./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1015005959 <...> Warning: Permanently added '10.128.0.114' (ED25519) to the list of known hosts. execve("./syz-executor1015005959", ["./syz-executor1015005959"], 0x7ffecc745ed0 /* 10 vars */) = 0 brk(NULL) = 0x555576dfa000 brk(0x555576dfad00) = 0x555576dfad00 arch_prctl(ARCH_SET_FS, 0x555576dfa380) = 0 set_tid_address(0x555576dfa650) = 302 set_robust_list(0x555576dfa660, 24) = 0 rseq(0x555576dfaca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1015005959", 4096) = 28 getrandom("\x1f\xbd\x36\xb0\xe1\x74\xd4\x9c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555576dfad00 brk(0x555576e1bd00) = 0x555576e1bd00 brk(0x555576e1c000) = 0x555576e1c000 mprotect(0x7fbc0be1e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 303 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 304 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 305 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 306 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 307 ./strace-static-x86_64: Process 307 attached [pid 307] set_robust_list(0x555576dfa660, 24) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 308 ./strace-static-x86_64: Process 306 attached [pid 306] set_robust_list(0x555576dfa660, 24) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 309 ./strace-static-x86_64: Process 308 attached [pid 308] set_robust_list(0x555576dfa660, 24) = 0 [pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 309 attached ./strace-static-x86_64: Process 304 attached ./strace-static-x86_64: Process 305 attached ./strace-static-x86_64: Process 303 attached ) = 0 [pid 309] set_robust_list(0x555576dfa660, 24 [pid 308] setpgid(0, 0 [pid 305] set_robust_list(0x555576dfa660, 24 [pid 304] set_robust_list(0x555576dfa660, 24 [pid 303] set_robust_list(0x555576dfa660, 24 [pid 309] <... set_robust_list resumed>) = 0 [pid 309] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 309] setpgid(0, 0) = 0 [pid 309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 308] <... setpgid resumed>) = 0 [pid 305] <... set_robust_list resumed>) = 0 [pid 304] <... set_robust_list resumed>) = 0 [pid 309] write(3, "1000", 4) = 4 [pid 309] close(3) = 0 executing program [pid 309] write(1, "executing program\n", 18) = 18 [pid 309] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 303] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 310 attached [pid 309] <... socket resumed>) = 3 [pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 308] <... openat resumed>) = 3 [pid 304] <... clone resumed>, child_tidptr=0x555576dfa650) = 310 [pid 308] write(3, "1000", 4 [pid 305] <... clone resumed>, child_tidptr=0x555576dfa650) = 311 [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 312 executing program [pid 308] <... write resumed>) = 4 [pid 308] close(3) = 0 [pid 308] write(1, "executing program\n", 18) = 18 [pid 308] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 308] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 308] ioctl(4, TIOCSETD, [15]) = 0 [pid 308] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 308] ioctl(3, HCISETLINKPOL [pid 309] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 309] ioctl(4, TIOCSETD, [15]) = 0 [pid 309] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 310] set_robust_list(0x555576dfa660, 24) = 0 [pid 310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 310] setpgid(0, 0) = 0 [pid 310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 310] write(3, "1000", 4) = 4 [pid 310] close(3) = 0 [pid 310] write(1, "executing program\n", 18executing program ) = 18 [pid 310] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 310] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 310] ioctl(4, TIOCSETD, [15] [pid 309] <... ioctl resumed>, 0) = 0 ./strace-static-x86_64: Process 311 attached [pid 310] <... ioctl resumed>) = 0 [pid 310] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 309] ioctl(3, HCISETLINKPOL [pid 311] set_robust_list(0x555576dfa660, 24./strace-static-x86_64: Process 312 attached ) = 0 [pid 311] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 312] set_robust_list(0x555576dfa660, 24 [pid 311] <... prctl resumed>) = 0 [pid 312] <... set_robust_list resumed>) = 0 [ 29.754179][ T28] audit: type=1400 audit(1733051823.417:66): avc: denied { execmem } for pid=302 comm="syz-executor101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 29.783935][ T28] audit: type=1400 audit(1733051823.447:67): avc: denied { create } for pid=309 comm="syz-executor101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [pid 312] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 311] setpgid(0, 0 [pid 310] <... ioctl resumed>, 0) = 0 [pid 310] ioctl(3, HCISETLINKPOL [pid 312] <... prctl resumed>) = 0 [pid 312] setpgid(0, 0) = 0 [pid 312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 312] write(3, "1000", 4executing program ) = 4 [pid 312] close(3) = 0 [pid 312] write(1, "executing program\n", 18) = 18 [pid 312] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 312] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 312] ioctl(4, TIOCSETD, [15]) = 0 [pid 312] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 311] <... setpgid resumed>) = 0 [pid 311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 311] write(3, "1000", 4) = 4 [pid 311] close(3) = 0 executing program [pid 311] write(1, "executing program\n", 18) = 18 [pid 311] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 311] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 312] ioctl(3, HCISETLINKPOL [pid 311] ioctl(4, TIOCSETD, [15]) = 0 [pid 311] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 29.811415][ T28] audit: type=1400 audit(1733051823.457:68): avc: denied { ioctl } for pid=308 comm="syz-executor101" path="socket:[15083]" dev="sockfs" ino=15083 ioctlcmd=0x48e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 29.831511][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [ 29.837258][ T8] Bluetooth: hci2: Frame reassembly failed (-84) [ 29.843752][ T43] Bluetooth: hci3: Frame reassembly failed (-84) [ 29.849244][ T8] Bluetooth: hci4: Frame reassembly failed (-84) [ 31.852124][ T320] Bluetooth: hci2: command 0x1003 tx timeout [ 31.852129][ T319] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 31.852155][ T320] Bluetooth: hci4: command 0x1003 tx timeout [ 31.857999][ T318] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 31.875573][ T316] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 31.875575][ T320] Bluetooth: hci1: command 0x1003 tx timeout [ 31.875601][ T314] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 31.881458][ T320] Bluetooth: hci3: command 0x1003 tx timeout [pid 311] ioctl(3, HCISETLINKPOL [pid 308] <... ioctl resumed>, 0x200003c0) = -1 ETIMEDOUT (Connection timed out) [pid 308] exit_group(0) = ? [ 31.887296][ T308] Bluetooth: hci0: Opcode 0x080f failed: -110 [pid 309] <... ioctl resumed>, 0x200003c0) = -1 ETIMEDOUT (Connection timed out) [pid 309] exit_group(0 [pid 308] +++ exited with 0 +++ [pid 309] <... exit_group resumed>) = ? [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=308, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 329 ./strace-static-x86_64: Process 329 attached [pid 329] set_robust_list(0x555576dfa660, 24) = 0 [pid 329] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 329] setpgid(0, 0) = 0 [pid 329] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 329] write(3, "1000", 4) = 4 [pid 329] close(3) = 0 [pid 329] write(1, "executing program\n", 18executing program ) = 18 [pid 329] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 329] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 329] ioctl(4, TIOCSETD, [15]) = 0 [pid 329] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 329] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [pid 329] exit_group(0) = ? [pid 309] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=309, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 306] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 331 attached , child_tidptr=0x555576dfa650) = 331 [pid 331] set_robust_list(0x555576dfa660, 24) = 0 [pid 331] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 331] setpgid(0, 0) = 0 [pid 331] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 331] write(3, "1000", 4) = 4 [pid 331] close(3executing program ) = 0 [pid 331] write(1, "executing program\n", 18) = 18 [pid 331] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 331] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 331] ioctl(4, TIOCSETD, [15]) = 0 [ 33.932099][ T309] Bluetooth: hci0: Opcode 0x080f failed: -110 [ 33.944410][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [pid 331] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 331] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [pid 331] exit_group(0) = ? [ 33.978443][ T8] Bluetooth: hci5: Frame reassembly failed (-84) [pid 305] kill(-311, SIGKILL [pid 303] kill(-312, SIGKILL) = 0 [pid 303] kill(312, SIGKILL) = 0 [pid 305] <... kill resumed>) = 0 [pid 305] kill(311, SIGKILL) = 0 [pid 304] kill(-310, SIGKILL) = 0 [pid 304] kill(310, SIGKILL) = 0 [pid 310] <... ioctl resumed> ) = ? [pid 312] <... ioctl resumed> ) = ? [pid 311] <... ioctl resumed> ) = ? [pid 310] +++ killed by SIGKILL +++ [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=310, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 304] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 333 ./strace-static-x86_64: Process 333 attached [pid 333] set_robust_list(0x555576dfa660, 24) = 0 [pid 333] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 333] setpgid(0, 0) = 0 [pid 333] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 333] write(3, "1000", 4) = 4 [pid 333] close(3) = 0 [pid 333] write(1, "executing program\n", 18executing program ) = 18 [pid 333] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 333] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 333] ioctl(4, TIOCSETD, [15]) = 0 [pid 333] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 34.794235][ T310] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 34.800056][ T312] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 34.805941][ T311] Bluetooth: hci0: Opcode 0x080f failed: -4 [pid 333] ioctl(3, HCISETLINKPOL [pid 312] +++ killed by SIGKILL +++ [pid 311] +++ killed by SIGKILL +++ [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=312, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2} --- [pid 303] restart_syscall(<... resuming interrupted kill ...> [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=311, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 303] <... restart_syscall resumed>) = 0 [pid 305] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 334 attached [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 334 ./strace-static-x86_64: Process 335 attached [pid 335] set_robust_list(0x555576dfa660, 24 [pid 305] <... clone resumed>, child_tidptr=0x555576dfa650) = 335 [pid 335] <... set_robust_list resumed>) = 0 [pid 334] set_robust_list(0x555576dfa660, 24 [pid 335] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 334] <... set_robust_list resumed>) = 0 [pid 335] <... prctl resumed>) = 0 [pid 335] setpgid(0, 0) = 0 [pid 335] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 334] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 335] <... openat resumed>) = 3 [pid 334] <... prctl resumed>) = 0 [pid 334] setpgid(0, 0) = 0 [pid 334] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 335] write(3, "1000", 4 [pid 334] <... openat resumed>) = 3 [pid 334] write(3, "1000", 4) = 4 [pid 334] close(3) = 0 [pid 334] write(1, "executing program\n", 18executing program ) = 18 [pid 334] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 335] <... write resumed>) = 4 [pid 334] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY [pid 335] close(3 [pid 334] <... openat resumed>) = 4 [pid 335] <... close resumed>) = 0 executing program [pid 334] ioctl(4, TIOCSETD, [15] [pid 335] write(1, "executing program\n", 18) = 18 [pid 335] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 335] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY [pid 334] <... ioctl resumed>) = 0 [pid 334] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 335] <... openat resumed>) = 4 [pid 335] ioctl(4, TIOCSETD, [15]) = 0 [ 34.838419][ T8] Bluetooth: hci0: Frame reassembly failed (-84) [pid 335] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 334] <... ioctl resumed>, 0) = 0 [pid 335] ioctl(3, HCISETLINKPOL [ 34.879611][ T8] Bluetooth: hci3: Frame reassembly failed (-84) [ 34.882482][ T43] Bluetooth: hci2: Frame reassembly failed (-84) [pid 334] ioctl(3, HCISETLINKPOL [pid 331] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=331, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 337 ./strace-static-x86_64: Process 337 attached [pid 337] set_robust_list(0x555576dfa660, 24) = 0 [pid 337] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 337] setpgid(0, 0) = 0 [pid 337] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 337] write(3, "1000", 4) = 4 [pid 337] close(3) = 0 [pid 337] write(1, "executing program\n", 18executing program ) = 18 [pid 337] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 337] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 337] ioctl(4, TIOCSETD, [15]) = 0 [pid 337] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 329] +++ exited with 0 +++ [pid 337] ioctl(3, HCISETLINKPOL [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=329, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 307] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 338 ./strace-static-x86_64: Process 338 attached [pid 338] set_robust_list(0x555576dfa660, 24) = 0 [pid 338] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 338] setpgid(0, 0) = 0 [pid 338] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 338] write(3, "1000", 4) = 4 [pid 338] close(3) = 0 [pid 338] write(1, "executing program\n", 18executing program ) = 18 [pid 338] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 338] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 338] ioctl(4, TIOCSETD, [15]) = 0 [pid 338] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 36.012125][ T322] Bluetooth: hci5: command 0x1003 tx timeout [ 36.012122][ T316] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 36.012162][ T45] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 36.017990][ T316] Bluetooth: hci1: command 0x1003 tx timeout [ 36.033963][ T43] Bluetooth: hci4: Frame reassembly failed (-84) [ 36.046321][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [ 36.892087][ T320] Bluetooth: hci3: command 0x1003 tx timeout [ 36.892079][ T314] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 36.892140][ T314] Bluetooth: hci2: command 0x1003 tx timeout [ 36.897938][ T318] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 36.915546][ T319] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 38.092100][ T45] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 38.092103][ T319] Bluetooth: hci1: command 0x1003 tx timeout [ 38.092134][ T319] Bluetooth: hci4: command 0x1003 tx timeout [ 38.098043][ T322] Bluetooth: hci4: Opcode 0x1003 failed: -110 [pid 338] ioctl(3, HCISETLINKPOL [pid 333] <... ioctl resumed>, 0x200003c0) = -1 ETIMEDOUT (Connection timed out) [pid 333] exit_group(0) = ? [ 38.972118][ T333] Bluetooth: hci0: Opcode 0x080f failed: -110 [pid 304] kill(-333, SIGKILL) = 0 [pid 304] kill(333, SIGKILL) = 0 [pid 305] kill(-335, SIGKILL) = 0 [pid 303] kill(-334, SIGKILL) = 0 [pid 303] kill(334, SIGKILL) = 0 [pid 305] kill(335, SIGKILL) = 0 [pid 335] <... ioctl resumed> ) = ? [pid 334] <... ioctl resumed> ) = ? [pid 335] +++ killed by SIGKILL +++ [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=335, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 305] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 345 attached , child_tidptr=0x555576dfa650) = 345 [pid 345] set_robust_list(0x555576dfa660, 24) = 0 [pid 345] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 345] setpgid(0, 0) = 0 [pid 345] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 345] write(3, "1000", 4) = 4 [pid 345] close(3executing program ) = 0 [pid 345] write(1, "executing program\n", 18) = 18 [pid 345] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 345] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 345] ioctl(4, TIOCSETD, [15]) = 0 [ 39.881274][ T335] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 39.887450][ T334] Bluetooth: hci0: Opcode 0x080f failed: -4 [pid 345] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 345] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [pid 345] exit_group(0) = ? [pid 334] +++ killed by SIGKILL +++ [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=334, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 303] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 346 attached [pid 346] set_robust_list(0x555576dfa660, 24) = 0 [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 346 [pid 346] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 346] setpgid(0, 0) = 0 [pid 346] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 346] write(3, "1000", 4) = 4 [pid 346] close(3executing program ) = 0 [pid 346] write(1, "executing program\n", 18) = 18 [pid 346] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 346] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 346] ioctl(4, TIOCSETD, [15]) = 0 [pid 346] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 346] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [pid 346] exit_group(0) = ? [pid 304] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 304] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 304] getdents64(3, 0x555576dfb6f0 /* 2 entries */, 32768) = 48 [pid 304] getdents64(3, 0x555576dfb6f0 /* 0 entries */, 32768) = 0 [pid 304] close(3) = 0 [ 39.938149][ T43] Bluetooth: hci2: Frame reassembly failed (-84) [ 39.958652][ T43] Bluetooth: hci3: Frame reassembly failed (-84) [pid 306] kill(-337, SIGKILL) = 0 [pid 306] kill(337, SIGKILL) = 0 [pid 337] <... ioctl resumed> ) = ? [pid 307] kill(-338, SIGKILL) = 0 [pid 307] kill(338, SIGKILL) = 0 [pid 338] <... ioctl resumed> ) = ? [pid 333] +++ exited with 0 +++ executing program [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=333, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 348 ./strace-static-x86_64: Process 348 attached [pid 348] set_robust_list(0x555576dfa660, 24) = 0 [pid 348] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 348] setpgid(0, 0) = 0 [pid 348] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 348] write(3, "1000", 4) = 4 [pid 348] close(3) = 0 [pid 348] write(1, "executing program\n", 18) = 18 [pid 348] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 348] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 348] ioctl(4, TIOCSETD, [15]) = 0 [pid 348] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 348] ioctl(3, HCISETLINKPOL [pid 337] +++ killed by SIGKILL +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=337, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=1} --- [pid 306] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 349 attached , child_tidptr=0x555576dfa650) = 349 [pid 349] set_robust_list(0x555576dfa660, 24) = 0 [pid 349] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 349] setpgid(0, 0) = 0 [pid 349] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 349] write(3, "1000", 4) = 4 [pid 349] close(3executing program ) = 0 [pid 349] write(1, "executing program\n", 18) = 18 [pid 349] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 349] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 349] ioctl(4, TIOCSETD, [15]) = 0 [pid 349] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 41.029244][ T337] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 41.049928][ T338] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 41.063520][ T43] Bluetooth: hci0: Frame reassembly failed (-84) [pid 349] ioctl(3, HCISETLINKPOL [pid 338] +++ killed by SIGKILL +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=338, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 307] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 350 ./strace-static-x86_64: Process 350 attached [pid 350] set_robust_list(0x555576dfa660, 24) = 0 [pid 350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 350] setpgid(0, 0) = 0 [pid 350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 350] write(3, "1000", 4) = 4 [pid 350] close(3) = 0 executing program [pid 350] write(1, "executing program\n", 18) = 18 [pid 350] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 350] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 350] ioctl(4, TIOCSETD, [15]) = 0 [ 41.078021][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [pid 350] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 41.117958][ T323] Bluetooth: hci4: Frame reassembly failed (-84) [ 41.124203][ T323] Bluetooth: hci4: Frame reassembly failed (-84) [pid 350] ioctl(3, HCISETLINKPOL [pid 345] +++ exited with 0 +++ [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=345, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 305] restart_syscall(<... resuming interrupted clone ...> [pid 346] +++ exited with 0 +++ [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=346, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 303] restart_syscall(<... resuming interrupted clone ...> [pid 305] <... restart_syscall resumed>) = 0 [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 303] <... restart_syscall resumed>) = 0 ./strace-static-x86_64: Process 352 attached [pid 352] set_robust_list(0x555576dfa660, 24 [pid 305] <... clone resumed>, child_tidptr=0x555576dfa650) = 352 [pid 352] <... set_robust_list resumed>) = 0 [pid 352] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 352] <... prctl resumed>) = 0 [pid 352] setpgid(0, 0) = 0 [pid 352] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 353 attached ) = 3 [pid 353] set_robust_list(0x555576dfa660, 24 [pid 352] write(3, "1000", 4 [pid 353] <... set_robust_list resumed>) = 0 [pid 352] <... write resumed>) = 4 [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 353 [pid 353] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 352] close(3 [pid 353] <... prctl resumed>) = 0 [pid 352] <... close resumed>) = 0 [pid 353] setpgid(0, 0 executing program [pid 352] write(1, "executing program\n", 18 [pid 353] <... setpgid resumed>) = 0 [pid 352] <... write resumed>) = 18 [pid 352] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI [pid 353] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 352] <... socket resumed>) = 3 [pid 352] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY [pid 353] <... openat resumed>) = 3 [pid 352] <... openat resumed>) = 4 [pid 353] write(3, "1000", 4 [pid 352] ioctl(4, TIOCSETD, [15]executing program [pid 353] <... write resumed>) = 4 [pid 353] close(3) = 0 [pid 353] write(1, "executing program\n", 18) = 18 [pid 353] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 353] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 352] <... ioctl resumed>) = 0 [pid 353] ioctl(4, TIOCSETD, [15]) = 0 [pid 352] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 353] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 352] <... ioctl resumed>, 0) = 0 [pid 352] ioctl(3, HCISETLINKPOL [ 42.012063][ T322] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 42.012085][ T314] Bluetooth: hci3: command 0x1003 tx timeout [ 42.012106][ T314] Bluetooth: hci2: command 0x1003 tx timeout [ 42.018387][ T45] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 42.048139][ T323] Bluetooth: hci2: Frame reassembly failed (-84) [ 42.051280][ T43] Bluetooth: hci3: Frame reassembly failed (-84) [pid 353] ioctl(3, HCISETLINKPOL [pid 348] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 348] exit_group(0) = ? [pid 349] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [ 43.132102][ T314] Bluetooth: hci4: command 0x1003 tx timeout [ 43.132100][ T316] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 43.132146][ T319] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 43.137949][ T316] Bluetooth: hci1: command 0x1003 tx timeout [ 43.144710][ T318] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 43.149764][ T320] Bluetooth: hci0: command 0x1003 tx timeout [ 43.167462][ T348] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 43.173404][ T349] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 350] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 349] exit_group(0) = ? [pid 350] exit_group(0) = ? [pid 352] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 352] exit_group(0) = ? [pid 353] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 353] exit_group(0) = ? [pid 349] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=349, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 306] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 357 ./strace-static-x86_64: Process 357 attached [pid 357] set_robust_list(0x555576dfa660, 24) = 0 [pid 357] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 357] setpgid(0, 0) = 0 [pid 357] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 43.179448][ T350] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 43.185448][ T352] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 43.191543][ T353] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 357] write(3, "1000", 4executing program ) = 4 [pid 357] close(3) = 0 [pid 357] write(1, "executing program\n", 18) = 18 [pid 357] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 357] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 357] ioctl(4, TIOCSETD, [15]) = 0 [pid 357] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 357] ioctl(3, HCISETLINKPOL [pid 350] +++ exited with 0 +++ [pid 348] +++ exited with 0 +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=350, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=348, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 307] restart_syscall(<... resuming interrupted clone ...> [pid 304] restart_syscall(<... resuming interrupted clone ...> [pid 307] <... restart_syscall resumed>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 358 ./strace-static-x86_64: Process 358 attached [pid 358] set_robust_list(0x555576dfa660, 24) = 0 [pid 358] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 358] setpgid(0, 0) = 0 [pid 358] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 358] write(3, "1000", 4) = 4 [pid 358] close(3) = 0 [pid 358] write(1, "executing program\n", 18executing program ) = 18 [pid 358] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 358] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 358] ioctl(4, TIOCSETD, [15] [pid 304] <... restart_syscall resumed>) = 0 [pid 358] <... ioctl resumed>) = 0 [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 358] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 304] <... clone resumed>, child_tidptr=0x555576dfa650) = 359 ./strace-static-x86_64: Process 359 attached [pid 359] set_robust_list(0x555576dfa660, 24) = 0 [pid 359] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 359] setpgid(0, 0) = 0 [pid 359] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 358] <... ioctl resumed>, 0) = 0 [pid 358] ioctl(3, HCISETLINKPOL [pid 359] <... openat resumed>) = 3 [pid 359] write(3, "1000", 4) = 4 executing program [pid 359] close(3) = 0 [pid 359] write(1, "executing program\n", 18) = 18 [pid 359] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 359] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 359] ioctl(4, TIOCSETD, [15]) = 0 [pid 359] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 43.244814][ T43] Bluetooth: hci0: Frame reassembly failed (-84) [ 43.264613][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [ 43.270702][ T323] Bluetooth: hci4: Frame reassembly failed (-84) [pid 359] ioctl(3, HCISETLINKPOL [pid 352] +++ exited with 0 +++ [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=352, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 353] +++ exited with 0 +++ ./strace-static-x86_64: Process 360 attached [pid 305] <... clone resumed>, child_tidptr=0x555576dfa650) = 360 [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=353, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 303] restart_syscall(<... resuming interrupted clone ...> [pid 360] set_robust_list(0x555576dfa660, 24) = 0 [pid 360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 360] setpgid(0, 0) = 0 [pid 360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 360] write(3, "1000", 4) = 4 [pid 360] close(3) = 0 [pid 360] write(1, "executing program\n", 18executing program ) = 18 [pid 360] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 360] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 360] ioctl(4, TIOCSETD, [15]) = 0 [pid 360] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4)executing program , 0) = 0 [pid 303] <... restart_syscall resumed>) = 0 [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 361 ./strace-static-x86_64: Process 361 attached [pid 361] set_robust_list(0x555576dfa660, 24) = 0 [pid 361] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 361] setpgid(0, 0) = 0 [pid 361] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 361] write(3, "1000", 4) = 4 [pid 361] close(3) = 0 [pid 361] write(1, "executing program\n", 18) = 18 [pid 361] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 361] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 361] ioctl(4, TIOCSETD, [15]) = 0 [pid 361] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 360] ioctl(3, HCISETLINKPOL [ 44.092037][ T45] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 44.092062][ T322] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 44.097982][ T45] Bluetooth: hci3: command 0x1003 tx timeout [ 44.116803][ T323] Bluetooth: hci2: Frame reassembly failed (-84) [ 44.123600][ T323] Bluetooth: hci3: Frame reassembly failed (-84) [pid 361] ioctl(3, HCISETLINKPOL [pid 357] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 357] exit_group(0) = ? [ 45.292232][ T314] Bluetooth: hci4: command 0x1003 tx timeout [ 45.292224][ T320] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 45.292284][ T316] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 45.298067][ T314] Bluetooth: hci1: command 0x1003 tx timeout [ 45.298085][ T314] Bluetooth: hci0: command 0x1003 tx timeout [ 45.304599][ T318] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 45.327798][ T357] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 45.333914][ T358] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 358] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 358] exit_group(0) = ? [pid 359] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 359] exit_group(0) = ? [pid 360] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 360] exit_group(0 [pid 361] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 360] <... exit_group resumed>) = ? [pid 361] exit_group(0) = ? [pid 359] +++ exited with 0 +++ [pid 358] +++ exited with 0 +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=358, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=359, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 307] restart_syscall(<... resuming interrupted clone ...> [pid 304] restart_syscall(<... resuming interrupted clone ...> [pid 357] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=357, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 306] restart_syscall(<... resuming interrupted clone ...> [pid 304] <... restart_syscall resumed>) = 0 [pid 307] <... restart_syscall resumed>) = 0 [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 306] <... restart_syscall resumed>) = 0 ./strace-static-x86_64: Process 364 attached [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 304] <... clone resumed>, child_tidptr=0x555576dfa650) = 364 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 365 [pid 364] set_robust_list(0x555576dfa660, 24) = 0 [pid 364] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 364] setpgid(0, 0) = 0 [pid 364] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 307] <... clone resumed>, child_tidptr=0x555576dfa650) = 366 ./strace-static-x86_64: Process 366 attached [pid 364] <... openat resumed>) = 3 [pid 364] write(3, "1000", 4) = 4 [pid 364] close(3executing program ) = 0 [pid 364] write(1, "executing program\n", 18) = 18 [pid 364] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 364] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [ 45.339905][ T359] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 45.345879][ T360] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 45.351802][ T361] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 364] ioctl(4, TIOCSETD, [15]) = 0 [pid 364] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4)./strace-static-x86_64: Process 365 attached [pid 366] set_robust_list(0x555576dfa660, 24) = 0 [pid 365] set_robust_list(0x555576dfa660, 24 [pid 364] <... ioctl resumed>, 0) = 0 [pid 366] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 366] setpgid(0, 0) = 0 [pid 366] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 366] write(3, "1000", 4) = 4 [pid 366] close(3executing program ) = 0 [pid 366] write(1, "executing program\n", 18) = 18 [pid 366] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 366] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 366] ioctl(4, TIOCSETD, [15]) = 0 [pid 366] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 365] <... set_robust_list resumed>) = 0 [pid 364] ioctl(3, HCISETLINKPOL [pid 366] <... ioctl resumed>, 0) = 0 [pid 365] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 366] ioctl(3, HCISETLINKPOL [pid 365] <... prctl resumed>) = 0 [pid 365] setpgid(0, 0) = 0 [pid 365] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 365] write(3, "1000", 4) = 4 executing program [pid 365] close(3) = 0 [pid 365] write(1, "executing program\n", 18) = 18 [pid 365] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 365] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 365] ioctl(4, TIOCSETD, [15]) = 0 [pid 365] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 45.404377][ T8] Bluetooth: hci0: Frame reassembly failed (-84) [ 45.412881][ T323] Bluetooth: hci1: Frame reassembly failed (-84) [ 45.415931][ T43] Bluetooth: hci4: Frame reassembly failed (-84) [ 45.419910][ T323] Bluetooth: hci1: Frame reassembly failed (-84) [ 45.425545][ T43] Bluetooth: hci4: Frame reassembly failed (-84) [pid 365] ioctl(3, HCISETLINKPOL [pid 361] +++ exited with 0 +++ [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=361, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 303] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 369 attached [pid 369] set_robust_list(0x555576dfa660, 24 [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 369 [pid 369] <... set_robust_list resumed>) = 0 [pid 360] +++ exited with 0 +++ [pid 369] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=360, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 369] <... prctl resumed>) = 0 [pid 305] restart_syscall(<... resuming interrupted clone ...> [pid 369] setpgid(0, 0) = 0 [pid 369] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 369] write(3, "1000", 4) = 4 executing program [pid 369] close(3) = 0 [pid 369] write(1, "executing program\n", 18) = 18 [pid 369] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 369] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 369] ioctl(4, TIOCSETD, [15]) = 0 [pid 369] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 369] ioctl(3, HCISETLINKPOL [pid 305] <... restart_syscall resumed>) = 0 [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 370 ./strace-static-x86_64: Process 370 attached [pid 370] set_robust_list(0x555576dfa660, 24) = 0 [pid 370] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 370] setpgid(0, 0) = 0 [pid 370] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 370] write(3, "1000", 4) = 4 [pid 370] close(3executing program ) = 0 [pid 370] write(1, "executing program\n", 18) = 18 [pid 370] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 370] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 370] ioctl(4, TIOCSETD, [15]) = 0 [pid 370] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 46.172193][ T316] Bluetooth: hci3: command 0x1003 tx timeout [ 46.172216][ T45] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 46.178029][ T316] Bluetooth: hci2: command 0x1003 tx timeout [ 46.183940][ T322] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 46.202048][ T43] Bluetooth: hci2: Frame reassembly failed (-84) [ 46.211391][ T367] Bluetooth: hci3: Frame reassembly failed (-84) [ 46.217894][ T367] Bluetooth: hci3: Frame reassembly failed (-84) [ 47.452142][ T45] Bluetooth: hci1: command 0x1003 tx timeout [ 47.452137][ T314] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 47.452168][ T45] Bluetooth: hci4: command 0x1003 tx timeout [ 47.457993][ T318] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 47.463881][ T319] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 48.252094][ T319] Bluetooth: hci3: command 0x1003 tx timeout [ 48.252092][ T316] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 48.252150][ T320] Bluetooth: hci2: command 0x1003 tx timeout [ 48.257945][ T322] Bluetooth: hci2: Opcode 0x1003 failed: -110 [pid 370] ioctl(3, HCISETLINKPOL [pid 364] <... ioctl resumed>, 0x200003c0) = -1 ETIMEDOUT (Connection timed out) [pid 364] exit_group(0) = ? [ 49.532100][ T364] Bluetooth: hci0: Opcode 0x080f failed: -110 [pid 306] kill(-365, SIGKILL [pid 304] kill(-364, SIGKILL [pid 307] kill(-366, SIGKILL [pid 306] <... kill resumed>) = 0 [pid 306] kill(365, SIGKILL) = 0 [pid 304] <... kill resumed>) = 0 [pid 304] kill(364, SIGKILL) = 0 [pid 307] <... kill resumed>) = 0 [pid 307] kill(366, SIGKILL) = 0 [pid 366] <... ioctl resumed> ) = ? [pid 365] <... ioctl resumed> ) = ? [pid 366] +++ killed by SIGKILL +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=366, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 307] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 377 attached , child_tidptr=0x555576dfa650) = 377 [pid 377] set_robust_list(0x555576dfa660, 24) = 0 [pid 377] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 377] setpgid(0, 0) = 0 [pid 377] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 377] write(3, "1000", 4) = 4 [pid 377] close(3) = 0 [pid 377] write(1, "executing program\n", 18) = 18 executing program [pid 377] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 377] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 377] ioctl(4, TIOCSETD, [15]) = 0 [pid 377] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 377] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [ 50.403959][ T366] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 50.409786][ T365] Bluetooth: hci0: Opcode 0x080f failed: -4 [pid 377] exit_group(0) = ? [pid 365] +++ killed by SIGKILL +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=365, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=1} --- [pid 306] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 378 attached , child_tidptr=0x555576dfa650) = 378 [pid 378] set_robust_list(0x555576dfa660, 24) = 0 executing program [pid 378] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 378] setpgid(0, 0) = 0 [pid 378] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 378] write(3, "1000", 4) = 4 [pid 378] close(3) = 0 [pid 378] write(1, "executing program\n", 18) = 18 [pid 378] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 378] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 378] ioctl(4, TIOCSETD, [15]) = 0 [ 50.457936][ T367] Bluetooth: hci1: Frame reassembly failed (-84) [pid 378] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 378] ioctl(3, HCISETLINKPOL, 0x200003c0) = -1 ENODEV (No such device) [pid 378] exit_group(0) = ? [pid 304] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 304] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 304] getdents64(3, 0x555576dfb6f0 /* 2 entries */, 32768) = 48 [pid 304] getdents64(3, 0x555576dfb6f0 /* 0 entries */, 32768) = 0 [pid 304] close(3) = 0 [ 50.507288][ T367] Bluetooth: hci4: Frame reassembly failed (-84) [pid 303] kill(-369, SIGKILL) = 0 [pid 303] kill(369, SIGKILL) = 0 [pid 369] <... ioctl resumed> ) = ? [pid 305] kill(-370, SIGKILL) = 0 [pid 305] kill(370, SIGKILL) = 0 [pid 370] <... ioctl resumed> ) = ? [pid 364] +++ exited with 0 +++ [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=364, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 380 ./strace-static-x86_64: Process 380 attached [pid 380] set_robust_list(0x555576dfa660, 24) = 0 [pid 380] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 380] setpgid(0, 0) = 0 [pid 380] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 380] write(3, "1000", 4) = 4 [pid 380] close(3executing program ) = 0 [pid 380] write(1, "executing program\n", 18) = 18 [pid 380] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 380] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 380] ioctl(4, TIOCSETD, [15]) = 0 [pid 380] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 380] ioctl(3, HCISETLINKPOL [pid 369] +++ killed by SIGKILL +++ [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=369, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 303] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 381 attached , child_tidptr=0x555576dfa650) = 381 [pid 381] set_robust_list(0x555576dfa660, 24) = 0 [pid 381] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 381] setpgid(0, 0) = 0 [pid 381] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 381] write(3, "1000", 4) = 4 [pid 381] close(3) = 0 [pid 381] write(1, "executing program\n", 18executing program ) = 18 [pid 381] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 381] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 381] ioctl(4, TIOCSETD, [15]) = 0 [pid 381] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 51.197841][ T369] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 51.216310][ T370] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 51.228196][ T367] Bluetooth: hci0: Frame reassembly failed (-84) [pid 381] ioctl(3, HCISETLINKPOLexecuting program [pid 370] +++ killed by SIGKILL +++ [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=370, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- [pid 305] restart_syscall(<... resuming interrupted kill ...>) = 0 [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 382 ./strace-static-x86_64: Process 382 attached [pid 382] set_robust_list(0x555576dfa660, 24) = 0 [pid 382] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 382] setpgid(0, 0) = 0 [pid 382] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 382] write(3, "1000", 4) = 4 [pid 382] close(3) = 0 [pid 382] write(1, "executing program\n", 18) = 18 [pid 382] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 382] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 382] ioctl(4, TIOCSETD, [15]) = 0 [pid 382] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 51.249441][ T10] Bluetooth: hci2: Frame reassembly failed (-84) [ 51.255813][ T10] Bluetooth: hci2: Frame reassembly failed (-84) [ 51.261170][ T367] Bluetooth: hci3: Frame reassembly failed (-84) [pid 382] ioctl(3, HCISETLINKPOL [pid 377] +++ exited with 0 +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=377, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 307] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 384 attached , child_tidptr=0x555576dfa650) = 384 [pid 384] set_robust_list(0x555576dfa660, 24) = 0 [pid 384] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 384] setpgid(0, 0) = 0 [pid 384] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 384] write(3, "1000", 4) = 4 [pid 384] close(3) = 0 executing program [pid 384] write(1, "executing program\n", 18) = 18 [pid 384] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 384] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 384] ioctl(4, TIOCSETD, [15]) = 0 [pid 384] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 52.492090][ T45] Bluetooth: hci1: command 0x1003 tx timeout [ 52.492086][ T322] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 52.511139][ T367] Bluetooth: hci1: Frame reassembly failed (-84) [pid 384] ioctl(3, HCISETLINKPOL [pid 378] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=378, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 306] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 385 ./strace-static-x86_64: Process 385 attached [pid 385] set_robust_list(0x555576dfa660, 24) = 0 [pid 385] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 385] setpgid(0, 0) = 0 [pid 385] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 385] write(3, "1000", 4) = 4 [pid 385] close(3) = 0 executing program [pid 385] write(1, "executing program\n", 18) = 18 [pid 385] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 385] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 385] ioctl(4, TIOCSETD, [15]) = 0 [pid 385] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 52.572065][ T314] Bluetooth: hci4: command 0x1003 tx timeout [ 52.572079][ T320] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 52.594931][ T10] Bluetooth: hci4: Frame reassembly failed (-84) [ 52.601245][ T10] Bluetooth: hci4: Frame reassembly failed (-84) [pid 385] ioctl(3, HCISETLINKPOL [pid 380] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 380] exit_group(0) = ? [ 53.292091][ T45] Bluetooth: hci3: command 0x1003 tx timeout [ 53.292088][ T318] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 53.292122][ T45] Bluetooth: hci0: command 0x1003 tx timeout [ 53.297955][ T316] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 53.303834][ T319] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 53.310921][ T380] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 53.327509][ T381] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 53.333532][ T382] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 382] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 381] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 382] exit_group(0 [pid 381] exit_group(0 [pid 382] <... exit_group resumed>) = ? [pid 381] <... exit_group resumed>) = ? [pid 384] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 384] exit_group(0) = ? [pid 385] <... ioctl resumed>, 0x200003c0) = -1 EINVAL (Invalid argument) [pid 385] exit_group(0) = ? [pid 380] +++ exited with 0 +++ [pid 304] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=380, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 304] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 304] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 387 attached [pid 387] set_robust_list(0x555576dfa660, 24) = 0 [pid 387] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 387] setpgid(0, 0) = 0 [pid 387] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 304] <... clone resumed>, child_tidptr=0x555576dfa650) = 387 [pid 387] <... openat resumed>) = 3 [pid 387] write(3, "1000", 4) = 4 [pid 387] close(3) = 0 [pid 387] write(1, "executing program\n", 18executing program ) = 18 [pid 387] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 387] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 387] ioctl(4, TIOCSETD, [15]) = 0 [ 53.339420][ T384] Bluetooth: hci0: Opcode 0x080f failed: -22 [ 53.345620][ T385] Bluetooth: hci0: Opcode 0x080f failed: -22 [pid 387] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [pid 387] ioctl(3, HCISETLINKPOL [pid 382] +++ exited with 0 +++ [pid 381] +++ exited with 0 +++ [pid 305] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=382, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 303] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=381, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- [pid 305] restart_syscall(<... resuming interrupted clone ...> [pid 303] restart_syscall(<... resuming interrupted clone ...> [pid 305] <... restart_syscall resumed>) = 0 [pid 305] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 388 ./strace-static-x86_64: Process 388 attached [pid 388] set_robust_list(0x555576dfa660, 24) = 0 [pid 388] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 388] setpgid(0, 0) = 0 [pid 388] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 388] write(3, "1000", 4executing program ) = 4 [pid 388] close(3) = 0 [pid 388] write(1, "executing program\n", 18) = 18 [pid 388] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 388] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY [pid 303] <... restart_syscall resumed>) = 0 [pid 388] <... openat resumed>) = 4 [pid 388] ioctl(4, TIOCSETD, [15] [pid 303] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 388] <... ioctl resumed>) = 0 [ 53.390832][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [pid 388] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4) [pid 303] <... clone resumed>, child_tidptr=0x555576dfa650) = 389 [pid 388] <... ioctl resumed>, 0) = 0 [pid 388] ioctl(3, HCISETLINKPOL./strace-static-x86_64: Process 389 attached [pid 389] set_robust_list(0x555576dfa660, 24) = 0 [pid 389] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 389] setpgid(0, 0) = 0 [pid 389] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 389] write(3, "1000", 4) = 4 [pid 389] close(3) = 0 [pid 389] write(1, "executing program\n", 18executing program ) = 18 [pid 389] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 389] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 389] ioctl(4, TIOCSETD, [15]) = 0 [pid 389] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 53.432288][ T10] Bluetooth: hci2: Frame reassembly failed (-84) [ 53.440646][ T43] Bluetooth: hci3: Frame reassembly failed (-84) [ 53.446903][ T43] Bluetooth: hci3: Frame reassembly failed (-84) [pid 389] ioctl(3, HCISETLINKPOL [pid 384] +++ exited with 0 +++ [pid 307] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=384, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 307] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 307] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 391 attached , child_tidptr=0x555576dfa650) = 391 [pid 391] set_robust_list(0x555576dfa660, 24) = 0 [pid 391] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 391] setpgid(0, 0) = 0 [pid 391] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 391] write(3, "1000", 4) = 4 [pid 391] close(3) = 0 executing program [pid 391] write(1, "executing program\n", 18) = 18 [pid 391] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 391] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 391] ioctl(4, TIOCSETD, [15]) = 0 [pid 391] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 54.572069][ T322] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 54.572082][ T318] Bluetooth: hci1: command 0x1003 tx timeout [ 54.599704][ T43] Bluetooth: hci1: Frame reassembly failed (-84) [pid 391] ioctl(3, HCISETLINKPOL [pid 385] +++ exited with 0 +++ [pid 306] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=385, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 306] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 306] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555576dfa650) = 392 ./strace-static-x86_64: Process 392 attached [pid 392] set_robust_list(0x555576dfa660, 24) = 0 [pid 392] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 392] setpgid(0, 0) = 0 [pid 392] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 392] write(3, "1000", 4) = 4 [pid 392] close(3) = 0 [pid 392] write(1, "executing program\n", 18executing program ) = 18 [pid 392] socket(AF_BLUETOOTH, SOCK_RAW, BTPROTO_HCI) = 3 [pid 392] openat(AT_FDCWD, "/dev/ptmx", O_RDONLY) = 4 [pid 392] ioctl(4, TIOCSETD, [15]) = 0 [pid 392] ioctl(4, _IOC(_IOC_WRITE, 0x55, 0xc8, 0x4), 0) = 0 [ 54.652116][ T318] Bluetooth: hci4: command 0x1003 tx timeout [ 54.652102][ T320] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 54.678911][ T367] Bluetooth: hci4: Frame reassembly failed (-84) [ 54.685155][ T367] Bluetooth: hci4: Frame reassembly failed (-84) [ 55.372034][ C0] ================================================================== [ 55.379929][ C0] BUG: KASAN: use-after-free in __run_timers+0x34a/0xa10 [ 55.386777][ C0] Write of size 8 at addr ffff88811214ca00 by task swapper/0/0 [ 55.394161][ C0] [ 55.396337][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.1.115-syzkaller-00041-ga887a44ace2a #0 [ 55.405614][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 55.415520][ C0] Call Trace: [ 55.418642][ C0] [ 55.421324][ C0] dump_stack_lvl+0x151/0x1b7 [ 55.425838][ C0] ? nf_tcp_handle_invalid+0x3f1/0x3f1 [ 55.431130][ C0] ? _printk+0xd1/0x111 [ 55.435128][ C0] ? __virt_addr_valid+0x242/0x2f0 [ 55.440075][ C0] print_report+0x158/0x4e0 [ 55.444416][ C0] ? __virt_addr_valid+0x242/0x2f0 [ 55.449356][ C0] ? kasan_complete_mode_report_info+0x90/0x1b0 [ 55.455433][ C0] ? __run_timers+0x34a/0xa10 [ 55.459943][ C0] kasan_report+0x13c/0x170 [ 55.464285][ C0] ? __run_timers+0x34a/0xa10 [ 55.468799][ C0] __asan_report_store8_noabort+0x17/0x20 [ 55.474351][ C0] __run_timers+0x34a/0xa10 [ 55.478692][ C0] ? kvm_sched_clock_read+0x18/0x40 [ 55.482121][ T45] Bluetooth: hci3: Opcode 0x1003 failed: -110 [ 55.483734][ C0] ? calc_index+0x270/0x270 [ 55.493969][ C0] ? sched_clock+0x9/0x10 [ 55.498136][ C0] ? sched_clock_cpu+0x71/0x2b0 [ 55.502820][ C0] run_timer_softirq+0x69/0xf0 [ 55.507467][ C0] handle_softirqs+0x1db/0x650 [ 55.512045][ C0] ? irqtime_account_irq+0xdc/0x260 [ 55.517054][ C0] __irq_exit_rcu+0x52/0xf0 [ 55.521396][ C0] irq_exit_rcu+0x9/0x10 [ 55.525471][ C0] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 55.530941][ C0] [ 55.533717][ C0] [ 55.536498][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 55.542311][ C0] RIP: 0010:acpi_idle_enter+0x416/0x760 [ 55.547692][ C0] Code: 89 de 48 83 e6 08 31 ff e8 27 1c 54 fc 48 83 e3 08 0f 85 b1 00 00 00 0f 1f 44 00 00 e8 d3 17 54 fc 0f 00 2d 7c e8 ce 00 fb f4 e9 e3 00 00 00 49 83 c7 04 4c 89 f8 48 c1 e8 03 42 0f b6 04 30 [ 55.567139][ C0] RSP: 0018:ffffffff87007bd0 EFLAGS: 000002d3 [ 55.573045][ C0] RAX: ffffffff85216edd RBX: 0000000000000000 RCX: ffffffff8701d4c0 [ 55.580851][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 55.588659][ C0] RBP: ffffffff87007c10 R08: ffffffff85216ec9 R09: fffffbfff0e03a99 [ 55.596478][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001 [ 55.604284][ C0] R13: ffff888109b5e004 R14: dffffc0000000000 R15: ffff888109840864 [ 55.612100][ C0] ? acpi_idle_enter+0x3f9/0x760 [ 55.616869][ C0] ? acpi_idle_enter+0x40d/0x760 [ 55.621652][ C0] ? intel_idle_xstate+0xa0/0xa0 [ 55.626414][ C0] cpuidle_enter_state+0x5eb/0x17f0 [ 55.631452][ C0] ? cpuidle_enter_s2idle+0x600/0x600 [ 55.636657][ C0] ? menu_enable_device+0x380/0x380 [ 55.641690][ C0] ? __sched_text_start+0x8/0x8 [ 55.646378][ C0] cpuidle_enter+0x5f/0xa0 [ 55.650629][ C0] do_idle+0x3d1/0x580 [ 55.654535][ C0] ? ct_irq_exit+0x9/0x10 [ 55.658701][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 55.663738][ C0] cpu_startup_entry+0x44/0x60 [ 55.668335][ C0] rest_init+0x10b/0x130 [ 55.672416][ C0] ? time_init+0x38/0x38 [ 55.676492][ C0] arch_call_rest_init+0xe/0xe [ 55.681182][ C0] start_kernel+0x46c/0x4d8 [ 55.685520][ C0] x86_64_start_reservations+0x2a/0x2c [ 55.690814][ C0] x86_64_start_kernel+0x7c/0x81 [ 55.695594][ C0] secondary_startup_64_no_verify+0xce/0xdb [ 55.701320][ C0] [ 55.704179][ C0] [ 55.706350][ C0] Allocated by task 380: [ 55.710429][ C0] kasan_set_track+0x4b/0x70 [ 55.714856][ C0] kasan_save_alloc_info+0x1f/0x30 [ 55.719802][ C0] __kasan_kmalloc+0x9c/0xb0 [ 55.724260][ C0] __kmalloc+0xb4/0x1e0 [ 55.728220][ C0] hci_alloc_dev_priv+0x27/0x1c00 [ 55.733079][ C0] hci_uart_tty_ioctl+0x401/0xa70 [ 55.737942][ C0] tty_ioctl+0x903/0xc50 [ 55.742029][ C0] __se_sys_ioctl+0x114/0x190 [ 55.746537][ C0] __x64_sys_ioctl+0x7b/0x90 [ 55.750959][ C0] x64_sys_call+0x98/0x9a0 [ 55.755214][ C0] do_syscall_64+0x3b/0xb0 [ 55.759465][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 55.765197][ C0] [ 55.767364][ C0] Freed by task 385: [ 55.771100][ C0] kasan_set_track+0x4b/0x70 [ 55.775522][ C0] kasan_save_free_info+0x2b/0x40 [ 55.780385][ C0] ____kasan_slab_free+0x131/0x180 [ 55.785332][ C0] __kasan_slab_free+0x11/0x20 [ 55.789930][ C0] __kmem_cache_free+0x21d/0x410 [ 55.794879][ C0] kfree+0x7a/0xf0 [ 55.798438][ C0] hci_release_dev+0x14d3/0x1640 [ 55.803212][ C0] bt_host_release+0x83/0xa0 [ 55.807637][ C0] device_release+0x95/0x1c0 [ 55.812066][ C0] kobject_put+0x178/0x260 [ 55.816316][ C0] put_device+0x1f/0x30 [ 55.820308][ C0] hci_dev_cmd+0x2be/0x9b0 [ 55.824562][ C0] hci_sock_ioctl+0x415/0x7f0 [ 55.829074][ C0] sock_do_ioctl+0x152/0x450 [ 55.833500][ C0] sock_ioctl+0x455/0x740 [ 55.837667][ C0] __se_sys_ioctl+0x114/0x190 [ 55.842185][ C0] __x64_sys_ioctl+0x7b/0x90 [ 55.846608][ C0] x64_sys_call+0x98/0x9a0 [ 55.850859][ C0] do_syscall_64+0x3b/0xb0 [ 55.855112][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 55.860841][ C0] [ 55.863010][ C0] Last potentially related work creation: [ 55.868566][ C0] kasan_save_stack+0x3b/0x60 [ 55.873078][ C0] __kasan_record_aux_stack+0xb4/0xc0 [ 55.878289][ C0] kasan_record_aux_stack_noalloc+0xb/0x10 [ 55.883927][ C0] insert_work+0x56/0x310 [ 55.888095][ C0] __queue_work+0x9b6/0xd70 [ 55.892434][ C0] queue_work_on+0x105/0x170 [ 55.896863][ C0] __hci_cmd_sync_sk+0xc2a/0xf70 [ 55.901635][ C0] hci_cmd_sync_status+0x52/0x130 [ 55.906494][ C0] hci_dev_cmd+0x771/0x9b0 [ 55.910747][ C0] hci_sock_ioctl+0x415/0x7f0 [ 55.915261][ C0] sock_do_ioctl+0x152/0x450 [ 55.919689][ C0] sock_ioctl+0x455/0x740 [ 55.923854][ C0] __se_sys_ioctl+0x114/0x190 [ 55.928368][ C0] __x64_sys_ioctl+0x7b/0x90 [ 55.932793][ C0] x64_sys_call+0x98/0x9a0 [ 55.937045][ C0] do_syscall_64+0x3b/0xb0 [ 55.941300][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 55.947027][ C0] [ 55.949197][ C0] Second to last potentially related work creation: [ 55.955620][ C0] kasan_save_stack+0x3b/0x60 [ 55.960131][ C0] __kasan_record_aux_stack+0xb4/0xc0 [ 55.965338][ C0] kasan_record_aux_stack_noalloc+0xb/0x10 [ 55.970982][ C0] insert_work+0x56/0x310 [ 55.975156][ C0] __queue_work+0x9b6/0xd70 [ 55.979487][ C0] queue_work_on+0x105/0x170 [ 55.983913][ C0] __hci_cmd_sync_sk+0xc2a/0xf70 [ 55.988686][ C0] hci_cmd_sync_status+0x52/0x130 [ 55.993549][ C0] hci_dev_cmd+0x771/0x9b0 [ 55.997801][ C0] hci_sock_ioctl+0x415/0x7f0 [ 56.002315][ C0] sock_do_ioctl+0x152/0x450 [ 56.006741][ C0] sock_ioctl+0x455/0x740 [ 56.010906][ C0] __se_sys_ioctl+0x114/0x190 [ 56.015421][ C0] __x64_sys_ioctl+0x7b/0x90 [ 56.019844][ C0] x64_sys_call+0x98/0x9a0 [ 56.024099][ C0] do_syscall_64+0x3b/0xb0 [ 56.028351][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 56.034082][ C0] [ 56.036250][ C0] The buggy address belongs to the object at ffff88811214c000 [ 56.036250][ C0] which belongs to the cache kmalloc-8k of size 8192 [ 56.050140][ C0] The buggy address is located 2560 bytes inside of [ 56.050140][ C0] 8192-byte region [ffff88811214c000, ffff88811214e000) [ 56.063418][ C0] [ 56.065587][ C0] The buggy address belongs to the physical page: [ 56.071848][ C0] page:ffffea0004485200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x112148 [ 56.081908][ C0] head:ffffea0004485200 order:3 compound_mapcount:0 compound_pincount:0 [ 56.090089][ C0] flags: 0x4000000000010200(slab|head|zone=1) [ 56.095983][ C0] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888100043500 [ 56.104396][ C0] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000 [ 56.112891][ C0] page dumped because: kasan: bad access detected [ 56.119152][ C0] page_owner tracks the page as allocated [ 56.124694][ C0] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 378, tgid 378 (syz-executor101), ts 50506125763, free_ts 49169108712 [ 56.146062][ C0] post_alloc_hook+0x213/0x220 [ 56.150666][ C0] prep_new_page+0x1b/0x110 [ 56.154994][ C0] get_page_from_freelist+0x2980/0x2a10 [ 56.160377][ C0] __alloc_pages+0x234/0x610 [ 56.164804][ C0] alloc_slab_page+0x6c/0xf0 [ 56.169232][ C0] new_slab+0x90/0x3e0 [ 56.173134][ C0] ___slab_alloc+0x6f9/0xb80 [ 56.177560][ C0] __slab_alloc+0x5d/0xa0 [ 56.181726][ C0] __kmem_cache_alloc_node+0x207/0x2a0 [ 56.187024][ C0] __kmalloc+0xa3/0x1e0 [ 56.191014][ C0] hci_alloc_dev_priv+0x27/0x1c00 [ 56.195873][ C0] hci_uart_tty_ioctl+0x401/0xa70 [ 56.200733][ C0] tty_ioctl+0x903/0xc50 [ 56.204817][ C0] __se_sys_ioctl+0x114/0x190 [ 56.209326][ C0] __x64_sys_ioctl+0x7b/0x90 [ 56.213752][ C0] x64_sys_call+0x98/0x9a0 [ 56.218007][ C0] page last free stack trace: [ 56.222554][ C0] free_unref_page_prepare+0x83d/0x850 [ 56.227813][ C0] free_unref_page+0xb2/0x5c0 [ 56.232328][ C0] __free_pages+0x61/0xf0 [ 56.236494][ C0] __free_slab+0xce/0x1a0 [ 56.240659][ C0] __unfreeze_partials+0x165/0x1a0 [ 56.245632][ C0] put_cpu_partial+0xa9/0x100 [ 56.250122][ C0] __slab_free+0x1c8/0x280 [ 56.254372][ C0] ___cache_free+0xc6/0xd0 [ 56.258625][ C0] qlist_free_all+0xc5/0x140 [ 56.263051][ C0] kasan_quarantine_reduce+0x15a/0x180 [ 56.268347][ C0] __kasan_slab_alloc+0x24/0x80 [ 56.273032][ C0] slab_post_alloc_hook+0x53/0x2c0 [ 56.277978][ C0] kmem_cache_alloc+0x175/0x320 [ 56.282666][ C0] getname_flags+0xba/0x520 [ 56.287008][ C0] getname+0x19/0x20 [ 56.290758][ C0] do_sys_openat2+0xe0/0x870 [ 56.295166][ C0] [ 56.297334][ C0] Memory state around the buggy address: [ 56.302846][ C0] ffff88811214c900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 56.310709][ C0] ffff88811214c980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 56.318608][ C0] >ffff88811214ca00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 56.326501][ C0] ^ [ 56.330408][ C0] ffff88811214ca80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 56.338312][ C0] ffff88811214cb00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 56.346199][ C0] ================================================================== [ 56.354106][ C0] Disabling lock debugging due to kernel taint [ 56.360157][ C0] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 56.360766][ T318] Bluetooth: hci2: command 0x1003 tx timeout [ 56.371635][ C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 56.371658][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G B 6.1.115-syzkaller-00041-ga887a44ace2a #0 [ 56.377477][ T316] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 56.385694][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 56.385709][ C0] RIP: 0010:__queue_work+0x4f1/0xd70 [ 56.417636][ C0] Code: 39 03 0f 84 40 01 00 00 e8 0c 6c 2a 00 4c 89 e7 e8 d4 73 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 d0 da 71 00 49 8b 3e e8 88 6c d6 [ 56.437078][ C0] RSP: 0018:ffffc90000007c78 EFLAGS: 00010046 [ 56.442977][ C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffffffff8701d4c0 [ 56.450789][ C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff [ 56.458602][ C0] RBP: ffffc90000007d00 R08: ffffffff814b185b R09: 0000000000000007 [ 56.466413][ C0] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88811214c9c8 [ 56.474221][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811214c9e0 [ 56.482034][ C0] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 56.490799][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.497220][ C0] CR2: 0000000020000008 CR3: 00000001252d0000 CR4: 00000000003506b0 [ 56.505034][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.512852][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.520658][ C0] Call Trace: [ 56.523788][ C0] [ 56.526478][ C0] ? __die_body+0x62/0xb0 [ 56.530639][ C0] ? die_addr+0x9f/0xd0 [ 56.534631][ C0] ? exc_general_protection+0x317/0x4c0 [ 56.540015][ C0] ? asm_exc_general_protection+0x27/0x30 [ 56.545566][ C0] ? __queue_work+0x28b/0xd70 [ 56.550079][ C0] ? __queue_work+0x4f1/0xd70 [ 56.554590][ C0] ? __queue_work+0x29c/0xd70 [ 56.559109][ C0] delayed_work_timer_fn+0x61/0x80 [ 56.564058][ C0] ? queue_work_node+0x1d0/0x1d0 [ 56.568828][ C0] call_timer_fn+0x3b/0x2d0 [ 56.573168][ C0] ? queue_work_node+0x1d0/0x1d0 [ 56.577940][ C0] __run_timers+0x756/0xa10 [ 56.582283][ C0] ? calc_index+0x270/0x270 [ 56.586622][ C0] ? sched_clock+0x9/0x10 [ 56.590785][ C0] ? sched_clock_cpu+0x71/0x2b0 [ 56.595475][ C0] run_timer_softirq+0x69/0xf0 [ 56.600170][ C0] handle_softirqs+0x1db/0x650 [ 56.604760][ C0] ? irqtime_account_irq+0xdc/0x260 [ 56.609796][ C0] __irq_exit_rcu+0x52/0xf0 [ 56.614133][ C0] irq_exit_rcu+0x9/0x10 [ 56.618218][ C0] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 56.623682][ C0] [ 56.626457][ C0] [ 56.629234][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 56.635051][ C0] RIP: 0010:acpi_idle_enter+0x416/0x760 [ 56.640432][ C0] Code: 89 de 48 83 e6 08 31 ff e8 27 1c 54 fc 48 83 e3 08 0f 85 b1 00 00 00 0f 1f 44 00 00 e8 d3 17 54 fc 0f 00 2d 7c e8 ce 00 fb f4 e9 e3 00 00 00 49 83 c7 04 4c 89 f8 48 c1 e8 03 42 0f b6 04 30 [ 56.659874][ C0] RSP: 0018:ffffffff87007bd0 EFLAGS: 000002d3 [ 56.665774][ C0] RAX: ffffffff85216edd RBX: 0000000000000000 RCX: ffffffff8701d4c0 [ 56.673588][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 56.681397][ C0] RBP: ffffffff87007c10 R08: ffffffff85216ec9 R09: fffffbfff0e03a99 [ 56.689209][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001 [ 56.697105][ C0] R13: ffff888109b5e004 R14: dffffc0000000000 R15: ffff888109840864 [ 56.704920][ C0] ? acpi_idle_enter+0x3f9/0x760 [ 56.709695][ C0] ? acpi_idle_enter+0x40d/0x760 [ 56.714469][ C0] ? intel_idle_xstate+0xa0/0xa0 [ 56.719238][ C0] cpuidle_enter_state+0x5eb/0x17f0 [ 56.724277][ C0] ? cpuidle_enter_s2idle+0x600/0x600 [ 56.729482][ C0] ? menu_enable_device+0x380/0x380 [ 56.734517][ C0] ? __sched_text_start+0x8/0x8 [ 56.739209][ C0] cpuidle_enter+0x5f/0xa0 [ 56.743456][ C0] do_idle+0x3d1/0x580 [ 56.747360][ C0] ? ct_irq_exit+0x9/0x10 [ 56.751529][ C0] ? idle_inject_timer_fn+0x60/0x60 [ 56.756565][ C0] cpu_startup_entry+0x44/0x60 [ 56.761161][ C0] rest_init+0x10b/0x130 [ 56.765239][ C0] ? time_init+0x38/0x38 [ 56.769320][ C0] arch_call_rest_init+0xe/0xe [ 56.773919][ C0] start_kernel+0x46c/0x4d8 [ 56.778260][ C0] x86_64_start_reservations+0x2a/0x2c [ 56.783557][ C0] x86_64_start_kernel+0x7c/0x81 [ 56.788329][ C0] secondary_startup_64_no_verify+0xce/0xdb [ 56.794057][ C0] [ 56.796920][ C0] Modules linked in: [ 56.800662][ C0] ---[ end trace 0000000000000000 ]--- [ 56.805946][ C0] RIP: 0010:__queue_work+0x4f1/0xd70 [ 56.811067][ C0] Code: 39 03 0f 84 40 01 00 00 e8 0c 6c 2a 00 4c 89 e7 e8 d4 73 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 d0 da 71 00 49 8b 3e e8 88 6c d6 [ 56.830509][ C0] RSP: 0018:ffffc90000007c78 EFLAGS: 00010046 [ 56.836409][ C0] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffffffff8701d4c0 [ 56.844221][ C0] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff [ 56.852033][ C0] RBP: ffffc90000007d00 R08: ffffffff814b185b R09: 0000000000000007 [ 56.859842][ C0] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88811214c9c8 [ 56.867656][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811214c9e0 [ 56.875471][ C0] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 56.884234][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.890655][ C0] CR2: 0000000020000008 CR3: 00000001252d0000 CR4: 00000000003506b0 [ 56.898471][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.906279][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.914097][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 56.921237][ C0] Kernel Offset: disabled [ 56.925296][ C0] Rebooting in 86400 seconds..