Warning: Permanently added '[localhost]:62436' (ECDSA) to the list of known hosts. 2025/01/18 07:55:53 fuzzer started 2025/01/18 07:55:54 dialing manager at localhost:44245 syzkaller login: [ 70.470686] cgroup: Unknown subsys name 'net' [ 70.589942] cgroup: Unknown subsys name 'cpuset' [ 70.624525] cgroup: Unknown subsys name 'rlimit' [ 75.159232] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 84.656438] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 07:56:08 syscalls: 2217 2025/01/18 07:56:08 code coverage: enabled 2025/01/18 07:56:08 comparison tracing: enabled 2025/01/18 07:56:08 extra coverage: enabled 2025/01/18 07:56:08 setuid sandbox: enabled 2025/01/18 07:56:08 namespace sandbox: enabled 2025/01/18 07:56:08 Android sandbox: enabled 2025/01/18 07:56:08 fault injection: enabled 2025/01/18 07:56:08 leak checking: enabled 2025/01/18 07:56:08 net packet injection: enabled 2025/01/18 07:56:08 net device setup: enabled 2025/01/18 07:56:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 07:56:08 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 07:56:08 USB emulation: enabled 2025/01/18 07:56:08 hci packet injection: enabled 2025/01/18 07:56:08 wifi device emulation: enabled 2025/01/18 07:56:08 802.15.4 emulation: enabled 2025/01/18 07:56:08 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 07:56:09 fetching corpus: 50, signal 30295/32811 (executing program) 2025/01/18 07:56:09 fetching corpus: 100, signal 45632/48255 (executing program) 2025/01/18 07:56:09 fetching corpus: 150, signal 51817/54728 (executing program) 2025/01/18 07:56:09 fetching corpus: 200, signal 59429/62117 (executing program) 2025/01/18 07:56:10 fetching corpus: 250, signal 62791/65526 (executing program) 2025/01/18 07:56:10 fetching corpus: 300, signal 67324/69724 (executing program) 2025/01/18 07:56:10 fetching corpus: 350, signal 69292/71626 (executing program) 2025/01/18 07:56:10 fetching corpus: 400, signal 72178/74162 (executing program) 2025/01/18 07:56:10 fetching corpus: 450, signal 74148/75848 (executing program) 2025/01/18 07:56:11 fetching corpus: 500, signal 78050/78835 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79630 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79678 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79734 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79790 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79831 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79873 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79914 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79955 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/79999 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80053 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80099 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80149 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80191 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80241 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80284 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80337 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80387 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80431 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80477 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80528 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80577 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80615 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80660 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80711 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80756 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80801 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80846 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80892 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80940 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 07:56:11 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 07:56:14 starting 8 fuzzer processes 07:56:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000006c0)={0x30, r4, 0x1, 0x0, 0x0, {{0x55}, {@val={0x8, 0x1, 0x80}, @val={0x8, 0x3, r3}, @val={0xc}}}}, 0x30}}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x30, r5, 0x1, 0x0, 0x0, {{0x55}, {@val={0x8, 0x1, 0x80}, @val={0x8, 0x3, r1}, @val={0xc}}}}, 0x30}}, 0x0) 07:56:15 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) fstat(r1, &(0x7f0000004a40)={0x0, 0x0, 0x0, 0x0, 0x0}) setuid(r2) ioctl$TUNSETSNDBUF(r0, 0x894c, 0x0) 07:56:15 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x5412, &(0x7f0000000080)=""/54) 07:56:15 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000280), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SEG6_CMD_SET_TUNSRC(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x28, r0, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_DST={0x14, 0x1, @remote}]}, 0x28}}, 0x0) [ 91.141400] audit: type=1400 audit(1737186975.112:7): avc: denied { execmem } for pid=276 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:56:15 executing program 4: prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) 07:56:15 executing program 5: r0 = memfd_create(&(0x7f00000002c0)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLK\xa4g?K)\xa0\xf0\x9b8Y\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x00\x00\x00\x00\x00\x04\x00\x00\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x05\x00\x80\xa1z\xb4r\x95\xc3@\x99\xa6\xf1\xff#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48E\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x80L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x04\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb62\x93\x00\x00\x00\x00\x00\x00\x00\xaaU\\\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@\xb6\x86U\xa7\xd4}\xaaU\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9b\v\xc7^QD1\x1a\x19\x0f\a\x00\x00\x00\x00\x00\x00\x00\xc1\x10\xf273\x01\x00\xb3_\xe8\x9a*\xfcLW;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xee\xc0\b\x83\x98X\xa8\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\x01\x01\x00\x00xK\x00\x00\x00\x00\b$\xa2x\x8a@K\xcb,T\x12\f\x17\xaaP\"\xfaj~\xef\x93\xb1/\\\x01\xe2\xba\x0e\xe3\xf95\x1d\x10\xa7\x97\xbf\x8e\xac\x81\xc9\x13\x8e\xb3\xf3\xb5d\xa1\xcf\x1d\x92\x9b\x9b\xa7\x12F\xa0\xe0\xff\x1a\x8e\xe2ae^=\n\xe1\xa6\xb8\xe9v\x8f2\xf4\xac\xe5\xdf\xffi`Mo\x1e\x1cMN<\x1b\x1d\xd5\x01n\xa7~\x8b\x90/62\xff;.S\xf7\x0flwa\x16\xf0\xf2(\x96V,\xd7s\xaaOE\xd3H\xfd`}\xd8\xbc\x9a\xca\xe3\n\xd7fCe\xd8\xbb\xdao\xb0\x85\xcc\xedv\x94\xb5\xc4\xb6[>\xb9,\xfch_-s\x02,F\x15\xd8J\x9am5>\x94\x84\xf5\x00\xc3\xf6m\xc7B\t{\xe0d\xc65(\x18\x9c\xad\x13b6\xca\x16\x95\xcb^zF\xd0\x1a\x8dP\x94\x19\xa4\xbfr=\xb6\xae\xa5I7}/\xa1#\xd2\xa5\t\xbeHH\xe3y\xf6r0uFM\xa5\x85\xc3CBW\xa3\xff\xf0#2$*b\r\x18\x95<\xb5\xd3\xaf\xae\xc2\xb2\xa3K\x19\xe7H+p\x97H\xf3Z\xfdb!\\Df\x8e\xf4j\xda~$\xd9=\xea\xc5\x16\x04\x92\x93\r\xf2\xc4g\xd5cQ\xe18\xdeY\xf6\x18~\x1e$\x93nl\x80\xd6\xb1D\xa4@\xe5\x00'/691, 0xa) ftruncate(r0, 0x0) 07:56:15 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) fchmodat(0xffffffffffffffff, 0x0, 0x0) 07:56:15 executing program 7: r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000300)={0x53, 0x0, 0xa, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="ed60d34e28d73e8a10f0", &(0x7f0000000240)=""/73, 0x0, 0x0, 0x0, 0x0}) [ 92.626002] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.632037] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.636948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.642686] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.647657] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.650281] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.753187] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.761076] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.763424] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.772109] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.781495] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.790333] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.792543] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.805000] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.836058] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.855379] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.861642] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.865282] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.901335] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.904234] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.905608] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.909128] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.923580] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.926771] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.929367] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.934799] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.938619] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.940680] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.947237] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.956325] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.958821] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.959829] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 92.965172] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.965554] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.978260] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.982800] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.988436] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.988758] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.989631] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.993621] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 93.000357] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 93.006279] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 93.008797] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 93.017528] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 93.034243] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 93.041635] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 93.099263] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 93.100566] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 94.712363] Bluetooth: hci0: command tx timeout [ 94.838023] Bluetooth: hci1: command tx timeout [ 94.902093] Bluetooth: hci2: command tx timeout [ 95.030234] Bluetooth: hci6: command tx timeout [ 95.093388] Bluetooth: hci4: command tx timeout [ 95.093697] Bluetooth: hci3: command tx timeout [ 95.094197] Bluetooth: hci5: command tx timeout [ 95.157075] Bluetooth: hci7: command tx timeout [ 96.757045] Bluetooth: hci0: command tx timeout [ 96.885933] Bluetooth: hci1: command tx timeout [ 96.948940] Bluetooth: hci2: command tx timeout [ 97.077923] Bluetooth: hci6: command tx timeout [ 97.141146] Bluetooth: hci5: command tx timeout [ 97.141773] Bluetooth: hci3: command tx timeout [ 97.141895] Bluetooth: hci4: command tx timeout [ 97.206261] Bluetooth: hci7: command tx timeout [ 98.805938] Bluetooth: hci0: command tx timeout [ 98.933094] Bluetooth: hci1: command tx timeout [ 98.996960] Bluetooth: hci2: command tx timeout [ 99.124965] Bluetooth: hci6: command tx timeout [ 99.189009] Bluetooth: hci4: command tx timeout [ 99.189096] Bluetooth: hci3: command tx timeout [ 99.189145] Bluetooth: hci5: command tx timeout [ 99.253100] Bluetooth: hci7: command tx timeout [ 100.854928] Bluetooth: hci0: command tx timeout [ 100.980953] Bluetooth: hci1: command tx timeout [ 101.045174] Bluetooth: hci2: command tx timeout [ 101.173094] Bluetooth: hci6: command tx timeout [ 101.237012] Bluetooth: hci5: command tx timeout [ 101.237115] Bluetooth: hci3: command tx timeout [ 101.237206] Bluetooth: hci4: command tx timeout [ 101.300986] Bluetooth: hci7: command tx timeout [ 154.692487] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.696656] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.702280] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.719449] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.723711] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.724777] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.834269] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.836518] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.841403] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.852339] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.869114] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.873532] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.885914] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.892132] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.893550] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.896662] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.898601] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.919440] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 155.107302] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 155.109672] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 155.112575] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 155.117567] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 155.121003] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 155.123364] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 155.140168] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 155.157209] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 155.162809] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 155.168975] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 155.176696] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 155.178765] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.238013] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 155.244463] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 155.247822] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 155.258458] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 155.266117] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 155.272028] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 155.285474] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 155.290237] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 155.291089] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 155.299362] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 155.300763] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 155.302130] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 155.306139] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 155.307621] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 155.370303] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 155.430275] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 155.441173] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 155.450408] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.791237] Bluetooth: hci0: command tx timeout [ 156.916997] Bluetooth: hci1: command tx timeout [ 156.980985] Bluetooth: hci2: command tx timeout [ 157.174621] Bluetooth: hci3: command tx timeout [ 157.237060] Bluetooth: hci4: command tx timeout [ 157.368488] Bluetooth: hci5: command tx timeout [ 157.429106] Bluetooth: hci6: command tx timeout [ 157.621001] Bluetooth: hci7: command tx timeout [ 158.837233] Bluetooth: hci0: command tx timeout [ 158.966030] Bluetooth: hci1: command tx timeout [ 159.028983] Bluetooth: hci2: command tx timeout [ 159.221147] Bluetooth: hci3: command tx timeout [ 159.286013] Bluetooth: hci4: command tx timeout [ 159.414944] Bluetooth: hci5: command tx timeout [ 159.476923] Bluetooth: hci6: command tx timeout [ 159.669932] Bluetooth: hci7: command tx timeout [ 160.886219] Bluetooth: hci0: command tx timeout [ 161.012924] Bluetooth: hci1: command tx timeout [ 161.076944] Bluetooth: hci2: command tx timeout [ 161.268958] Bluetooth: hci3: command tx timeout [ 161.333974] Bluetooth: hci4: command tx timeout [ 161.460922] Bluetooth: hci5: command tx timeout [ 161.525025] Bluetooth: hci6: command tx timeout [ 161.717072] Bluetooth: hci7: command tx timeout [ 162.934042] Bluetooth: hci0: command tx timeout [ 163.062904] Bluetooth: hci1: command tx timeout [ 163.127376] Bluetooth: hci2: command tx timeout [ 163.317009] Bluetooth: hci3: command tx timeout [ 163.381987] Bluetooth: hci4: command tx timeout [ 163.508945] Bluetooth: hci5: command tx timeout [ 163.573013] Bluetooth: hci6: command tx timeout [ 163.765936] Bluetooth: hci7: command tx timeout [ 215.214740] [ 215.215003] ====================================================== [ 215.215594] WARNING: possible circular locking dependency detected [ 215.216163] 6.13.0-rc7-next-20250117 #1 Not tainted [ 215.216646] ------------------------------------------------------ [ 215.220863] kworker/u8:0/11 is trying to acquire lock: [ 215.221337] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.222282] [ 215.222282] but task is already holding lock: [ 215.222808] ffff88802d850768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.223712] [ 215.223712] which lock already depends on the new lock. [ 215.223712] [ 215.224467] [ 215.224467] the existing dependency chain (in reverse order) is: [ 215.225164] [ 215.225164] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 215.225822] __mutex_lock+0x13d/0xb50 [ 215.226257] wiphy_register+0x1b2e/0x25d0 [ 215.226714] ieee80211_register_hw+0x23a4/0x3d60 [ 215.227217] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 215.227775] init_mac80211_hwsim+0x389/0x870 [ 215.228301] do_one_initcall+0xf9/0x640 [ 215.228771] kernel_init_freeable+0x53d/0x7a0 [ 215.229280] kernel_init+0x1e/0x2d0 [ 215.229687] ret_from_fork+0x48/0x80 [ 215.230107] ret_from_fork_asm+0x1a/0x30 [ 215.230608] [ 215.230608] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 215.231225] __lock_acquire+0x29fd/0x4580 [ 215.231698] lock_acquire+0x19b/0x520 [ 215.232130] __mutex_lock+0x13d/0xb50 [ 215.232581] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.233173] unregister_netdevice_queue+0x224/0x2e0 [ 215.233703] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.234236] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.234765] ieee80211_unregister_hw+0x55/0x3a0 [ 215.235270] hwsim_exit_net+0x3a0/0x730 [ 215.235718] ops_exit_list+0xb3/0x180 [ 215.236155] cleanup_net+0x546/0xad0 [ 215.236588] process_one_work+0x8ee/0x1a10 [ 215.237085] worker_thread+0x674/0xe70 [ 215.237551] kthread+0x3ab/0x720 [ 215.237961] ret_from_fork+0x48/0x80 [ 215.238392] ret_from_fork_asm+0x1a/0x30 [ 215.238883] [ 215.238883] other info that might help us debug this: [ 215.238883] [ 215.239626] Possible unsafe locking scenario: [ 215.239626] [ 215.240196] CPU0 CPU1 [ 215.240636] ---- ---- [ 215.241074] lock(&rdev->wiphy.mtx); [ 215.241469] lock(rtnl_mutex); [ 215.242029] lock(&rdev->wiphy.mtx); [ 215.242634] lock(rtnl_mutex); [ 215.242982] [ 215.242982] *** DEADLOCK *** [ 215.242982] [ 215.243547] 4 locks held by kworker/u8:0/11: [ 215.243987] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 215.245004] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 215.245955] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 215.246835] #3: ffff88802d850768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.247830] [ 215.247830] stack backtrace: [ 215.248266] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 215.249060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 215.249830] Workqueue: netns cleanup_net [ 215.250242] Call Trace: [ 215.250494] [ 215.250718] dump_stack_lvl+0xca/0x120 [ 215.251136] print_circular_bug+0x47b/0x750 [ 215.251571] check_noncircular+0x2e9/0x3c0 [ 215.251998] ? lock_repin_lock+0x207/0x320 [ 215.252453] ? __pfx_check_noncircular+0x10/0x10 [ 215.252928] ? hlock_class+0x4e/0x130 [ 215.253309] ? mark_lock+0xac/0xed0 [ 215.253680] ? __pfx_lock_repin_lock+0x10/0x10 [ 215.254156] ? lockdep_lock+0xba/0x1b0 [ 215.254565] ? __pfx_lockdep_lock+0x10/0x10 [ 215.255020] __lock_acquire+0x29fd/0x4580 [ 215.255453] ? __pfx___lock_acquire+0x10/0x10 [ 215.255910] ? lock_release+0x20f/0x6f0 [ 215.256328] ? __pfx_lock_release+0x10/0x10 [ 215.256770] lock_acquire+0x19b/0x520 [ 215.257164] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.257744] ? __pfx_lock_acquire+0x10/0x10 [ 215.258179] ? srso_return_thunk+0x5/0x5f [ 215.258587] ? lock_release+0x20f/0x6f0 [ 215.258970] ? srso_return_thunk+0x5/0x5f [ 215.259377] ? lock_is_held_type+0x9e/0x120 [ 215.259800] ? srso_return_thunk+0x5/0x5f [ 215.260219] __mutex_lock+0x13d/0xb50 [ 215.260621] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.261196] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.261777] ? srso_return_thunk+0x5/0x5f [ 215.262193] ? synchronize_rcu_expedited+0x38a/0x420 [ 215.262665] ? __pfx___mutex_lock+0x10/0x10 [ 215.263090] ? __pfx_autoremove_wake_function+0x10/0x10 [ 215.263625] ? srso_return_thunk+0x5/0x5f [ 215.264062] ? kasan_quarantine_put+0x84/0x1e0 [ 215.264552] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 215.265007] ? srso_return_thunk+0x5/0x5f [ 215.265437] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.265996] ? __virt_addr_valid+0x2e8/0x5d0 [ 215.266457] ? __pfx_lock_release+0x10/0x10 [ 215.266894] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 215.267477] ? find_held_lock+0x2c/0x110 [ 215.267889] ? srso_return_thunk+0x5/0x5f [ 215.268315] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 215.268820] ? srso_return_thunk+0x5/0x5f [ 215.269261] ? lock_release+0x20f/0x6f0 [ 215.269670] ? __pfx_lock_release+0x10/0x10 [ 215.270078] ? srso_return_thunk+0x5/0x5f [ 215.270507] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.271036] ? srso_return_thunk+0x5/0x5f [ 215.271470] unregister_netdevice_queue+0x224/0x2e0 [ 215.271976] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 215.272521] ? up_write+0x195/0x520 [ 215.272915] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.273417] ? srso_return_thunk+0x5/0x5f [ 215.273856] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.274358] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 215.274902] ? srso_return_thunk+0x5/0x5f [ 215.275335] ? srso_return_thunk+0x5/0x5f [ 215.275756] ? synchronize_rcu+0x1ff/0x260 [ 215.276165] ieee80211_unregister_hw+0x55/0x3a0 [ 215.276602] hwsim_exit_net+0x3a0/0x730 [ 215.276981] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.277426] ? srso_return_thunk+0x5/0x5f [ 215.277860] ? netdev_run_todo+0x788/0x1040 [ 215.278302] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.278760] ops_exit_list+0xb3/0x180 [ 215.279158] cleanup_net+0x546/0xad0 [ 215.279546] ? __pfx_cleanup_net+0x10/0x10 [ 215.279984] process_one_work+0x8ee/0x1a10 [ 215.280445] ? __pfx_lock_acquire+0x10/0x10 [ 215.280883] ? __pfx_process_one_work+0x10/0x10 [ 215.281371] ? srso_return_thunk+0x5/0x5f [ 215.281793] ? move_linked_works+0x172/0x270 [ 215.282211] ? srso_return_thunk+0x5/0x5f [ 215.282618] ? assign_work+0x196/0x240 [ 215.283006] worker_thread+0x674/0xe70 [ 215.283395] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.283893] ? __pfx_worker_thread+0x10/0x10 [ 215.284332] kthread+0x3ab/0x720 [ 215.284679] ? __pfx_kthread+0x10/0x10 [ 215.285072] ? srso_return_thunk+0x5/0x5f [ 215.285488] ? finish_task_switch.isra.0+0x206/0x840 [ 215.285986] ? __pfx_kthread+0x10/0x10 [ 215.286384] ret_from_fork+0x48/0x80 [ 215.286745] ? __pfx_kthread+0x10/0x10 [ 215.287141] ret_from_fork_asm+0x1a/0x30 [ 215.287567] [ 216.912696] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.916985] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.918192] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.919601] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.920586] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.921763] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.922559] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.923645] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.923804] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.926685] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.927624] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.929636] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 216.930792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 216.932104] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.934701] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.935798] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.936262] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 216.939845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.972009] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 216.973120] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 216.975284] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 216.979746] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 216.982243] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 216.984277] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 216.985635] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 216.988471] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.001317] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 217.012520] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 217.020099] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 217.035037] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.173252] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.176508] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.179089] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.180323] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.185253] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.189257] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.190317] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.192131] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.209930] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.229362] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.232059] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.234767] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.240524] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.244352] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.245580] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 217.260631] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.271219] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.273458] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 218.997927] Bluetooth: hci0: command tx timeout [ 218.998000] Bluetooth: hci2: command tx timeout [ 218.998067] Bluetooth: hci1: command tx timeout [ 219.061089] Bluetooth: hci3: command tx timeout [ 219.191896] Bluetooth: hci4: command tx timeout [ 219.253938] Bluetooth: hci7: command tx timeout [ 219.254038] Bluetooth: hci6: command tx timeout [ 219.381910] Bluetooth: hci5: command tx timeout [ 221.044923] Bluetooth: hci2: command tx timeout [ 221.045021] Bluetooth: hci1: command tx timeout [ 221.045080] Bluetooth: hci0: command tx timeout [ 221.110865] Bluetooth: hci3: command tx timeout [ 221.236892] Bluetooth: hci4: command tx timeout [ 221.300902] Bluetooth: hci6: command tx timeout [ 221.300970] Bluetooth: hci7: command tx timeout [ 221.431869] Bluetooth: hci5: command tx timeout [ 223.092887] Bluetooth: hci2: command tx timeout [ 223.093455] Bluetooth: hci0: command tx timeout [ 223.093566] Bluetooth: hci1: command tx timeout [ 223.156874] Bluetooth: hci3: command tx timeout [ 223.286156] Bluetooth: hci4: command tx timeout [ 223.349145] Bluetooth: hci6: command tx timeout [ 223.349168] Bluetooth: hci7: command tx timeout [ 223.479029] Bluetooth: hci5: command tx timeout [ 225.141885] Bluetooth: hci2: command tx timeout [ 225.141971] Bluetooth: hci1: command tx timeout [ 225.141984] Bluetooth: hci0: command tx timeout [ 225.204882] Bluetooth: hci3: command tx timeout VM DIAGNOSIS: 07:58:19 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095debb8 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea011 R15=ffff8880095deeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055b00bbc0de8 CR3=000000000dcaa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000c0001b8a00000000c0001b4380 XMM02=000000c0001b4380000000c0001da000 XMM03=000000c0001e9000000000c0001b8a00 XMM04=000000c000155f20000000c000155ef0 XMM05=000000c000155f80000000c000155f50 XMM06=000000c000166000000000c000155fb0 XMM07=000000c000165760000000c00005d380 XMM08=000000c000166360000000c000166330 XMM09=000000c0001663c0000000c000166390 XMM10=000000c0001663f0000000c00005d3e0 XMM11=000000c000166450000000c000166420 XMM12=000000c0001664b0000000c000166480 XMM13=000000c000166510000000c0001664e0 XMM14=000000c000166570000000c000166540 XMM15=000000c000101080000000c0001665a0 info registers vcpu 1 RAX=0000000000000000 RBX=dead000000000100 RCX=1ffffffff0c805ee RDX=0000000000000000 RSI=000000000000062d RDI=ffff88800bbc5d20 RBP=ffffffff8862a8b0 RSP=ffff88800f207e00 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff864021d7 R11=ffff88800bbc57f8 R12=ffff88800bbc5340 R13=ffff88806db5f000 R14=0000000000000246 R15=ffff88806dc00000 RIP=ffffffff84a99264 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f37c6c845c0 CR3=000000000c560000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6b82f1b9283d75bc7a456731b4fd73ce XMM02=00000000000fda88d12871896912de2d XMM03=0000000000138828f9980df3bdc2dbad XMM04=6b7b57b61697e74500000000000ae988 XMM05=3cc027b654ebc5060000000000140b28 XMM06=9f165a4fe6c971ad0000000000138930 XMM07=711fbe8126c5d3440000000000138828 XMM08=68a8aee3740b9fad00000000000fda88 XMM09=00000000000000000000000000000000 XMM10=00200000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000