Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:14677' (ECDSA) to the list of known hosts. 2025/01/18 07:01:33 fuzzer started 2025/01/18 07:01:34 dialing manager at localhost:44245 syzkaller login: [ 62.803250] cgroup: Unknown subsys name 'net' [ 62.930070] cgroup: Unknown subsys name 'cpuset' [ 62.959835] cgroup: Unknown subsys name 'rlimit' [ 68.086667] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 07:01:51 syscalls: 2217 2025/01/18 07:01:51 code coverage: enabled 2025/01/18 07:01:51 comparison tracing: enabled 2025/01/18 07:01:51 extra coverage: enabled 2025/01/18 07:01:51 setuid sandbox: enabled 2025/01/18 07:01:51 namespace sandbox: enabled 2025/01/18 07:01:51 Android sandbox: enabled 2025/01/18 07:01:51 fault injection: enabled 2025/01/18 07:01:51 leak checking: enabled 2025/01/18 07:01:51 net packet injection: enabled 2025/01/18 07:01:51 net device setup: enabled 2025/01/18 07:01:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 07:01:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 07:01:51 USB emulation: enabled 2025/01/18 07:01:51 hci packet injection: enabled 2025/01/18 07:01:51 wifi device emulation: enabled 2025/01/18 07:01:51 802.15.4 emulation: enabled 2025/01/18 07:01:51 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 07:01:51 fetching corpus: 50, signal 29994/32500 (executing program) 2025/01/18 07:01:51 fetching corpus: 100, signal 38179/41314 (executing program) 2025/01/18 07:01:51 fetching corpus: 150, signal 43704/47325 (executing program) 2025/01/18 07:01:51 fetching corpus: 200, signal 49527/53351 (executing program) 2025/01/18 07:01:52 fetching corpus: 250, signal 53249/57359 (executing program) 2025/01/18 07:01:52 fetching corpus: 300, signal 59208/63009 (executing program) 2025/01/18 07:01:52 fetching corpus: 350, signal 62295/66024 (executing program) 2025/01/18 07:01:52 fetching corpus: 400, signal 67653/70609 (executing program) 2025/01/18 07:01:52 fetching corpus: 450, signal 72678/74729 (executing program) 2025/01/18 07:01:53 fetching corpus: 500, signal 76170/77424 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79580 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79621 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79661 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79716 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79757 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79806 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79859 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79908 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79959 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/79998 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80037 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80087 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80136 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80191 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80247 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80303 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80354 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80411 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80457 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80501 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80552 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80607 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80653 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80706 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80746 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80802 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80842 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80887 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80938 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 07:01:53 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 07:01:57 starting 8 fuzzer processes 07:01:57 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x15e) write$binfmt_script(r0, &(0x7f0000000240)={'#! ', './file1'}, 0xb) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105443, 0x0) ioctl$FITRIM(r1, 0xc020660b, &(0x7f0000000180)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105443, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)={0x24, 0x0, 0x10, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME_TYPE={0x6}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xe35f}]}, 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x20000009) ioctl$FITRIM(r2, 0xc020660b, &(0x7f0000000180)) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000000)=0x200) ioctl$EXT4_IOC_MIGRATE(r1, 0x6609) 07:01:57 executing program 1: syz_emit_ethernet(0x62, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @tipc={{0xa, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010100, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0xf, 0xe0, [@multicast2, @empty, @dev]}, @lsrr={0x83, 0x3}]}}, @payload_mcast={{{{{{0x2c, 0x0, 0x0, 0x0, 0x0, 0xb}}}}}}}}}}, 0x0) 07:01:57 executing program 2: personality(0x5000004) r0 = syz_io_uring_setup(0x46ac, &(0x7f0000000200), &(0x7f00000a0000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000000)) ppoll(&(0x7f0000000040)=[{r0}], 0x1, &(0x7f0000000100)={0x0, 0x989680}, 0x0, 0x0) 07:01:57 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/ip_mr_cache\x00') pread64(r0, &(0x7f0000000040)=""/41, 0x29, 0xa3) [ 85.880834] audit: type=1400 audit(1737183717.564:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:01:57 executing program 4: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/sem\x00', 0x0, 0x0) pread64(r0, &(0x7f0000000040)=""/15, 0xf, 0x1) 07:01:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000340)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000600)={0x0, 0x1, 0x1000, 0x8}) 07:01:57 executing program 6: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000080)=""/170) 07:01:57 executing program 7: r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) ioctl$sock_SIOCINQ(r0, 0x5326, 0x0) [ 87.385025] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.390280] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.393847] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.401614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.404759] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.407115] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.452852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.461632] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.464886] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.475044] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.479650] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.493285] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.499405] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.509560] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.524046] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.528165] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.530969] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.533018] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.572763] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.588702] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.595586] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.600527] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.610421] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.626140] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.638230] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 87.653913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 87.658737] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 87.666593] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 87.669972] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 87.671749] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 87.676181] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.687102] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.703589] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.706011] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 87.709773] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 87.709929] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 87.711928] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 87.715844] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 87.717822] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 87.719787] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 87.720942] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 87.722620] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.734159] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 87.738683] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 87.739958] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.751893] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.767844] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 87.773715] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.470102] Bluetooth: hci0: command tx timeout [ 89.533458] Bluetooth: hci1: command tx timeout [ 89.597451] Bluetooth: hci2: command tx timeout [ 89.661435] Bluetooth: hci3: command tx timeout [ 89.788577] Bluetooth: hci7: command tx timeout [ 89.789034] Bluetooth: hci6: command tx timeout [ 89.789042] Bluetooth: hci5: command tx timeout [ 89.852745] Bluetooth: hci4: command tx timeout [ 91.516504] Bluetooth: hci0: command tx timeout [ 91.580616] Bluetooth: hci1: command tx timeout [ 91.644424] Bluetooth: hci2: command tx timeout [ 91.708469] Bluetooth: hci3: command tx timeout [ 91.836547] Bluetooth: hci5: command tx timeout [ 91.836665] Bluetooth: hci6: command tx timeout [ 91.836716] Bluetooth: hci7: command tx timeout [ 91.900563] Bluetooth: hci4: command tx timeout [ 93.565499] Bluetooth: hci0: command tx timeout [ 93.628423] Bluetooth: hci1: command tx timeout [ 93.693441] Bluetooth: hci2: command tx timeout [ 93.756922] Bluetooth: hci3: command tx timeout [ 93.885662] Bluetooth: hci7: command tx timeout [ 93.885907] Bluetooth: hci6: command tx timeout [ 93.885965] Bluetooth: hci5: command tx timeout [ 93.949668] Bluetooth: hci4: command tx timeout [ 95.614375] Bluetooth: hci0: command tx timeout [ 95.678370] Bluetooth: hci1: command tx timeout [ 95.741500] Bluetooth: hci2: command tx timeout [ 95.804529] Bluetooth: hci3: command tx timeout [ 95.932542] Bluetooth: hci7: command tx timeout [ 95.933174] Bluetooth: hci5: command tx timeout [ 95.933536] Bluetooth: hci6: command tx timeout [ 95.996400] Bluetooth: hci4: command tx timeout [ 150.112660] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.116283] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.129428] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.131956] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.133913] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.136265] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.139220] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.141763] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.144247] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.149236] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.151508] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.157640] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.157653] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.161010] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.164104] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.169717] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.175962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.179618] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.179689] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.183805] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.187601] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.190210] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.193997] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.196390] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.203715] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.205802] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.207717] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.212525] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.216505] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 150.218906] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.225621] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.230183] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.238532] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.240736] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 150.243989] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.250876] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.269783] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 150.278813] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 150.283789] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 150.301706] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 150.304742] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 150.311997] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.321621] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 150.339841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.342848] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.351573] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.378702] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.387493] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 152.188754] Bluetooth: hci1: command tx timeout [ 152.252808] Bluetooth: hci2: command tx timeout [ 152.252826] Bluetooth: hci0: command tx timeout [ 152.319595] Bluetooth: hci3: command tx timeout [ 152.319919] Bluetooth: hci5: command tx timeout [ 152.319914] Bluetooth: hci4: command tx timeout [ 152.380499] Bluetooth: hci6: command tx timeout [ 152.444546] Bluetooth: hci7: command tx timeout [ 154.238462] Bluetooth: hci1: command tx timeout [ 154.302391] Bluetooth: hci0: command tx timeout [ 154.302471] Bluetooth: hci2: command tx timeout [ 154.364409] Bluetooth: hci3: command tx timeout [ 154.367394] Bluetooth: hci4: command tx timeout [ 154.367522] Bluetooth: hci5: command tx timeout [ 154.428698] Bluetooth: hci6: command tx timeout [ 154.492444] Bluetooth: hci7: command tx timeout [ 156.284551] Bluetooth: hci1: command tx timeout [ 156.349531] Bluetooth: hci2: command tx timeout [ 156.349728] Bluetooth: hci0: command tx timeout [ 156.412640] Bluetooth: hci5: command tx timeout [ 156.413869] Bluetooth: hci4: command tx timeout [ 156.413976] Bluetooth: hci3: command tx timeout [ 156.477454] Bluetooth: hci6: command tx timeout [ 156.541487] Bluetooth: hci7: command tx timeout [ 158.333422] Bluetooth: hci1: command tx timeout [ 158.397424] Bluetooth: hci0: command tx timeout [ 158.397506] Bluetooth: hci2: command tx timeout [ 158.460622] Bluetooth: hci3: command tx timeout [ 158.460849] Bluetooth: hci4: command tx timeout [ 158.461056] Bluetooth: hci5: command tx timeout [ 158.524415] Bluetooth: hci6: command tx timeout [ 158.589245] Bluetooth: hci7: command tx timeout [ 211.974612] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 211.976295] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 211.977812] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 211.986380] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 211.990895] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 211.992440] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.189103] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.192143] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.196180] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.200917] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.205847] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.208296] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.238718] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.241676] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.244641] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.247840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.249451] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.251699] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.296463] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.297191] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.301596] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.303285] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.305004] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.308505] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.374624] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 212.392944] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 212.395785] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.402562] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 212.419698] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.442171] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 212.445971] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 212.457677] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 212.457987] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.460212] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.462223] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 212.466588] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 212.467462] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 212.474567] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 212.476568] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.476991] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.484618] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 212.484899] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 212.497065] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 212.512676] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 212.531583] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 212.537411] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 212.552894] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 212.557552] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 214.012467] Bluetooth: hci0: command tx timeout [ 214.268548] Bluetooth: hci2: command tx timeout [ 214.268660] Bluetooth: hci1: command tx timeout [ 214.332459] Bluetooth: hci3: command tx timeout [ 214.589459] Bluetooth: hci5: command tx timeout [ 214.589483] Bluetooth: hci4: command tx timeout [ 214.652779] Bluetooth: hci6: command tx timeout [ 214.653918] Bluetooth: hci7: command tx timeout [ 216.061808] Bluetooth: hci0: command tx timeout [ 216.316463] Bluetooth: hci1: command tx timeout [ 216.319383] Bluetooth: hci2: command tx timeout [ 216.381652] Bluetooth: hci3: command tx timeout [ 216.636543] Bluetooth: hci4: command tx timeout [ 216.636619] Bluetooth: hci5: command tx timeout [ 216.700439] Bluetooth: hci7: command tx timeout [ 216.701605] Bluetooth: hci6: command tx timeout [ 218.111683] Bluetooth: hci0: command tx timeout [ 218.364421] Bluetooth: hci2: command tx timeout [ 218.365092] Bluetooth: hci1: command tx timeout [ 218.429615] Bluetooth: hci3: command tx timeout [ 218.684540] Bluetooth: hci5: command tx timeout [ 218.685666] Bluetooth: hci4: command tx timeout [ 218.750522] Bluetooth: hci6: command tx timeout [ 218.750705] Bluetooth: hci7: command tx timeout [ 220.156580] Bluetooth: hci0: command tx timeout [ 220.413451] Bluetooth: hci1: command tx timeout [ 220.414159] Bluetooth: hci2: command tx timeout [ 220.476518] Bluetooth: hci3: command tx timeout [ 220.732486] Bluetooth: hci4: command tx timeout [ 220.732650] Bluetooth: hci5: command tx timeout [ 220.796473] Bluetooth: hci7: command tx timeout [ 220.796505] Bluetooth: hci6: command tx timeout [ 274.063337] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 274.067808] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 274.075061] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 274.084159] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 274.087711] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 274.089837] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 274.182634] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 274.194763] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 274.208694] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 274.209474] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 274.218590] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 274.225556] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 274.225955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 274.230176] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 274.233456] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 274.248712] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 274.250946] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 274.251825] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 274.335911] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 274.338718] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 274.341612] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 274.344622] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 274.346253] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 274.347174] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 274.417014] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 274.425242] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 274.426844] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 274.427986] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 274.447765] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 274.450395] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 274.452039] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 274.453188] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 274.455231] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 274.455236] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 274.456572] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 274.461077] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 274.462998] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 274.465614] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 274.466163] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 274.467779] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 274.468166] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 274.481627] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 274.482708] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 274.487533] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 274.491624] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 274.496046] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 274.500771] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 274.532235] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 276.156447] Bluetooth: hci0: command tx timeout [ 276.285461] Bluetooth: hci1: command tx timeout [ 276.286547] Bluetooth: hci2: command tx timeout [ 276.412601] Bluetooth: hci3: command tx timeout [ 276.540871] Bluetooth: hci6: command tx timeout [ 276.542097] Bluetooth: hci7: command tx timeout [ 276.605413] Bluetooth: hci5: command tx timeout [ 276.670466] Bluetooth: hci4: command tx timeout [ 278.206346] Bluetooth: hci0: command tx timeout [ 278.332393] Bluetooth: hci1: command tx timeout [ 278.332956] Bluetooth: hci2: command tx timeout [ 278.461010] Bluetooth: hci3: command tx timeout [ 278.588395] Bluetooth: hci6: command tx timeout [ 278.588965] Bluetooth: hci7: command tx timeout [ 278.652485] Bluetooth: hci5: command tx timeout [ 278.716372] Bluetooth: hci4: command tx timeout [ 280.252398] Bluetooth: hci0: command tx timeout [ 280.380650] Bluetooth: hci1: command tx timeout [ 280.380731] Bluetooth: hci2: command tx timeout [ 280.508631] Bluetooth: hci3: command tx timeout [ 280.636439] Bluetooth: hci6: command tx timeout [ 280.636548] Bluetooth: hci7: command tx timeout [ 280.700604] Bluetooth: hci5: command tx timeout [ 280.765053] Bluetooth: hci4: command tx timeout [ 282.300359] Bluetooth: hci0: command tx timeout [ 282.430330] Bluetooth: hci2: command tx timeout [ 282.430418] Bluetooth: hci1: command tx timeout [ 282.556474] Bluetooth: hci3: command tx timeout [ 282.684519] Bluetooth: hci7: command tx timeout [ 282.685190] Bluetooth: hci6: command tx timeout [ 282.748383] Bluetooth: hci5: command tx timeout [ 282.813351] Bluetooth: hci4: command tx timeout [ 334.988358] [ 334.988616] ====================================================== [ 334.989208] WARNING: possible circular locking dependency detected [ 334.989811] 6.13.0-rc7-next-20250117 #1 Not tainted [ 334.990287] ------------------------------------------------------ [ 334.991465] kworker/u8:1/68 is trying to acquire lock: [ 334.994573] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 334.998592] [ 334.998592] but task is already holding lock: [ 334.999818] ffff888033128768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 335.001921] [ 335.001921] which lock already depends on the new lock. [ 335.001921] [ 335.003590] [ 335.003590] the existing dependency chain (in reverse order) is: [ 335.005144] [ 335.005144] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 335.006618] __mutex_lock+0x13d/0xb50 [ 335.007647] wiphy_register+0x1b2e/0x25d0 [ 335.008756] ieee80211_register_hw+0x23a4/0x3d60 [ 335.009946] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 335.011205] init_mac80211_hwsim+0x389/0x870 [ 335.012380] do_one_initcall+0xf9/0x640 [ 335.013453] kernel_init_freeable+0x53d/0x7a0 [ 335.014626] kernel_init+0x1e/0x2d0 [ 335.015566] ret_from_fork+0x48/0x80 [ 335.016534] ret_from_fork_asm+0x1a/0x30 [ 335.017622] [ 335.017622] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 335.019001] __lock_acquire+0x29fd/0x4580 [ 335.020093] lock_acquire+0x19b/0x520 [ 335.021094] __mutex_lock+0x13d/0xb50 [ 335.022087] unregister_netdevice_many_notify+0x1612/0x1c80 [ 335.023423] unregister_netdevice_queue+0x224/0x2e0 [ 335.024632] _cfg80211_unregister_wdev+0x57b/0x700 [ 335.025845] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 335.027039] ieee80211_unregister_hw+0x55/0x3a0 [ 335.028229] hwsim_exit_net+0x3a0/0x730 [ 335.029247] ops_exit_list+0xb3/0x180 [ 335.030200] cleanup_net+0x546/0xad0 [ 335.031156] process_one_work+0x8ee/0x1a10 [ 335.032264] worker_thread+0x674/0xe70 [ 335.033298] kthread+0x3ab/0x720 [ 335.034220] ret_from_fork+0x48/0x80 [ 335.035163] ret_from_fork_asm+0x1a/0x30 [ 335.036230] [ 335.036230] other info that might help us debug this: [ 335.036230] [ 335.037882] Possible unsafe locking scenario: [ 335.037882] [ 335.039104] CPU0 CPU1 [ 335.040092] ---- ---- [ 335.041096] lock(&rdev->wiphy.mtx); [ 335.041994] lock(rtnl_mutex); [ 335.043287] lock(&rdev->wiphy.mtx); [ 335.044666] lock(rtnl_mutex); [ 335.045440] [ 335.045440] *** DEADLOCK *** [ 335.045440] [ 335.046706] 4 locks held by kworker/u8:1/68: [ 335.047681] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 335.049966] #1: ffff88800f37fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 335.052164] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 335.053478] #3: ffff888033128768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 335.054868] [ 335.054868] stack backtrace: [ 335.055471] CPU: 0 UID: 0 PID: 68 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 335.056527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 335.057277] Workqueue: netns cleanup_net [ 335.057667] Call Trace: [ 335.057904] [ 335.058116] dump_stack_lvl+0xca/0x120 [ 335.058536] print_circular_bug+0x47b/0x750 [ 335.058976] check_noncircular+0x2e9/0x3c0 [ 335.059408] ? lock_repin_lock+0x207/0x320 [ 335.059838] ? __pfx_check_noncircular+0x10/0x10 [ 335.060284] ? hlock_class+0x4e/0x130 [ 335.060663] ? mark_lock+0xac/0xed0 [ 335.061033] ? __pfx_lock_repin_lock+0x10/0x10 [ 335.061510] ? timerqueue_del+0x83/0x150 [ 335.061925] ? lockdep_lock+0xba/0x1b0 [ 335.062317] ? __pfx_lockdep_lock+0x10/0x10 [ 335.062749] __lock_acquire+0x29fd/0x4580 [ 335.063157] ? __pfx___lock_acquire+0x10/0x10 [ 335.063583] ? lock_release+0x20f/0x6f0 [ 335.063973] ? __pfx_lock_release+0x10/0x10 [ 335.064386] lock_acquire+0x19b/0x520 [ 335.064773] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 335.065353] ? __pfx_lock_acquire+0x10/0x10 [ 335.065794] ? srso_return_thunk+0x5/0x5f [ 335.066230] ? lock_release+0x20f/0x6f0 [ 335.066637] ? srso_return_thunk+0x5/0x5f [ 335.067072] ? lock_is_held_type+0x9e/0x120 [ 335.067523] ? srso_return_thunk+0x5/0x5f [ 335.067948] __mutex_lock+0x13d/0xb50 [ 335.068348] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 335.068929] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 335.069500] ? srso_return_thunk+0x5/0x5f [ 335.069946] ? synchronize_rcu_expedited+0x38a/0x420 [ 335.070459] ? __pfx___mutex_lock+0x10/0x10 [ 335.070908] ? __pfx_autoremove_wake_function+0x10/0x10 [ 335.071446] ? srso_return_thunk+0x5/0x5f [ 335.071884] ? kasan_quarantine_put+0x84/0x1e0 [ 335.072363] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 335.072822] ? srso_return_thunk+0x5/0x5f [ 335.073267] unregister_netdevice_many_notify+0x1612/0x1c80 [ 335.073825] ? __virt_addr_valid+0x2e8/0x5d0 [ 335.074283] ? __pfx_lock_release+0x10/0x10 [ 335.074697] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 335.075252] ? find_held_lock+0x2c/0x110 [ 335.075658] ? srso_return_thunk+0x5/0x5f [ 335.076085] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 335.076595] ? srso_return_thunk+0x5/0x5f [ 335.077003] ? lock_release+0x20f/0x6f0 [ 335.077386] ? __pfx_lock_release+0x10/0x10 [ 335.077796] ? srso_return_thunk+0x5/0x5f [ 335.078208] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 335.078730] ? srso_return_thunk+0x5/0x5f [ 335.079168] unregister_netdevice_queue+0x224/0x2e0 [ 335.079651] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 335.080166] ? up_write+0x195/0x520 [ 335.080557] _cfg80211_unregister_wdev+0x57b/0x700 [ 335.081066] ? srso_return_thunk+0x5/0x5f [ 335.081513] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 335.082013] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 335.082560] ? srso_return_thunk+0x5/0x5f [ 335.082993] ? srso_return_thunk+0x5/0x5f [ 335.083424] ? synchronize_rcu+0x1ff/0x260 [ 335.083868] ieee80211_unregister_hw+0x55/0x3a0 [ 335.084341] hwsim_exit_net+0x3a0/0x730 [ 335.084745] ? __pfx_hwsim_exit_net+0x10/0x10 [ 335.085186] ? srso_return_thunk+0x5/0x5f [ 335.085599] ? netdev_run_todo+0x788/0x1040 [ 335.086013] ? __pfx_hwsim_exit_net+0x10/0x10 [ 335.086439] ops_exit_list+0xb3/0x180 [ 335.086834] cleanup_net+0x546/0xad0 [ 335.087219] ? __pfx_cleanup_net+0x10/0x10 [ 335.087655] process_one_work+0x8ee/0x1a10 [ 335.088121] ? __pfx_lock_acquire+0x10/0x10 [ 335.088567] ? __pfx_process_one_work+0x10/0x10 [ 335.089058] ? srso_return_thunk+0x5/0x5f [ 335.089491] ? move_linked_works+0x172/0x270 [ 335.089941] ? srso_return_thunk+0x5/0x5f [ 335.090374] ? assign_work+0x196/0x240 [ 335.090797] worker_thread+0x674/0xe70 [ 335.091197] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 335.091696] ? srso_return_thunk+0x5/0x5f [ 335.092139] ? __pfx_worker_thread+0x10/0x10 [ 335.092612] kthread+0x3ab/0x720 [ 335.092982] ? __pfx_kthread+0x10/0x10 [ 335.093400] ? srso_return_thunk+0x5/0x5f [ 335.093815] ? finish_task_switch.isra.0+0x206/0x840 [ 335.094298] ? __pfx_kthread+0x10/0x10 [ 335.094686] ret_from_fork+0x48/0x80 [ 335.095036] ? __pfx_kthread+0x10/0x10 [ 335.095432] ret_from_fork_asm+0x1a/0x30 [ 335.095884] [ 336.522244] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 336.522753] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 336.523382] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 336.523946] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 336.527541] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 336.528606] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 336.529154] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 336.536001] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 336.546669] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 336.556448] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 336.560746] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 336.565542] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 336.653070] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 336.656467] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 336.659159] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 336.662035] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 336.668950] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 336.669585] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 336.674183] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 336.676630] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 336.679592] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 336.682625] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 336.689637] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 336.689951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 336.707855] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 336.712979] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 336.716453] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 336.716776] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 336.718808] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 336.720156] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 336.812826] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 336.826959] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 336.830780] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 336.834554] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 336.849366] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 336.851693] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 336.855718] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 336.855854] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 336.859149] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 336.864219] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 336.866732] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 336.870687] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 336.872461] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 336.875877] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 336.877673] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 336.879510] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 336.915666] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 336.916601] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 338.556327] Bluetooth: hci0: command tx timeout [ 338.621396] Bluetooth: hci1: command tx timeout [ 338.748362] Bluetooth: hci2: command tx timeout [ 338.812400] Bluetooth: hci4: command tx timeout [ 338.877092] Bluetooth: hci3: command tx timeout [ 338.940625] Bluetooth: hci6: command tx timeout [ 339.004351] Bluetooth: hci7: command tx timeout [ 339.004437] Bluetooth: hci5: command tx timeout [ 340.604336] Bluetooth: hci0: command tx timeout [ 340.668336] Bluetooth: hci1: command tx timeout [ 340.796563] Bluetooth: hci2: command tx timeout [ 340.860452] Bluetooth: hci4: command tx timeout [ 340.924350] Bluetooth: hci3: command tx timeout [ 340.988427] Bluetooth: hci6: command tx timeout [ 341.052367] Bluetooth: hci7: command tx timeout [ 341.052450] Bluetooth: hci5: command tx timeout [ 342.652324] Bluetooth: hci0: command tx timeout [ 342.717188] Bluetooth: hci1: command tx timeout [ 342.844427] Bluetooth: hci2: command tx timeout [ 342.908387] Bluetooth: hci4: command tx timeout [ 342.972403] Bluetooth: hci3: command tx timeout [ 343.036352] Bluetooth: hci6: command tx timeout [ 343.100344] Bluetooth: hci7: command tx timeout [ 343.100421] Bluetooth: hci5: command tx timeout [ 344.700809] Bluetooth: hci0: command tx timeout [ 344.764424] Bluetooth: hci1: command tx timeout [ 344.892659] Bluetooth: hci2: command tx timeout [ 344.956540] Bluetooth: hci4: command tx timeout VM DIAGNOSIS: 07:06:06 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff8283cd30 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800f37eb20 R8 =0000000000000000 R9 =fffffbfff0be1544 R10=00000000000fe503 R11=2f72656b726f776b R12=0000000000000823 R13=0000000000000060 R14=fffffbfff10d2666 R15=dffffc0000000000 RIP=ffffffff8283cd85 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f305d5b86c0 CR3=000000000d7a2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004183ae4a80000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffff88806cf00000 RBX=0000000000000001 RCX=ffffffff84a8bb27 RDX=ffffed100d9e6c4b RSI=0000000000000004 RDI=ffffffff814b1b6a RBP=dffffc0000000000 RSP=ffff8880096a7e68 R8 =0000000000000000 R9 =ffffed100d9e6c4a R10=ffff88806cf36253 R11=0000000000000000 R12=ffffffff864021d0 R13=1ffff110012d4fd2 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff84a8cace RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe2800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000564366085c80 CR3=000000000c382000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=0000000300000000000055f4d866c9c0 XMM05=000055f4d86a9e40000055f4d86ae280 XMM06=000055f4d86ba4100000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000