Warning: Permanently added '[localhost]:14071' (ECDSA) to the list of known hosts. 2025/01/22 16:45:22 fuzzer started 2025/01/22 16:45:23 dialing manager at localhost:38529 syzkaller login: [ 74.726347] cgroup: Unknown subsys name 'net' [ 74.836685] cgroup: Unknown subsys name 'cpuset' [ 74.858760] cgroup: Unknown subsys name 'rlimit' [ 79.493648] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 89.104486] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/22 16:45:38 syscalls: 2217 2025/01/22 16:45:38 code coverage: enabled 2025/01/22 16:45:38 comparison tracing: enabled 2025/01/22 16:45:38 extra coverage: enabled 2025/01/22 16:45:38 setuid sandbox: enabled 2025/01/22 16:45:38 namespace sandbox: enabled 2025/01/22 16:45:38 Android sandbox: enabled 2025/01/22 16:45:38 fault injection: enabled 2025/01/22 16:45:38 leak checking: enabled 2025/01/22 16:45:38 net packet injection: enabled 2025/01/22 16:45:38 net device setup: enabled 2025/01/22 16:45:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/22 16:45:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/22 16:45:38 USB emulation: enabled 2025/01/22 16:45:38 hci packet injection: enabled 2025/01/22 16:45:38 wifi device emulation: enabled 2025/01/22 16:45:38 802.15.4 emulation: enabled 2025/01/22 16:45:38 fetching corpus: 0, signal 0/0 (executing program) 2025/01/22 16:45:38 fetching corpus: 0, signal 0/0 (executing program) 2025/01/22 16:45:41 starting 8 fuzzer processes 16:45:41 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan1\x00'}) 16:45:41 executing program 1: syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x0, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000bc0), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(&(0x7f0000000d00), 0xffffffffffffffff) 16:45:41 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00') copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) 16:45:41 executing program 3: openat$full(0xffffffffffffff9c, &(0x7f0000003d80), 0x0, 0x0) [ 92.345636] audit: type=1400 audit(1737564341.181:7): avc: denied { execmem } for pid=280 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:45:41 executing program 4: syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 16:45:41 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000600), r0) 16:45:41 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00') copy_file_range(r0, 0x0, r0, 0x0, 0x0, 0x0) 16:45:41 executing program 7: sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 93.979242] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 93.983209] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.985788] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 93.987667] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 93.989018] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.991833] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.996638] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.000862] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 94.002354] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.003667] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.011598] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.014342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.037696] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.040349] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.042015] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.048823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.058291] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 94.059813] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.094018] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 94.095660] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.098550] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.102545] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.103877] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 94.109654] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 94.112508] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.113772] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 94.119467] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 94.120040] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 94.143323] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.147925] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 94.153505] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 94.175474] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 94.176068] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 94.178470] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 94.178647] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.186985] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 94.204712] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 94.213354] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 94.229517] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 94.234607] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 94.235528] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 94.240012] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 94.265950] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 94.268023] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 94.269767] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.276605] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 94.279676] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 94.280774] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 96.057286] Bluetooth: hci1: command tx timeout [ 96.119203] Bluetooth: hci2: command tx timeout [ 96.119239] Bluetooth: hci0: command tx timeout [ 96.247206] Bluetooth: hci5: command tx timeout [ 96.247267] Bluetooth: hci3: command tx timeout [ 96.312633] Bluetooth: hci6: command tx timeout [ 96.312638] Bluetooth: hci4: command tx timeout [ 96.375209] Bluetooth: hci7: command tx timeout [ 98.103204] Bluetooth: hci1: command tx timeout [ 98.167251] Bluetooth: hci0: command tx timeout [ 98.168038] Bluetooth: hci2: command tx timeout [ 98.295264] Bluetooth: hci3: command tx timeout [ 98.296276] Bluetooth: hci5: command tx timeout [ 98.359479] Bluetooth: hci4: command tx timeout [ 98.359576] Bluetooth: hci6: command tx timeout [ 98.424209] Bluetooth: hci7: command tx timeout [ 100.152247] Bluetooth: hci1: command tx timeout [ 100.216218] Bluetooth: hci2: command tx timeout [ 100.216295] Bluetooth: hci0: command tx timeout [ 100.344412] Bluetooth: hci5: command tx timeout [ 100.344507] Bluetooth: hci3: command tx timeout [ 100.407244] Bluetooth: hci6: command tx timeout [ 100.407263] Bluetooth: hci4: command tx timeout [ 100.471178] Bluetooth: hci7: command tx timeout [ 102.199226] Bluetooth: hci1: command tx timeout [ 102.263176] Bluetooth: hci0: command tx timeout [ 102.263253] Bluetooth: hci2: command tx timeout [ 102.391350] Bluetooth: hci3: command tx timeout [ 102.392155] Bluetooth: hci5: command tx timeout [ 102.455564] Bluetooth: hci4: command tx timeout [ 102.456173] Bluetooth: hci6: command tx timeout [ 102.519223] Bluetooth: hci7: command tx timeout [ 152.154818] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 152.154956] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 152.499448] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 152.499543] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 154.033026] [ 154.033275] ====================================================== [ 154.033863] WARNING: possible circular locking dependency detected [ 154.034445] 6.13.0-next-20250122 #1 Not tainted [ 154.035248] ------------------------------------------------------ [ 154.039251] kworker/u8:1/66 is trying to acquire lock: [ 154.039757] ffffffff8621ece8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.040769] [ 154.040769] but task is already holding lock: [ 154.041326] ffff888037028768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 154.042292] [ 154.042292] which lock already depends on the new lock. [ 154.042292] [ 154.043068] [ 154.043068] the existing dependency chain (in reverse order) is: [ 154.043771] [ 154.043771] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 154.044427] __mutex_lock+0x13d/0xb50 [ 154.044891] wiphy_register+0x1b2e/0x25d0 [ 154.045382] ieee80211_register_hw+0x23a4/0x3d60 [ 154.045922] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 154.046490] init_mac80211_hwsim+0x389/0x870 [ 154.047017] do_one_initcall+0xf9/0x640 [ 154.047496] kernel_init_freeable+0x53d/0x7a0 [ 154.048022] kernel_init+0x1e/0x2d0 [ 154.048447] ret_from_fork+0x48/0x80 [ 154.048882] ret_from_fork_asm+0x1a/0x30 [ 154.049374] [ 154.049374] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 154.049986] __lock_acquire+0x29fd/0x4580 [ 154.050472] lock_acquire+0x19b/0x520 [ 154.050921] __mutex_lock+0x13d/0xb50 [ 154.051391] unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.052016] unregister_netdevice_queue+0x224/0x2e0 [ 154.052578] _cfg80211_unregister_wdev+0x57b/0x700 [ 154.053139] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 154.053697] ieee80211_unregister_hw+0x55/0x3a0 [ 154.054225] hwsim_exit_net+0x3a0/0x730 [ 154.054693] ops_exit_list+0xb3/0x180 [ 154.055146] cleanup_net+0x546/0xad0 [ 154.055588] process_one_work+0x8ee/0x1a10 [ 154.056093] worker_thread+0x674/0xe70 [ 154.056561] kthread+0x3ab/0x720 [ 154.056979] ret_from_fork+0x48/0x80 [ 154.057410] ret_from_fork_asm+0x1a/0x30 [ 154.057890] [ 154.057890] other info that might help us debug this: [ 154.057890] [ 154.058635] Possible unsafe locking scenario: [ 154.058635] [ 154.059206] CPU0 CPU1 [ 154.059652] ---- ---- [ 154.060100] lock(&rdev->wiphy.mtx); [ 154.060504] lock(rtnl_mutex); [ 154.061081] lock(&rdev->wiphy.mtx); [ 154.061704] lock(rtnl_mutex); [ 154.062058] [ 154.062058] *** DEADLOCK *** [ 154.062058] [ 154.062627] 4 locks held by kworker/u8:1/66: [ 154.063067] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 154.064083] #1: ffff88800ec67d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 154.065055] #2: ffffffff86212d10 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 154.065963] #3: ffff888037028768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 154.066986] [ 154.066986] stack backtrace: [ 154.067439] CPU: 1 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-next-20250122 #1 [ 154.068218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 154.068991] Workqueue: netns cleanup_net [ 154.069409] Call Trace: [ 154.069663] [ 154.069890] dump_stack_lvl+0xca/0x120 [ 154.070310] print_circular_bug+0x47b/0x750 [ 154.070747] check_noncircular+0x2e9/0x3c0 [ 154.071191] ? srso_return_thunk+0x5/0x5f [ 154.071633] ? __pfx_check_noncircular+0x10/0x10 [ 154.072113] ? hlock_class+0x4e/0x130 [ 154.072492] ? mark_lock+0xac/0xed0 [ 154.072867] ? srso_return_thunk+0x5/0x5f [ 154.073306] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 154.073770] ? lockdep_lock+0xba/0x1b0 [ 154.074189] ? __pfx_lockdep_lock+0x10/0x10 [ 154.074640] __lock_acquire+0x29fd/0x4580 [ 154.075083] ? __pfx___lock_acquire+0x10/0x10 [ 154.075541] ? lock_release+0x20f/0x6f0 [ 154.075953] ? __pfx_lock_release+0x10/0x10 [ 154.076399] lock_acquire+0x19b/0x520 [ 154.076793] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.077379] ? __pfx_lock_acquire+0x10/0x10 [ 154.077820] ? srso_return_thunk+0x5/0x5f [ 154.078257] ? lock_release+0x20f/0x6f0 [ 154.078664] ? srso_return_thunk+0x5/0x5f [ 154.079107] ? lock_is_held_type+0x9e/0x120 [ 154.079561] ? srso_return_thunk+0x5/0x5f [ 154.080002] __mutex_lock+0x13d/0xb50 [ 154.080406] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.080988] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.081567] ? srso_return_thunk+0x5/0x5f [ 154.082003] ? synchronize_rcu_expedited+0x38a/0x420 [ 154.082516] ? __pfx___mutex_lock+0x10/0x10 [ 154.082964] ? __pfx_autoremove_wake_function+0x10/0x10 [ 154.083514] ? srso_return_thunk+0x5/0x5f [ 154.083947] ? kasan_quarantine_put+0x84/0x1e0 [ 154.084430] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 154.084886] ? srso_return_thunk+0x5/0x5f [ 154.085330] unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.085892] ? __virt_addr_valid+0x2e8/0x5d0 [ 154.086353] ? __pfx_lock_release+0x10/0x10 [ 154.086793] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 154.087397] ? find_held_lock+0x2c/0x110 [ 154.087827] ? srso_return_thunk+0x5/0x5f [ 154.088268] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 154.088779] ? srso_return_thunk+0x5/0x5f [ 154.089219] ? lock_release+0x20f/0x6f0 [ 154.089632] ? __pfx_lock_release+0x10/0x10 [ 154.090072] ? srso_return_thunk+0x5/0x5f [ 154.090508] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 154.091044] ? srso_return_thunk+0x5/0x5f [ 154.091488] unregister_netdevice_queue+0x224/0x2e0 [ 154.091989] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 154.092535] ? up_write+0x195/0x520 [ 154.092927] _cfg80211_unregister_wdev+0x57b/0x700 [ 154.093430] ? srso_return_thunk+0x5/0x5f [ 154.093872] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 154.094381] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 154.094928] ? srso_return_thunk+0x5/0x5f [ 154.095374] ? srso_return_thunk+0x5/0x5f [ 154.095813] ? synchronize_rcu+0x1ff/0x260 [ 154.096244] ieee80211_unregister_hw+0x55/0x3a0 [ 154.096717] hwsim_exit_net+0x3a0/0x730 [ 154.097126] ? __pfx_hwsim_exit_net+0x10/0x10 [ 154.097583] ? srso_return_thunk+0x5/0x5f [ 154.098023] ? netdev_run_todo+0x788/0x1040 [ 154.098468] ? __pfx_hwsim_exit_net+0x10/0x10 [ 154.098926] ops_exit_list+0xb3/0x180 [ 154.099327] cleanup_net+0x546/0xad0 [ 154.099715] ? __pfx_cleanup_net+0x10/0x10 [ 154.100156] process_one_work+0x8ee/0x1a10 [ 154.100611] ? __pfx_lock_acquire+0x10/0x10 [ 154.101056] ? __pfx_process_one_work+0x10/0x10 [ 154.101540] ? srso_return_thunk+0x5/0x5f [ 154.101978] ? move_linked_works+0x172/0x270 [ 154.102428] ? srso_return_thunk+0x5/0x5f [ 154.102866] ? assign_work+0x196/0x240 [ 154.103294] worker_thread+0x674/0xe70 [ 154.103711] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 154.104242] ? srso_return_thunk+0x5/0x5f [ 154.104681] ? __pfx_worker_thread+0x10/0x10 [ 154.105145] kthread+0x3ab/0x720 [ 154.105513] ? __pfx_kthread+0x10/0x10 [ 154.105921] ? srso_return_thunk+0x5/0x5f [ 154.106355] ? finish_task_switch.isra.0+0x206/0x840 [ 154.106866] ? __pfx_kthread+0x10/0x10 [ 154.107284] ret_from_fork+0x48/0x80 [ 154.107662] ? __pfx_kthread+0x10/0x10 [ 154.108074] ret_from_fork_asm+0x1a/0x30 [ 154.108516] [ 156.036195] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 156.039542] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 156.040429] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 156.044359] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 156.047981] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 156.049704] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 156.050643] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 156.052754] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 156.056155] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 156.059496] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 156.061424] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 156.062467] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 156.067675] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 156.071379] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 156.075181] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 156.075321] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 156.081523] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 156.082662] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 156.084582] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 156.093730] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 156.097648] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 156.097986] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 156.103787] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 156.104099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 156.114202] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 156.126636] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.137434] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.139423] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 156.140559] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 156.141381] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.187180] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 156.197328] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 156.203757] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 156.209163] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.209236] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 156.213204] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 156.214031] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 156.217207] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.219215] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.220691] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.222508] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.225234] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.237222] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.242399] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.244765] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.245123] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.250305] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.253762] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 158.135132] Bluetooth: hci0: command tx timeout [ 158.135247] Bluetooth: hci1: command tx timeout [ 158.135323] Bluetooth: hci2: command tx timeout [ 158.200204] Bluetooth: hci3: command tx timeout [ 158.264426] Bluetooth: hci5: command tx timeout [ 158.327278] Bluetooth: hci6: command tx timeout [ 158.327439] Bluetooth: hci7: command tx timeout [ 158.327463] Bluetooth: hci4: command tx timeout [ 160.183172] Bluetooth: hci2: command tx timeout [ 160.183276] Bluetooth: hci1: command tx timeout [ 160.183341] Bluetooth: hci0: command tx timeout [ 160.247291] Bluetooth: hci3: command tx timeout [ 160.311249] Bluetooth: hci5: command tx timeout [ 160.375325] Bluetooth: hci4: command tx timeout [ 160.375347] Bluetooth: hci6: command tx timeout [ 160.375418] Bluetooth: hci7: command tx timeout [ 162.231156] Bluetooth: hci2: command tx timeout [ 162.231250] Bluetooth: hci0: command tx timeout [ 162.231274] Bluetooth: hci1: command tx timeout [ 162.296348] Bluetooth: hci3: command tx timeout [ 162.361117] Bluetooth: hci5: command tx timeout [ 162.423190] Bluetooth: hci7: command tx timeout [ 162.423243] Bluetooth: hci4: command tx timeout [ 162.423321] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 16:46:43 Registers: info registers vcpu 0 RAX=ffff88800f018000 RBX=ffff88807b0de7c0 RCX=ffffffff81429a4a RDX=1ffff11001db5300 RSI=0000000000000008 RDI=ffff88800eda9800 RBP=0000000000000000 RSP=ffff88800f027dd0 R8 =0000000000000000 R9 =ffffed1001db5300 R10=ffff88800eda9807 R11=0000000000000001 R12=ffff88807b0deff9 R13=ffffffff88653e30 R14=ffff88800f018000 R15=0000000000000086 RIP=ffffffff81aef6e6 RFL=00000007 [-----PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000c00033b000 CR3=000000000c6cc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=e5e3b288e7dd5a906d4c5f28d7133673 XMM02=f61f520134a0d9c200000000000fd350 XMM03=f9980df3bdc2dbad00000000001343c0 XMM04=379fb6dce7f9cead00000000000ae988 XMM05=9f165a4fe6c971ad0000000000139110 XMM06=faa99365e44538a00000000000139070 XMM07=96f54c05619467600000000000134418 XMM08=ee7587d5db12e8e300000000000fd3a8 XMM09=00000000000000000000000000000000 XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e865 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff88800ec66bb8 R8 =0000000000000001 R9 =ffffed1001d8cd67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea040 R15=ffff88800ec66eb8 RIP=ffffffff8283e8bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe4000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000001f27f60 CR3=000000001323c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=000000000000000041801cd680000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000