Warning: Permanently added '[localhost]:18595' (ECDSA) to the list of known hosts. 2025/01/18 09:33:23 fuzzer started 2025/01/18 09:33:23 dialing manager at localhost:44245 syzkaller login: [ 77.958165] cgroup: Unknown subsys name 'net' [ 78.068980] cgroup: Unknown subsys name 'cpuset' [ 78.109488] cgroup: Unknown subsys name 'rlimit' [ 84.573486] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 94.723037] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 09:33:41 syscalls: 2217 2025/01/18 09:33:41 code coverage: enabled 2025/01/18 09:33:41 comparison tracing: enabled 2025/01/18 09:33:41 extra coverage: enabled 2025/01/18 09:33:41 setuid sandbox: enabled 2025/01/18 09:33:41 namespace sandbox: enabled 2025/01/18 09:33:41 Android sandbox: enabled 2025/01/18 09:33:41 fault injection: enabled 2025/01/18 09:33:41 leak checking: enabled 2025/01/18 09:33:41 net packet injection: enabled 2025/01/18 09:33:41 net device setup: enabled 2025/01/18 09:33:41 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 09:33:41 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 09:33:41 USB emulation: enabled 2025/01/18 09:33:41 hci packet injection: enabled 2025/01/18 09:33:41 wifi device emulation: enabled 2025/01/18 09:33:41 802.15.4 emulation: enabled 2025/01/18 09:33:41 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 09:33:41 fetching corpus: 50, signal 31738/34222 (executing program) 2025/01/18 09:33:41 fetching corpus: 100, signal 41437/44435 (executing program) 2025/01/18 09:33:41 fetching corpus: 150, signal 46586/50051 (executing program) 2025/01/18 09:33:41 fetching corpus: 200, signal 50905/54652 (executing program) 2025/01/18 09:33:42 fetching corpus: 250, signal 55353/59168 (executing program) 2025/01/18 09:33:42 fetching corpus: 300, signal 61249/64742 (executing program) 2025/01/18 09:33:42 fetching corpus: 350, signal 64533/67818 (executing program) 2025/01/18 09:33:42 fetching corpus: 400, signal 69405/72009 (executing program) 2025/01/18 09:33:43 fetching corpus: 450, signal 74649/76267 (executing program) 2025/01/18 09:33:43 fetching corpus: 500, signal 77908/78744 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79645 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79700 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79735 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79775 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79836 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79880 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79920 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/79967 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80005 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80049 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80104 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80160 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80213 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80261 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80305 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80344 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80396 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80445 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80498 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80539 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80585 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80628 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80676 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80719 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80768 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80814 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80867 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80908 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80945 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 09:33:43 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 09:33:46 starting 8 fuzzer processes 09:33:46 executing program 0: r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$netlink(r0, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000002700)=[{&(0x7f00000000c0)={0x14, 0x10, 0x0, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0) 09:33:46 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendto(r0, &(0x7f0000000740)="83", 0x1, 0x0, &(0x7f0000001740)=@un=@file={0x0, './file0\x00'}, 0x7ffffffff000) 09:33:46 executing program 2: clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) clock_nanosleep(0x8, 0x1, &(0x7f0000001240)={r0, r1+10000000}, 0x0) 09:33:46 executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 09:33:46 executing program 4: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)=0x40) fstat(r0, &(0x7f0000000040)) 09:33:46 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001ac0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000083c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003380)=ANY=[@ANYBLOB="14"], 0x18}}], 0x1, 0x0) stat(&(0x7f0000000400)='./file0/file0\x00', 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000004, 0x813, r2, 0x0) write(r2, &(0x7f0000000200)='E', 0x140000) recvmmsg$unix(r0, &(0x7f0000002e00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}], 0x1, 0x0, 0x0) [ 100.485686] audit: type=1400 audit(1737192826.608:7): avc: denied { execmem } for pid=274 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:33:46 executing program 7: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0x12, &(0x7f0000001740), &(0x7f0000001780)=0x4) 09:33:46 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 101.733242] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 101.736440] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 101.738944] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 101.745305] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 101.748662] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 101.753983] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 101.789687] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 101.795053] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 101.799651] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 101.807162] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 101.822187] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 101.827054] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 101.862217] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 101.869205] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 101.895155] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 101.897903] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 101.899940] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 101.902256] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 101.910188] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 101.912347] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 101.916223] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 101.916325] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 101.922789] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 101.950198] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 101.987019] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 102.004575] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 102.012785] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 102.036779] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 102.054201] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 102.064180] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 102.065171] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 102.075311] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 102.085897] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 102.088441] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 102.091755] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 102.093891] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 102.097865] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 102.101715] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 102.103726] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 102.120262] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 102.123304] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 102.129875] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 102.131916] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 102.186961] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 102.198385] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 102.256989] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 102.260143] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 102.265729] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 103.800670] Bluetooth: hci0: command tx timeout [ 103.863949] Bluetooth: hci1: command tx timeout [ 103.994561] Bluetooth: hci3: command tx timeout [ 104.059573] Bluetooth: hci2: command tx timeout [ 104.183671] Bluetooth: hci4: command tx timeout [ 104.247589] Bluetooth: hci5: command tx timeout [ 104.248658] Bluetooth: hci6: command tx timeout [ 104.375630] Bluetooth: hci7: command tx timeout [ 105.849645] Bluetooth: hci0: command tx timeout [ 105.911887] Bluetooth: hci1: command tx timeout [ 106.039687] Bluetooth: hci3: command tx timeout [ 106.103670] Bluetooth: hci2: command tx timeout [ 106.231696] Bluetooth: hci4: command tx timeout [ 106.296226] Bluetooth: hci6: command tx timeout [ 106.296248] Bluetooth: hci5: command tx timeout [ 106.424654] Bluetooth: hci7: command tx timeout [ 107.897566] Bluetooth: hci0: command tx timeout [ 107.959800] Bluetooth: hci1: command tx timeout [ 108.087610] Bluetooth: hci3: command tx timeout [ 108.151582] Bluetooth: hci2: command tx timeout [ 108.279574] Bluetooth: hci4: command tx timeout [ 108.343750] Bluetooth: hci6: command tx timeout [ 108.343772] Bluetooth: hci5: command tx timeout [ 108.471630] Bluetooth: hci7: command tx timeout [ 109.945687] Bluetooth: hci0: command tx timeout [ 110.007603] Bluetooth: hci1: command tx timeout [ 110.135975] Bluetooth: hci3: command tx timeout [ 110.199711] Bluetooth: hci2: command tx timeout [ 110.327618] Bluetooth: hci4: command tx timeout [ 110.391712] Bluetooth: hci6: command tx timeout [ 110.392010] Bluetooth: hci5: command tx timeout [ 110.521552] Bluetooth: hci7: command tx timeout [ 164.039976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 164.046432] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 164.048543] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 164.063121] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 164.069770] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 164.070440] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 164.368065] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 164.370337] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 164.374632] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 164.385018] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 164.393036] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 164.397570] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 164.438196] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 164.444136] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 164.444882] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 164.454153] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 164.454568] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 164.455646] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 164.474754] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 164.479353] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 164.488063] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 164.488471] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 164.493660] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 164.499596] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 164.544291] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 164.549540] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 164.552284] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 164.557817] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 164.562057] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 164.563764] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 164.586933] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 164.594920] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 164.596462] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 164.598355] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 164.605922] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 164.606116] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 164.609921] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 164.614675] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 164.620182] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 164.625624] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 164.625813] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 164.632775] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 164.644670] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 164.648393] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 164.649246] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 164.662866] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 164.663105] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 164.664451] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 166.137599] Bluetooth: hci0: command tx timeout [ 166.457583] Bluetooth: hci1: command tx timeout [ 166.520717] Bluetooth: hci3: command tx timeout [ 166.583733] Bluetooth: hci5: command tx timeout [ 166.585751] Bluetooth: hci2: command tx timeout [ 166.712404] Bluetooth: hci6: command tx timeout [ 166.776899] Bluetooth: hci7: command tx timeout [ 166.777350] Bluetooth: hci4: command tx timeout [ 168.184673] Bluetooth: hci0: command tx timeout [ 168.503574] Bluetooth: hci1: command tx timeout [ 168.567561] Bluetooth: hci3: command tx timeout [ 168.632601] Bluetooth: hci5: command tx timeout [ 168.632701] Bluetooth: hci2: command tx timeout [ 168.759588] Bluetooth: hci6: command tx timeout [ 168.825602] Bluetooth: hci4: command tx timeout [ 168.825696] Bluetooth: hci7: command tx timeout [ 170.231741] Bluetooth: hci0: command tx timeout [ 170.551701] Bluetooth: hci1: command tx timeout [ 170.617139] Bluetooth: hci3: command tx timeout [ 170.680903] Bluetooth: hci2: command tx timeout [ 170.680925] Bluetooth: hci5: command tx timeout [ 170.808580] Bluetooth: hci6: command tx timeout [ 170.873614] Bluetooth: hci7: command tx timeout [ 170.873655] Bluetooth: hci4: command tx timeout [ 172.279621] Bluetooth: hci0: command tx timeout [ 172.599619] Bluetooth: hci1: command tx timeout [ 172.663760] Bluetooth: hci3: command tx timeout [ 172.727633] Bluetooth: hci2: command tx timeout [ 172.728916] Bluetooth: hci5: command tx timeout [ 172.856613] Bluetooth: hci6: command tx timeout [ 172.920044] Bluetooth: hci4: command tx timeout [ 172.920782] Bluetooth: hci7: command tx timeout [ 226.630301] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 226.632136] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 226.634754] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 226.647942] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 226.653035] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 226.657017] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 226.699366] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 226.703973] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 226.713157] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 226.716577] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 226.718416] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 226.720062] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 226.754763] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 226.756175] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 226.757149] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 226.760064] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 226.761920] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 226.762942] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 226.822547] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 226.824327] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 226.825229] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 226.828282] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 226.830110] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 226.832245] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 226.891330] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 226.894993] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 226.897614] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 226.913349] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 226.918917] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 226.924608] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 226.930861] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 226.933979] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 226.959157] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 226.964832] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 226.966291] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 226.967388] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 227.009870] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 227.020729] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 227.052612] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 227.056943] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 227.062326] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 227.071016] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 227.079986] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 227.111888] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 227.114088] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 227.176812] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 227.208864] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 227.228677] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 228.728629] Bluetooth: hci0: command tx timeout [ 228.792442] Bluetooth: hci2: command tx timeout [ 228.792659] Bluetooth: hci1: command tx timeout [ 228.856610] Bluetooth: hci3: command tx timeout [ 229.047580] Bluetooth: hci4: command tx timeout [ 229.047598] Bluetooth: hci5: command tx timeout [ 229.239552] Bluetooth: hci6: command tx timeout [ 229.305226] Bluetooth: hci7: command tx timeout [ 230.775556] Bluetooth: hci0: command tx timeout [ 230.839627] Bluetooth: hci2: command tx timeout [ 230.839716] Bluetooth: hci1: command tx timeout [ 230.903557] Bluetooth: hci3: command tx timeout [ 231.097693] Bluetooth: hci4: command tx timeout [ 231.097966] Bluetooth: hci5: command tx timeout [ 231.287630] Bluetooth: hci6: command tx timeout [ 231.351841] Bluetooth: hci7: command tx timeout [ 232.824561] Bluetooth: hci0: command tx timeout [ 232.887564] Bluetooth: hci1: command tx timeout [ 232.887586] Bluetooth: hci2: command tx timeout [ 232.951632] Bluetooth: hci3: command tx timeout [ 233.144745] Bluetooth: hci5: command tx timeout [ 233.144815] Bluetooth: hci4: command tx timeout [ 233.335579] Bluetooth: hci6: command tx timeout [ 233.399818] Bluetooth: hci7: command tx timeout [ 234.871612] Bluetooth: hci0: command tx timeout [ 234.935572] Bluetooth: hci1: command tx timeout [ 234.936149] Bluetooth: hci2: command tx timeout [ 235.000551] Bluetooth: hci3: command tx timeout [ 235.191605] Bluetooth: hci5: command tx timeout [ 235.191638] Bluetooth: hci4: command tx timeout [ 235.383562] Bluetooth: hci6: command tx timeout [ 235.447684] Bluetooth: hci7: command tx timeout [ 282.863657] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.863783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 283.179187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 283.179271] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 283.651179] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 283.651261] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 283.821697] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 283.821762] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.091921] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.092005] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.318974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.319058] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.411708] audit: type=1400 audit(1737193010.551:8): avc: denied { open } for pid=10623 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 284.412591] audit: type=1400 audit(1737193010.551:9): avc: denied { kernel } for pid=10623 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 284.439365] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.439470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 284.507179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.507247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:36:50 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 284.619975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.620059] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:36:50 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 284.860758] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 284.860828] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 285.012359] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 285.012439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:36:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 285.253981] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 285.254075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:36:51 executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 09:36:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) 09:36:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 285.633359] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 285.633488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:36:51 executing program 3: syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) 09:36:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f00000002c0)=0x12, 0x4) [ 286.098015] [ 286.098277] ====================================================== [ 286.098882] WARNING: possible circular locking dependency detected [ 286.099507] 6.13.0-rc7-next-20250117 #1 Not tainted [ 286.100008] ------------------------------------------------------ [ 286.104066] kworker/u8:1/66 is trying to acquire lock: [ 286.104583] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.105577] [ 286.105577] but task is already holding lock: [ 286.106134] ffff888032a40768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 286.107405] [ 286.107405] which lock already depends on the new lock. [ 286.107405] [ 286.108173] [ 286.108173] the existing dependency chain (in reverse order) is: [ 286.108872] [ 286.108872] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 286.109526] __mutex_lock+0x13d/0xb50 [ 286.109980] wiphy_register+0x1b2e/0x25d0 [ 286.110463] ieee80211_register_hw+0x23a4/0x3d60 [ 286.110989] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 286.111557] init_mac80211_hwsim+0x389/0x870 [ 286.112064] do_one_initcall+0xf9/0x640 [ 286.112540] kernel_init_freeable+0x53d/0x7a0 [ 286.113060] kernel_init+0x1e/0x2d0 [ 286.113477] ret_from_fork+0x48/0x80 [ 286.113907] ret_from_fork_asm+0x1a/0x30 [ 286.114391] [ 286.114391] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 286.114998] __lock_acquire+0x29fd/0x4580 [ 286.115488] lock_acquire+0x19b/0x520 [ 286.115929] __mutex_lock+0x13d/0xb50 [ 286.116381] unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.116985] unregister_netdevice_queue+0x224/0x2e0 [ 286.117531] _cfg80211_unregister_wdev+0x57b/0x700 [ 286.118072] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 286.118605] ieee80211_unregister_hw+0x55/0x3a0 [ 286.119116] hwsim_exit_net+0x3a0/0x730 [ 286.119569] ops_exit_list+0xb3/0x180 [ 286.120003] cleanup_net+0x546/0xad0 [ 286.120435] process_one_work+0x8ee/0x1a10 [ 286.120928] worker_thread+0x674/0xe70 [ 286.121393] kthread+0x3ab/0x720 [ 286.121807] ret_from_fork+0x48/0x80 [ 286.122229] ret_from_fork_asm+0x1a/0x30 [ 286.122714] [ 286.122714] other info that might help us debug this: [ 286.122714] [ 286.123465] Possible unsafe locking scenario: [ 286.123465] [ 286.124034] CPU0 CPU1 [ 286.124485] ---- ---- [ 286.124926] lock(&rdev->wiphy.mtx); [ 286.125317] lock(rtnl_mutex); [ 286.125883] lock(&rdev->wiphy.mtx); [ 286.126495] lock(rtnl_mutex); [ 286.126851] [ 286.126851] *** DEADLOCK *** [ 286.126851] [ 286.127414] 4 locks held by kworker/u8:1/66: [ 286.127846] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 286.128855] #1: ffff88800eb07d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 286.129819] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 286.130711] #3: ffff888032a40768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 286.131734] [ 286.131734] stack backtrace: [ 286.132157] CPU: 1 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 286.132940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 286.133703] Workqueue: netns cleanup_net [ 286.134116] Call Trace: [ 286.134369] [ 286.134599] dump_stack_lvl+0xca/0x120 [ 286.135022] print_circular_bug+0x47b/0x750 [ 286.135454] check_noncircular+0x2e9/0x3c0 [ 286.135883] ? srso_return_thunk+0x5/0x5f [ 286.136313] ? __pfx_check_noncircular+0x10/0x10 [ 286.136788] ? __pfx_mark_lock+0x10/0x10 [ 286.137199] ? lockdep_lock+0xba/0x1b0 [ 286.137635] ? __pfx_lockdep_lock+0x10/0x10 [ 286.138088] __lock_acquire+0x29fd/0x4580 [ 286.138522] ? __pfx___lock_acquire+0x10/0x10 [ 286.138978] ? srso_return_thunk+0x5/0x5f [ 286.139431] lock_acquire+0x19b/0x520 [ 286.139821] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.140415] ? __pfx_lock_acquire+0x10/0x10 [ 286.140854] ? srso_return_thunk+0x5/0x5f [ 286.141292] ? srso_return_thunk+0x5/0x5f [ 286.141725] ? lock_is_held_type+0x9e/0x120 [ 286.142168] __mutex_lock+0x13d/0xb50 [ 286.142576] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.143160] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.143746] ? srso_return_thunk+0x5/0x5f [ 286.144178] ? synchronize_rcu_expedited+0x38a/0x420 [ 286.144704] ? __pfx___mutex_lock+0x10/0x10 [ 286.145140] ? __pfx_autoremove_wake_function+0x10/0x10 [ 286.145692] ? srso_return_thunk+0x5/0x5f [ 286.146136] ? kasan_quarantine_put+0x84/0x1e0 [ 286.146623] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 286.147083] ? srso_return_thunk+0x5/0x5f [ 286.147538] unregister_netdevice_many_notify+0x1612/0x1c80 [ 286.148094] ? __virt_addr_valid+0x2e8/0x5d0 [ 286.148550] ? __pfx_lock_release+0x10/0x10 [ 286.148981] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 286.149568] ? find_held_lock+0x2c/0x110 [ 286.150016] ? srso_return_thunk+0x5/0x5f [ 286.150472] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 286.150994] ? srso_return_thunk+0x5/0x5f [ 286.151456] ? lock_release+0x20f/0x6f0 [ 286.151874] ? __pfx_lock_release+0x10/0x10 [ 286.152330] ? srso_return_thunk+0x5/0x5f [ 286.152772] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 286.153316] ? srso_return_thunk+0x5/0x5f [ 286.153770] unregister_netdevice_queue+0x224/0x2e0 [ 286.154285] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 286.154841] ? up_write+0x195/0x520 [ 286.155254] _cfg80211_unregister_wdev+0x57b/0x700 [ 286.155766] ? srso_return_thunk+0x5/0x5f [ 286.156194] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 286.156693] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 286.157283] ? srso_return_thunk+0x5/0x5f [ 286.157810] ? srso_return_thunk+0x5/0x5f [ 286.158338] ? synchronize_rcu+0x1ff/0x260 [ 286.158867] ieee80211_unregister_hw+0x55/0x3a0 [ 286.159426] hwsim_exit_net+0x3a0/0x730 [ 286.159846] ? __pfx_hwsim_exit_net+0x10/0x10 [ 286.160317] ? srso_return_thunk+0x5/0x5f [ 286.160752] ? netdev_run_todo+0x788/0x1040 [ 286.161186] ? __pfx_hwsim_exit_net+0x10/0x10 [ 286.161690] ops_exit_list+0xb3/0x180 [ 286.162075] cleanup_net+0x546/0xad0 [ 286.162474] ? __pfx_cleanup_net+0x10/0x10 [ 286.162915] process_one_work+0x8ee/0x1a10 [ 286.163393] ? __pfx_lock_acquire+0x10/0x10 [ 286.163844] ? __pfx_process_one_work+0x10/0x10 [ 286.164344] ? srso_return_thunk+0x5/0x5f [ 286.164787] ? move_linked_works+0x172/0x270 [ 286.165253] ? srso_return_thunk+0x5/0x5f [ 286.165711] ? assign_work+0x196/0x240 [ 286.166137] worker_thread+0x674/0xe70 [ 286.166567] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 286.167105] ? srso_return_thunk+0x5/0x5f [ 286.167560] ? __pfx_worker_thread+0x10/0x10 [ 286.168025] kthread+0x3ab/0x720 [ 286.168409] ? __pfx_kthread+0x10/0x10 [ 286.168810] ? srso_return_thunk+0x5/0x5f [ 286.169235] ? finish_task_switch.isra.0+0x206/0x840 [ 286.169758] ? __pfx_kthread+0x10/0x10 [ 286.170163] ret_from_fork+0x48/0x80 [ 286.170541] ? __pfx_kthread+0x10/0x10 [ 286.170955] ret_from_fork_asm+0x1a/0x30 [ 286.171419] [ 288.070087] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 288.073925] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 288.076301] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 288.082610] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 288.086004] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 288.089612] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 288.141124] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 288.156597] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 288.159737] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 288.174704] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 288.178281] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 288.187684] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 288.212062] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 288.219878] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 288.222244] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 288.231190] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 288.247837] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 288.256969] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 288.284217] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 288.287129] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 288.288854] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 288.292596] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 288.296223] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 288.299913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 288.410202] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 288.412174] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 288.415564] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 288.431337] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 288.436989] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 288.450587] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 288.566663] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 288.584722] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 288.604914] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 288.614978] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 288.626684] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 288.632802] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 290.103623] Bluetooth: hci0: command tx timeout [ 290.231507] Bluetooth: hci2: command tx timeout [ 290.295525] Bluetooth: hci3: command tx timeout [ 290.359536] Bluetooth: hci4: command tx timeout [ 290.552585] Bluetooth: hci5: command tx timeout [ 290.679786] Bluetooth: hci6: command tx timeout [ 292.153483] Bluetooth: hci0: command tx timeout [ 292.279535] Bluetooth: hci2: command tx timeout [ 292.344545] Bluetooth: hci3: command tx timeout [ 292.407565] Bluetooth: hci4: command tx timeout [ 292.599584] Bluetooth: hci5: command tx timeout [ 292.727488] Bluetooth: hci6: command tx timeout [ 294.201578] Bluetooth: hci0: command tx timeout [ 294.327546] Bluetooth: hci2: command tx timeout [ 294.391587] Bluetooth: hci3: command tx timeout [ 294.456475] Bluetooth: hci4: command tx timeout [ 294.649499] Bluetooth: hci5: command tx timeout [ 294.776483] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 09:36:52 Registers: info registers vcpu 0 RAX=000000c0000bdf28 RBX=000000c000d73020 RCX=000000c000082780 RDX=00007f07a003a000 RSI=0000000000000000 RDI=0000000000000007 RBP=000000c0000bdf28 RSP=000000c0000bdea8 R8 =0000000000014d48 R9 =000000c000491000 R10=0000000000000034 R11=0000000000000033 R12=000000c000d63710 R13=0000000001240aa0 R14=0000000000000000 R15=0000000000000000 RIP=000000000041f6b1 RFL=00000246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000000c0002ec090 00000000 00000000 GS =0000 0000000000000000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffec8dcde88 CR3=000000000e098000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000010000000000000000 XMM02=0000000000000000000000c00015a010 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000b12868 XMM05=0000000000000000000000c00015a010 XMM06=0000000000505007000000c0005bffc0 XMM07=00000000000000000000000000000000 XMM08=0000000000ea76c000000000004643c6 XMM09=00000000000000000000000000000000 XMM10=000000c0007e708000000000004643c1 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=000000c000296750000000c0000845c0 XMM14=000000c000296780000000c000296b70 XMM15=000000c000297140000000c000297110 info registers vcpu 1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800eb06bb8 R8 =0000000000000001 R9 =ffffed1001d60d67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea02d R15=ffff88800eb06eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055c7cfed1fe8 CR3=000000000950c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a5a XMM06=20202020202020202020202020202020 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000200000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000