Warning: Permanently added '[localhost]:63108' (ECDSA) to the list of known hosts. 2025/01/28 16:04:06 fuzzer started 2025/01/28 16:04:07 dialing manager at localhost:40187 syzkaller login: [ 62.386147] cgroup: Unknown subsys name 'net' [ 62.481746] cgroup: Unknown subsys name 'cpuset' [ 62.510396] cgroup: Unknown subsys name 'rlimit' [ 70.013010] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 80.261742] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/28 16:04:25 syscalls: 2217 2025/01/28 16:04:25 code coverage: enabled 2025/01/28 16:04:25 comparison tracing: enabled 2025/01/28 16:04:25 extra coverage: enabled 2025/01/28 16:04:25 setuid sandbox: enabled 2025/01/28 16:04:25 namespace sandbox: enabled 2025/01/28 16:04:25 Android sandbox: enabled 2025/01/28 16:04:25 fault injection: enabled 2025/01/28 16:04:25 leak checking: enabled 2025/01/28 16:04:25 net packet injection: enabled 2025/01/28 16:04:25 net device setup: enabled 2025/01/28 16:04:25 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/28 16:04:25 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/28 16:04:25 USB emulation: enabled 2025/01/28 16:04:25 hci packet injection: enabled 2025/01/28 16:04:25 wifi device emulation: enabled 2025/01/28 16:04:25 802.15.4 emulation: enabled 2025/01/28 16:04:26 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/6647 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/7790 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/9014 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/10203 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/10494 (executing program) 2025/01/28 16:04:26 fetching corpus: 3, signal 4262/10494 (executing program) 2025/01/28 16:04:29 starting 8 fuzzer processes 16:04:29 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCGIFBR(r0, 0x8940, 0x0) 16:04:29 executing program 1: openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x208c0, 0x0) 16:04:29 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCEXCL(r0, 0x540c) 16:04:29 executing program 3: fsopen(0x0, 0x0) 16:04:29 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0xa, 0x0, 0x0) 16:04:29 executing program 5: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ppoll(&(0x7f0000000100)=[{r0}], 0x1, 0x0, 0x0, 0x0) 16:04:30 executing program 6: inotify_init1(0x0) 16:04:30 executing program 7: clock_getres(0x2, 0x0) [ 84.887138] audit: type=1400 audit(1738080270.064:7): avc: denied { execmem } for pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 86.356379] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 86.358821] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.367673] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 86.369509] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.371979] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.373793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.378573] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.381712] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.384098] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.389159] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.397765] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 86.401026] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.403092] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.406548] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 86.410648] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.413547] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.417496] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.422207] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.427010] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 86.429554] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.432357] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.452742] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.459517] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 86.466213] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.466379] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.472330] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.479322] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.496041] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.496269] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.500493] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 86.503320] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.505090] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.509508] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.517524] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.525539] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 86.532183] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.534765] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 86.537091] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 86.544535] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 86.559207] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 86.560679] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 86.563891] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 86.569243] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 86.572202] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 86.582092] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 86.586044] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 86.589738] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.591290] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.506140] Bluetooth: hci3: command tx timeout [ 88.506760] Bluetooth: hci0: command tx timeout [ 88.506951] Bluetooth: hci1: command tx timeout [ 88.507349] Bluetooth: hci2: command tx timeout [ 88.568941] Bluetooth: hci5: command tx timeout [ 88.632955] Bluetooth: hci6: command tx timeout [ 88.632967] Bluetooth: hci4: command tx timeout [ 88.696999] Bluetooth: hci7: command tx timeout [ 90.552924] Bluetooth: hci2: command tx timeout [ 90.556010] Bluetooth: hci1: command tx timeout [ 90.556032] Bluetooth: hci0: command tx timeout [ 90.556426] Bluetooth: hci3: command tx timeout [ 90.616977] Bluetooth: hci5: command tx timeout [ 90.681499] Bluetooth: hci4: command tx timeout [ 90.682338] Bluetooth: hci6: command tx timeout [ 90.746869] Bluetooth: hci7: command tx timeout [ 92.600971] Bluetooth: hci3: command tx timeout [ 92.600988] Bluetooth: hci2: command tx timeout [ 92.603880] Bluetooth: hci0: command tx timeout [ 92.603896] Bluetooth: hci1: command tx timeout [ 92.664905] Bluetooth: hci5: command tx timeout [ 92.728913] Bluetooth: hci6: command tx timeout [ 92.729007] Bluetooth: hci4: command tx timeout [ 92.792929] Bluetooth: hci7: command tx timeout [ 94.649011] Bluetooth: hci1: command tx timeout [ 94.649048] Bluetooth: hci0: command tx timeout [ 94.649489] Bluetooth: hci2: command tx timeout [ 94.650344] Bluetooth: hci3: command tx timeout [ 94.712982] Bluetooth: hci5: command tx timeout [ 94.777062] Bluetooth: hci6: command tx timeout [ 94.777508] Bluetooth: hci4: command tx timeout [ 94.841063] Bluetooth: hci7: command tx timeout [ 141.451367] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 141.452054] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 141.717978] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 141.718736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 142.471894] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 142.472560] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 142.728043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 142.728703] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 142.970906] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 142.971566] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:05:28 executing program 1: openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x208c0, 0x0) 16:05:28 executing program 1: openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x208c0, 0x0) [ 143.215564] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.216239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:05:28 executing program 1: openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0), 0x208c0, 0x0) [ 143.422342] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.422968] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:05:28 executing program 1: creat(&(0x7f0000000980)='./file1\x00', 0x0) [ 143.604879] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.605514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.700933] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.701595] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:05:28 executing program 1: creat(&(0x7f0000000980)='./file1\x00', 0x0) [ 143.832566] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.834318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:05:29 executing program 1: creat(&(0x7f0000000980)='./file1\x00', 0x0) [ 144.002040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.002706] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.138939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.139612] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.284413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.285304] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.362345] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.363116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.514918] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.515578] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.608280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.608949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 145.248515] [ 145.248749] ====================================================== [ 145.249262] WARNING: possible circular locking dependency detected [ 145.249774] 6.13.0-next-20250128 #1 Not tainted [ 145.250166] ------------------------------------------------------ [ 145.252803] kworker/u8:2/3903 is trying to acquire lock: [ 145.254609] ffffffff8621d9a8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.255494] [ 145.255494] but task is already holding lock: [ 145.255981] ffff88803b848768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 145.256818] [ 145.256818] which lock already depends on the new lock. [ 145.256818] [ 145.257478] [ 145.257478] the existing dependency chain (in reverse order) is: [ 145.258089] [ 145.258089] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 145.258672] __mutex_lock+0x13d/0xb50 [ 145.259077] wiphy_register+0x1b2e/0x25d0 [ 145.259503] ieee80211_register_hw+0x23a4/0x3d60 [ 145.259970] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 145.260457] init_mac80211_hwsim+0x389/0x870 [ 145.260919] do_one_initcall+0xf9/0x640 [ 145.261338] kernel_init_freeable+0x53d/0x7a0 [ 145.261796] kernel_init+0x1e/0x2d0 [ 145.262168] ret_from_fork+0x48/0x80 [ 145.262548] ret_from_fork_asm+0x1a/0x30 [ 145.262970] [ 145.262970] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 145.263499] __lock_acquire+0x29fd/0x4580 [ 145.263917] lock_acquire+0x19b/0x520 [ 145.264304] __mutex_lock+0x13d/0xb50 [ 145.264698] unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.265229] unregister_netdevice_queue+0x224/0x2e0 [ 145.265705] _cfg80211_unregister_wdev+0x57b/0x700 [ 145.266186] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 145.266670] ieee80211_unregister_hw+0x55/0x3a0 [ 145.267122] hwsim_exit_net+0x3a0/0x730 [ 145.267528] ops_exit_list+0xb3/0x180 [ 145.267911] cleanup_net+0x546/0xad0 [ 145.268292] process_one_work+0x8ee/0x1a10 [ 145.268735] worker_thread+0x674/0xe70 [ 145.269146] kthread+0x3ab/0x720 [ 145.269511] ret_from_fork+0x48/0x80 [ 145.269881] ret_from_fork_asm+0x1a/0x30 [ 145.270311] [ 145.270311] other info that might help us debug this: [ 145.270311] [ 145.270952] Possible unsafe locking scenario: [ 145.270952] [ 145.271438] CPU0 CPU1 [ 145.271823] ---- ---- [ 145.272211] lock(&rdev->wiphy.mtx); [ 145.272555] lock(rtnl_mutex); [ 145.273055] lock(&rdev->wiphy.mtx); [ 145.273591] lock(rtnl_mutex); [ 145.273898] [ 145.273898] *** DEADLOCK *** [ 145.273898] [ 145.274397] 4 locks held by kworker/u8:2/3903: [ 145.274789] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 145.275668] #1: ffff88803b6bfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 145.276506] #2: ffffffff862119d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 145.277288] #3: ffff88803b848768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 145.278162] [ 145.278162] stack backtrace: [ 145.278549] CPU: 1 UID: 0 PID: 3903 Comm: kworker/u8:2 Not tainted 6.13.0-next-20250128 #1 [ 145.278586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 145.278609] Workqueue: netns cleanup_net [ 145.278650] Call Trace: [ 145.278660] [ 145.278671] dump_stack_lvl+0xca/0x120 [ 145.278729] print_circular_bug+0x47b/0x750 [ 145.278775] check_noncircular+0x2e9/0x3c0 [ 145.278818] ? __pfx_check_noncircular+0x10/0x10 [ 145.278860] ? pick_eevdf+0x3a4/0x560 [ 145.278910] ? srso_return_thunk+0x5/0x5f [ 145.278967] ? find_held_lock+0x2c/0x110 [ 145.279027] ? lockdep_lock+0xba/0x1b0 [ 145.279084] ? __pfx_lockdep_lock+0x10/0x10 [ 145.279142] ? __pfx_lock_release+0x10/0x10 [ 145.279189] __lock_acquire+0x29fd/0x4580 [ 145.279242] ? __pfx___lock_acquire+0x10/0x10 [ 145.279287] ? __pfx_try_to_wake_up+0x10/0x10 [ 145.279335] lock_acquire+0x19b/0x520 [ 145.279378] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.279427] ? __pfx_lock_acquire+0x10/0x10 [ 145.279471] ? __pfx_lock_release+0x10/0x10 [ 145.279520] ? __pfx_try_to_wake_up+0x10/0x10 [ 145.279563] ? srso_return_thunk+0x5/0x5f [ 145.279618] ? lock_is_held_type+0x9e/0x120 [ 145.279674] ? srso_return_thunk+0x5/0x5f [ 145.279733] __mutex_lock+0x13d/0xb50 [ 145.279786] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.279831] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.279878] ? srso_return_thunk+0x5/0x5f [ 145.279933] ? synchronize_rcu_expedited+0x38a/0x420 [ 145.279977] ? __pfx___mutex_lock+0x10/0x10 [ 145.280032] ? srso_return_thunk+0x5/0x5f [ 145.280089] ? srso_return_thunk+0x5/0x5f [ 145.280145] ? kasan_quarantine_put+0x84/0x1e0 [ 145.280206] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 145.280241] ? srso_return_thunk+0x5/0x5f [ 145.280301] unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.280347] ? __virt_addr_valid+0x2e8/0x5d0 [ 145.280400] ? __pfx_lock_release+0x10/0x10 [ 145.280445] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 145.280491] ? find_held_lock+0x2c/0x110 [ 145.280549] ? srso_return_thunk+0x5/0x5f [ 145.280607] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 145.280668] ? srso_return_thunk+0x5/0x5f [ 145.280724] ? lock_release+0x20f/0x6f0 [ 145.280768] ? __pfx_lock_release+0x10/0x10 [ 145.280811] ? srso_return_thunk+0x5/0x5f [ 145.280867] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 145.280914] ? srso_return_thunk+0x5/0x5f [ 145.280976] unregister_netdevice_queue+0x224/0x2e0 [ 145.281019] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 145.281063] ? up_write+0x195/0x520 [ 145.281118] _cfg80211_unregister_wdev+0x57b/0x700 [ 145.281171] ? srso_return_thunk+0x5/0x5f [ 145.281230] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 145.281269] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 145.281308] ? srso_return_thunk+0x5/0x5f [ 145.281364] ? srso_return_thunk+0x5/0x5f [ 145.281419] ? synchronize_rcu+0x1ff/0x260 [ 145.281462] ieee80211_unregister_hw+0x55/0x3a0 [ 145.281507] hwsim_exit_net+0x3a0/0x730 [ 145.281549] ? __pfx_hwsim_exit_net+0x10/0x10 [ 145.281590] ? srso_return_thunk+0x5/0x5f [ 145.281645] ? netdev_run_todo+0x788/0x1040 [ 145.281694] ? __pfx_hwsim_exit_net+0x10/0x10 [ 145.281737] ops_exit_list+0xb3/0x180 [ 145.281780] cleanup_net+0x546/0xad0 [ 145.281825] ? __pfx_cleanup_net+0x10/0x10 [ 145.281878] process_one_work+0x8ee/0x1a10 [ 145.281944] ? __pfx_lock_acquire+0x10/0x10 [ 145.281988] ? __pfx_process_one_work+0x10/0x10 [ 145.282047] ? srso_return_thunk+0x5/0x5f [ 145.282103] ? move_linked_works+0x172/0x270 [ 145.282148] ? srso_return_thunk+0x5/0x5f [ 145.282210] ? assign_work+0x196/0x240 [ 145.282268] worker_thread+0x674/0xe70 [ 145.282326] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 145.282378] ? srso_return_thunk+0x5/0x5f [ 145.282433] ? __pfx_worker_thread+0x10/0x10 [ 145.282493] kthread+0x3ab/0x720 [ 145.282545] ? __pfx_kthread+0x10/0x10 [ 145.282597] ? srso_return_thunk+0x5/0x5f [ 145.282653] ? finish_task_switch.isra.0+0x206/0x840 [ 145.282704] ? __pfx_kthread+0x10/0x10 [ 145.282758] ret_from_fork+0x48/0x80 [ 145.282789] ? __pfx_kthread+0x10/0x10 [ 145.282842] ret_from_fork_asm+0x1a/0x30 [ 145.282909] [ 147.774556] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 147.777071] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 147.779014] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 147.781144] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 147.782599] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 147.785184] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 147.842976] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 147.845038] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 147.849018] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 147.851453] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 147.854001] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 147.855500] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 147.857661] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 147.861534] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 147.863502] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 147.867083] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 147.868312] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 147.871250] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 149.816899] Bluetooth: hci3: command tx timeout [ 149.944919] Bluetooth: hci6: command tx timeout [ 149.945156] Bluetooth: hci5: command tx timeout [ 151.864896] Bluetooth: hci3: command tx timeout [ 151.993068] Bluetooth: hci6: command tx timeout [ 151.993206] Bluetooth: hci5: command tx timeout [ 153.912870] Bluetooth: hci3: command tx timeout [ 154.040894] Bluetooth: hci6: command tx timeout [ 154.041879] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 16:05:30 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=000000000008d310 RCX=ffffffff815091b4 RDX=ffff888018bdc988 RSI=ffffffff882c9550 RDI=ffff888018bdc3e8 RBP=ffff88800d7e1b90 RSP=ffff888018eefdf0 R8 =0000000000000001 R9 =ffffed10031ddfae R10=0000000000000003 R11=0000000000000003 R12=0000000000000000 R13=0000000000000246 R14=0000000000000000 R15=ffff88800ba22540 RIP=ffffffff84ab3f40 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe6dda2d8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000564f201d5060 CR3=0000000018e12000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffff0000000000000000 XMM02=6373696d223d004d4554535953425553 XMM03=0000000000000000736563697665642f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000005000000070000564f2020cf70 XMM06=0000564f201bc2400000000800000006 XMM07=00000000000000000000000000000000 XMM08=00000000000000510000396d69737768 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000077 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283f415 RDI=ffffffff886970a0 RBP=ffffffff88697060 RSP=ffff88803b6bed20 R8 =0000000000000000 R9 =ffffed100175d046 R10=0000000000000077 R11=2f72656b726f776b R12=0000000000000077 R13=0000000000000010 R14=ffffffff88697060 R15=ffffffff8283f400 RIP=ffffffff8283f46d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005632b4f13a70 CR3=0000000015ea0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000c0002b6d30000000c0002b6d40 XMM02=000000c000086420000000c0000863f0 XMM03=000000c000100dc0000000c000086450 XMM04=000000c000086510000000c0000864e0 XMM05=000000c000086540000000c00005b530 XMM06=000000c0000865a0000000c000086570 XMM07=000000c0001018c0000000c0000865d0 XMM08=000000c0000866f0000000c0000866c0 XMM09=000000c000086720000000c00005b560 XMM10=000000c000086780000000c000086750 XMM11=000000c0000867e0000000c0000867b0 XMM12=000000c000086840000000c000086810 XMM13=000000c0000868a0000000c000086870 XMM14=000000c00005b590000000c0000868d0 XMM15=000000c000086930000000c000086900