Warning: Permanently added '[localhost]:10391' (ECDSA) to the list of known hosts. 2025/01/17 16:55:27 fuzzer started 2025/01/17 16:55:27 dialing manager at localhost:44245 syzkaller login: [ 63.429100] cgroup: Unknown subsys name 'net' [ 63.523713] cgroup: Unknown subsys name 'cpuset' [ 63.564175] cgroup: Unknown subsys name 'rlimit' [ 68.909693] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 80.035187] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 16:55:44 syscalls: 2217 2025/01/17 16:55:44 code coverage: enabled 2025/01/17 16:55:44 comparison tracing: enabled 2025/01/17 16:55:44 extra coverage: enabled 2025/01/17 16:55:44 setuid sandbox: enabled 2025/01/17 16:55:44 namespace sandbox: enabled 2025/01/17 16:55:44 Android sandbox: enabled 2025/01/17 16:55:44 fault injection: enabled 2025/01/17 16:55:44 leak checking: enabled 2025/01/17 16:55:44 net packet injection: enabled 2025/01/17 16:55:44 net device setup: enabled 2025/01/17 16:55:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 16:55:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 16:55:44 USB emulation: enabled 2025/01/17 16:55:44 hci packet injection: enabled 2025/01/17 16:55:44 wifi device emulation: enabled 2025/01/17 16:55:44 802.15.4 emulation: enabled 2025/01/17 16:55:45 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 16:55:45 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 16:55:47 starting 8 fuzzer processes 16:55:47 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) sendmmsg$inet6(r1, &(0x7f0000002440)=[{{&(0x7f0000000080)={0xa, 0x4e22, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=[@tclass={{0x18}}], 0x18}}], 0x1, 0x0) 16:55:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x4, 0x13, 0x7, 0x0, 0x0, @private2, @remote}}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000340)={'syztnl1\x00', 0x0}) io_setup(0xfdd, &(0x7f0000000380)) io_submit(0x0, 0x0, 0x0) 16:55:47 executing program 2: setresgid(0x0, 0xffffffffffffffff, 0xee00) 16:55:47 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x87000, 0x0) [ 82.760580] audit: type=1400 audit(1737132947.393:7): avc: denied { execmem } for pid=283 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:55:47 executing program 4: mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000f80)={0xf0}, 0x20) 16:55:47 executing program 5: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(0x0, 0x0, 0x0, 0x9) syz_genetlink_get_family_id$nbd(&(0x7f00000012c0), 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f00000013c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f00000014c0)={{0x1, 0x1, 0x18}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, 0x0) syz_genetlink_get_family_id$nbd(&(0x7f0000001580), 0xffffffffffffffff) syz_open_dev$hidraw(&(0x7f0000001840), 0x0, 0x246001) 16:55:47 executing program 6: set_mempolicy(0x8005, &(0x7f0000000080)=0xd5, 0xb9a) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x5b0, &(0x7f0000000100)=[{}]}) 16:55:47 executing program 7: syz_emit_ethernet(0x3e, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @generic={{0xc, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, @private=0xa010102, @remote, {[@timestamp_prespec={0x44, 0x1c, 0x17, 0x3, 0x0, [{}, {}, {@empty}]}]}}}}}}, 0x0) [ 84.264527] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.270014] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.274574] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.281042] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.284186] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.285933] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.327432] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.330583] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.334054] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.334432] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.337683] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.341926] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.342126] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.345780] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 84.347269] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.373698] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.376234] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 84.377681] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.448304] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.453072] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.453847] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 84.455551] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.457142] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 84.458771] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 84.463331] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.472703] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 84.477439] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 84.477627] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 84.480204] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.481452] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 84.484927] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 84.490194] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 84.491311] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 84.525087] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 84.526669] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 84.530109] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 84.564487] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 84.566752] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 84.568426] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 84.572064] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 84.574240] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 84.575317] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 84.576568] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 84.580965] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 84.590539] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 84.591887] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.630031] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 84.631068] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.351883] Bluetooth: hci0: command tx timeout [ 86.415251] Bluetooth: hci1: command tx timeout [ 86.415286] Bluetooth: hci2: command tx timeout [ 86.543084] Bluetooth: hci3: command tx timeout [ 86.607018] Bluetooth: hci5: command tx timeout [ 86.607566] Bluetooth: hci6: command tx timeout [ 86.608096] Bluetooth: hci4: command tx timeout [ 86.734938] Bluetooth: hci7: command tx timeout [ 88.399856] Bluetooth: hci0: command tx timeout [ 88.462881] Bluetooth: hci1: command tx timeout [ 88.462915] Bluetooth: hci2: command tx timeout [ 88.591937] Bluetooth: hci3: command tx timeout [ 88.655896] Bluetooth: hci4: command tx timeout [ 88.656045] Bluetooth: hci6: command tx timeout [ 88.656120] Bluetooth: hci5: command tx timeout [ 88.783870] Bluetooth: hci7: command tx timeout [ 90.448856] Bluetooth: hci0: command tx timeout [ 90.511001] Bluetooth: hci2: command tx timeout [ 90.511709] Bluetooth: hci1: command tx timeout [ 90.639159] Bluetooth: hci3: command tx timeout [ 90.702873] Bluetooth: hci4: command tx timeout [ 90.703909] Bluetooth: hci5: command tx timeout [ 90.704435] Bluetooth: hci6: command tx timeout [ 90.832893] Bluetooth: hci7: command tx timeout [ 92.494897] Bluetooth: hci0: command tx timeout [ 92.558904] Bluetooth: hci1: command tx timeout [ 92.558983] Bluetooth: hci2: command tx timeout [ 92.687022] Bluetooth: hci3: command tx timeout [ 92.750901] Bluetooth: hci6: command tx timeout [ 92.750977] Bluetooth: hci5: command tx timeout [ 92.751056] Bluetooth: hci4: command tx timeout [ 92.878921] Bluetooth: hci7: command tx timeout [ 143.240714] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.241233] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.461295] [ 144.461548] ====================================================== [ 144.462165] WARNING: possible circular locking dependency detected [ 144.462779] 6.13.0-rc7-next-20250117 #1 Not tainted [ 144.463277] ------------------------------------------------------ [ 144.467344] kworker/u8:0/11 is trying to acquire lock: [ 144.468138] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.469551] [ 144.469551] but task is already holding lock: [ 144.470214] ffff888035880768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 144.471349] [ 144.471349] which lock already depends on the new lock. [ 144.471349] [ 144.472140] [ 144.472140] the existing dependency chain (in reverse order) is: [ 144.472849] [ 144.472849] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 144.473508] __mutex_lock+0x13d/0xb50 [ 144.473981] wiphy_register+0x1b2e/0x25d0 [ 144.474537] ieee80211_register_hw+0x23a4/0x3d60 [ 144.475074] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 144.475630] init_mac80211_hwsim+0x389/0x870 [ 144.476161] do_one_initcall+0xf9/0x640 [ 144.476636] kernel_init_freeable+0x53d/0x7a0 [ 144.477162] kernel_init+0x1e/0x2d0 [ 144.477575] ret_from_fork+0x48/0x80 [ 144.478022] ret_from_fork_asm+0x1a/0x30 [ 144.478514] [ 144.478514] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 144.479145] __lock_acquire+0x29fd/0x4580 [ 144.479632] lock_acquire+0x19b/0x520 [ 144.480093] __mutex_lock+0x13d/0xb50 [ 144.480550] unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.481177] unregister_netdevice_queue+0x224/0x2e0 [ 144.481734] _cfg80211_unregister_wdev+0x57b/0x700 [ 144.482298] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 144.482864] ieee80211_unregister_hw+0x55/0x3a0 [ 144.483392] hwsim_exit_net+0x3a0/0x730 [ 144.483872] ops_exit_list+0xb3/0x180 [ 144.484322] cleanup_net+0x546/0xad0 [ 144.484756] process_one_work+0x8ee/0x1a10 [ 144.485264] worker_thread+0x674/0xe70 [ 144.485734] kthread+0x3ab/0x720 [ 144.486165] ret_from_fork+0x48/0x80 [ 144.486604] ret_from_fork_asm+0x1a/0x30 [ 144.487097] [ 144.487097] other info that might help us debug this: [ 144.487097] [ 144.487862] Possible unsafe locking scenario: [ 144.487862] [ 144.488436] CPU0 CPU1 [ 144.488890] ---- ---- [ 144.489341] lock(&rdev->wiphy.mtx); [ 144.489753] lock(rtnl_mutex); [ 144.490374] lock(&rdev->wiphy.mtx); [ 144.491023] lock(rtnl_mutex); [ 144.491385] [ 144.491385] *** DEADLOCK *** [ 144.491385] [ 144.491973] 4 locks held by kworker/u8:0/11: [ 144.492409] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 144.493440] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 144.494423] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 144.495333] #3: ffff888035880768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 144.496374] [ 144.496374] stack backtrace: [ 144.496832] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 144.497647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 144.498444] Workqueue: netns cleanup_net [ 144.498874] Call Trace: [ 144.499133] [ 144.499361] dump_stack_lvl+0xca/0x120 [ 144.499793] print_circular_bug+0x47b/0x750 [ 144.500253] check_noncircular+0x2e9/0x3c0 [ 144.500682] ? lock_repin_lock+0x207/0x320 [ 144.501141] ? __pfx_check_noncircular+0x10/0x10 [ 144.501621] ? hlock_class+0x4e/0x130 [ 144.502016] ? mark_lock+0xac/0xed0 [ 144.502405] ? __pfx_lock_repin_lock+0x10/0x10 [ 144.502903] ? lockdep_lock+0xba/0x1b0 [ 144.503323] ? __pfx_lockdep_lock+0x10/0x10 [ 144.503786] __lock_acquire+0x29fd/0x4580 [ 144.504238] ? __pfx___lock_acquire+0x10/0x10 [ 144.504703] ? lock_release+0x20f/0x6f0 [ 144.505123] ? __pfx_lock_release+0x10/0x10 [ 144.505574] lock_acquire+0x19b/0x520 [ 144.505979] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.506573] ? __pfx_lock_acquire+0x10/0x10 [ 144.507024] ? srso_return_thunk+0x5/0x5f [ 144.507454] ? lock_release+0x20f/0x6f0 [ 144.507872] ? srso_return_thunk+0x5/0x5f [ 144.508298] ? lock_is_held_type+0x9e/0x120 [ 144.508746] ? srso_return_thunk+0x5/0x5f [ 144.509196] __mutex_lock+0x13d/0xb50 [ 144.509603] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.510195] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.510782] ? srso_return_thunk+0x5/0x5f [ 144.511221] ? synchronize_rcu_expedited+0x38a/0x420 [ 144.511720] ? __pfx___mutex_lock+0x10/0x10 [ 144.512176] ? __pfx_autoremove_wake_function+0x10/0x10 [ 144.512724] ? srso_return_thunk+0x5/0x5f [ 144.513167] ? kasan_quarantine_put+0x84/0x1e0 [ 144.513645] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 144.514105] ? srso_return_thunk+0x5/0x5f [ 144.514549] unregister_netdevice_many_notify+0x1612/0x1c80 [ 144.515110] ? __virt_addr_valid+0x2e8/0x5d0 [ 144.515566] ? __pfx_lock_release+0x10/0x10 [ 144.516014] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 144.516598] ? find_held_lock+0x2c/0x110 [ 144.517031] ? srso_return_thunk+0x5/0x5f [ 144.517463] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 144.517999] ? srso_return_thunk+0x5/0x5f [ 144.518437] ? lock_release+0x20f/0x6f0 [ 144.518862] ? __pfx_lock_release+0x10/0x10 [ 144.519317] ? srso_return_thunk+0x5/0x5f [ 144.519745] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 144.520353] ? srso_return_thunk+0x5/0x5f [ 144.520796] unregister_netdevice_queue+0x224/0x2e0 [ 144.521303] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 144.521863] ? up_write+0x195/0x520 [ 144.522257] _cfg80211_unregister_wdev+0x57b/0x700 [ 144.522764] ? srso_return_thunk+0x5/0x5f [ 144.523226] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 144.523722] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 144.524284] ? srso_return_thunk+0x5/0x5f [ 144.524721] ? srso_return_thunk+0x5/0x5f [ 144.525164] ? synchronize_rcu+0x1ff/0x260 [ 144.525593] ieee80211_unregister_hw+0x55/0x3a0 [ 144.526070] hwsim_exit_net+0x3a0/0x730 [ 144.526485] ? __pfx_hwsim_exit_net+0x10/0x10 [ 144.526949] ? srso_return_thunk+0x5/0x5f [ 144.527388] ? netdev_run_todo+0x788/0x1040 [ 144.527840] ? srso_return_thunk+0x5/0x5f [ 144.528275] ? __pfx_hwsim_exit_net+0x10/0x10 [ 144.528722] ops_exit_list+0xb3/0x180 [ 144.529127] cleanup_net+0x546/0xad0 [ 144.529517] ? __pfx_cleanup_net+0x10/0x10 [ 144.529967] process_one_work+0x8ee/0x1a10 [ 144.530432] ? __pfx_lock_acquire+0x10/0x10 [ 144.530887] ? __pfx_process_one_work+0x10/0x10 [ 144.531375] ? srso_return_thunk+0x5/0x5f [ 144.531813] ? move_linked_works+0x172/0x270 [ 144.532264] ? srso_return_thunk+0x5/0x5f [ 144.532696] ? assign_work+0x196/0x240 [ 144.533117] worker_thread+0x674/0xe70 [ 144.533529] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 144.534059] ? __pfx_worker_thread+0x10/0x10 [ 144.534529] kthread+0x3ab/0x720 [ 144.534907] ? __pfx_kthread+0x10/0x10 [ 144.535314] ? srso_return_thunk+0x5/0x5f [ 144.535746] ? finish_task_switch.isra.0+0x206/0x840 [ 144.536265] ? __pfx_kthread+0x10/0x10 [ 144.536671] ret_from_fork+0x48/0x80 [ 144.537052] ? __pfx_kthread+0x10/0x10 [ 144.537467] ret_from_fork_asm+0x1a/0x30 [ 144.537913] [ 146.526728] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 146.529798] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 146.531686] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 146.540514] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 146.544152] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 146.544578] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 146.614754] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 146.617588] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 146.617935] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 146.623125] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 146.624868] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 146.627431] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 146.630418] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 146.632665] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 146.635679] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 146.642343] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 146.659742] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 146.690302] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 146.691721] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 146.695216] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 146.699193] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 146.703985] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 146.704019] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 146.704113] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 146.704235] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 146.714992] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 146.715005] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 146.718973] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 146.719195] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 146.720980] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 146.723182] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 146.723706] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 146.724450] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 146.728941] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 146.731069] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 146.732094] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 146.734598] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 146.744362] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 146.744717] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 146.749375] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 146.755944] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 146.760378] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 146.762631] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 146.765892] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 146.774015] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 146.794088] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 146.799076] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 146.799487] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 148.623052] Bluetooth: hci0: command tx timeout [ 148.686831] Bluetooth: hci1: command tx timeout [ 148.750840] Bluetooth: hci2: command tx timeout [ 148.815057] Bluetooth: hci3: command tx timeout [ 148.815741] Bluetooth: hci6: command tx timeout [ 148.816201] Bluetooth: hci4: command tx timeout [ 148.878858] Bluetooth: hci7: command tx timeout [ 148.879393] Bluetooth: hci5: command tx timeout [ 150.671156] Bluetooth: hci0: command tx timeout [ 150.735571] Bluetooth: hci1: command tx timeout [ 150.798841] Bluetooth: hci2: command tx timeout [ 150.863836] Bluetooth: hci3: command tx timeout [ 150.863900] Bluetooth: hci4: command tx timeout [ 150.863958] Bluetooth: hci6: command tx timeout [ 150.928884] Bluetooth: hci7: command tx timeout [ 150.929674] Bluetooth: hci5: command tx timeout [ 152.719821] Bluetooth: hci0: command tx timeout [ 152.783687] Bluetooth: hci1: command tx timeout [ 152.847059] Bluetooth: hci2: command tx timeout [ 152.911084] Bluetooth: hci6: command tx timeout [ 152.911260] Bluetooth: hci4: command tx timeout [ 152.911316] Bluetooth: hci3: command tx timeout [ 152.975065] Bluetooth: hci7: command tx timeout [ 152.976290] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 16:56:49 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095debb8 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea021 R15=ffff8880095deeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000c0002fc308 CR3=000000000ed7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e XMM05=010100ff00ff01010000000500000006 XMM06=613739663335006563697665642e3269 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88800aa95340 RCX=ffffffff81429a0f RDX=ffff88800aa95340 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000200000 RSP=ffff88800f4bfdb8 R8 =0000000000000000 R9 =ffffed1001de3080 R10=0000000000200000 R11=ffff88800aa957f8 R12=ffff88807bd29ff9 R13=ffffffff8864e3a0 R14=ffff88800aa95340 R15=0000000000000086 RIP=ffffffff81429a11 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe1200000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffec7e81000 CR3=000000000ed7c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=0000000000ff000000000000000000ff XMM02=0000000000ff000000000000000000ff XMM03=00656369767265732e6873732f656369 XMM04=2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e2e XMM05=010100ff00ff01010000000500000006 XMM06=613739663335006563697665642e3269 XMM07=00000000000000000000000000000000 XMM08=636f72702f0064696e6f697373657300 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000