 02:31:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r1, 0x0) shutdown(r1, 0x1) lseek(0xffffffffffffffff, 0x4, 0x6b417b1c08756aa5) sendfile(r0, 0xffffffffffffffff, 0x0, 0x1ff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) [ 62.420499] audit: type=1400 audit(1664505074.081:6): avc: denied { execmem } for pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 02:31:14 executing program 7: socket$inet_udp(0x2, 0x2, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}]}}) 02:31:14 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x163008, 0x0) mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x2880, 0x0) [ 63.724024] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 63.725554] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 63.727376] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 63.729722] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 63.730796] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 63.733359] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 63.734816] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 63.735796] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 63.738223] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 63.744074] Bluetooth: hci1: HCI_REQ-0x0c1a [ 63.751873] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 63.790891] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 63.797119] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 63.800445] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 63.801733] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 63.803015] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 63.804365] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 63.804713] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 63.806305] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 63.807555] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 63.808103] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 63.809441] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 63.811355] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 63.812195] Bluetooth: hci0: HCI_REQ-0x0c1a [ 63.819492] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 63.820037] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 63.825355] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 63.826538] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 63.826871] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 63.828373] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 63.830326] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 63.830520] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 63.832197] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 63.832442] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 63.833993] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 63.834224] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 63.837154] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 63.838013] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 63.839296] Bluetooth: hci2: HCI_REQ-0x0c1a [ 63.842422] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 63.843340] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 63.848748] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 63.852969] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 63.854604] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 63.855609] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 63.855719] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 63.861771] Bluetooth: hci6: HCI_REQ-0x0c1a [ 63.862826] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 63.867758] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 63.886906] Bluetooth: hci7: HCI_REQ-0x0c1a [ 63.912161] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 63.919728] Bluetooth: hci5: HCI_REQ-0x0c1a [ 63.931830] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 63.957730] Bluetooth: hci4: HCI_REQ-0x0c1a [ 63.958779] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 63.993717] Bluetooth: hci3: HCI_REQ-0x0c1a [ 65.806169] Bluetooth: hci1: command 0x0409 tx timeout [ 65.868797] Bluetooth: hci2: command 0x0409 tx timeout [ 65.869556] Bluetooth: hci6: command 0x0409 tx timeout [ 65.870564] Bluetooth: hci0: command 0x0409 tx timeout [ 65.933343] Bluetooth: hci7: command 0x0409 tx timeout [ 65.935051] Bluetooth: hci5: command 0x0409 tx timeout [ 65.996721] Bluetooth: hci4: command 0x0409 tx timeout [ 66.060737] Bluetooth: hci3: command 0x0409 tx timeout [ 67.852785] Bluetooth: hci1: command 0x041b tx timeout [ 67.917153] Bluetooth: hci0: command 0x041b tx timeout [ 67.918665] Bluetooth: hci6: command 0x041b tx timeout [ 67.920585] Bluetooth: hci2: command 0x041b tx timeout [ 67.980720] Bluetooth: hci5: command 0x041b tx timeout [ 67.982565] Bluetooth: hci7: command 0x041b tx timeout [ 68.044789] Bluetooth: hci4: command 0x041b tx timeout [ 68.108721] Bluetooth: hci3: command 0x041b tx timeout [ 69.900702] Bluetooth: hci1: command 0x040f tx timeout [ 69.964764] Bluetooth: hci2: command 0x040f tx timeout [ 69.966387] Bluetooth: hci6: command 0x040f tx timeout [ 69.967740] Bluetooth: hci0: command 0x040f tx timeout [ 70.028731] Bluetooth: hci7: command 0x040f tx timeout [ 70.029308] Bluetooth: hci5: command 0x040f tx timeout [ 70.092812] Bluetooth: hci4: command 0x040f tx timeout [ 70.156702] Bluetooth: hci3: command 0x040f tx timeout [ 71.948752] Bluetooth: hci1: command 0x0419 tx timeout [ 72.012813] Bluetooth: hci0: command 0x0419 tx timeout [ 72.013374] Bluetooth: hci6: command 0x0419 tx timeout [ 72.014229] Bluetooth: hci2: command 0x0419 tx timeout [ 72.076771] Bluetooth: hci5: command 0x0419 tx timeout [ 72.077465] Bluetooth: hci7: command 0x0419 tx timeout [ 72.140781] Bluetooth: hci4: command 0x0419 tx timeout [ 72.204781] Bluetooth: hci3: command 0x0419 tx timeout [ 125.742118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 125.745017] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 125.746337] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 125.749881] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 125.752650] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 125.753118] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 125.756636] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 125.756719] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 125.766923] Bluetooth: hci1: HCI_REQ-0x0c1a [ 125.808960] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 125.809990] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 125.812769] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 125.815421] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 125.819153] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 125.820441] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 125.822885] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 125.824264] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 125.826920] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 125.828182] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 125.834759] Bluetooth: hci0: HCI_REQ-0x0c1a [ 125.835565] Bluetooth: hci5: HCI_REQ-0x0c1a [ 125.844531] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 125.846467] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 125.853464] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 125.857569] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 125.859539] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 125.861033] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 125.866242] Bluetooth: hci4: HCI_REQ-0x0c1a [ 125.889206] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 125.890812] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 125.894915] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 125.895932] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 125.897973] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 125.899138] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 125.900297] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 125.932168] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 125.935550] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 125.943548] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 125.944882] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 125.948141] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 125.954388] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 125.955586] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 125.966431] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 125.975481] Bluetooth: hci3: HCI_REQ-0x0c1a [ 125.981992] Bluetooth: hci7: HCI_REQ-0x0c1a [ 126.009879] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 126.073843] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 126.081822] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 126.137702] Bluetooth: hci6: HCI_REQ-0x0c1a [ 127.820728] Bluetooth: hci1: command 0x0409 tx timeout [ 127.820858] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 127.884748] Bluetooth: hci4: command 0x0409 tx timeout [ 127.885340] Bluetooth: hci5: command 0x0409 tx timeout [ 127.886047] Bluetooth: hci0: command 0x0409 tx timeout [ 128.013076] Bluetooth: hci3: command 0x0409 tx timeout [ 128.014177] Bluetooth: hci7: command 0x0409 tx timeout [ 128.204742] Bluetooth: hci6: command 0x0409 tx timeout [ 129.868927] Bluetooth: hci1: command 0x041b tx timeout [ 129.932820] Bluetooth: hci0: command 0x041b tx timeout [ 129.932851] Bluetooth: hci5: command 0x041b tx timeout [ 129.933577] Bluetooth: hci4: command 0x041b tx timeout [ 130.060805] Bluetooth: hci3: command 0x041b tx timeout [ 130.060882] Bluetooth: hci7: command 0x041b tx timeout [ 130.252811] Bluetooth: hci6: command 0x041b tx timeout [ 130.403477] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 130.405806] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 130.406520] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 130.410954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 130.412160] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 130.415945] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 130.420680] Bluetooth: hci2: HCI_REQ-0x0c1a [ 131.916719] Bluetooth: hci1: command 0x040f tx timeout [ 131.980841] Bluetooth: hci5: command 0x040f tx timeout [ 131.981672] Bluetooth: hci0: command 0x040f tx timeout [ 131.982406] Bluetooth: hci4: command 0x040f tx timeout [ 132.108789] Bluetooth: hci7: command 0x040f tx timeout [ 132.110092] Bluetooth: hci3: command 0x040f tx timeout [ 132.300706] Bluetooth: hci6: command 0x040f tx timeout [ 132.428755] Bluetooth: hci2: command 0x0409 tx timeout [ 133.964716] Bluetooth: hci1: command 0x0419 tx timeout [ 134.028684] Bluetooth: hci4: command 0x0419 tx timeout [ 134.029190] Bluetooth: hci0: command 0x0419 tx timeout [ 134.029704] Bluetooth: hci5: command 0x0419 tx timeout [ 134.156750] Bluetooth: hci3: command 0x0419 tx timeout [ 134.157236] Bluetooth: hci7: command 0x0419 tx timeout [ 134.348719] Bluetooth: hci6: command 0x0419 tx timeout [ 134.476902] Bluetooth: hci2: command 0x041b tx timeout [ 136.524809] Bluetooth: hci2: command 0x040f tx timeout [ 138.572676] Bluetooth: hci2: command 0x0419 tx timeout [ 184.140712] INFO: task rcu_gp:3 blocked for more than 143 seconds. [ 184.141343] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.141773] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.142326] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 184.142975] Call Trace: [ 184.143167] [ 184.143478] __schedule+0x893/0x2470 [ 184.143801] ? io_schedule_timeout+0x150/0x150 [ 184.144633] ? do_raw_spin_lock+0x121/0x260 [ 184.144970] ? rwlock_bug.part.0+0x90/0x90 [ 184.145296] schedule+0xda/0x1b0 [ 184.145969] rescuer_thread+0x851/0xdb0 [ 184.146299] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.146698] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.147082] ? lockdep_hardirqs_on+0x79/0x100 [ 184.147427] ? worker_thread+0x1260/0x1260 [ 184.147790] kthread+0x2ed/0x3a0 [ 184.148071] ? kthread_complete_and_exit+0x40/0x40 [ 184.148481] ret_from_fork+0x22/0x30 [ 184.148799] [ 184.148979] INFO: task rcu_par_gp:4 blocked for more than 143 seconds. [ 184.149444] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.149855] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.150412] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 184.151113] Call Trace: [ 184.151324] [ 184.151500] __schedule+0x893/0x2470 [ 184.151813] ? io_schedule_timeout+0x150/0x150 [ 184.152186] ? do_raw_spin_lock+0x121/0x260 [ 184.152579] ? rwlock_bug.part.0+0x90/0x90 [ 184.152950] schedule+0xda/0x1b0 [ 184.153221] rescuer_thread+0x851/0xdb0 [ 184.153537] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.153955] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.154387] ? lockdep_hardirqs_on+0x79/0x100 [ 184.154791] ? worker_thread+0x1260/0x1260 [ 184.155128] kthread+0x2ed/0x3a0 [ 184.155398] ? kthread_complete_and_exit+0x40/0x40 [ 184.155810] ret_from_fork+0x22/0x30 [ 184.156138] [ 184.156342] INFO: task slub_flushwq:5 blocked for more than 143 seconds. [ 184.156890] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.157301] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.157902] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 184.158539] Call Trace: [ 184.158761] [ 184.158948] __schedule+0x893/0x2470 [ 184.159249] ? io_schedule_timeout+0x150/0x150 [ 184.159601] ? do_raw_spin_lock+0x121/0x260 [ 184.159963] ? rwlock_bug.part.0+0x90/0x90 [ 184.160295] schedule+0xda/0x1b0 [ 184.160603] rescuer_thread+0x851/0xdb0 [ 184.160961] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.161351] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.161761] ? lockdep_hardirqs_on+0x79/0x100 [ 184.162121] ? worker_thread+0x1260/0x1260 [ 184.162458] kthread+0x2ed/0x3a0 [ 184.162746] ? kthread_complete_and_exit+0x40/0x40 [ 184.163138] ret_from_fork+0x22/0x30 [ 184.163446] [ 184.163652] INFO: task netns:6 blocked for more than 143 seconds. [ 184.164113] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.164538] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.165142] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 184.165792] Call Trace: [ 184.165994] [ 184.166178] __schedule+0x893/0x2470 [ 184.166483] ? io_schedule_timeout+0x150/0x150 [ 184.166861] ? do_raw_spin_lock+0x121/0x260 [ 184.167206] ? rwlock_bug.part.0+0x90/0x90 [ 184.167541] schedule+0xda/0x1b0 [ 184.167826] rescuer_thread+0x851/0xdb0 [ 184.168145] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.168542] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.168950] ? lockdep_hardirqs_on+0x79/0x100 [ 184.169304] ? worker_thread+0x1260/0x1260 [ 184.169653] kthread+0x2ed/0x3a0 [ 184.169919] ? kthread_complete_and_exit+0x40/0x40 [ 184.170303] ret_from_fork+0x22/0x30 [ 184.170629] [ 184.170814] INFO: task kworker/0:0H:8 blocked for more than 143 seconds. [ 184.171310] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.171736] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.172313] task:kworker/0:0H state:I stack:28952 pid:8 ppid:2 flags:0x00004000 [ 184.172974] Workqueue: 0x0 (kblockd) [ 184.173282] Call Trace: [ 184.173484] [ 184.173686] __schedule+0x893/0x2470 [ 184.173988] ? io_schedule_timeout+0x150/0x150 [ 184.174369] schedule+0xda/0x1b0 [ 184.174674] worker_thread+0x15f/0x1260 [ 184.175023] ? process_one_work+0x16a0/0x16a0 [ 184.175371] kthread+0x2ed/0x3a0 [ 184.175651] ? kthread_complete_and_exit+0x40/0x40 [ 184.176029] ret_from_fork+0x22/0x30 [ 184.176327] [ 184.176521] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 184.177028] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.177425] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.178014] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 184.178664] Call Trace: [ 184.178862] [ 184.179044] __schedule+0x893/0x2470 [ 184.179339] ? io_schedule_timeout+0x150/0x150 [ 184.179701] ? do_raw_spin_lock+0x121/0x260 [ 184.180035] ? rwlock_bug.part.0+0x90/0x90 [ 184.180363] schedule+0xda/0x1b0 [ 184.180656] rescuer_thread+0x851/0xdb0 [ 184.180967] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.181345] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.181744] ? lockdep_hardirqs_on+0x79/0x100 [ 184.182096] ? worker_thread+0x1260/0x1260 [ 184.182419] kthread+0x2ed/0x3a0 [ 184.182699] ? kthread_complete_and_exit+0x40/0x40 [ 184.183075] ret_from_fork+0x22/0x30 [ 184.183370] [ 184.183554] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 184.184088] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.184495] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.185140] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 184.185800] Call Trace: [ 184.186002] [ 184.186195] __schedule+0x893/0x2470 [ 184.186507] ? io_schedule_timeout+0x150/0x150 [ 184.186904] ? mark_held_locks+0x9e/0xe0 [ 184.187213] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.187584] schedule+0xda/0x1b0 [ 184.187865] rcu_tasks_one_gp+0x3db/0xc10 [ 184.188197] rcu_tasks_kthread+0x80/0xa0 [ 184.188506] ? rcu_tasks_postscan+0x10/0x10 [ 184.188845] kthread+0x2ed/0x3a0 [ 184.189100] ? kthread_complete_and_exit+0x40/0x40 [ 184.189469] ret_from_fork+0x22/0x30 [ 184.189779] [ 184.189963] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 184.190510] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.190942] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.191494] task:kworker/1:0H state:I stack:29760 pid:21 ppid:2 flags:0x00004000 [ 184.192115] Workqueue: 0x0 (events_highpri) [ 184.192463] Call Trace: [ 184.192675] [ 184.192856] __schedule+0x893/0x2470 [ 184.193146] ? io_schedule_timeout+0x150/0x150 [ 184.193500] schedule+0xda/0x1b0 [ 184.193781] worker_thread+0x15f/0x1260 [ 184.194094] ? process_one_work+0x16a0/0x16a0 [ 184.194436] kthread+0x2ed/0x3a0 [ 184.194711] ? kthread_complete_and_exit+0x40/0x40 [ 184.195077] ret_from_fork+0x22/0x30 [ 184.195370] [ 184.195545] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 184.196049] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.196442] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.197005] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 184.197633] Call Trace: [ 184.197827] [ 184.198002] __schedule+0x893/0x2470 [ 184.198289] ? io_schedule_timeout+0x150/0x150 [ 184.198652] ? do_raw_spin_lock+0x121/0x260 [ 184.199019] ? rwlock_bug.part.0+0x90/0x90 [ 184.199385] schedule+0xda/0x1b0 [ 184.199669] rescuer_thread+0x851/0xdb0 [ 184.199983] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.200361] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.200771] ? lockdep_hardirqs_on+0x79/0x100 [ 184.201123] ? worker_thread+0x1260/0x1260 [ 184.201453] kthread+0x2ed/0x3a0 [ 184.201732] ? kthread_complete_and_exit+0x40/0x40 [ 184.202109] ret_from_fork+0x22/0x30 [ 184.202411] [ 184.202593] INFO: task writeback:28 blocked for more than 143 seconds. [ 184.203098] Not tainted 6.0.0-rc7-next-20220929 #1 [ 184.203499] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 184.204096] task:writeback state:I stack:30176 pid:28 ppid:2 flags:0x00004000 [ 184.204745] Call Trace: [ 184.204942] [ 184.205123] __schedule+0x893/0x2470 [ 184.205415] ? io_schedule_timeout+0x150/0x150 [ 184.205792] ? do_raw_spin_lock+0x121/0x260 [ 184.206153] ? rwlock_bug.part.0+0x90/0x90 [ 184.206493] schedule+0xda/0x1b0 [ 184.206777] rescuer_thread+0x851/0xdb0 [ 184.207094] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.207465] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 184.207862] ? lockdep_hardirqs_on+0x79/0x100 [ 184.208201] ? worker_thread+0x1260/0x1260 [ 184.208537] kthread+0x2ed/0x3a0 [ 184.208821] ? kthread_complete_and_exit+0x40/0x40 [ 184.209204] ret_from_fork+0x22/0x30 [ 184.209510] [ 184.209763] [ 184.209763] Showing all locks held in the system: [ 184.210236] 2 locks held by kworker/u4:0/9: [ 184.210557] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.211358] #1: ffff88800861fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.212198] 1 lock held by rcu_tasks_kthre/11: [ 184.212560] #0: ffffffff85406890 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 184.213340] 1 lock held by khungtaskd/25: [ 184.213664] #0: ffffffff85407360 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 184.214414] 2 locks held by kworker/u4:1/26: [ 184.214767] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.215547] #1: ffff888009037db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.216439] 2 locks held by kworker/u4:2/33: [ 184.216793] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.217643] #1: ffff8880092d7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.218459] 2 locks held by kworker/u4:3/47: [ 184.218804] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.219584] #1: ffff888008eb7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.220414] 1 lock held by kmemleak/55: [ 184.220734] 1 lock held by systemd-journal/111: [ 184.221085] 1 lock held by in:imklog/190: [ 184.221395] 2 locks held by kworker/u4:5/334: [ 184.221751] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.222534] #1: ffff888018747db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.223446] 2 locks held by kworker/u4:6/336: [ 184.223816] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.224583] #1: ffff88800e9a7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.225398] 2 locks held by kworker/u4:8/340: [ 184.225755] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.226590] #1: ffff88803d297db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.227406] 2 locks held by kworker/u4:11/1708: [ 184.227795] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 184.228629] #1: ffff88803d5dfdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 184.229433] 1 lock held by modprobe/6791: [ 184.229769] 1 lock held by modprobe/6793: [ 184.230108] 1 lock held by modprobe/6795: [ 184.230457] 1 lock held by modprobe/6798: [ 184.230784] [ 184.230922] ============================================= [ 184.230922] [ 187.241433] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 187.244963] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 187.246781] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 187.250545] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 187.254695] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 187.256781] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 187.263847] Bluetooth: hci0: HCI_REQ-0x0c1a 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) [ 187.740294] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 187.741569] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 187.744898] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 187.745668] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 187.752521] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 187.753263] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 187.757073] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 187.760913] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 187.768316] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 187.769042] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 187.770963] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 187.771813] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 187.778068] Bluetooth: hci6: HCI_REQ-0x0c1a [ 187.778571] Bluetooth: hci5: HCI_REQ-0x0c1a 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:33:19 executing program 1: prctl$PR_GET_TSC(0x19, &(0x7f0000000000)) prctl$PR_GET_TSC(0x25, &(0x7f0000000040)) 02:33:19 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x101, 0x1}, 0xe) 02:33:19 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x101, 0x1}, 0xe) [ 189.325694] Bluetooth: hci0: command 0x0409 tx timeout [ 189.517710] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 189.645774] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 189.646859] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 189.772693] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 189.837698] Bluetooth: hci5: command 0x0409 tx timeout [ 189.837722] Bluetooth: hci6: command 0x0409 tx timeout [ 191.373667] Bluetooth: hci0: command 0x041b tx timeout [ 191.884672] Bluetooth: hci5: command 0x041b tx timeout [ 191.885716] Bluetooth: hci6: command 0x041b tx timeout [ 191.893023] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 191.899211] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 191.900858] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 191.904122] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 191.905769] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 191.907097] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 191.915451] Bluetooth: hci3: HCI_REQ-0x0c1a [ 192.017657] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 192.019216] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 192.020381] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 192.022466] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 192.024034] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 192.025120] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 192.027681] Bluetooth: hci4: HCI_REQ-0x0c1a [ 192.124716] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 192.126566] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 192.127326] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 192.129550] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 192.130466] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 192.131524] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 192.144135] Bluetooth: hci7: HCI_REQ-0x0c1a [ 193.421700] Bluetooth: hci0: command 0x040f tx timeout [ 193.805667] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 193.932730] Bluetooth: hci3: command 0x0409 tx timeout [ 193.933318] Bluetooth: hci6: command 0x040f tx timeout [ 193.933874] Bluetooth: hci5: command 0x040f tx timeout [ 194.060684] Bluetooth: hci4: command 0x0409 tx timeout VM DIAGNOSIS: 02:33:16 Registers: info registers vcpu 0 RAX=fffffffffbbc9a54 RBX=ffffffff85bbc00c RCX=ffffffff81785a05 RDX=0000000000000000 RSI=ffffffff85edf94a RDI=ffffffff85bbbfe8 RBP=ffffffff85bbbfe8 RSP=ffff8880189d7660 R8 =ffffffff85edf94a R9 =ffffffff85ee0032 R10=ffffed100313aef2 R11=000000000003603d R12=ffffffff85bbc034 R13=ffffffff85bbbfe8 R14=ffffffff85bbbfe8 R15=dffffc0000000000 RIP=ffffffff81119b83 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f01b15e6368 CR3=000000001a78e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88800902f898 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006c R11=0000000000000001 R12=000000000000006c R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe5938a71f0 CR3=0000000038e18000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000ff0000 0000000000ff0000 YMM02=0000000000000000 0000000000000000 0000ff0000000000 0000000000ff0000 YMM03=0000000000000000 0000000000000000 000000000000ff00 0000000000000000 YMM04=0000000000000000 0000000000000000 00ff000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000