Warning: Permanently added '10.128.0.102' (ED25519) to the list of known hosts.
syzkaller login: [   72.428830][ T4274] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   72.436734][ T4274] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   72.442132][ T4275] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   72.445653][ T4274] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   72.452351][ T4275] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   72.458902][ T4274] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   72.465416][ T4275] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   72.474053][ T4274] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.479341][ T4275] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   72.493288][ T4274] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   72.493461][ T4275] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   72.502207][ T4274] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   72.507794][ T4275] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.515767][ T4274] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   72.528777][ T4276] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   72.529453][ T4274] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   72.538633][ T4277] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.543151][ T4274] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   72.551430][ T4276] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   72.557965][ T4274] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   72.565541][ T4276] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   72.572170][ T4274] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   72.578362][ T4276] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   72.585535][ T4274] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   72.592898][ T4277] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   72.599386][ T4274] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   72.606539][ T4276] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   72.613899][ T4274] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   72.622019][ T4277] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   72.629568][ T4274] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
executing program
executing program
[  177.884222][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  177.891369][    C0] 	(detected by 0, t=10502 jiffies, g=7381, q=34 ncpus=2)
[  177.898528][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10500 (4294954918-4294944418), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  177.911933][    C0] rcu: rcu_preempt kthread starved for 10500 jiffies! g7381 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  177.923071][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  177.933065][    C0] rcu: RCU grace-period kthread stack dump:
[  177.938985][    C0] task:rcu_preempt     state:R  running task     stack:27840 pid:16    ppid:2      flags:0x00004000
[  177.949812][    C0] Call Trace:
[  177.953128][    C0]  <TASK>
[  177.956090][    C0]  __schedule+0x10e9/0x40d0
[  177.960667][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  177.965917][    C0]  ? _raw_spin_unlock+0x40/0x40
[  177.970809][    C0]  ? release_firmware_map_entry+0x18a/0x18a
[  177.976749][    C0]  schedule+0xb9/0x180
[  177.980850][    C0]  schedule_timeout+0x15c/0x280
[  177.985780][    C0]  ? console_conditional_schedule+0x40/0x40
[  177.991800][    C0]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  177.997729][    C0]  ? update_process_times+0x1b0/0x1b0
[  178.003147][    C0]  ? prepare_to_swait_event+0x335/0x350
[  178.008739][    C0]  rcu_gp_fqs_loop+0x2f2/0x1310
[  178.013631][    C0]  ? dump_blkd_tasks+0x810/0x810
[  178.018602][    C0]  ? rcu_gp_init+0x14b0/0x14b0
[  178.023414][    C0]  ? rcu_gp_cleanup+0xb4c/0xca0
[  178.028316][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  178.033562][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  178.038809][    C0]  rcu_gp_kthread+0x95/0x380
[  178.043433][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  178.048572][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  178.054506][    C0]  ? __kthread_parkme+0x162/0x1c0
[  178.059575][    C0]  kthread+0x29d/0x330
[  178.063681][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  178.068822][    C0]  ? kthread_blkcg+0xd0/0xd0
[  178.073450][    C0]  ret_from_fork+0x1f/0x30
[  178.077921][    C0]  </TASK>
[  178.080972][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  178.087342][    C0] Sending NMI from CPU 0 to CPUs 1:
[  178.092584][    C1] NMI backtrace for cpu 1
[  178.092612][    C1] CPU: 1 PID: 4280 Comm: syz-executor387 Not tainted 6.1.138-syzkaller #0
[  178.092629][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  178.092639][    C1] RIP: 0010:hrtimer_interrupt+0x6c3/0x8d0
[  178.092662][    C1] Code: ff ff ff 48 8b 0c 24 80 e1 07 38 c1 0f 8c e1 fc ff ff 48 8b 3c 24 e8 0c 61 61 00 e9 d3 fc ff ff e8 82 ed 0f 00 48 8b 44 24 08 <42> 0f b6 04 30 84 c0 0f 85 5a 01 00 00 41 80 65 00 fb e9 c0 00 00
[  178.092680][    C1] RSP: 0018:ffffc900001e0ea8 EFLAGS: 00000006
[  178.092695][    C1] RAX: 1ffff110171e54b9 RBX: ffff8880b8f2a580 RCX: ffff888072d41dc0
[  178.092708][    C1] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000000
[  178.092718][    C1] RBP: 0000002974831ff0 R08: dffffc0000000000 R09: fffffbfff1bfd046
[  178.092731][    C1] R10: fffffbfff1bfd046 R11: 1ffffffff1bfd045 R12: 00000029749b6480
[  178.092743][    C1] R13: ffff8880b8f2a5cc R14: dffffc0000000000 R15: 0000000000000000
[  178.092755][    C1] FS:  0000555590e443c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  178.092770][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  178.092781][    C1] CR2: 00007fdd4dd7a9e0 CR3: 000000002fd80000 CR4: 00000000003506e0
[  178.092796][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  178.092805][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  178.092815][    C1] Call Trace:
[  178.092823][    C1]  <IRQ>
[  178.092841][    C1]  __sysvec_apic_timer_interrupt+0x153/0x5a0
[  178.092869][    C1]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  178.092896][    C1]  </IRQ>
[  178.092900][    C1]  <TASK>
[  178.092905][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  178.092928][    C1] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40
[  178.092953][    C1] Code: f5 ff 0f 1f 00 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 4e 1b 4a f7 48 89 df e8 a6 e0 4a f7 e8 11 e3 6d f7 fb bf 01 00 00 00 <e8> b6 5d 3e f7 65 8b 05 b7 22 e9 75 85 c0 74 02 5b c3 e8 04 34 e7
[  178.092965][    C1] RSP: 0018:ffffc90003bf7bb8 EFLAGS: 00000286
[  178.092978][    C1] RAX: 107814d9e7775000 RBX: ffff88802f229bc0 RCX: 107814d9e7775000
[  178.092991][    C1] RDX: dffffc0000000000 RSI: ffffffff8a6bfe00 RDI: 0000000000000001
[  178.093002][    C1] RBP: ffff88802f22a058 R08: dffffc0000000000 R09: ffffed1005e45379
[  178.093014][    C1] R10: ffffed1005e45379 R11: 1ffff11005e45378 R12: 1ffff11005e4540b
[  178.093027][    C1] R13: 0000000000000021 R14: dffffc0000000000 R15: 0000000000000000
[  178.093045][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  178.093067][    C1]  get_signal+0x1163/0x1350
[  178.093101][    C1]  arch_do_signal_or_restart+0xb0/0x1230
[  178.093124][    C1]  ? __ia32_sys_rt_sigreturn+0x660/0x790
[  178.093147][    C1]  ? load_gs_index+0x120/0x120
[  178.093167][    C1]  ? get_sigframe_size+0x10/0x10
[  178.093195][    C1]  ? exit_to_user_mode_loop+0x3b/0x110
[  178.093221][    C1]  exit_to_user_mode_loop+0x70/0x110
[  178.093244][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[  178.093268][    C1]  syscall_exit_to_user_mode+0x16/0x40
[  178.093283][    C1]  do_syscall_64+0x58/0xa0
[  178.093303][    C1]  ? clear_bhb_loop+0x45/0xa0
[  178.093319][    C1]  ? clear_bhb_loop+0x45/0xa0
[  178.093335][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  178.093360][    C1] RIP: 0033:0x7fdd4dd61809
[  178.093384][    C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  178.093397][    C1] RSP: 002b:00007fff8b5c1408 EFLAGS: 00000246
[  178.093409][    C1] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00007fdd4dd61809
[  178.093419][    C1] RDX: 000020000006b000 RSI: 0000000000000000 RDI: 0000000000000000
[  178.093429][    C1] RBP: 0000000000000000 R08: 00007fdd4dd19990 R09: 00007fdd4dd19990
[  178.093440][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fdd4ddb80dc
[  178.093450][    C1] R13: 00007fdd4ddb111f R14: 00007fff8b5c1440 R15: 0000000000000000
[  178.093468][    C1]  </TASK>