Warning: Permanently added '[localhost]:39726' (ECDSA) to the list of known hosts. 2025/01/18 10:33:03 fuzzer started 2025/01/18 10:33:03 dialing manager at localhost:44245 syzkaller login: [ 69.833563] cgroup: Unknown subsys name 'net' [ 69.935385] cgroup: Unknown subsys name 'cpuset' [ 69.970846] cgroup: Unknown subsys name 'rlimit' [ 76.008349] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 85.918397] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 10:33:20 syscalls: 2217 2025/01/18 10:33:20 code coverage: enabled 2025/01/18 10:33:20 comparison tracing: enabled 2025/01/18 10:33:20 extra coverage: enabled 2025/01/18 10:33:20 setuid sandbox: enabled 2025/01/18 10:33:20 namespace sandbox: enabled 2025/01/18 10:33:20 Android sandbox: enabled 2025/01/18 10:33:20 fault injection: enabled 2025/01/18 10:33:20 leak checking: enabled 2025/01/18 10:33:20 net packet injection: enabled 2025/01/18 10:33:20 net device setup: enabled 2025/01/18 10:33:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 10:33:20 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 10:33:20 USB emulation: enabled 2025/01/18 10:33:20 hci packet injection: enabled 2025/01/18 10:33:20 wifi device emulation: enabled 2025/01/18 10:33:20 802.15.4 emulation: enabled 2025/01/18 10:33:20 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 10:33:20 fetching corpus: 50, signal 31136/33952 (executing program) 2025/01/18 10:33:20 fetching corpus: 100, signal 41770/45388 (executing program) 2025/01/18 10:33:20 fetching corpus: 150, signal 49468/53698 (executing program) 2025/01/18 10:33:20 fetching corpus: 200, signal 53883/58764 (executing program) 2025/01/18 10:33:21 fetching corpus: 250, signal 58124/63531 (executing program) 2025/01/18 10:33:21 fetching corpus: 300, signal 61214/67122 (executing program) 2025/01/18 10:33:21 fetching corpus: 350, signal 64776/71018 (executing program) 2025/01/18 10:33:21 fetching corpus: 400, signal 67615/74182 (executing program) 2025/01/18 10:33:21 fetching corpus: 450, signal 70287/77055 (executing program) 2025/01/18 10:33:21 fetching corpus: 500, signal 74385/81019 (executing program) 2025/01/18 10:33:21 fetching corpus: 550, signal 77105/83757 (executing program) 2025/01/18 10:33:22 fetching corpus: 600, signal 79957/86474 (executing program) 2025/01/18 10:33:22 fetching corpus: 650, signal 84591/90435 (executing program) 2025/01/18 10:33:22 fetching corpus: 700, signal 86774/92397 (executing program) 2025/01/18 10:33:22 fetching corpus: 750, signal 88908/94243 (executing program) 2025/01/18 10:33:22 fetching corpus: 800, signal 91036/96015 (executing program) 2025/01/18 10:33:22 fetching corpus: 850, signal 92639/97383 (executing program) 2025/01/18 10:33:22 fetching corpus: 900, signal 94395/98750 (executing program) 2025/01/18 10:33:22 fetching corpus: 950, signal 96867/100531 (executing program) 2025/01/18 10:33:23 fetching corpus: 1000, signal 98218/101532 (executing program) 2025/01/18 10:33:23 fetching corpus: 1050, signal 99719/102563 (executing program) 2025/01/18 10:33:23 fetching corpus: 1100, signal 101229/103573 (executing program) 2025/01/18 10:33:23 fetching corpus: 1150, signal 102241/104234 (executing program) 2025/01/18 10:33:23 fetching corpus: 1200, signal 103574/105010 (executing program) 2025/01/18 10:33:23 fetching corpus: 1250, signal 104430/105498 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105780 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105811 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105843 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105868 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105899 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105935 (executing program) 2025/01/18 10:33:23 fetching corpus: 1262, signal 104892/105973 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106003 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106036 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106073 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106105 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106133 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106161 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106204 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106244 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106269 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106298 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106328 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106360 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106393 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106424 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106454 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106489 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106518 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106549 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106585 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106614 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106624 (executing program) 2025/01/18 10:33:24 fetching corpus: 1262, signal 104892/106624 (executing program) 2025/01/18 10:33:27 starting 8 fuzzer processes 10:33:27 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x10000, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801002000400003000000000000008000293b8943f153595a4b414c4c4552202046415431322020200e1fbe5b7cac22c0740b56b40ebb0700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120626f6f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e200d0a00", 0xc0}, {&(0x7f0000010100)="00000000000000000000000000000000000000000000000000000000000055aaf8ffff00f0ffffffff078000ffffff00"/64, 0x40, 0x1e0}, {&(0x7f0000010200)="f8ffff00f0ffffffff078000ffffff00"/32, 0x20, 0x400}, {&(0x7f0000010300)="f8ffff00f0ffffffff078000ffffff00"/32, 0x20, 0x600}, {&(0x7f0000010400)="f8ffff00f0ffffffff078000ffffff00"/32, 0x20, 0x800}, {&(0x7f0000010500)="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", 0x120, 0xa00}, {&(0x7f0000010700)="2e20202020202020202020100051e870325132510000e87032510300000000002e2e202020202020202020100051e870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200051e870325132510000e870325104001a040000", 0x80, 0x2200}, {&(0x7f0000010800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x3200}, {&(0x7f0000010d00)='syzkallers\x00'/32, 0x20, 0x4200}, {&(0x7f0000010e00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x8200}], 0x0, &(0x7f0000010f00)) 10:33:27 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) getxattr(&(0x7f0000000200)='./file1\x00', &(0x7f0000000240)=@known='security.selinux\x00', &(0x7f0000000280)=""/45, 0x2d) 10:33:27 executing program 2: syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001b40)={[{@test_dummy_encryption}]}) 10:33:27 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000880)={0x28, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xc, 0x6, @device_b}]}, 0x28}}, 0x0) [ 93.438705] audit: type=1400 audit(1737196407.510:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:33:27 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000580)) ioctl$KDGKBMODE(r0, 0x4b4a, &(0x7f0000000000)) 10:33:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x800000000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x121242, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) pwrite64(r1, &(0x7f0000000140)="01", 0x1, 0x7fff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) sendfile(r2, r0, 0x0, 0xfffffdef) 10:33:27 executing program 6: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLY\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x17\xa2\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\x92#}g\xd3`\xf7\xcez\xcb\xb3\x1a\xbb\xc48e\x8e\xb1&\xd1\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\xc7e\x06L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x84\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\xd00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xfe\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\xd6\xcf\xf6\xb5\x82\xb7\x9dA\b$\xa2x\x8a@\xfaj~\xef\x93\xb1/L\x01\xe2\xba|\xf0\x01)PP\xcdl\x06\xfc\x15;qZ\xb1u\xc9\xd0\xd16~JEGm\xe4\x1e@\x9dG\xe4@\xdf\xba\'\x8b\x1cD\xc7\xec\xd1@}tR\xd9P\xf4N\xe3\xd8x\xa0\x91\x17\xc2}\x13\b\xca\t(Z\xa3_\xa1\x90\x15T\x93\xe7%\x98\xa7\xfb\x8bp/eq\x93\xbf\x1f =|\xf3\xb1\xfcR\xd8\nM,\xcb%@\'\x15\x88\xd8\xad\f\x91|\x95\x8fq+\x98\x81W\xba\x9f\xe0elOt\xbd\by\r\x87\x1c\xba\xbd\x8e+S>\xb8\xe29\x91h^x\xfb`\x00\xdd/\xa6\xb1\x16=\xa1bw\xc5I\xb1\x00'/549, 0x0) fallocate(r0, 0x0, 0x0, 0x9) finit_module(r0, 0x0, 0x5) 10:33:27 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) ioctl$TCFLSH(r0, 0x541b, 0xf0ff1f00000000) [ 94.778626] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.784560] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.785521] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.790557] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.793783] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.795764] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.825084] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.831375] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.834319] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.841364] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.846478] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 94.848036] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 95.009084] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 95.013759] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 95.020757] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 95.021401] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 95.033134] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 95.034653] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 95.036782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 95.039176] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 95.040260] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.048467] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 95.050358] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 95.054276] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.092796] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 95.095780] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 95.100479] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 95.105291] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 95.115275] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 95.117534] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 95.118063] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 95.126226] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 95.130249] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 95.137815] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 95.144307] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 95.146240] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 95.148756] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 95.151451] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 95.155174] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 95.155860] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 95.160906] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 95.166778] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 95.169501] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 95.170492] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 95.175169] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 95.177457] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 95.178734] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 95.180877] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.855631] Bluetooth: hci0: command tx timeout [ 96.919970] Bluetooth: hci1: command tx timeout [ 97.111163] Bluetooth: hci3: command tx timeout [ 97.111337] Bluetooth: hci2: command tx timeout [ 97.238066] Bluetooth: hci6: command tx timeout [ 97.238119] Bluetooth: hci4: command tx timeout [ 97.238683] Bluetooth: hci7: command tx timeout [ 97.302024] Bluetooth: hci5: command tx timeout [ 98.903135] Bluetooth: hci0: command tx timeout [ 98.967152] Bluetooth: hci1: command tx timeout [ 99.159032] Bluetooth: hci2: command tx timeout [ 99.159627] Bluetooth: hci3: command tx timeout [ 99.286234] Bluetooth: hci7: command tx timeout [ 99.286285] Bluetooth: hci6: command tx timeout [ 99.288017] Bluetooth: hci4: command tx timeout [ 99.352198] Bluetooth: hci5: command tx timeout [ 100.951016] Bluetooth: hci0: command tx timeout [ 101.015862] Bluetooth: hci1: command tx timeout [ 101.209161] Bluetooth: hci3: command tx timeout [ 101.209895] Bluetooth: hci2: command tx timeout [ 101.334106] Bluetooth: hci6: command tx timeout [ 101.334312] Bluetooth: hci4: command tx timeout [ 101.334453] Bluetooth: hci7: command tx timeout [ 101.399011] Bluetooth: hci5: command tx timeout [ 102.998089] Bluetooth: hci0: command tx timeout [ 103.063025] Bluetooth: hci1: command tx timeout [ 103.256300] Bluetooth: hci2: command tx timeout [ 103.256316] Bluetooth: hci3: command tx timeout [ 103.382661] Bluetooth: hci7: command tx timeout [ 103.382683] Bluetooth: hci6: command tx timeout [ 103.382799] Bluetooth: hci4: command tx timeout [ 103.446062] Bluetooth: hci5: command tx timeout [ 155.028921] syz-executor.0 (281) used greatest stack depth: 24016 bytes left [ 157.354722] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 157.358015] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 157.360566] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 157.366154] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 157.369576] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 157.372046] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 157.476137] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 157.500759] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 157.501838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 157.522265] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 157.524530] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 157.533828] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 157.540367] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 157.542311] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 157.543580] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 157.546436] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 157.550868] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 157.553241] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 157.554531] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 157.579387] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 157.582244] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 157.590108] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 157.611350] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 157.620152] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 157.712238] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 157.760837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 157.788132] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 157.807025] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 157.821349] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 157.847614] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 157.854623] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 157.865486] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 157.868488] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 157.869755] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 157.922476] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 157.946378] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 157.994168] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 158.001545] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 158.003301] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 158.010052] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 158.014766] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 158.016078] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 158.302883] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 158.311707] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 158.314102] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 158.332471] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 158.339364] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 158.347315] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 159.447974] Bluetooth: hci0: command tx timeout [ 159.638042] Bluetooth: hci1: command tx timeout [ 159.702010] Bluetooth: hci2: command tx timeout [ 159.702259] Bluetooth: hci3: command tx timeout [ 159.958070] Bluetooth: hci4: command tx timeout [ 160.023108] Bluetooth: hci5: command tx timeout [ 160.086039] Bluetooth: hci6: command tx timeout [ 160.534986] Bluetooth: hci7: command tx timeout [ 161.493980] Bluetooth: hci0: command tx timeout [ 161.686080] Bluetooth: hci1: command tx timeout [ 161.750292] Bluetooth: hci3: command tx timeout [ 161.750612] Bluetooth: hci2: command tx timeout [ 162.006033] Bluetooth: hci4: command tx timeout [ 162.071054] Bluetooth: hci5: command tx timeout [ 162.134980] Bluetooth: hci6: command tx timeout [ 162.582240] Bluetooth: hci7: command tx timeout [ 163.542478] Bluetooth: hci0: command tx timeout [ 163.734106] Bluetooth: hci1: command tx timeout [ 163.798192] Bluetooth: hci3: command tx timeout [ 163.798572] Bluetooth: hci2: command tx timeout [ 164.054090] Bluetooth: hci4: command tx timeout [ 164.118234] Bluetooth: hci5: command tx timeout [ 164.183129] Bluetooth: hci6: command tx timeout [ 164.630201] Bluetooth: hci7: command tx timeout [ 165.590073] Bluetooth: hci0: command tx timeout [ 165.782076] Bluetooth: hci1: command tx timeout [ 165.847068] Bluetooth: hci3: command tx timeout [ 165.847163] Bluetooth: hci2: command tx timeout [ 166.102830] Bluetooth: hci4: command tx timeout [ 166.166033] Bluetooth: hci5: command tx timeout [ 166.229979] Bluetooth: hci6: command tx timeout [ 166.678156] Bluetooth: hci7: command tx timeout [ 219.814435] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 219.816214] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 219.818811] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 219.823789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 219.826072] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 219.827498] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 219.876455] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 219.882318] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 219.884144] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 219.892694] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 219.894996] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 219.896824] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 219.899371] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 219.919822] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 219.942108] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 219.947713] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 219.950579] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 219.954388] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 219.956134] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 219.959247] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 219.966243] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 219.975527] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 219.980493] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 219.986139] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 220.014097] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 220.018571] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 220.020197] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 220.027084] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 220.048350] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 220.048767] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 220.131242] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 220.141123] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 220.150142] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 220.172722] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 220.191204] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 220.200112] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 220.221520] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 220.227135] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 220.228010] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 220.230445] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 220.236226] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 220.236621] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 220.285605] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 220.297408] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 220.300185] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 220.323993] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 220.331273] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 220.335182] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 221.847987] Bluetooth: hci0: command tx timeout [ 221.974018] Bluetooth: hci1: command tx timeout [ 222.038107] Bluetooth: hci3: command tx timeout [ 222.039261] Bluetooth: hci2: command tx timeout [ 222.101982] Bluetooth: hci4: command tx timeout [ 222.230642] Bluetooth: hci5: command tx timeout [ 222.294953] Bluetooth: hci6: command tx timeout [ 222.357985] Bluetooth: hci7: command tx timeout [ 223.894094] Bluetooth: hci0: command tx timeout [ 224.022926] Bluetooth: hci1: command tx timeout [ 224.087047] Bluetooth: hci2: command tx timeout [ 224.087598] Bluetooth: hci3: command tx timeout [ 224.151000] Bluetooth: hci4: command tx timeout [ 224.278016] Bluetooth: hci5: command tx timeout [ 224.342075] Bluetooth: hci6: command tx timeout [ 224.406005] Bluetooth: hci7: command tx timeout [ 225.942032] Bluetooth: hci0: command tx timeout [ 226.070009] Bluetooth: hci1: command tx timeout [ 226.134997] Bluetooth: hci3: command tx timeout [ 226.135086] Bluetooth: hci2: command tx timeout [ 226.197972] Bluetooth: hci4: command tx timeout [ 226.326049] Bluetooth: hci5: command tx timeout [ 226.389964] Bluetooth: hci6: command tx timeout [ 226.455079] Bluetooth: hci7: command tx timeout [ 227.990074] Bluetooth: hci0: command tx timeout [ 228.118777] Bluetooth: hci1: command tx timeout [ 228.182081] Bluetooth: hci2: command tx timeout [ 228.183075] Bluetooth: hci3: command tx timeout [ 228.245960] Bluetooth: hci4: command tx timeout [ 228.375958] Bluetooth: hci5: command tx timeout [ 228.437975] Bluetooth: hci6: command tx timeout [ 228.503222] Bluetooth: hci7: command tx timeout [ 278.025113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 278.025248] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 278.317985] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 278.318090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 279.530955] [ 279.531217] ====================================================== [ 279.531810] WARNING: possible circular locking dependency detected [ 279.532403] 6.13.0-rc7-next-20250117 #1 Not tainted [ 279.532898] ------------------------------------------------------ [ 279.534271] kworker/u8:1/65 is trying to acquire lock: [ 279.535608] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.537769] [ 279.537769] but task is already holding lock: [ 279.539512] ffff888039438768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 279.541815] [ 279.541815] which lock already depends on the new lock. [ 279.541815] [ 279.542778] [ 279.542778] the existing dependency chain (in reverse order) is: [ 279.543465] [ 279.543465] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 279.544114] __mutex_lock+0x13d/0xb50 [ 279.544565] wiphy_register+0x1b2e/0x25d0 [ 279.545058] ieee80211_register_hw+0x23a4/0x3d60 [ 279.545580] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 279.546128] init_mac80211_hwsim+0x389/0x870 [ 279.546636] do_one_initcall+0xf9/0x640 [ 279.547107] kernel_init_freeable+0x53d/0x7a0 [ 279.547621] kernel_init+0x1e/0x2d0 [ 279.548033] ret_from_fork+0x48/0x80 [ 279.548449] ret_from_fork_asm+0x1a/0x30 [ 279.548930] [ 279.548930] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 279.549530] __lock_acquire+0x29fd/0x4580 [ 279.550001] lock_acquire+0x19b/0x520 [ 279.550438] __mutex_lock+0x13d/0xb50 [ 279.550885] unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.551487] unregister_netdevice_queue+0x224/0x2e0 [ 279.552024] _cfg80211_unregister_wdev+0x57b/0x700 [ 279.552562] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 279.553106] ieee80211_unregister_hw+0x55/0x3a0 [ 279.553628] hwsim_exit_net+0x3a0/0x730 [ 279.554090] ops_exit_list+0xb3/0x180 [ 279.554525] cleanup_net+0x546/0xad0 [ 279.554957] process_one_work+0x8ee/0x1a10 [ 279.555446] worker_thread+0x674/0xe70 [ 279.555902] kthread+0x3ab/0x720 [ 279.556313] ret_from_fork+0x48/0x80 [ 279.556744] ret_from_fork_asm+0x1a/0x30 [ 279.557218] [ 279.557218] other info that might help us debug this: [ 279.557218] [ 279.557949] Possible unsafe locking scenario: [ 279.557949] [ 279.558499] CPU0 CPU1 [ 279.558931] ---- ---- [ 279.559363] lock(&rdev->wiphy.mtx); [ 279.559752] lock(rtnl_mutex); [ 279.560312] lock(&rdev->wiphy.mtx); [ 279.560925] lock(rtnl_mutex); [ 279.561278] [ 279.561278] *** DEADLOCK *** [ 279.561278] [ 279.561836] 4 locks held by kworker/u8:1/65: [ 279.562258] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 279.563256] #1: ffff88800ea2fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 279.564217] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 279.565119] #3: ffff888039438768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 279.566113] [ 279.566113] stack backtrace: [ 279.566537] CPU: 1 UID: 0 PID: 65 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 279.567309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 279.568089] Workqueue: netns cleanup_net [ 279.568505] Call Trace: [ 279.568768] [ 279.568994] dump_stack_lvl+0xca/0x120 [ 279.569415] print_circular_bug+0x47b/0x750 [ 279.569857] check_noncircular+0x2e9/0x3c0 [ 279.570273] ? __pfx_check_noncircular+0x10/0x10 [ 279.570736] ? hlock_class+0x4e/0x130 [ 279.571105] ? srso_return_thunk+0x5/0x5f [ 279.571527] ? mark_lock+0xac/0xed0 [ 279.571895] ? lockdep_lock+0xba/0x1b0 [ 279.572304] ? __pfx_lockdep_lock+0x10/0x10 [ 279.572757] __lock_acquire+0x29fd/0x4580 [ 279.573187] ? __pfx___lock_acquire+0x10/0x10 [ 279.573654] ? lock_release+0x20f/0x6f0 [ 279.574059] ? __pfx_lock_release+0x10/0x10 [ 279.574486] ? srso_return_thunk+0x5/0x5f [ 279.574916] lock_acquire+0x19b/0x520 [ 279.575298] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.575859] ? __pfx_lock_acquire+0x10/0x10 [ 279.576282] ? __pfx_lock_release+0x10/0x10 [ 279.576706] ? __pfx_try_to_wake_up+0x10/0x10 [ 279.577164] ? srso_return_thunk+0x5/0x5f [ 279.577589] ? lock_is_held_type+0x9e/0x120 [ 279.578033] ? srso_return_thunk+0x5/0x5f [ 279.578460] __mutex_lock+0x13d/0xb50 [ 279.578856] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.579414] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.579982] ? srso_return_thunk+0x5/0x5f [ 279.580408] ? synchronize_rcu_expedited+0x38a/0x420 [ 279.580908] ? __pfx___mutex_lock+0x10/0x10 [ 279.581345] ? srso_return_thunk+0x5/0x5f [ 279.581769] ? srso_return_thunk+0x5/0x5f [ 279.582192] ? kasan_quarantine_put+0x84/0x1e0 [ 279.582658] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 279.583105] ? srso_return_thunk+0x5/0x5f [ 279.583541] unregister_netdevice_many_notify+0x1612/0x1c80 [ 279.584089] ? __virt_addr_valid+0x2e8/0x5d0 [ 279.584536] ? __pfx_lock_release+0x10/0x10 [ 279.584973] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 279.585551] ? find_held_lock+0x2c/0x110 [ 279.585974] ? srso_return_thunk+0x5/0x5f [ 279.586402] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 279.586899] ? srso_return_thunk+0x5/0x5f [ 279.587328] ? lock_release+0x20f/0x6f0 [ 279.587725] ? __pfx_lock_release+0x10/0x10 [ 279.588150] ? srso_return_thunk+0x5/0x5f [ 279.588582] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 279.589126] ? srso_return_thunk+0x5/0x5f [ 279.589564] unregister_netdevice_queue+0x224/0x2e0 [ 279.590059] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 279.590597] ? up_write+0x195/0x520 [ 279.590987] _cfg80211_unregister_wdev+0x57b/0x700 [ 279.591475] ? srso_return_thunk+0x5/0x5f [ 279.591902] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 279.592385] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 279.592921] ? srso_return_thunk+0x5/0x5f [ 279.593349] ? srso_return_thunk+0x5/0x5f [ 279.593775] ? synchronize_rcu+0x1ff/0x260 [ 279.594198] ieee80211_unregister_hw+0x55/0x3a0 [ 279.594659] hwsim_exit_net+0x3a0/0x730 [ 279.595060] ? __pfx_hwsim_exit_net+0x10/0x10 [ 279.595508] ? srso_return_thunk+0x5/0x5f [ 279.595930] ? netdev_run_todo+0x788/0x1040 [ 279.596361] ? __pfx_hwsim_exit_net+0x10/0x10 [ 279.596811] ops_exit_list+0xb3/0x180 [ 279.597192] cleanup_net+0x546/0xad0 [ 279.597569] ? __pfx_cleanup_net+0x10/0x10 [ 279.598000] process_one_work+0x8ee/0x1a10 [ 279.598444] ? __pfx_lock_acquire+0x10/0x10 [ 279.598871] ? __pfx_process_one_work+0x10/0x10 [ 279.599345] ? srso_return_thunk+0x5/0x5f [ 279.599768] ? move_linked_works+0x172/0x270 [ 279.600210] ? srso_return_thunk+0x5/0x5f [ 279.600637] ? assign_work+0x196/0x240 [ 279.601054] worker_thread+0x674/0xe70 [ 279.601468] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 279.601996] ? srso_return_thunk+0x5/0x5f [ 279.602423] ? __pfx_worker_thread+0x10/0x10 [ 279.602882] kthread+0x3ab/0x720 [ 279.603244] ? __pfx_kthread+0x10/0x10 [ 279.603654] ? srso_return_thunk+0x5/0x5f [ 279.604089] ? finish_task_switch.isra.0+0x206/0x840 [ 279.604597] ? __pfx_kthread+0x10/0x10 [ 279.605025] ret_from_fork+0x48/0x80 [ 279.605400] ? __pfx_kthread+0x10/0x10 [ 279.605803] ret_from_fork_asm+0x1a/0x30 [ 279.606233] [ 281.824750] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 281.828449] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 281.830614] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 281.838640] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 281.841721] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 281.844701] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 282.083069] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 282.085743] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 282.089103] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 282.094394] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 282.100263] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 282.103515] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 282.210349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 282.212754] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 282.217406] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 282.220259] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 282.223491] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 282.225683] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 282.358494] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 282.368595] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 282.370761] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 282.379230] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 282.379759] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 282.380106] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 282.387164] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 282.389396] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 282.390979] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 282.397856] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 282.404600] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 282.414237] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 282.416217] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 282.420606] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 282.438747] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 282.445442] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 282.447371] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 282.459199] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 282.460934] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 282.493153] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 282.517170] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 282.537229] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 282.545123] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 282.553027] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 282.553130] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 282.556678] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 282.559668] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 282.560250] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 282.569428] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 282.573104] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 283.862011] Bluetooth: hci0: command tx timeout [ 284.117953] Bluetooth: hci1: command tx timeout [ 284.246454] Bluetooth: hci2: command tx timeout [ 284.503574] Bluetooth: hci5: command tx timeout [ 284.503646] Bluetooth: hci3: command tx timeout [ 284.565992] Bluetooth: hci4: command tx timeout [ 284.630157] Bluetooth: hci6: command tx timeout [ 284.630178] Bluetooth: hci7: command tx timeout [ 285.910937] Bluetooth: hci0: command tx timeout [ 286.166950] Bluetooth: hci1: command tx timeout [ 286.294911] Bluetooth: hci2: command tx timeout [ 286.550220] Bluetooth: hci3: command tx timeout [ 286.550242] Bluetooth: hci5: command tx timeout [ 286.614945] Bluetooth: hci4: command tx timeout [ 286.679004] Bluetooth: hci7: command tx timeout [ 286.679034] Bluetooth: hci6: command tx timeout [ 287.957997] Bluetooth: hci0: command tx timeout [ 288.215929] Bluetooth: hci1: command tx timeout [ 288.342936] Bluetooth: hci2: command tx timeout [ 288.597935] Bluetooth: hci3: command tx timeout [ 288.598198] Bluetooth: hci5: command tx timeout [ 288.661967] Bluetooth: hci4: command tx timeout [ 288.727117] Bluetooth: hci6: command tx timeout [ 288.727163] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 10:36:33 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf41280 RCX=ffffffff816641b2 RDX=ffff88803b330000 RSI=ffffffff8166418c RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88803cbbf7c8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003 R12=ffffed100d9e8251 R13=ffff88806cf41288 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff8166418e RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f26e4f3a040 CR3=000000003cca0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffff0000000000ff0000000000000000 XMM02=00007f260000000000007ffcc44d7430 XMM03=00007f26e43f610036326c6c696b6672 XMM04=202020093a62694c6d560a426b203820 XMM05=00000000000000000000000000000000 XMM06=202020092020202020090a426b203820 XMM07=00000000000000000000000000000000 XMM08=722f6c6c696b66722f6372732f2e2e00 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800ea2eb28 R8 =0000000000000000 R9 =fffffbfff0be1544 R10=0000000000000000 R11=3038383866666666 R12=0000000000000005 R13=ffff88800ea2ee28 R14=000000000000000c R15=ffff88800ea2ee28 RIP=ffffffff8283ce1d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000564a291d29b0 CR3=000000000ea84000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000003fd3333333333333 XMM01=00000000000000003fd2ee80c38a7199 XMM02=0000000000000000414a7afc00000000 XMM03=00000000000000003ff0000000000000 XMM04=00000000000000003fd3333333333333 XMM05=650a00736465657320636578650a0073 XMM06=756365786511006c61746f7420636578 XMM07=78650800737472617473657220726f74 XMM08=6169727420636578650b007a7a756620 XMM09=0a006873616d7320636578650a006567 XMM10=636578650a0073746e69682063657865 XMM11=746f7420636578650a00736465657320 XMM12=73657220726f74756365786511006c61 XMM13=006e6567206365786508007374726174 XMM14=006574616469646e616320636578650e XMM15=0000657a696d696e696d20636578650d