Warning: Permanently added '[localhost]:16199' (ECDSA) to the list of known hosts. 2022/10/01 02:23:27 fuzzer started 2022/10/01 02:23:27 dialing manager at localhost:35095 syzkaller login: [ 44.718536] cgroup: Unknown subsys name 'net' [ 44.798784] cgroup: Unknown subsys name 'rlimit' 2022/10/01 02:23:41 syscalls: 2215 2022/10/01 02:23:41 code coverage: enabled 2022/10/01 02:23:41 comparison tracing: enabled 2022/10/01 02:23:41 extra coverage: enabled 2022/10/01 02:23:41 setuid sandbox: enabled 2022/10/01 02:23:41 namespace sandbox: enabled 2022/10/01 02:23:41 Android sandbox: enabled 2022/10/01 02:23:41 fault injection: enabled 2022/10/01 02:23:41 leak checking: enabled 2022/10/01 02:23:41 net packet injection: enabled 2022/10/01 02:23:41 net device setup: enabled 2022/10/01 02:23:41 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 02:23:41 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 02:23:41 USB emulation: enabled 2022/10/01 02:23:41 hci packet injection: enabled 2022/10/01 02:23:41 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 02:23:41 802.15.4 emulation: enabled 2022/10/01 02:23:41 fetching corpus: 0, signal 0/2000 (executing program) 2022/10/01 02:23:42 fetching corpus: 50, signal 27575/30461 (executing program) 2022/10/01 02:23:42 fetching corpus: 100, signal 39440/43009 (executing program) 2022/10/01 02:23:42 fetching corpus: 150, signal 48279/52302 (executing program) 2022/10/01 02:23:42 fetching corpus: 200, signal 55948/60174 (executing program) 2022/10/01 02:23:42 fetching corpus: 250, signal 59515/64215 (executing program) 2022/10/01 02:23:43 fetching corpus: 300, signal 62958/67966 (executing program) 2022/10/01 02:23:43 fetching corpus: 350, signal 65940/71182 (executing program) 2022/10/01 02:23:43 fetching corpus: 400, signal 68974/74316 (executing program) 2022/10/01 02:23:43 fetching corpus: 450, signal 72736/77936 (executing program) 2022/10/01 02:23:43 fetching corpus: 500, signal 74162/79569 (executing program) 2022/10/01 02:23:43 fetching corpus: 550, signal 76176/81587 (executing program) 2022/10/01 02:23:43 fetching corpus: 600, signal 78851/84137 (executing program) 2022/10/01 02:23:44 fetching corpus: 650, signal 80695/85860 (executing program) 2022/10/01 02:23:44 fetching corpus: 700, signal 86885/90582 (executing program) 2022/10/01 02:23:44 fetching corpus: 750, signal 89387/92531 (executing program) 2022/10/01 02:23:44 fetching corpus: 800, signal 91929/94403 (executing program) 2022/10/01 02:23:44 fetching corpus: 850, signal 93895/95809 (executing program) 2022/10/01 02:23:44 fetching corpus: 900, signal 95874/97087 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97272 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97332 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97386 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97440 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97495 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97558 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97639 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97707 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97784 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97849 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97912 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/97971 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98031 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98091 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98144 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98216 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98283 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98339 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98405 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98463 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98515 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98573 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98639 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98692 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98761 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98816 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98890 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/98952 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/99017 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/99018 (executing program) 2022/10/01 02:23:45 fetching corpus: 918, signal 96043/99018 (executing program) 2022/10/01 02:23:47 starting 8 fuzzer processes 02:23:47 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r0, &(0x7f0000001640)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001600)={&(0x7f0000001580)={0x14}, 0x14}}, 0x0) 02:23:47 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) unshare(0x20000000) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000001780)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0xf9fd) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 65.037299] audit: type=1400 audit(1664591027.829:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 02:23:47 executing program 2: r0 = memfd_create(&(0x7f0000000380)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5\x88\xf3g\xba\xed>Wj\x9a\xca\xc1\xd6u\xe0/|i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb62j\x88\xd4K\x0ev;\x1f\xffz1p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x04D\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x918\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=', 0x7) fcntl$addseals(r0, 0x409, 0xb) ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1000000008800000}) 02:23:47 executing program 3: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0xbf1ab423d32f6e43, 0x0) 02:23:47 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x64}, {0x6}]}, 0x10) 02:23:47 executing program 5: r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, 0xffffffffffffffff, 0x10000000) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00') r2 = open(&(0x7f0000000180)='./file0\x00', 0x33002, 0x18) openat(r2, &(0x7f00000001c0)='./file0\x00', 0x100, 0x1ea) pread64(r1, &(0x7f0000000040)=""/170, 0xaa, 0x180000000000000) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, 0x4, 0x0, {0x0, 0x0, r1}}, 0x0) ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f0000000100)={0x12, 0xc8, &(0x7f0000000000)="b924038994273a4d28c9d89fb4cf756d162c76f458b3fbbb492916cc985eecec800860385ee70c9589e314c81376e0b5148af7a71ae4185feb82fe196cde111dffd376f401db602a667d26503c0aae67f6e7bd36b507baf6612cb006edb9b4eac5606e97b2d97dba1850ffdd2076163552d50eeb1dfd596bb2a7d1d4afdfa72db756c421ad9ddf1dc3ae3f0fcdcd783295eb9a6b50238b8a94890c1146200f010cb23e1a1e98de074d5a5299dc3aa539a2eb4fc248da2d0483dfcda36f5a0be62496425d79993bac"}) r3 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r3, &(0x7f0000ff0000/0x3000)=nil, 0x4000) mlock2(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0x1) r4 = shmget$private(0x0, 0x4000, 0x4, &(0x7f0000ffc000/0x4000)=nil) shmget$private(0x0, 0x3000, 0x4, &(0x7f0000ff8000/0x3000)=nil) ioctl$EVIOCSABS2F(r1, 0x401845ef, &(0x7f0000000140)={0x7ff, 0x2, 0x10001, 0x3, 0x10000, 0x80}) shmat(r4, &(0x7f0000ffb000/0x4000)=nil, 0x0) r5 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil) shmat(r5, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) shmctl$IPC_RMID(r5, 0x0) mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x0) shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) 02:23:47 executing program 6: waitid(0x2, 0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000140)) waitid(0x2, 0xffffffffffffffff, &(0x7f0000000200), 0x1, &(0x7f0000000280)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340)=0x0) get_robust_list(r0, 0x0, &(0x7f0000000500)) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000540), 0x20000, 0x0) ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000580)) getpgrp(0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 02:23:47 executing program 7: mkdir(&(0x7f0000003b80)='./file0\x00', 0x0) lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000140)='./file0\x00', r0, 0x0) setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="020000000100000000000000040000000000000008000000", @ANYRES32=0x0, @ANYBLOB="100003000000000020"], 0x2c, 0x0) creat(&(0x7f0000000000)='./file0/file0\x00', 0x0) [ 66.370100] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.379444] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.384448] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.406232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.407150] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.409489] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.412916] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.413806] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.415317] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.419398] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.420623] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.432143] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.435492] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.437545] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.437632] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.444692] Bluetooth: hci2: HCI_REQ-0x0c1a [ 66.444971] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.447981] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.449387] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.450666] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.458272] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.458481] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 66.459184] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.461040] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 66.461954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.462960] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 66.464148] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.466082] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.466154] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.480101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.482195] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.483477] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 66.486852] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.486898] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.489355] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.490236] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.491847] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 66.493296] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.494980] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 66.495713] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.497700] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.498984] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.500944] Bluetooth: hci1: HCI_REQ-0x0c1a [ 66.501586] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.506614] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.515185] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.518757] Bluetooth: hci4: HCI_REQ-0x0c1a [ 66.527031] Bluetooth: hci5: HCI_REQ-0x0c1a [ 66.529587] Bluetooth: hci3: HCI_REQ-0x0c1a [ 68.435316] Bluetooth: hci0: command 0x0409 tx timeout [ 68.499274] Bluetooth: hci2: command 0x0409 tx timeout [ 68.502074] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 68.563334] Bluetooth: hci1: command 0x0409 tx timeout [ 68.564112] Bluetooth: hci3: command 0x0409 tx timeout [ 68.564731] Bluetooth: hci5: command 0x0409 tx timeout [ 68.565399] Bluetooth: hci4: command 0x0409 tx timeout [ 68.566075] Bluetooth: hci6: command 0x0409 tx timeout [ 70.484371] Bluetooth: hci0: command 0x041b tx timeout [ 70.548429] Bluetooth: hci2: command 0x041b tx timeout [ 70.611049] Bluetooth: hci6: command 0x041b tx timeout [ 70.611612] Bluetooth: hci4: command 0x041b tx timeout [ 70.612378] Bluetooth: hci5: command 0x041b tx timeout [ 70.613007] Bluetooth: hci3: command 0x041b tx timeout [ 70.613568] Bluetooth: hci1: command 0x041b tx timeout [ 71.664682] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.668734] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.671474] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.699714] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.712114] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.714673] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.732677] Bluetooth: hci7: HCI_REQ-0x0c1a [ 72.530992] Bluetooth: hci0: command 0x040f tx timeout [ 72.594986] Bluetooth: hci2: command 0x040f tx timeout [ 72.659237] Bluetooth: hci1: command 0x040f tx timeout [ 72.659276] Bluetooth: hci3: command 0x040f tx timeout [ 72.660792] Bluetooth: hci5: command 0x040f tx timeout [ 72.662480] Bluetooth: hci4: command 0x040f tx timeout [ 72.662782] Bluetooth: hci6: command 0x040f tx timeout [ 73.746983] Bluetooth: hci7: command 0x0409 tx timeout [ 74.578985] Bluetooth: hci0: command 0x0419 tx timeout [ 74.642997] Bluetooth: hci2: command 0x0419 tx timeout [ 74.707082] Bluetooth: hci6: command 0x0419 tx timeout [ 74.707165] Bluetooth: hci5: command 0x0419 tx timeout [ 74.707697] Bluetooth: hci4: command 0x0419 tx timeout [ 74.708324] Bluetooth: hci3: command 0x0419 tx timeout [ 74.708974] Bluetooth: hci1: command 0x0419 tx timeout [ 75.795017] Bluetooth: hci7: command 0x041b tx timeout [ 77.842946] Bluetooth: hci7: command 0x040f tx timeout [ 79.890976] Bluetooth: hci7: command 0x0419 tx timeout [ 128.218722] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 128.224539] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 128.226192] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 128.238164] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 128.243043] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 128.245455] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 128.250987] Bluetooth: hci0: HCI_REQ-0x0c1a [ 128.881584] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 128.895563] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 128.898332] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 128.908850] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 128.926071] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 128.938129] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 128.944390] Bluetooth: hci6: HCI_REQ-0x0c1a [ 130.259042] Bluetooth: hci0: command 0x0409 tx timeout [ 130.450955] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 130.834954] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 130.835111] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 130.836098] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 130.837267] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 130.962984] Bluetooth: hci6: command 0x0409 tx timeout [ 132.307960] Bluetooth: hci0: command 0x041b tx timeout [ 132.760551] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 132.762086] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 132.763684] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 132.766403] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 132.768282] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 132.769421] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 132.774990] Bluetooth: hci2: HCI_REQ-0x0c1a [ 133.010978] Bluetooth: hci6: command 0x041b tx timeout [ 133.548173] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 133.549778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 133.552556] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 133.559735] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 133.568015] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 133.576554] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 133.590969] Bluetooth: hci3: HCI_REQ-0x0c1a [ 133.642547] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 133.647793] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 133.648898] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 133.650816] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 133.655237] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 133.661778] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 133.662897] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 133.666966] Bluetooth: hci4: HCI_REQ-0x0c1a [ 133.718132] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 133.728002] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 133.749307] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 133.754478] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 133.761485] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 133.767019] Bluetooth: hci5: HCI_REQ-0x0c1a [ 134.355019] Bluetooth: hci0: command 0x040f tx timeout [ 134.739348] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 134.803981] Bluetooth: hci2: command 0x0409 tx timeout [ 135.058957] Bluetooth: hci6: command 0x040f tx timeout [ 135.634986] Bluetooth: hci3: command 0x0409 tx timeout [ 135.698987] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 135.701221] Bluetooth: hci4: command 0x0409 tx timeout [ 135.826972] Bluetooth: hci5: command 0x0409 tx timeout [ 136.403291] Bluetooth: hci0: command 0x0419 tx timeout [ 136.850939] Bluetooth: hci2: command 0x041b tx timeout [ 137.107057] Bluetooth: hci6: command 0x0419 tx timeout [ 137.304299] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 137.305787] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 137.307955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 137.311837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 137.335272] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 137.350172] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 137.383947] Bluetooth: hci1: HCI_REQ-0x0c1a [ 137.682982] Bluetooth: hci3: command 0x041b tx timeout [ 137.746953] Bluetooth: hci4: command 0x041b tx timeout [ 137.875064] Bluetooth: hci5: command 0x041b tx timeout [ 138.139589] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 138.141082] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 138.142215] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 138.144497] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 138.145747] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 138.147438] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 138.195104] Bluetooth: hci7: HCI_REQ-0x0c1a [ 138.898956] Bluetooth: hci2: command 0x040f tx timeout [ 139.410988] Bluetooth: hci1: command 0x0409 tx timeout [ 139.730926] Bluetooth: hci3: command 0x040f tx timeout [ 139.794931] Bluetooth: hci4: command 0x040f tx timeout [ 139.923052] Bluetooth: hci5: command 0x040f tx timeout [ 140.243010] Bluetooth: hci7: command 0x0409 tx timeout [ 140.946920] Bluetooth: hci2: command 0x0419 tx timeout [ 141.459075] Bluetooth: hci1: command 0x041b tx timeout [ 141.780011] Bluetooth: hci3: command 0x0419 tx timeout [ 141.842933] Bluetooth: hci4: command 0x0419 tx timeout [ 141.971939] Bluetooth: hci5: command 0x0419 tx timeout [ 142.291947] Bluetooth: hci7: command 0x041b tx timeout [ 143.506960] Bluetooth: hci1: command 0x040f tx timeout [ 144.338994] Bluetooth: hci7: command 0x040f tx timeout [ 145.555011] Bluetooth: hci1: command 0x0419 tx timeout [ 146.386983] Bluetooth: hci7: command 0x0419 tx timeout [ 187.731920] INFO: task rcu_gp:3 blocked for more than 143 seconds. [ 187.734919] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.735719] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.736574] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 187.737350] Call Trace: [ 187.737621] [ 187.737880] __schedule+0x893/0x2470 [ 187.738290] ? io_schedule_timeout+0x150/0x150 [ 187.738683] ? do_raw_spin_lock+0x121/0x260 [ 187.739125] ? rwlock_bug.part.0+0x90/0x90 [ 187.739528] schedule+0xda/0x1b0 [ 187.739846] rescuer_thread+0x851/0xdb0 [ 187.740287] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.741206] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.741687] ? lockdep_hardirqs_on+0x79/0x100 [ 187.742167] ? worker_thread+0x1260/0x1260 [ 187.742593] kthread+0x2ed/0x3a0 [ 187.742960] ? kthread_complete_and_exit+0x40/0x40 [ 187.743450] ret_from_fork+0x22/0x30 [ 187.743840] [ 187.744096] INFO: task rcu_par_gp:4 blocked for more than 143 seconds. [ 187.744899] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.745416] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.746176] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 187.746999] Call Trace: [ 187.747250] [ 187.747476] __schedule+0x893/0x2470 [ 187.747849] ? io_schedule_timeout+0x150/0x150 [ 187.748641] ? do_raw_spin_lock+0x121/0x260 [ 187.749060] ? rwlock_bug.part.0+0x90/0x90 [ 187.749461] schedule+0xda/0x1b0 [ 187.749902] rescuer_thread+0x851/0xdb0 [ 187.750238] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.750643] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.751120] ? lockdep_hardirqs_on+0x79/0x100 [ 187.751530] ? worker_thread+0x1260/0x1260 [ 187.751900] kthread+0x2ed/0x3a0 [ 187.752237] ? kthread_complete_and_exit+0x40/0x40 [ 187.752665] ret_from_fork+0x22/0x30 [ 187.753045] [ 187.753279] INFO: task slub_flushwq:5 blocked for more than 143 seconds. [ 187.753840] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.754295] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.754981] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 187.755716] Call Trace: [ 187.755985] [ 187.756263] __schedule+0x893/0x2470 [ 187.756735] ? io_schedule_timeout+0x150/0x150 [ 187.757200] ? do_raw_spin_lock+0x121/0x260 [ 187.757678] ? rwlock_bug.part.0+0x90/0x90 [ 187.758128] schedule+0xda/0x1b0 [ 187.758475] rescuer_thread+0x851/0xdb0 [ 187.758895] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.759336] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.759757] ? lockdep_hardirqs_on+0x79/0x100 [ 187.760200] ? worker_thread+0x1260/0x1260 [ 187.762093] kthread+0x2ed/0x3a0 [ 187.763422] ? kthread_complete_and_exit+0x40/0x40 [ 187.765477] ret_from_fork+0x22/0x30 [ 187.766901] [ 187.767771] INFO: task netns:6 blocked for more than 143 seconds. [ 187.770084] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.772068] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.775101] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 187.778255] Call Trace: [ 187.779210] [ 187.780460] __schedule+0x893/0x2470 [ 187.781977] ? io_schedule_timeout+0x150/0x150 [ 187.783748] ? do_raw_spin_lock+0x121/0x260 [ 187.785509] ? rwlock_bug.part.0+0x90/0x90 [ 187.786903] schedule+0xda/0x1b0 [ 187.788250] rescuer_thread+0x851/0xdb0 [ 187.789718] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.791728] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.793672] ? lockdep_hardirqs_on+0x79/0x100 [ 187.795466] ? worker_thread+0x1260/0x1260 [ 187.796944] kthread+0x2ed/0x3a0 [ 187.798099] ? kthread_complete_and_exit+0x40/0x40 [ 187.799759] ret_from_fork+0x22/0x30 [ 187.801062] [ 187.801852] INFO: task kworker/0:0H:8 blocked for more than 143 seconds. [ 187.804133] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.805929] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.808508] task:kworker/0:0H state:I stack:29760 pid:8 ppid:2 flags:0x00004000 [ 187.810883] Workqueue: 0x0 (events_highpri) [ 187.812395] Call Trace: [ 187.813260] [ 187.814051] __schedule+0x893/0x2470 [ 187.815325] ? io_schedule_timeout+0x150/0x150 [ 187.816906] schedule+0xda/0x1b0 [ 187.818060] worker_thread+0x15f/0x1260 [ 187.819272] ? process_one_work+0x16a0/0x16a0 [ 187.820462] kthread+0x2ed/0x3a0 [ 187.821372] ? kthread_complete_and_exit+0x40/0x40 [ 187.822902] ret_from_fork+0x22/0x30 [ 187.824093] [ 187.824791] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 187.826905] Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.828566] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 187.830903] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 187.833450] Call Trace: [ 187.834272] [ 187.834979] __schedule+0x893/0x2470 [ 187.836182] ? io_schedule_timeout+0x150/0x150 [ 187.837689] ? do_raw_spin_lock+0x121/0x260 [ 187.839164] ? rwlock_bug.part.0+0x90/0x90 [ 187.840384] schedule+0xda/0x1b0 [ 187.841258] rescuer_thread+0x851/0xdb0 [ 187.842347] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.844017] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 187.845556] ? lockdep_hardirqs_on+0x79/0x100 [ 187.847005] ? worker_thread+0x1260/0x1260 [ 187.848378] kthread+0x2ed/0x3a0 [ 187.849489] ? kthread_complete_and_exit+0x40/0x40 [ 187.851128] ret_from_fork+0x22/0x30 [ 187.852323] [ 188.234290] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 188.235068] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.235571] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.236361] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 188.237195] Call Trace: [ 188.237460] [ 188.237698] __schedule+0x893/0x2470 [ 188.238138] ? io_schedule_timeout+0x150/0x150 [ 188.238608] ? mark_held_locks+0x9e/0xe0 [ 188.239058] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.239561] schedule+0xda/0x1b0 [ 188.239953] rcu_tasks_one_gp+0x3db/0xc10 [ 188.240429] rcu_tasks_kthread+0x80/0xa0 [ 188.240851] ? rcu_tasks_postscan+0x10/0x10 [ 188.241318] kthread+0x2ed/0x3a0 [ 188.241671] ? kthread_complete_and_exit+0x40/0x40 [ 188.242204] ret_from_fork+0x22/0x30 [ 188.242603] [ 188.242855] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 188.243544] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.244090] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.244846] task:kworker/1:0H state:I stack:29376 pid:21 ppid:2 flags:0x00004000 [ 188.245680] Workqueue: 0x0 (kblockd) [ 188.246118] Call Trace: [ 188.246381] [ 188.246617] __schedule+0x893/0x2470 [ 188.247047] ? io_schedule_timeout+0x150/0x150 [ 188.247560] schedule+0xda/0x1b0 [ 188.247947] worker_thread+0x15f/0x1260 [ 188.248421] ? process_one_work+0x16a0/0x16a0 [ 188.248911] kthread+0x2ed/0x3a0 [ 188.249269] ? kthread_complete_and_exit+0x40/0x40 [ 188.249758] ret_from_fork+0x22/0x30 [ 188.250193] [ 188.250443] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 188.251115] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.251638] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.252460] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 188.253735] Call Trace: [ 188.254186] [ 188.254470] __schedule+0x893/0x2470 [ 188.254891] ? io_schedule_timeout+0x150/0x150 [ 188.255343] ? do_raw_spin_lock+0x121/0x260 [ 188.255893] ? rwlock_bug.part.0+0x90/0x90 [ 188.256446] schedule+0xda/0x1b0 [ 188.256795] rescuer_thread+0x851/0xdb0 [ 188.257265] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.257765] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.258332] ? lockdep_hardirqs_on+0x79/0x100 [ 188.258789] ? worker_thread+0x1260/0x1260 [ 188.259282] kthread+0x2ed/0x3a0 [ 188.259631] ? kthread_complete_and_exit+0x40/0x40 [ 188.260191] ret_from_fork+0x22/0x30 [ 188.260615] [ 188.260890] INFO: task kblockd:31 blocked for more than 143 seconds. [ 188.261517] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.262075] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.262789] task:kblockd state:I stack:30176 pid:31 ppid:2 flags:0x00004000 [ 188.263635] Call Trace: [ 188.263927] [ 188.264180] __schedule+0x893/0x2470 [ 188.264602] ? io_schedule_timeout+0x150/0x150 [ 188.265104] ? do_raw_spin_lock+0x121/0x260 [ 188.265572] ? rwlock_bug.part.0+0x90/0x90 [ 188.266177] schedule+0xda/0x1b0 [ 188.266655] rescuer_thread+0x851/0xdb0 [ 188.267193] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.267712] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.268281] ? lockdep_hardirqs_on+0x79/0x100 [ 188.268768] ? worker_thread+0x1260/0x1260 [ 188.269224] kthread+0x2ed/0x3a0 [ 188.269592] ? kthread_complete_and_exit+0x40/0x40 [ 188.270096] ret_from_fork+0x22/0x30 [ 188.270480] [ 188.270787] [ 188.270787] Showing all locks held in the system: [ 188.271432] 1 lock held by rcu_tasks_kthre/11: [ 188.271989] #0: ffffffff85406850 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 188.273044] 1 lock held by khungtaskd/25: [ 188.273478] #0: ffffffff85407320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 188.274445] 2 locks held by kworker/u4:1/26: [ 188.274929] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 188.276020] #1: ffff888009037db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 188.277201] 2 locks held by kworker/u4:3/47: [ 188.277633] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 188.278777] #1: ffff88800f97fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 188.279894] 1 lock held by kmemleak/55: [ 188.280308] 1 lock held by systemd-journal/112: [ 188.280762] 1 lock held by in:imklog/208: [ 188.281217] 2 locks held by kworker/u4:4/326: [ 188.281628] 2 locks held by kworker/u4:5/328: [ 188.282119] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 188.283207] #1: ffff88803e057db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 188.284356] 2 locks held by kworker/u4:6/330: [ 188.284833] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 188.285962] #1: ffff88803e0dfdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 188.287101] 2 locks held by kworker/u4:10/625: [ 188.287591] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 188.288578] #1: ffff8880187cfdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 188.289652] 3 locks held by syz-executor.2/3098: [ 188.290180] #0: ffff888020555028 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x107/0x380 [ 188.291173] #1: ffff888020554078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x2e0/0xfe0 [ 188.292136] #2: ffffffff859de9e8 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xc7/0x230 [ 188.293135] 1 lock held by systemd-rfkill/5778: [ 188.293638] 1 lock held by modprobe/5799: [ 188.294104] [ 188.294320] ============================================= [ 188.294320] [ 190.676796] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 190.683552] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 190.689968] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 190.707340] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 190.711058] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 190.713331] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 190.729180] Bluetooth: hci0: HCI_REQ-0x0c1a [ 191.170516] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 191.174453] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 191.176795] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 191.180601] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 191.187766] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 191.190298] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 191.208985] Bluetooth: hci6: HCI_REQ-0x0c1a [ 192.786964] Bluetooth: hci0: command 0x0409 tx timeout [ 193.299005] Bluetooth: hci6: command 0x0409 tx timeout [ 194.413943] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 194.420590] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 194.423289] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 194.427698] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 194.431430] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 194.435093] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 194.444978] Bluetooth: hci2: HCI_REQ-0x0c1a [ 194.835975] Bluetooth: hci0: command 0x041b tx timeout [ 195.291187] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 195.292455] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 195.293707] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 195.296732] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 195.298200] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 195.299333] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 195.308641] Bluetooth: hci3: HCI_REQ-0x0c1a [ 195.347053] Bluetooth: hci6: command 0x041b tx timeout [ 195.559786] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 195.566147] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 195.575203] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 195.585696] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 195.595752] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 195.606625] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 195.633984] Bluetooth: hci4: HCI_REQ-0x0c1a [ 196.499005] Bluetooth: hci2: command 0x0409 tx timeout [ 196.882941] Bluetooth: hci0: command 0x040f tx timeout [ 197.332055] Bluetooth: hci3: command 0x0409 tx timeout [ 197.395952] Bluetooth: hci6: command 0x040f tx timeout [ 197.650984] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 197.651994] Bluetooth: hci4: command 0x0409 tx timeout VM DIAGNOSIS: 02:25:51 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=0000000000000001 RDX=ffff88801ba875a0 RSI=ffff88801ba875f0 RDI=ffff88801ba875a8 RBP=ffffffff84109a70 RSP=ffff88801ba87488 R8 =ffffffff85e3411e R9 =ffffffff85e34122 R10=ffffed1003750eb8 R11=ffff88801ba87598 R12=ffff88801ba87599 R13=ffff88801ba875b8 R14=ffff88801ba87558 R15=0000000000000003 RIP=ffffffff8111b734 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb144451540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb14463c620 CR3=0000000030b08000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00ff00ff00ff00 ff00ff00ffffff00 YMM01=0000000000000000 0000000000000000 0100010001000100 01000100010100ff YMM02=0000000000000000 0000000000000000 61305f315f315f4c 53534e45504f0030 YMM03=0000000000000000 0000000000000000 0000000000000000 00000000004f0030 YMM04=0000000000000000 0000000000000000 504f0061305f315f 315f4c53534e4550 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800902fa18 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000031 R11=0000000000000001 R12=0000000000000031 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8b047c3620 CR3=000000002d326000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00ff00ff00ff00 ff00ff00ffffff00 YMM01=0000000000000000 0000000000000000 0100010001000100 01000100010100ff YMM02=0000000000000000 0000000000000000 61305f315f315f4c 53534e45504f0030 YMM03=0000000000000000 0000000000000000 0000000000000000 00000000004f0030 YMM04=0000000000000000 0000000000000000 504f0061305f315f 315f4c53534e4550 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000