Warning: Permanently added '10.128.1.38' (ED25519) to the list of known hosts. 2025/12/05 05:11:57 parsed 1 programs [ 137.342875][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 137.349447][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 Setting up swapspace version 1, size = 127995904 bytes [ 142.923631][ T6140] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 146.440606][ T3569] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 146.453259][ T3569] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 146.485365][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 146.494046][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 148.167917][ T6177] chnl_net:caif_netlink_parms(): no params data found [ 148.277253][ T6177] bridge0: port 1(bridge_slave_0) entered blocking state [ 148.284699][ T6177] bridge0: port 1(bridge_slave_0) entered disabled state [ 148.292407][ T6177] bridge_slave_0: entered allmulticast mode [ 148.300880][ T6177] bridge_slave_0: entered promiscuous mode [ 148.309626][ T6177] bridge0: port 2(bridge_slave_1) entered blocking state [ 148.317520][ T6177] bridge0: port 2(bridge_slave_1) entered disabled state [ 148.324858][ T6177] bridge_slave_1: entered allmulticast mode [ 148.332397][ T6177] bridge_slave_1: entered promiscuous mode [ 148.369347][ T6177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 148.381848][ T6177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 148.420542][ T6177] team0: Port device team_slave_0 added [ 148.429295][ T6177] team0: Port device team_slave_1 added [ 148.464392][ T6177] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 148.471777][ T6177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 148.498593][ T6177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 148.511166][ T6177] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 148.518174][ T6177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 148.544203][ T6177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 148.602341][ T6177] hsr_slave_0: entered promiscuous mode [ 148.609320][ T6177] hsr_slave_1: entered promiscuous mode [ 149.074866][ T6177] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 149.086953][ T6177] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 149.099966][ T6177] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 149.113282][ T6177] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 149.228911][ T6177] 8021q: adding VLAN 0 to HW filter on device bond0 [ 149.255232][ T6177] 8021q: adding VLAN 0 to HW filter on device team0 [ 149.280190][ T3569] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.287354][ T3569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 149.311877][ T3569] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.319096][ T3569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 149.632843][ T6177] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 149.688861][ T6177] veth0_vlan: entered promiscuous mode [ 149.707812][ T6177] veth1_vlan: entered promiscuous mode [ 149.739739][ T6177] veth0_macvtap: entered promiscuous mode [ 149.751500][ T6177] veth1_macvtap: entered promiscuous mode [ 149.773568][ T6177] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 149.791438][ T6177] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 149.810758][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.827062][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.845744][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.873696][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 150.079212][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.175354][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.286915][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.446550][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.475003][ T5143] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.484309][ T5143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.492654][ T5143] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.503520][ T5143] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.511899][ T5143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 152.268594][ T12] bridge_slave_1: left allmulticast mode [ 152.274289][ T12] bridge_slave_1: left promiscuous mode [ 152.289078][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.305512][ T12] bridge_slave_0: left allmulticast mode [ 152.315925][ T12] bridge_slave_0: left promiscuous mode [ 152.327236][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.756807][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 152.769779][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 152.781100][ T12] bond0 (unregistering): Released all slaves [ 152.895970][ T12] hsr_slave_0: left promiscuous mode [ 152.902335][ T12] hsr_slave_1: left promiscuous mode [ 152.909164][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.917612][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.927020][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.934552][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.953784][ T12] veth1_macvtap: left promiscuous mode [ 152.959606][ T12] veth0_macvtap: left promiscuous mode [ 152.965323][ T12] veth1_vlan: left promiscuous mode [ 152.971275][ T12] veth0_vlan: left promiscuous mode [ 153.397862][ T12] team0 (unregistering): Port device team_slave_1 removed [ 153.432528][ T12] team0 (unregistering): Port device team_slave_0 removed 2025/12/05 05:12:15 executed programs: 0 [ 155.126376][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 155.137607][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 155.145682][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 155.153692][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 155.161595][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 155.482950][ T6356] chnl_net:caif_netlink_parms(): no params data found [ 155.721472][ T6356] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.729348][ T6356] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.736643][ T6356] bridge_slave_0: entered allmulticast mode [ 155.744780][ T6356] bridge_slave_0: entered promiscuous mode [ 155.754628][ T6356] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.761963][ T6356] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.771143][ T6356] bridge_slave_1: entered allmulticast mode [ 155.779265][ T6356] bridge_slave_1: entered promiscuous mode [ 155.872993][ T6356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 155.885935][ T6356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 155.970111][ T6356] team0: Port device team_slave_0 added [ 155.985278][ T6356] team0: Port device team_slave_1 added [ 156.049631][ T6356] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 156.056650][ T6356] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 156.084791][ T6356] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 156.099047][ T6356] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 156.106079][ T6356] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 156.132960][ T6356] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 156.195246][ T6356] hsr_slave_0: entered promiscuous mode [ 156.202090][ T6356] hsr_slave_1: entered promiscuous mode [ 156.702911][ T6356] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 156.721597][ T6356] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 156.733922][ T6356] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 156.747425][ T6356] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 156.859808][ T6356] 8021q: adding VLAN 0 to HW filter on device bond0 [ 156.885857][ T6356] 8021q: adding VLAN 0 to HW filter on device team0 [ 156.901486][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.908776][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 156.924895][ T3569] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.932355][ T3569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 156.995173][ T6356] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 157.178393][ T52] Bluetooth: hci0: command tx timeout [ 157.230448][ T6356] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 157.286966][ T6356] veth0_vlan: entered promiscuous mode [ 157.304179][ T6356] veth1_vlan: entered promiscuous mode [ 157.345617][ T6356] veth0_macvtap: entered promiscuous mode [ 157.360429][ T6356] veth1_macvtap: entered promiscuous mode [ 157.386652][ T6356] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 157.406134][ T6356] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 157.423586][ T3467] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.442763][ T3467] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.469992][ T3467] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.480034][ T3467] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.554347][ T3467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.578531][ T3467] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.615412][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.623920][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.708642][ T6428] input: syz1 as /devices/virtual/input/input5 [ 157.720878][ T6428] [ 157.723225][ T6428] ====================================================== [ 157.730245][ T6428] WARNING: possible circular locking dependency detected [ 157.737248][ T6428] syzkaller #0 Not tainted [ 157.741650][ T6428] ------------------------------------------------------ [ 157.748692][ T6428] syz.0.17/6428 is trying to acquire lock: [ 157.754504][ T6428] ffff88807c296870 (&newdev->mutex){+.+.}-{4:4}, at: uinput_request_submit+0x188/0x6f0 [ 157.764173][ T6428] [ 157.764173][ T6428] but task is already holding lock: [ 157.771606][ T6428] ffff88807c2970b0 (&ff->mutex){+.+.}-{4:4}, at: input_ff_upload+0x398/0xb30 [ 157.780454][ T6428] [ 157.780454][ T6428] which lock already depends on the new lock. [ 157.780454][ T6428] [ 157.790839][ T6428] [ 157.790839][ T6428] the existing dependency chain (in reverse order) is: [ 157.800103][ T6428] [ 157.800103][ T6428] -> #3 (&ff->mutex){+.+.}-{4:4}: [ 157.807439][ T6428] __mutex_lock+0x187/0x1350 [ 157.812718][ T6428] input_ff_flush+0x5d/0x170 [ 157.817917][ T6428] input_flush_device+0xb4/0x110 [ 157.823368][ T6428] evdev_release+0xe1/0x800 [ 157.828651][ T6428] __fput+0x44c/0xa70 [ 157.833170][ T6428] fput_close_sync+0x113/0x220 [ 157.838481][ T6428] __x64_sys_close+0x7f/0x110 [ 157.843676][ T6428] do_syscall_64+0xfa/0xf80 [ 157.848954][ T6428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 157.855357][ T6428] [ 157.855357][ T6428] -> #2 (&dev->mutex#2){+.+.}-{4:4}: [ 157.863018][ T6428] __mutex_lock+0x187/0x1350 [ 157.868126][ T6428] input_register_handle+0x18f/0x530 [ 157.873922][ T6428] kbd_connect+0xc3/0x140 [ 157.878859][ T6428] input_register_device+0xd00/0x1140 [ 157.885014][ T6428] acpi_button_add+0x6b9/0xb70 [ 157.890291][ T6428] acpi_device_probe+0xa8/0x2d0 [ 157.895667][ T6428] really_probe+0x26d/0x9e0 [ 157.900865][ T6428] __driver_probe_device+0x18c/0x2f0 [ 157.906752][ T6428] driver_probe_device+0x4f/0x430 [ 157.912294][ T6428] __driver_attach+0x452/0x700 [ 157.917568][ T6428] bus_for_each_dev+0x233/0x2b0 [ 157.922941][ T6428] bus_add_driver+0x345/0x640 [ 157.928137][ T6428] driver_register+0x23a/0x320 [ 157.933479][ T6428] do_one_initcall+0x1fb/0x7f0 [ 157.938780][ T6428] do_initcall_level+0x104/0x190 [ 157.944283][ T6428] do_initcalls+0x59/0xa0 [ 157.949131][ T6428] kernel_init_freeable+0x334/0x4b0 [ 157.954855][ T6428] kernel_init+0x1d/0x1d0 [ 157.959698][ T6428] ret_from_fork+0x599/0xb30 [ 157.964795][ T6428] ret_from_fork_asm+0x1a/0x30 [ 157.970081][ T6428] [ 157.970081][ T6428] -> #1 (input_mutex){+.+.}-{4:4}: [ 157.977376][ T6428] __mutex_lock+0x187/0x1350 [ 157.982506][ T6428] input_register_device+0xa76/0x1140 [ 157.988521][ T6428] uinput_create_device+0x422/0x670 [ 157.994523][ T6428] uinput_ioctl_handler+0x3f0/0x1570 [ 158.000450][ T6428] __se_sys_ioctl+0xfc/0x170 [ 158.005574][ T6428] do_syscall_64+0xfa/0xf80 [ 158.010594][ T6428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.017026][ T6428] [ 158.017026][ T6428] -> #0 (&newdev->mutex){+.+.}-{4:4}: [ 158.024587][ T6428] __lock_acquire+0x15a6/0x2cf0 [ 158.030049][ T6428] lock_acquire+0x117/0x340 [ 158.035069][ T6428] __mutex_lock+0x187/0x1350 [ 158.040278][ T6428] uinput_request_submit+0x188/0x6f0 [ 158.046240][ T6428] uinput_dev_upload_effect+0x150/0x1e0 [ 158.052514][ T6428] input_ff_upload+0x5fb/0xb30 [ 158.057910][ T6428] evdev_ioctl_handler+0x1644/0x1f10 [ 158.063716][ T6428] __se_sys_ioctl+0xfc/0x170 [ 158.068837][ T6428] do_syscall_64+0xfa/0xf80 [ 158.073852][ T6428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.080346][ T6428] [ 158.080346][ T6428] other info that might help us debug this: [ 158.080346][ T6428] [ 158.090563][ T6428] Chain exists of: [ 158.090563][ T6428] &newdev->mutex --> &dev->mutex#2 --> &ff->mutex [ 158.090563][ T6428] [ 158.103342][ T6428] Possible unsafe locking scenario: [ 158.103342][ T6428] [ 158.110780][ T6428] CPU0 CPU1 [ 158.116222][ T6428] ---- ---- [ 158.121586][ T6428] lock(&ff->mutex); [ 158.125577][ T6428] lock(&dev->mutex#2); [ 158.132344][ T6428] lock(&ff->mutex); [ 158.138845][ T6428] lock(&newdev->mutex); [ 158.143174][ T6428] [ 158.143174][ T6428] *** DEADLOCK *** [ 158.143174][ T6428] [ 158.152107][ T6428] 2 locks held by syz.0.17/6428: [ 158.157062][ T6428] #0: ffff888027352118 (&evdev->mutex){+.+.}-{4:4}, at: evdev_ioctl_handler+0x121/0x1f10 [ 158.167364][ T6428] #1: ffff88807c2970b0 (&ff->mutex){+.+.}-{4:4}, at: input_ff_upload+0x398/0xb30 [ 158.176899][ T6428] [ 158.176899][ T6428] stack backtrace: [ 158.182882][ T6428] CPU: 0 UID: 0 PID: 6428 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) [ 158.182907][ T6428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 158.182920][ T6428] Call Trace: [ 158.182928][ T6428] [ 158.182937][ T6428] dump_stack_lvl+0x189/0x250 [ 158.182968][ T6428] ? __pfx_dump_stack_lvl+0x10/0x10 [ 158.182992][ T6428] ? __pfx__printk+0x10/0x10 [ 158.183023][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183047][ T6428] ? print_lock_name+0xde/0x100 [ 158.183078][ T6428] print_circular_bug+0x2e2/0x300 [ 158.183107][ T6428] check_noncircular+0x12e/0x150 [ 158.183137][ T6428] __lock_acquire+0x15a6/0x2cf0 [ 158.183164][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183190][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183216][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183242][ T6428] ? uinput_request_submit+0x188/0x6f0 [ 158.183274][ T6428] lock_acquire+0x117/0x340 [ 158.183311][ T6428] ? uinput_request_submit+0x188/0x6f0 [ 158.183354][ T6428] __mutex_lock+0x187/0x1350 [ 158.183376][ T6428] ? uinput_request_submit+0x188/0x6f0 [ 158.183409][ T6428] ? irqentry_exit+0x5dd/0x660 [ 158.183428][ T6428] ? preempt_schedule+0xae/0xc0 [ 158.183460][ T6428] ? preempt_schedule_common+0x83/0xd0 [ 158.183491][ T6428] ? uinput_request_submit+0x188/0x6f0 [ 158.183521][ T6428] ? preempt_schedule+0xae/0xc0 [ 158.183553][ T6428] ? __pfx___mutex_lock+0x10/0x10 [ 158.183580][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183603][ T6428] ? _raw_spin_unlock+0x3f/0x50 [ 158.183631][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183654][ T6428] ? uinput_request_alloc_id+0x3cf/0x400 [ 158.183686][ T6428] uinput_request_submit+0x188/0x6f0 [ 158.183719][ T6428] ? __pfx___mutex_trylock_common+0x10/0x10 [ 158.183747][ T6428] ? __pfx_uinput_request_submit+0x10/0x10 [ 158.183778][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183801][ T6428] ? rcu_is_watching+0x15/0xb0 [ 158.183827][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183849][ T6428] ? trace_contention_end+0x39/0x100 [ 158.183879][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.183901][ T6428] ? __mutex_lock+0x335/0x1350 [ 158.183927][ T6428] uinput_dev_upload_effect+0x150/0x1e0 [ 158.183958][ T6428] ? input_ff_upload+0x398/0xb30 [ 158.183988][ T6428] ? __pfx_uinput_dev_upload_effect+0x10/0x10 [ 158.184027][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184053][ T6428] input_ff_upload+0x5fb/0xb30 [ 158.184087][ T6428] evdev_ioctl_handler+0x1644/0x1f10 [ 158.184115][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184138][ T6428] ? do_vfs_ioctl+0xbe8/0x1430 [ 158.184166][ T6428] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 158.184187][ T6428] ? __pfx_evdev_ioctl_handler+0x10/0x10 [ 158.184221][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184244][ T6428] ? do_futex+0x395/0x420 [ 158.184274][ T6428] ? __fget_files+0x2a/0x420 [ 158.184296][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184325][ T6428] ? __fget_files+0x3a0/0x420 [ 158.184345][ T6428] ? __fget_files+0x2a/0x420 [ 158.184366][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184389][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184413][ T6428] ? __pfx_evdev_ioctl+0x10/0x10 [ 158.184437][ T6428] __se_sys_ioctl+0xfc/0x170 [ 158.184466][ T6428] do_syscall_64+0xfa/0xf80 [ 158.184487][ T6428] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.184506][ T6428] ? srso_alias_return_thunk+0x5/0xfbef5 [ 158.184529][ T6428] ? exc_page_fault+0xab/0x100 [ 158.184549][ T6428] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 158.184569][ T6428] RIP: 0033:0x7f661018f6c9 [ 158.184588][ T6428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 158.184605][ T6428] RSP: 002b:00007f6611055038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 158.184626][ T6428] RAX: ffffffffffffffda RBX: 00007f66103e5fa0 RCX: 00007f661018f6c9 [ 158.184641][ T6428] RDX: 0000200000000300 RSI: 0000000040304580 RDI: 0000000000000004 [ 158.184655][ T6428] RBP: 00007f6610211f91 R08: 0000000000000000 R09: 0000000000000000 [ 158.184667][ T6428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 158.184680][ T6428] R13: 00007f66103e6038 R14: 00007f66103e5fa0 R15: 00007ffcb4a76558 [ 158.184703][ T6428] [ 158.730735][ T6430] input: syz1 as /devices/virtual/input/input6 [ 159.258483][ T52] Bluetooth: hci0: command tx timeout [ 159.588525][ T6432] input: syz1 as /devices/virtual/input/input7 2025/12/05 05:12:21 executed programs: 5 [ 160.435768][ T6434] input: syz1 as /devices/virtual/input/input8 [ 161.283364][ T6436] input: syz1 as /devices/virtual/input/input9 [ 161.338689][ T52] Bluetooth: hci0: command tx timeout [ 162.132626][ T6438] input: syz1 as /devices/virtual/input/input10 [ 162.981441][ T6440] input: syz1 as /devices/virtual/input/input11 [ 163.418188][ T52] Bluetooth: hci0: command tx timeout [ 163.831058][ T6442] input: syz1 as /devices/virtual/input/input12 [ 164.681349][ T6444] input: syz1 as /devices/virtual/input/input13 2025/12/05 05:12:26 executed programs: 11 [ 165.529055][ T6446] input: syz1 as /devices/virtual/input/input14 [ 166.377932][ T6448] input: syz1 as /devices/virtual/input/input15 [ 167.226881][ T6450] input: syz1 as /devices/virtual/input/input16