Warning: Permanently added '[localhost]:47944' (ECDSA) to the list of known hosts.
2022/09/30 03:41:29 fuzzer started
2022/09/30 03:41:29 dialing manager at localhost:40535
syzkaller login: [ 42.728926] cgroup: Unknown subsys name 'net'
[ 42.828143] cgroup: Unknown subsys name 'rlimit'
2022/09/30 03:41:43 syscalls: 2215
2022/09/30 03:41:43 code coverage: enabled
2022/09/30 03:41:43 comparison tracing: enabled
2022/09/30 03:41:43 extra coverage: enabled
2022/09/30 03:41:43 setuid sandbox: enabled
2022/09/30 03:41:43 namespace sandbox: enabled
2022/09/30 03:41:43 Android sandbox: enabled
2022/09/30 03:41:43 fault injection: enabled
2022/09/30 03:41:43 leak checking: enabled
2022/09/30 03:41:43 net packet injection: enabled
2022/09/30 03:41:43 net device setup: enabled
2022/09/30 03:41:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/30 03:41:43 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/30 03:41:43 USB emulation: enabled
2022/09/30 03:41:43 hci packet injection: enabled
2022/09/30 03:41:43 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929������������������������������������������)
2022/09/30 03:41:43 802.15.4 emulation: enabled
2022/09/30 03:41:43 fetching corpus: 0, signal 0/2000 (executing program)
2022/09/30 03:41:44 fetching corpus: 45, signal 21440/24999 (executing program)
2022/09/30 03:41:44 fetching corpus: 95, signal 32590/37598 (executing program)
2022/09/30 03:41:44 fetching corpus: 144, signal 41242/47553 (executing program)
2022/09/30 03:41:44 fetching corpus: 194, signal 48853/56341 (executing program)
2022/09/30 03:41:44 fetching corpus: 244, signal 57215/65714 (executing program)
2022/09/30 03:41:44 fetching corpus: 294, signal 63132/72630 (executing program)
2022/09/30 03:41:44 fetching corpus: 344, signal 67072/77573 (executing program)
2022/09/30 03:41:44 fetching corpus: 394, signal 73306/84576 (executing program)
2022/09/30 03:41:44 fetching corpus: 444, signal 77694/89720 (executing program)
2022/09/30 03:41:44 fetching corpus: 494, signal 79898/92927 (executing program)
2022/09/30 03:41:45 fetching corpus: 544, signal 82415/96282 (executing program)
2022/09/30 03:41:45 fetching corpus: 594, signal 84156/98931 (executing program)
2022/09/30 03:41:45 fetching corpus: 644, signal 87473/102907 (executing program)
2022/09/30 03:41:45 fetching corpus: 694, signal 90460/106492 (executing program)
2022/09/30 03:41:45 fetching corpus: 744, signal 94016/110527 (executing program)
2022/09/30 03:41:45 fetching corpus: 794, signal 95711/112976 (executing program)
2022/09/30 03:41:45 fetching corpus: 844, signal 98404/116190 (executing program)
2022/09/30 03:41:45 fetching corpus: 894, signal 101476/119650 (executing program)
2022/09/30 03:41:45 fetching corpus: 944, signal 103919/122551 (executing program)
2022/09/30 03:41:46 fetching corpus: 994, signal 106233/125282 (executing program)
2022/09/30 03:41:46 fetching corpus: 1044, signal 107688/127331 (executing program)
2022/09/30 03:41:46 fetching corpus: 1094, signal 109942/129980 (executing program)
2022/09/30 03:41:46 fetching corpus: 1144, signal 112587/132837 (executing program)
2022/09/30 03:41:46 fetching corpus: 1194, signal 114461/135070 (executing program)
2022/09/30 03:41:46 fetching corpus: 1244, signal 115732/136798 (executing program)
2022/09/30 03:41:46 fetching corpus: 1294, signal 117012/138532 (executing program)
2022/09/30 03:41:46 fetching corpus: 1344, signal 118082/140027 (executing program)
2022/09/30 03:41:47 fetching corpus: 1394, signal 119816/142033 (executing program)
2022/09/30 03:41:47 fetching corpus: 1444, signal 120637/143361 (executing program)
2022/09/30 03:41:47 fetching corpus: 1494, signal 122521/145459 (executing program)
2022/09/30 03:41:47 fetching corpus: 1544, signal 123372/146748 (executing program)
2022/09/30 03:41:47 fetching corpus: 1594, signal 124604/148295 (executing program)
2022/09/30 03:41:47 fetching corpus: 1644, signal 126929/150527 (executing program)
2022/09/30 03:41:47 fetching corpus: 1694, signal 128588/152309 (executing program)
2022/09/30 03:41:47 fetching corpus: 1744, signal 129714/153738 (executing program)
2022/09/30 03:41:47 fetching corpus: 1794, signal 130709/155001 (executing program)
2022/09/30 03:41:48 fetching corpus: 1844, signal 131727/156284 (executing program)
2022/09/30 03:41:48 fetching corpus: 1894, signal 132617/157489 (executing program)
2022/09/30 03:41:48 fetching corpus: 1944, signal 134176/159046 (executing program)
2022/09/30 03:41:48 fetching corpus: 1994, signal 135704/160565 (executing program)
2022/09/30 03:41:48 fetching corpus: 2044, signal 137536/162310 (executing program)
2022/09/30 03:41:48 fetching corpus: 2094, signal 138738/163590 (executing program)
2022/09/30 03:41:48 fetching corpus: 2144, signal 140148/164962 (executing program)
2022/09/30 03:41:48 fetching corpus: 2194, signal 140855/165899 (executing program)
2022/09/30 03:41:48 fetching corpus: 2244, signal 141897/167048 (executing program)
2022/09/30 03:41:49 fetching corpus: 2294, signal 143154/168249 (executing program)
2022/09/30 03:41:49 fetching corpus: 2344, signal 143986/169135 (executing program)
2022/09/30 03:41:49 fetching corpus: 2394, signal 145138/170290 (executing program)
2022/09/30 03:41:49 fetching corpus: 2444, signal 146014/171258 (executing program)
2022/09/30 03:41:49 fetching corpus: 2494, signal 147538/172482 (executing program)
2022/09/30 03:41:49 fetching corpus: 2544, signal 148634/173436 (executing program)
2022/09/30 03:41:49 fetching corpus: 2594, signal 149614/174409 (executing program)
2022/09/30 03:41:49 fetching corpus: 2644, signal 150640/175402 (executing program)
2022/09/30 03:41:49 fetching corpus: 2694, signal 151554/176219 (executing program)
2022/09/30 03:41:49 fetching corpus: 2744, signal 153102/177530 (executing program)
2022/09/30 03:41:50 fetching corpus: 2794, signal 153968/178358 (executing program)
2022/09/30 03:41:50 fetching corpus: 2844, signal 155432/179404 (executing program)
2022/09/30 03:41:50 fetching corpus: 2894, signal 156240/180145 (executing program)
2022/09/30 03:41:50 fetching corpus: 2944, signal 157164/180935 (executing program)
2022/09/30 03:41:50 fetching corpus: 2994, signal 158218/181708 (executing program)
2022/09/30 03:41:50 fetching corpus: 3044, signal 158874/182342 (executing program)
2022/09/30 03:41:50 fetching corpus: 3094, signal 160089/183144 (executing program)
2022/09/30 03:41:50 fetching corpus: 3144, signal 160824/183748 (executing program)
2022/09/30 03:41:51 fetching corpus: 3194, signal 161507/184355 (executing program)
2022/09/30 03:41:51 fetching corpus: 3244, signal 162064/184905 (executing program)
2022/09/30 03:41:51 fetching corpus: 3294, signal 163994/185869 (executing program)
2022/09/30 03:41:51 fetching corpus: 3344, signal 164534/186396 (executing program)
2022/09/30 03:41:51 fetching corpus: 3394, signal 165253/187015 (executing program)
2022/09/30 03:41:51 fetching corpus: 3444, signal 168022/188093 (executing program)
2022/09/30 03:41:51 fetching corpus: 3494, signal 168730/188541 (executing program)
2022/09/30 03:41:51 fetching corpus: 3544, signal 169532/189038 (executing program)
2022/09/30 03:41:51 fetching corpus: 3594, signal 170402/189509 (executing program)
2022/09/30 03:41:52 fetching corpus: 3643, signal 170991/189904 (executing program)
2022/09/30 03:41:52 fetching corpus: 3693, signal 171414/190271 (executing program)
2022/09/30 03:41:52 fetching corpus: 3743, signal 172542/190735 (executing program)
2022/09/30 03:41:52 fetching corpus: 3793, signal 173115/191094 (executing program)
2022/09/30 03:41:52 fetching corpus: 3843, signal 173698/191440 (executing program)
2022/09/30 03:41:52 fetching corpus: 3893, signal 174710/191876 (executing program)
2022/09/30 03:41:52 fetching corpus: 3942, signal 175195/192191 (executing program)
2022/09/30 03:41:52 fetching corpus: 3992, signal 175626/192502 (executing program)
2022/09/30 03:41:52 fetching corpus: 4042, signal 176415/192799 (executing program)
2022/09/30 03:41:53 fetching corpus: 4092, signal 177034/193089 (executing program)
2022/09/30 03:41:53 fetching corpus: 4142, signal 178073/193383 (executing program)
2022/09/30 03:41:53 fetching corpus: 4191, signal 178613/193625 (executing program)
2022/09/30 03:41:53 fetching corpus: 4241, signal 179782/193915 (executing program)
2022/09/30 03:41:53 fetching corpus: 4291, signal 181146/194193 (executing program)
2022/09/30 03:41:53 fetching corpus: 4341, signal 181816/194407 (executing program)
2022/09/30 03:41:53 fetching corpus: 4391, signal 182399/194606 (executing program)
2022/09/30 03:41:53 fetching corpus: 4441, signal 182875/194764 (executing program)
2022/09/30 03:41:54 fetching corpus: 4491, signal 183372/194926 (executing program)
2022/09/30 03:41:54 fetching corpus: 4541, signal 184785/195096 (executing program)
2022/09/30 03:41:54 fetching corpus: 4591, signal 185580/195225 (executing program)
2022/09/30 03:41:54 fetching corpus: 4641, signal 186297/195331 (executing program)
2022/09/30 03:41:54 fetching corpus: 4691, signal 187136/195424 (executing program)
2022/09/30 03:41:54 fetching corpus: 4741, signal 188737/195473 (executing program)
2022/09/30 03:41:54 fetching corpus: 4791, signal 189466/195479 (executing program)
2022/09/30 03:41:54 fetching corpus: 4837, signal 189929/195494 (executing program)
2022/09/30 03:41:54 fetching corpus: 4837, signal 189929/195494 (executing program)
2022/09/30 03:41:57 starting 8 fuzzer processes
03:41:57 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f736676209600088020000200000004f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="53595a4b414c4c45522020080000ea80325132510000ea80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000b4ea70325132510000ea70325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000b4ea70325132510000ea70325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c45322020202020202000b4ea70325132510000ea70325106002823000041660069006c0065002e000f00d263006f006c0064000000ffff0000ffffffff46494c457e312020434f4c2000b4ea70325132510000ea703251070064000000", 0x120, 0x11000}, {&(0x7f0000010800)="2e202020202020202020201000b4ea70325132510000ea7032510300000000002e2e2020202020202020201000b4ea70325132510000ea70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020202000b4ea70325132510000ea70325104001a040000", 0x80, 0x51000}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x91000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0xd1000}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x151000}], 0x0, &(0x7f0000011000))
03:41:57 executing program 2:
syz_emit_ethernet(0x5a, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @tipc={{0x8, 0x4, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@cipso={0x86, 0x9, 0x0, [{0x0, 0x3, '&'}]}]}}, @payload_mcast={{{{{{0x2c, 0x0, 0x0, 0x0, 0x0, 0xb}}}}}}}}}}, 0x0)
03:41:57 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000000), 0x10)
03:41:57 executing program 4:
r0 = syz_open_dev$vcsu(&(0x7f0000000540), 0x1ff, 0x102)
pwritev(r0, &(0x7f00000004c0)=[{&(0x7f0000000000)="b5", 0x1}], 0x1, 0x0, 0x0)
03:41:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
[ 70.103881] audit: type=1400 audit(1664509317.188:6): avc: denied { execmem } for pid=285 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
03:41:57 executing program 7:
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000000c0)={0xa2042, 0x0, 0x11}, 0x18)
03:41:57 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
flistxattr(r0, &(0x7f0000000140)=""/6, 0x6)
03:41:57 executing program 6:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KDSKBMODE(r0, 0x4b45, 0x0)
[ 71.383031] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 71.384753] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 71.386824] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 71.388057] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 71.389540] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 71.390733] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 71.393462] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 71.396549] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 71.397734] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 71.398893] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 71.400273] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 71.402033] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 71.403421] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 71.418797] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 71.431894] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 71.433683] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 71.435679] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 71.439705] Bluetooth: hci1: HCI_REQ-0x0c1a
[ 71.439932] Bluetooth: hci0: HCI_REQ-0x0c1a
[ 71.443793] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 71.450536] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 71.451974] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 71.456905] Bluetooth: hci2: HCI_REQ-0x0c1a
[ 71.470095] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 71.471405] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 71.473024] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 71.481905] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 71.483110] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 71.484204] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 71.485245] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 71.486754] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 71.488878] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 71.489923] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 71.491002] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 71.492188] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 71.493216] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 71.499737] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 71.500979] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 71.502668] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 71.503868] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 71.504905] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 71.506352] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 71.507557] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 71.508883] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 71.509970] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 71.511325] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 71.513103] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 71.514111] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 71.515356] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 71.518901] Bluetooth: hci5: HCI_REQ-0x0c1a
[ 71.520568] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 71.522085] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 71.527398] Bluetooth: hci4: HCI_REQ-0x0c1a
[ 71.530500] Bluetooth: hci7: HCI_REQ-0x0c1a
[ 71.536176] Bluetooth: hci6: HCI_REQ-0x0c1a
[ 71.537062] Bluetooth: hci3: HCI_REQ-0x0c1a
[ 73.515838] Bluetooth: hci1: command 0x0409 tx timeout
[ 73.516881] Bluetooth: hci2: command 0x0409 tx timeout
[ 73.517783] Bluetooth: hci0: command 0x0409 tx timeout
[ 73.580448] Bluetooth: hci3: command 0x0409 tx timeout
[ 73.581425] Bluetooth: hci6: command 0x0409 tx timeout
[ 73.582459] Bluetooth: hci7: command 0x0409 tx timeout
[ 73.583327] Bluetooth: hci5: command 0x0409 tx timeout
[ 73.584155] Bluetooth: hci4: command 0x0409 tx timeout
[ 75.564463] Bluetooth: hci0: command 0x041b tx timeout
[ 75.565550] Bluetooth: hci2: command 0x041b tx timeout
[ 75.566270] Bluetooth: hci1: command 0x041b tx timeout
[ 75.628527] Bluetooth: hci4: command 0x041b tx timeout
[ 75.629360] Bluetooth: hci5: command 0x041b tx timeout
[ 75.630067] Bluetooth: hci7: command 0x041b tx timeout
[ 75.630819] Bluetooth: hci6: command 0x041b tx timeout
[ 75.631588] Bluetooth: hci3: command 0x041b tx timeout
[ 77.611410] Bluetooth: hci1: command 0x040f tx timeout
[ 77.612402] Bluetooth: hci2: command 0x040f tx timeout
[ 77.613149] Bluetooth: hci0: command 0x040f tx timeout
[ 77.676647] Bluetooth: hci3: command 0x040f tx timeout
[ 77.677483] Bluetooth: hci6: command 0x040f tx timeout
[ 77.678427] Bluetooth: hci7: command 0x040f tx timeout
[ 77.679149] Bluetooth: hci5: command 0x040f tx timeout
[ 77.680092] Bluetooth: hci4: command 0x040f tx timeout
[ 79.660375] Bluetooth: hci0: command 0x0419 tx timeout
[ 79.660912] Bluetooth: hci2: command 0x0419 tx timeout
[ 79.661418] Bluetooth: hci1: command 0x0419 tx timeout
[ 79.724466] Bluetooth: hci4: command 0x0419 tx timeout
[ 79.724918] Bluetooth: hci5: command 0x0419 tx timeout
[ 79.725764] Bluetooth: hci7: command 0x0419 tx timeout
[ 79.726205] Bluetooth: hci6: command 0x0419 tx timeout
[ 79.726687] Bluetooth: hci3: command 0x0419 tx timeout
[ 130.785780] syz-executor.4 (295) used greatest stack depth: 24376 bytes left
[ 133.058884] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 133.061321] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 133.063225] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 133.066549] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 133.068181] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 133.070054] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 133.074917] Bluetooth: hci0: HCI_REQ-0x0c1a
[ 133.244304] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 133.245872] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 133.246656] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 133.247385] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 133.248592] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 133.249916] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 133.250565] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 133.251779] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 133.253037] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 133.254246] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 133.259269] Bluetooth: hci1: HCI_REQ-0x0c1a
[ 133.264225] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 133.277546] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 133.284370] Bluetooth: hci2: HCI_REQ-0x0c1a
[ 133.441025] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 133.442673] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 133.444719] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 133.445649] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 133.446611] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 133.447409] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 133.449606] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 133.450440] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 133.451395] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 133.452049] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 133.454473] Bluetooth: hci5: HCI_REQ-0x0c1a
[ 133.454977] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 133.459891] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 133.516585] Bluetooth: hci7: HCI_REQ-0x0c1a
[ 133.675911] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 133.688561] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 133.690127] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 133.755193] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 133.760519] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 133.765053] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 133.779645] Bluetooth: hci6: HCI_REQ-0x0c1a
[ 135.083406] Bluetooth: hci0: command 0x0409 tx timeout
[ 135.275419] Bluetooth: hci1: command 0x0409 tx timeout
[ 135.339337] Bluetooth: hci3: Opcode 0x c03 failed: -110
[ 135.340259] Bluetooth: hci2: command 0x0409 tx timeout
[ 135.403346] Bluetooth: hci4: Opcode 0x c03 failed: -110
[ 135.467396] Bluetooth: hci5: command 0x0409 tx timeout
[ 135.595532] Bluetooth: hci7: command 0x0409 tx timeout
[ 135.851481] Bluetooth: hci6: command 0x0409 tx timeout
[ 137.131630] Bluetooth: hci0: command 0x041b tx timeout
[ 137.323411] Bluetooth: hci1: command 0x041b tx timeout
[ 137.387354] Bluetooth: hci2: command 0x041b tx timeout
[ 137.515384] Bluetooth: hci5: command 0x041b tx timeout
[ 137.643349] Bluetooth: hci7: command 0x041b tx timeout
[ 137.899376] Bluetooth: hci6: command 0x041b tx timeout
[ 137.967170] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 137.969368] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 137.970782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 137.973721] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 137.976562] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 137.977743] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 137.982324] Bluetooth: hci3: HCI_REQ-0x0c1a
[ 139.179377] Bluetooth: hci0: command 0x040f tx timeout
[ 139.371441] Bluetooth: hci1: command 0x040f tx timeout
[ 139.435342] Bluetooth: hci2: command 0x040f tx timeout
[ 139.563397] Bluetooth: hci5: command 0x040f tx timeout
[ 139.691343] Bluetooth: hci7: command 0x040f tx timeout
[ 139.947392] Bluetooth: hci6: command 0x040f tx timeout
[ 140.011384] Bluetooth: hci3: command 0x0409 tx timeout
[ 140.268328] Bluetooth: hci4: Opcode 0x c03 failed: -110
[ 141.227335] Bluetooth: hci0: command 0x0419 tx timeout
[ 141.419385] Bluetooth: hci1: command 0x0419 tx timeout
[ 141.483349] Bluetooth: hci2: command 0x0419 tx timeout
[ 141.611813] Bluetooth: hci5: command 0x0419 tx timeout
[ 141.740336] Bluetooth: hci7: command 0x0419 tx timeout
[ 141.995318] Bluetooth: hci6: command 0x0419 tx timeout
[ 142.060357] Bluetooth: hci3: command 0x041b tx timeout
[ 142.820858] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 142.822201] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 142.823677] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 142.833430] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 142.843671] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 142.846855] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 142.851509] Bluetooth: hci4: HCI_REQ-0x0c1a
[ 144.108412] Bluetooth: hci3: command 0x040f tx timeout
[ 144.876350] Bluetooth: hci4: command 0x0409 tx timeout
[ 146.156536] Bluetooth: hci3: command 0x0419 tx timeout
[ 146.923372] Bluetooth: hci4: command 0x041b tx timeout
[ 148.971486] Bluetooth: hci4: command 0x040f tx timeout
[ 151.019364] Bluetooth: hci4: command 0x0419 tx timeout
[ 185.675432] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
[ 185.697844] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
[ 185.707456] INFO: task rcu_gp:3 blocked for more than 143 seconds.
[ 185.707996] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.708457] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.709072] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000
[ 185.709786] Call Trace:
[ 185.709983]
[ 185.710376] __schedule+0x893/0x2470
[ 185.710709] ? io_schedule_timeout+0x150/0x150
[ 185.711539] ? do_raw_spin_lock+0x121/0x260
[ 185.711891] ? rwlock_bug.part.0+0x90/0x90
[ 185.712704] schedule+0xda/0x1b0
[ 185.712995] rescuer_thread+0x851/0xdb0
[ 185.713352] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.713755] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.714176] ? lockdep_hardirqs_on+0x79/0x100
[ 185.714571] ? worker_thread+0x1260/0x1260
[ 185.714909] kthread+0x2ed/0x3a0
[ 185.715203] ? kthread_complete_and_exit+0x40/0x40
[ 185.715635] ret_from_fork+0x22/0x30
[ 185.715957]
[ 185.716147] INFO: task rcu_par_gp:4 blocked for more than 143 seconds.
[ 185.716671] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.717109] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.717722] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000
[ 185.718408] Call Trace:
[ 185.718627]
[ 185.718822] __schedule+0x893/0x2470
[ 185.719135] ? io_schedule_timeout+0x150/0x150
[ 185.719533] ? do_raw_spin_lock+0x121/0x260
[ 185.719897] ? rwlock_bug.part.0+0x90/0x90
[ 185.720263] schedule+0xda/0x1b0
[ 185.720570] rescuer_thread+0x851/0xdb0
[ 185.720892] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.721309] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.721715] ? lockdep_hardirqs_on+0x79/0x100
[ 185.722080] ? worker_thread+0x1260/0x1260
[ 185.722458] kthread+0x2ed/0x3a0
[ 185.722742] ? kthread_complete_and_exit+0x40/0x40
[ 185.723150] ret_from_fork+0x22/0x30
[ 185.723500]
[ 185.723690] INFO: task slub_flushwq:5 blocked for more than 143 seconds.
[ 185.724210] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.724650] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.725259] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000
[ 185.725945] Call Trace:
[ 185.726153]
[ 185.726369] __schedule+0x893/0x2470
[ 185.726701] ? io_schedule_timeout+0x150/0x150
[ 185.727070] ? do_raw_spin_lock+0x121/0x260
[ 185.727440] ? rwlock_bug.part.0+0x90/0x90
[ 185.727798] schedule+0xda/0x1b0
[ 185.728082] rescuer_thread+0x851/0xdb0
[ 185.728425] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.728838] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.729248] ? lockdep_hardirqs_on+0x79/0x100
[ 185.729624] ? worker_thread+0x1260/0x1260
[ 185.729974] kthread+0x2ed/0x3a0
[ 185.730258] ? kthread_complete_and_exit+0x40/0x40
[ 185.730687] ret_from_fork+0x22/0x30
[ 185.731001]
[ 185.731200] INFO: task netns:6 blocked for more than 143 seconds.
[ 185.731700] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.732121] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.732728] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000
[ 185.733412] Call Trace:
[ 185.733615]
[ 185.733793] __schedule+0x893/0x2470
[ 185.734106] ? io_schedule_timeout+0x150/0x150
[ 185.734503] ? do_raw_spin_lock+0x121/0x260
[ 185.734845] ? rwlock_bug.part.0+0x90/0x90
[ 185.735187] schedule+0xda/0x1b0
[ 185.735474] rescuer_thread+0x851/0xdb0
[ 185.735802] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.736205] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.736635] ? lockdep_hardirqs_on+0x79/0x100
[ 185.737014] ? worker_thread+0x1260/0x1260
[ 185.737385] kthread+0x2ed/0x3a0
[ 185.737661] ? kthread_complete_and_exit+0x40/0x40
[ 185.738057] ret_from_fork+0x22/0x30
[ 185.738396]
[ 185.738602] INFO: task kworker/0:0H:8 blocked for more than 143 seconds.
[ 185.739118] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.739558] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.740150] task:kworker/0:0H state:I stack:29256 pid:8 ppid:2 flags:0x00004000
[ 185.740825] Workqueue: 0x0 (events_highpri)
[ 185.741172] Call Trace:
[ 185.741399]
[ 185.741596] __schedule+0x893/0x2470
[ 185.741911] ? io_schedule_timeout+0x150/0x150
[ 185.742305] schedule+0xda/0x1b0
[ 185.742601] worker_thread+0x15f/0x1260
[ 185.742940] ? process_one_work+0x16a0/0x16a0
[ 185.743330] kthread+0x2ed/0x3a0
[ 185.743607] ? kthread_complete_and_exit+0x40/0x40
[ 185.744007] ret_from_fork+0x22/0x30
[ 185.744335]
[ 185.744527] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds.
[ 185.745066] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.745496] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.746094] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000
[ 185.746774] Call Trace:
[ 185.746983]
[ 185.747169] __schedule+0x893/0x2470
[ 185.747498] ? io_schedule_timeout+0x150/0x150
[ 185.747865] ? do_raw_spin_lock+0x121/0x260
[ 185.748204] ? rwlock_bug.part.0+0x90/0x90
[ 185.748564] schedule+0xda/0x1b0
[ 185.748847] rescuer_thread+0x851/0xdb0
[ 185.749163] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.749589] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.749989] ? lockdep_hardirqs_on+0x79/0x100
[ 185.750372] ? worker_thread+0x1260/0x1260
[ 185.750713] kthread+0x2ed/0x3a0
[ 185.750983] ? kthread_complete_and_exit+0x40/0x40
[ 185.751386] ret_from_fork+0x22/0x30
[ 185.751702]
[ 185.751892] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds.
[ 185.752459] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.752861] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.753463] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000
[ 185.754112] Call Trace:
[ 185.754328]
[ 185.754528] __schedule+0x893/0x2470
[ 185.754842] ? io_schedule_timeout+0x150/0x150
[ 185.755218] ? mark_held_locks+0x9e/0xe0
[ 185.755558] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.755965] schedule+0xda/0x1b0
[ 185.756241] rcu_tasks_one_gp+0x3db/0xc10
[ 185.756605] rcu_tasks_kthread+0x80/0xa0
[ 185.756939] ? rcu_tasks_postscan+0x10/0x10
[ 185.757291] kthread+0x2ed/0x3a0
[ 185.757558] ? kthread_complete_and_exit+0x40/0x40
[ 185.757954] ret_from_fork+0x22/0x30
[ 185.758291]
[ 185.758496] INFO: task kworker/1:0H:21 blocked for more than 143 seconds.
[ 185.759006] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.759444] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.760043] task:kworker/1:0H state:I stack:29376 pid:21 ppid:2 flags:0x00004000
[ 185.760695] Workqueue: 0x0 (kblockd)
[ 185.761007] Call Trace:
[ 185.761212]
[ 185.761418] __schedule+0x893/0x2470
[ 185.761740] ? io_schedule_timeout+0x150/0x150
[ 185.762110] schedule+0xda/0x1b0
[ 185.762407] worker_thread+0x15f/0x1260
[ 185.762745] ? process_one_work+0x16a0/0x16a0
[ 185.763105] kthread+0x2ed/0x3a0
[ 185.763409] ? kthread_complete_and_exit+0x40/0x40
[ 185.763808] ret_from_fork+0x22/0x30
[ 185.764128]
[ 185.764331] INFO: task inet_frag_wq:23 blocked for more than 143 seconds.
[ 185.764862] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.765297] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.765885] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000
[ 185.766576] Call Trace:
[ 185.766782]
[ 185.766969] __schedule+0x893/0x2470
[ 185.767287] ? io_schedule_timeout+0x150/0x150
[ 185.767651] ? do_raw_spin_lock+0x121/0x260
[ 185.768009] ? rwlock_bug.part.0+0x90/0x90
[ 185.768372] schedule+0xda/0x1b0
[ 185.768644] rescuer_thread+0x851/0xdb0
[ 185.768978] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.769385] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.769788] ? lockdep_hardirqs_on+0x79/0x100
[ 185.770144] ? worker_thread+0x1260/0x1260
[ 185.770501] kthread+0x2ed/0x3a0
[ 185.770764] ? kthread_complete_and_exit+0x40/0x40
[ 185.771139] ret_from_fork+0x22/0x30
[ 185.771454]
[ 185.771640] INFO: task writeback:28 blocked for more than 143 seconds.
[ 185.772161] Not tainted 6.0.0-rc7-next-20220929 #1
[ 185.772588] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 185.773198] task:writeback state:I stack:30176 pid:28 ppid:2 flags:0x00004000
[ 185.773845] Call Trace:
[ 185.774036]
[ 185.774220] __schedule+0x893/0x2470
[ 185.774560] ? io_schedule_timeout+0x150/0x150
[ 185.774924] ? do_raw_spin_lock+0x121/0x260
[ 185.775260] ? rwlock_bug.part.0+0x90/0x90
[ 185.775625] schedule+0xda/0x1b0
[ 185.775905] rescuer_thread+0x851/0xdb0
[ 185.776221] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.776632] ? _raw_spin_unlock_irqrestore+0x28/0x60
[ 185.777020] ? lockdep_hardirqs_on+0x79/0x100
[ 185.777400] ? worker_thread+0x1260/0x1260
[ 185.777741] kthread+0x2ed/0x3a0
[ 185.778005] ? kthread_complete_and_exit+0x40/0x40
[ 185.778398] ret_from_fork+0x22/0x30
[ 185.778711]
[ 185.778958]
[ 185.778958] Showing all locks held in the system:
[ 185.779466] 2 locks held by kworker/u4:0/9:
[ 185.779805] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.780642] #1: ffff88800861fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.781500] 1 lock held by rcu_tasks_kthre/11:
[ 185.781852] #0: ffffffff85406890 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10
[ 185.782663] 1 lock held by khungtaskd/25:
[ 185.782985] #0: ffffffff85407360 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 185.783720] 2 locks held by kworker/u4:2/33:
[ 185.784076] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.784896] #1: ffff8880092d7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.785744] 2 locks held by kworker/u4:3/47:
[ 185.786091] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.786913] #1: ffff88800f917db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.787762] 1 lock held by kmemleak/55:
[ 185.788060] 3 locks held by systemd-udevd/127:
[ 185.788426] 1 lock held by in:imklog/192:
[ 185.788756] 2 locks held by kworker/u4:4/327:
[ 185.789115] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.789969] #1: ffff88803e147db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.790841] 2 locks held by kworker/u4:5/329:
[ 185.791206] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.792029] #1: ffff88803e15fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.792851] 2 locks held by kworker/u4:6/331:
[ 185.793192] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.794001] #1: ffff88803e16fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.794853] 2 locks held by kworker/u4:7/333:
[ 185.795201] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.796017] #1: ffff88803e177db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.796863] 2 locks held by kworker/u4:8/335:
[ 185.797204] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 185.798009] #1: ffff88803e197db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 185.798894] 1 lock held by modprobe/7017:
[ 185.799217] 1 lock held by modprobe/7020:
[ 185.799548] 1 lock held by modprobe/7022:
[ 185.799878] 1 lock held by modprobe/7024:
[ 185.800219]
[ 185.800375] =============================================
[ 185.800375]
03:43:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
[ 185.934668] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
03:43:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
[ 186.074438] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
03:43:53 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, 0x0, 0x0)
[ 186.304600] netlink: 'syz-executor.3': attribute type 16 has an invalid length.
03:43:53 executing program 3:
syz_mount_image$tmpfs(&(0x7f0000000800), 0x0, 0x0, 0x1, &(0x7f0000000940)=[{&(0x7f0000000880)="a3", 0x1, 0x5}], 0x0, &(0x7f0000000980)={[], [{@fsuuid={'fsuuid', 0x3d, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32]}}}, {@fsname={'fsname', 0x3d, '\x7f:{\x00'}}]})
03:43:53 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f00000000c0)=""/4096, &(0x7f00000010c0)=0x1000)
03:43:53 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f00000000c0)=""/4096, &(0x7f00000010c0)=0x1000)
03:43:53 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f00000000c0)=""/4096, &(0x7f00000010c0)=0x1000)
03:43:54 executing program 3:
r0 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f00000000c0)=""/4096, &(0x7f00000010c0)=0x1000)
[ 192.099470] loop0: detected capacity change from 0 to 5392
VM DIAGNOSIS:
03:43:53 Registers:
info registers vcpu 0
RAX=dffffc0000000000 RBX=ffff88806ce33b60 RCX=1ffffffff0a1e514 RDX=0000000000000000
RSI=0000000000000002 RDI=ffffffff850f28a0 RBP=1ffff11002ba6e93 RSP=ffff888015d37460
R8 =0000000000000000 R9 =ffffffff85b06a17 R10=fffffbfff0b60d42 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=ffffffff8544da48 R15=ffff88800cea7140
RIP=ffffffff81312ae6 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f7013d4c700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fecacf4e260 CR3=000000000ec72000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 2032353a33343a33 3020303320706553
YMM01=0000000000000000 0000000000000000 5d3930373031372e 35383120205b203a
YMM02=0000000000000000 0000000000000000 656d69745f656c75 64656863735f6f69
YMM03=0000000000000000 0000000000000000 205b203a6c656e72 656b2072656c6c61
YMM04=0000000000000000 0000000000000000 6620202020202032 3a64697070202020
YMM05=0000000000000000 0000000000000000 61747320493a6574 6174732020202020
YMM06=0000000000000000 0000000000000000 205d323730393037 2e35383120205b20
YMM07=0000000000000000 0000000000000000 732032353a33343a 3330203033207065
YMM08=0000000000000000 0000000000000000 7475636578652d7a 7973223d6d6d6f63
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000062 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88800902f898
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000062 R11=0000000000000001
R12=0000000000000062 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0
RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc730d0cab0 CR3=000000000f3cc000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 64f0129a5102008a 2f4c1ffbc91e6744
YMM02=0000000000000000 0000000000000000 6b1e99b806172e3b 00000000000aea28
YMM03=0000000000000000 0000000000000000 ac8bc31478ec8511 00000000000aefa0
YMM04=0000000000000000 0000000000000000 f5539749e53247cf 000000000013df88
YMM05=0000000000000000 0000000000000000 d3fdd5f48436fbd7 00000000000aead0
YMM06=0000000000000000 0000000000000000 1e4d99a3725ade0a 00000000000ae988
YMM07=0000000000000000 0000000000000000 a1fcdcf819d7e1e5 00000000000ae728
YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0020000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000