Bluetooth: hci5: SCO packet for unknown connection handle 201
watchdog: BUG: soft lockup - CPU#1 stuck for 26s! [systemd-udevd:112]
Modules linked in:
irq event stamp: 17632516
hardirqs last  enabled at (17632515): [<ffffffff84ce71cb>] irqentry_exit+0x17b/0x650
hardirqs last disabled at (17632516): [<ffffffff84ce5ecf>] sysvec_apic_timer_interrupt+0xf/0x80
softirqs last  enabled at (17632484): [<ffffffff813c2594>] __irq_exit_rcu+0xc4/0x100
softirqs last disabled at (17632475): [<ffffffff813c2594>] __irq_exit_rcu+0xc4/0x100
CPU: 1 UID: 0 PID: 112 Comm: systemd-udevd Not tainted 6.19.0-rc6-next-20260123 #1 PREEMPT(lazy) 
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:smp_call_function_many_cond+0xa76/0x1610
Code: 31 ff 83 e5 01 89 ee e8 58 a1 0b 00 85 ed 74 43 4d 89 ec 4c 89 ed 49 c1 ec 03 83 e5 07 4d 01 fc 83 c5 03 e8 1c a6 0b 00 f3 90 <41> 0f b6 04 24 40 38 c5 7c 08 84 c0 0f 85 6a 09 00 00 8b 43 08 31
RSP: 0018:ffff8880162b7648 EFLAGS: 00000293
RAX: 0000000000000000 RBX: ffff88806ce3e900 RCX: ffffffff8169dbaa
RDX: ffff88800fa9b700 RSI: ffffffff8169db84 RDI: 0000000000000005
RBP: 0000000000000003 R08: 0000000000000001 R09: 0000000000000001
R10: 0000000000000001 R11: 0000000000000000 R12: ffffed100d9c7d21
R13: ffff88806ce3e908 R14: 0000000000000001 R15: dffffc0000000000
FS:  00007f757e86a8c0(0000) GS:ffff8880e5439000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00005632f995fb78 CR3: 000000000e4ae000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 on_each_cpu_cond_mask+0x57/0xa0
 kvm_flush_tlb_multi+0x1e8/0x320
 flush_tlb_mm_range+0x3de/0x1280
 dup_mmap+0x1184/0x1e50
 copy_process+0x3d8a/0x72f0
 kernel_clone+0xea/0x7c0
 __do_sys_clone+0xce/0x120
 do_syscall_64+0xbf/0x420
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f757ecf64bb
Code: ed 0f 85 f8 00 00 00 64 4c 8b 0c 25 10 00 00 00 45 31 c0 4d 8d 91 d0 02 00 00 31 d2 31 f6 bf 11 00 20 01 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 91 00 00 00 41 89 c5 85 c0 0f 85 9e 00 00
RSP: 002b:00007fffd8808f50 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f757ecf64bb
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f757e86a8c0
R10: 00007f757e86ab90 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fffd8809020 R14: 0000000000000000 R15: 0000000000000000
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 289 Comm: syz-executor.5 Not tainted 6.19.0-rc6-next-20260123 #1 PREEMPT(lazy) 
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:__schedule+0x342a/0x4440
Code: fc ff df 48 89 c1 83 e0 07 4c 89 95 40 ff ff ff 48 c1 e9 03 83 c0 03 48 8d 34 11 88 85 60 ff ff ff 48 89 b5 68 ff ff ff f3 90 <48> 8b 85 68 ff ff ff 0f b6 00 38 85 60 ff ff ff 7c 08 84 c0 0f 85
RSP: 0018:ffff88800f2ffb60 EFLAGS: 00000046
RAX: 0000000000000002 RBX: ffff88804b94a290 RCX: 1ffffffff0b544b3
RDX: dffffc0000000000 RSI: 0000000000000002 RDI: ffff88804b94a290
RBP: ffff88800f2ffc48 R08: 0000000000000002 R09: ffff88801ece5280
R10: ffff88804b949880 R11: 0000000000000000 R12: ffff88806ce379c0
R13: ffff888016e79b80 R14: ffff88804b949780 R15: ffff88801ece66d4
FS:  000055556cd3b400(0000) GS:ffff8880e5339000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00005632f9954f18 CR3: 000000000dbd4000 CR4: 0000000000350ef0
Call Trace:
 <TASK>
 schedule+0xdb/0x390
 do_nanosleep+0x15e/0x570
 hrtimer_nanosleep+0x1a9/0x500
 common_nsleep+0xaa/0xd0
 __x64_sys_clock_nanosleep+0x331/0x470
 do_syscall_64+0xbf/0x420
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6e4c2108e1
Code: Unable to access opcode bytes at 0x7f6e4c2108b7.
RSP: 002b:00007ffe0734f450 EFLAGS: 00000293 ORIG_RAX: 00000000000000e6
RAX: ffffffffffffffda RBX: 000000000000587f RCX: 00007f6e4c2108e1
RDX: 00007ffe0734f490 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 00007ffe0734f51c R08: 0000000000000000 R09: 00007f6e4c2db000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000032
R13: 00000000001d562f R14: 0000000000000003 R15: 00007ffe0734f580
 </TASK>
----------------
Code disassembly (best guess):
   0:	31 ff                	xor    %edi,%edi
   2:	83 e5 01             	and    $0x1,%ebp
   5:	89 ee                	mov    %ebp,%esi
   7:	e8 58 a1 0b 00       	callq  0xba164
   c:	85 ed                	test   %ebp,%ebp
   e:	74 43                	je     0x53
  10:	4d 89 ec             	mov    %r13,%r12
  13:	4c 89 ed             	mov    %r13,%rbp
  16:	49 c1 ec 03          	shr    $0x3,%r12
  1a:	83 e5 07             	and    $0x7,%ebp
  1d:	4d 01 fc             	add    %r15,%r12
  20:	83 c5 03             	add    $0x3,%ebp
  23:	e8 1c a6 0b 00       	callq  0xba644
  28:	f3 90                	pause
* 2a:	41 0f b6 04 24       	movzbl (%r12),%eax <-- trapping instruction
  2f:	40 38 c5             	cmp    %al,%bpl
  32:	7c 08                	jl     0x3c
  34:	84 c0                	test   %al,%al
  36:	0f 85 6a 09 00 00    	jne    0x9a6
  3c:	8b 43 08             	mov    0x8(%rbx),%eax
  3f:	31                   	.byte 0x31