Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:64921' (ECDSA) to the list of known hosts. 2025/01/28 16:16:45 fuzzer started 2025/01/28 16:16:46 dialing manager at localhost:40187 syzkaller login: [ 52.684885] cgroup: Unknown subsys name 'net' [ 52.785416] cgroup: Unknown subsys name 'cpuset' [ 52.818171] cgroup: Unknown subsys name 'rlimit' 2025/01/28 16:17:04 syscalls: 2217 2025/01/28 16:17:04 code coverage: enabled 2025/01/28 16:17:04 comparison tracing: enabled 2025/01/28 16:17:04 extra coverage: enabled 2025/01/28 16:17:04 setuid sandbox: enabled 2025/01/28 16:17:04 namespace sandbox: enabled 2025/01/28 16:17:04 Android sandbox: enabled 2025/01/28 16:17:04 fault injection: enabled 2025/01/28 16:17:04 leak checking: enabled 2025/01/28 16:17:04 net packet injection: enabled 2025/01/28 16:17:04 net device setup: enabled 2025/01/28 16:17:04 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/28 16:17:04 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/28 16:17:04 USB emulation: enabled 2025/01/28 16:17:04 hci packet injection: enabled 2025/01/28 16:17:04 wifi device emulation: enabled 2025/01/28 16:17:04 802.15.4 emulation: enabled 2025/01/28 16:17:04 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/28 16:17:04 fetching corpus: 50, signal 22175/23935 (executing program) 2025/01/28 16:17:04 fetching corpus: 100, signal 28179/29929 (executing program) 2025/01/28 16:17:04 fetching corpus: 150, signal 30697/32488 (executing program) 2025/01/28 16:17:04 fetching corpus: 200, signal 31975/33863 (executing program) 2025/01/28 16:17:05 fetching corpus: 250, signal 35392/36613 (executing program) 2025/01/28 16:17:05 fetching corpus: 300, signal 37000/37848 (executing program) 2025/01/28 16:17:05 fetching corpus: 350, signal 37870/38508 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/38852 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/38921 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/38983 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39052 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39100 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39168 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39229 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39286 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39330 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39391 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39460 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39509 (executing program) 2025/01/28 16:17:05 fetching corpus: 389, signal 38300/39509 (executing program) 2025/01/28 16:17:10 starting 8 fuzzer processes 16:17:10 executing program 0: r0 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$get_security(0x11, r0, 0x0, 0x0) 16:17:10 executing program 1: syz_mount_image$nfs(0x0, 0x0, 0x0, 0x3, &(0x7f0000000700)=[{&(0x7f0000000480)="a3", 0x1}, {&(0x7f0000000540)="bd", 0x1}, {&(0x7f0000000640)='\t', 0x1}], 0x0, 0x0) 16:17:10 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) fremovexattr(r0, &(0x7f00000000c0)=@known='security.selinux\x00') 16:17:10 executing program 3: openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0) clone3(&(0x7f0000000540)={0x4000300, 0x0, 0x0, &(0x7f00000003c0), {}, &(0x7f0000000400)=""/9, 0x9, 0x0, 0x0}, 0x58) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) getgroups(0x0, 0x0) 16:17:10 executing program 4: ppoll(&(0x7f0000000200), 0x23, &(0x7f0000000140), 0x0, 0x0) [ 76.739720] audit: type=1400 audit(1738081030.586:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:17:10 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sysvipc/sem\x00', 0x0, 0x0) vmsplice(r0, &(0x7f0000003e00)=[{&(0x7f0000003a40)="ca", 0x1}], 0x1, 0x0) 16:17:10 executing program 5: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff}) clock_gettime(0x0, &(0x7f0000000480)={0x0, 0x0}) ppoll(&(0x7f0000000440)=[{r0}, {r1}], 0x2, &(0x7f00000004c0)={0x0, r2+60000000}, &(0x7f0000000500)={[0x100000001]}, 0x8) 16:17:10 executing program 6: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSBRKP(r0, 0x5425, 0x0) [ 78.305257] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.311856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.317031] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.328076] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 78.333833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 78.341654] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 78.346275] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 78.353604] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 78.355841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 78.357671] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 78.363629] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 78.363720] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 78.374408] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 78.382682] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 78.389744] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 78.393203] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 78.397789] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 78.402713] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 78.471782] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 78.488050] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 78.501362] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 78.517310] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 78.519152] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 78.528442] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 78.529147] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 78.535370] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 78.535448] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 78.543746] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 78.551202] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 78.554635] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 78.554914] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 78.565223] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 78.565295] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 78.567811] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 78.573863] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 78.576311] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 78.579364] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 78.581193] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 78.581773] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 78.586862] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 78.588541] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 78.599033] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 78.611828] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 78.616664] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 78.626914] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 78.628765] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 78.645537] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 78.650422] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 80.397061] Bluetooth: hci0: command tx timeout [ 80.459942] Bluetooth: hci1: command tx timeout [ 80.460782] Bluetooth: hci2: command tx timeout [ 80.652207] Bluetooth: hci4: command tx timeout [ 80.715646] Bluetooth: hci7: command tx timeout [ 80.716605] Bluetooth: hci3: command tx timeout [ 80.717135] Bluetooth: hci6: command tx timeout [ 80.717712] Bluetooth: hci5: command tx timeout [ 82.444157] Bluetooth: hci0: command tx timeout [ 82.508589] Bluetooth: hci1: command tx timeout [ 82.509025] Bluetooth: hci2: command tx timeout [ 82.700555] Bluetooth: hci4: command tx timeout [ 82.764600] Bluetooth: hci7: command tx timeout [ 82.765028] Bluetooth: hci5: command tx timeout [ 82.765557] Bluetooth: hci6: command tx timeout [ 82.765966] Bluetooth: hci3: command tx timeout [ 84.491574] Bluetooth: hci0: command tx timeout [ 84.557046] Bluetooth: hci1: command tx timeout [ 84.557510] Bluetooth: hci2: command tx timeout [ 84.748518] Bluetooth: hci4: command tx timeout [ 84.811684] Bluetooth: hci5: command tx timeout [ 84.812154] Bluetooth: hci3: command tx timeout [ 84.813310] Bluetooth: hci6: command tx timeout [ 84.813786] Bluetooth: hci7: command tx timeout [ 86.539627] Bluetooth: hci0: command tx timeout [ 86.604670] Bluetooth: hci2: command tx timeout [ 86.605156] Bluetooth: hci1: command tx timeout [ 86.796671] Bluetooth: hci4: command tx timeout [ 86.861392] Bluetooth: hci6: command tx timeout [ 86.862023] Bluetooth: hci7: command tx timeout [ 86.862428] Bluetooth: hci3: command tx timeout [ 86.862893] Bluetooth: hci5: command tx timeout [ 140.629933] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 140.632904] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 140.635616] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 140.645373] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 140.650976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 140.653395] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 140.697336] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 140.702776] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 140.705115] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 140.711871] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 140.714656] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 140.716792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 140.773327] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 140.776834] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 140.778699] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 140.780278] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 140.782821] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 140.783960] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 140.784857] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 140.788810] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 140.797298] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 140.798793] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 140.802671] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 140.807626] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 140.832655] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 140.842694] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 140.848209] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 140.854089] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 140.855689] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 140.857559] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 140.918869] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 140.930140] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 140.932869] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 140.939614] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 140.961254] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 140.966884] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 140.968341] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 140.979188] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 140.983785] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 140.985751] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 140.996367] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 141.000151] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 141.006770] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 141.008551] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 141.023218] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 141.024795] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 141.032907] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 141.034522] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 142.732657] Bluetooth: hci0: command tx timeout [ 142.795658] Bluetooth: hci1: command tx timeout [ 142.923876] Bluetooth: hci2: command tx timeout [ 142.925201] Bluetooth: hci3: command tx timeout [ 142.987637] Bluetooth: hci4: command tx timeout [ 143.115690] Bluetooth: hci5: command tx timeout [ 143.117549] Bluetooth: hci7: command tx timeout [ 143.118639] Bluetooth: hci6: command tx timeout [ 144.779642] Bluetooth: hci0: command tx timeout [ 144.844656] Bluetooth: hci1: command tx timeout [ 144.972847] Bluetooth: hci2: command tx timeout [ 144.973362] Bluetooth: hci3: command tx timeout [ 145.036486] Bluetooth: hci4: command tx timeout [ 145.163609] Bluetooth: hci7: command tx timeout [ 145.164101] Bluetooth: hci6: command tx timeout [ 145.164960] Bluetooth: hci5: command tx timeout [ 146.827523] Bluetooth: hci0: command tx timeout [ 146.891651] Bluetooth: hci1: command tx timeout [ 147.019514] Bluetooth: hci2: command tx timeout [ 147.019967] Bluetooth: hci3: command tx timeout [ 147.085472] Bluetooth: hci4: command tx timeout [ 147.212596] Bluetooth: hci5: command tx timeout [ 147.213042] Bluetooth: hci6: command tx timeout [ 147.214199] Bluetooth: hci7: command tx timeout [ 148.875551] Bluetooth: hci0: command tx timeout [ 148.939828] Bluetooth: hci1: command tx timeout [ 149.067651] Bluetooth: hci2: command tx timeout [ 149.068598] Bluetooth: hci3: command tx timeout [ 149.132331] Bluetooth: hci4: command tx timeout [ 149.259837] Bluetooth: hci7: command tx timeout [ 149.260902] Bluetooth: hci5: command tx timeout [ 149.261563] Bluetooth: hci6: command tx timeout [ 202.538700] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 202.540633] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 202.542816] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 202.550673] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 202.552639] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 202.559817] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 202.646372] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 202.650788] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 202.652042] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 202.665629] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 202.667334] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 202.668650] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 202.718064] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 202.720651] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 202.722688] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 202.747523] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 202.757739] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 202.760615] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 202.786103] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 202.788659] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 202.802100] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 202.816394] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 202.824641] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 202.826012] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 202.866164] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 202.884010] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 202.887626] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 202.908643] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 202.921091] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 202.926976] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 202.929329] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 202.930743] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 202.931791] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 202.954639] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 202.956842] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 202.958569] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 202.961819] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 202.963102] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 202.964134] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 202.976770] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 202.984618] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 202.987627] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 203.000678] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 203.053952] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 203.069845] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 203.157071] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 203.160814] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 203.169687] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 204.620804] Bluetooth: hci0: command tx timeout [ 204.748524] Bluetooth: hci1: command tx timeout [ 204.811642] Bluetooth: hci2: command tx timeout [ 204.939589] Bluetooth: hci4: command tx timeout [ 204.942621] Bluetooth: hci3: command tx timeout [ 205.003498] Bluetooth: hci5: command tx timeout [ 205.067668] Bluetooth: hci6: command tx timeout [ 205.259588] Bluetooth: hci7: command tx timeout [ 206.667599] Bluetooth: hci0: command tx timeout [ 206.795492] Bluetooth: hci1: command tx timeout [ 206.859521] Bluetooth: hci2: command tx timeout [ 206.989482] Bluetooth: hci3: command tx timeout [ 206.989976] Bluetooth: hci4: command tx timeout [ 207.051517] Bluetooth: hci5: command tx timeout [ 207.115588] Bluetooth: hci6: command tx timeout [ 207.309240] Bluetooth: hci7: command tx timeout [ 208.715556] Bluetooth: hci0: command tx timeout [ 208.843924] Bluetooth: hci1: command tx timeout [ 208.907610] Bluetooth: hci2: command tx timeout [ 209.035538] Bluetooth: hci4: command tx timeout [ 209.036023] Bluetooth: hci3: command tx timeout [ 209.100291] Bluetooth: hci5: command tx timeout [ 209.164505] Bluetooth: hci6: command tx timeout [ 209.355579] Bluetooth: hci7: command tx timeout [ 210.763550] Bluetooth: hci0: command tx timeout [ 210.892487] Bluetooth: hci1: command tx timeout [ 210.955561] Bluetooth: hci2: command tx timeout [ 211.083547] Bluetooth: hci3: command tx timeout [ 211.084057] Bluetooth: hci4: command tx timeout [ 211.147482] Bluetooth: hci5: command tx timeout [ 211.212458] Bluetooth: hci6: command tx timeout [ 211.403556] Bluetooth: hci7: command tx timeout [ 265.242308] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 265.245634] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 265.251340] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 265.262263] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 265.268742] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 265.271917] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 265.383464] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 265.386090] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 265.388056] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 265.397001] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 265.402937] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 265.405026] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 265.504601] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 265.507198] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 265.517149] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 265.528915] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 265.548128] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 265.553623] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 265.635383] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 265.661152] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 265.687982] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 265.689774] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 265.699908] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 265.703650] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 265.708803] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 265.716936] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 265.720034] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 265.740895] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 265.784342] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 265.786918] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 265.789088] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 265.797002] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 265.799283] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 265.805953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 265.826225] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 265.828049] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 265.830590] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 265.868221] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 265.870091] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 265.900243] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 265.901792] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 265.906342] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 265.919316] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 265.921249] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 265.924823] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 265.926878] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 265.928619] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 265.950114] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 267.340510] Bluetooth: hci0: command tx timeout [ 267.467542] Bluetooth: hci1: command tx timeout [ 267.596679] Bluetooth: hci2: command tx timeout [ 267.853759] Bluetooth: hci3: command tx timeout [ 267.855233] Bluetooth: hci4: command tx timeout [ 268.043570] Bluetooth: hci7: command tx timeout [ 268.044636] Bluetooth: hci6: command tx timeout [ 268.107682] Bluetooth: hci5: command tx timeout [ 269.387498] Bluetooth: hci0: command tx timeout [ 269.515472] Bluetooth: hci1: command tx timeout [ 269.646434] Bluetooth: hci2: command tx timeout [ 269.900609] Bluetooth: hci4: command tx timeout [ 269.901077] Bluetooth: hci3: command tx timeout [ 270.092465] Bluetooth: hci7: command tx timeout [ 270.092935] Bluetooth: hci6: command tx timeout [ 270.157445] Bluetooth: hci5: command tx timeout [ 271.435575] Bluetooth: hci0: command tx timeout [ 271.564541] Bluetooth: hci1: command tx timeout [ 271.691482] Bluetooth: hci2: command tx timeout [ 271.947505] Bluetooth: hci3: command tx timeout [ 271.948011] Bluetooth: hci4: command tx timeout [ 272.139554] Bluetooth: hci6: command tx timeout [ 272.140218] Bluetooth: hci7: command tx timeout [ 272.203787] Bluetooth: hci5: command tx timeout [ 273.485440] Bluetooth: hci0: command tx timeout [ 273.611483] Bluetooth: hci1: command tx timeout [ 273.739485] Bluetooth: hci2: command tx timeout [ 273.995534] Bluetooth: hci3: command tx timeout [ 273.996031] Bluetooth: hci4: command tx timeout [ 274.187498] Bluetooth: hci6: command tx timeout [ 274.187989] Bluetooth: hci7: command tx timeout [ 274.251566] Bluetooth: hci5: command tx timeout [ 321.062171] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.062904] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.313463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.314121] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.561296] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.562006] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 322.708652] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.709301] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:21:16 executing program 1: syz_mount_image$nfs(0x0, 0x0, 0x0, 0x3, &(0x7f0000000700)=[{&(0x7f0000000480)="a3", 0x1}, {&(0x7f0000000540)="bd", 0x1}, {&(0x7f0000000640)='\t', 0x1}], 0x0, 0x0) [ 322.916243] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 322.917302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:21:16 executing program 1: syz_mount_image$nfs(0x0, 0x0, 0x0, 0x3, &(0x7f0000000700)=[{&(0x7f0000000480)="a3", 0x1}, {&(0x7f0000000540)="bd", 0x1}, {&(0x7f0000000640)='\t', 0x1}], 0x0, 0x0) [ 323.145721] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.146431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:21:17 executing program 1: syz_mount_image$nfs(0x0, 0x0, 0x0, 0x3, &(0x7f0000000700)=[{&(0x7f0000000480)="a3", 0x1}, {&(0x7f0000000540)="bd", 0x1}, {&(0x7f0000000640)='\t', 0x1}], 0x0, 0x0) 16:21:17 executing program 1: write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_mount_image$nfs(&(0x7f0000000400), &(0x7f0000000440)='./file0\x00', 0x0, 0x1, &(0x7f0000000700)=[{&(0x7f0000000480)="a3", 0x1}], 0x0, &(0x7f0000000780)) utimes(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)={{}, {0x0, 0x2710}}) 16:21:17 executing program 1: tee(0xffffffffffffffff, 0xffffffffffffffff, 0x10000, 0x0) 16:21:18 executing program 1: mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 16:21:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x29, 0x0, &(0x7f0000000140)=0x47) [ 324.653436] [ 324.653656] ====================================================== [ 324.654141] WARNING: possible circular locking dependency detected [ 324.654622] 6.13.0-next-20250128 #1 Not tainted [ 324.655025] ------------------------------------------------------ [ 324.656035] kworker/u8:0/11 is trying to acquire lock: [ 324.656760] ffffffff8621d9a8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.658357] [ 324.658357] but task is already holding lock: [ 324.659536] ffff88803c3d8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 324.661296] [ 324.661296] which lock already depends on the new lock. [ 324.661296] [ 324.662741] [ 324.662741] the existing dependency chain (in reverse order) is: [ 324.663871] [ 324.663871] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 324.664931] __mutex_lock+0x13d/0xb50 [ 324.665311] wiphy_register+0x1b2e/0x25d0 [ 324.665723] ieee80211_register_hw+0x23a4/0x3d60 [ 324.666160] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 324.666619] init_mac80211_hwsim+0x389/0x870 [ 324.667047] do_one_initcall+0xf9/0x640 [ 324.667441] kernel_init_freeable+0x53d/0x7a0 [ 324.667871] kernel_init+0x1e/0x2d0 [ 324.668216] ret_from_fork+0x48/0x80 [ 324.668565] ret_from_fork_asm+0x1a/0x30 [ 324.668970] [ 324.668970] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 324.669485] __lock_acquire+0x29fd/0x4580 [ 324.669911] lock_acquire+0x19b/0x520 [ 324.670303] __mutex_lock+0x13d/0xb50 [ 324.670699] unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.671231] unregister_netdevice_queue+0x224/0x2e0 [ 324.671709] _cfg80211_unregister_wdev+0x57b/0x700 [ 324.672200] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 324.672680] ieee80211_unregister_hw+0x55/0x3a0 [ 324.673134] hwsim_exit_net+0x3a0/0x730 [ 324.673535] ops_exit_list+0xb3/0x180 [ 324.673927] cleanup_net+0x546/0xad0 [ 324.674313] process_one_work+0x8ee/0x1a10 [ 324.674747] worker_thread+0x674/0xe70 [ 324.675156] kthread+0x3ab/0x720 [ 324.675522] ret_from_fork+0x48/0x80 [ 324.675891] ret_from_fork_asm+0x1a/0x30 [ 324.676314] [ 324.676314] other info that might help us debug this: [ 324.676314] [ 324.676937] Possible unsafe locking scenario: [ 324.676937] [ 324.677426] CPU0 CPU1 [ 324.677794] ---- ---- [ 324.678154] lock(&rdev->wiphy.mtx); [ 324.678477] lock(rtnl_mutex); [ 324.678941] lock(&rdev->wiphy.mtx); [ 324.679439] lock(rtnl_mutex); [ 324.679727] [ 324.679727] *** DEADLOCK *** [ 324.679727] [ 324.680208] 4 locks held by kworker/u8:0/11: [ 324.680595] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 324.681479] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 324.682330] #2: ffffffff862119d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 324.683122] #3: ffff88803c3d8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 324.684005] [ 324.684005] stack backtrace: [ 324.684383] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-next-20250128 #1 [ 324.684420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 324.684442] Workqueue: netns cleanup_net [ 324.684483] Call Trace: [ 324.684493] [ 324.684504] dump_stack_lvl+0xca/0x120 [ 324.684562] print_circular_bug+0x47b/0x750 [ 324.684608] check_noncircular+0x2e9/0x3c0 [ 324.684651] ? __pfx_check_noncircular+0x10/0x10 [ 324.684693] ? hlock_class+0x4e/0x130 [ 324.684723] ? srso_return_thunk+0x5/0x5f [ 324.684781] ? mark_lock+0xac/0xed0 [ 324.684828] ? lockdep_lock+0xba/0x1b0 [ 324.684886] ? __pfx_lockdep_lock+0x10/0x10 [ 324.684948] __lock_acquire+0x29fd/0x4580 [ 324.685002] ? __pfx___lock_acquire+0x10/0x10 [ 324.685045] ? lock_release+0x20f/0x6f0 [ 324.685089] ? __pfx_lock_release+0x10/0x10 [ 324.685133] ? srso_return_thunk+0x5/0x5f [ 324.685193] lock_acquire+0x19b/0x520 [ 324.685236] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.685285] ? __pfx_lock_acquire+0x10/0x10 [ 324.685332] ? srso_return_thunk+0x5/0x5f [ 324.685388] ? lock_is_held_type+0x9e/0x120 [ 324.685444] ? srso_return_thunk+0x5/0x5f [ 324.685503] __mutex_lock+0x13d/0xb50 [ 324.685556] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.685601] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.685647] ? srso_return_thunk+0x5/0x5f [ 324.685711] ? synchronize_rcu_expedited+0x38a/0x420 [ 324.685755] ? __pfx___mutex_lock+0x10/0x10 [ 324.685811] ? srso_return_thunk+0x5/0x5f [ 324.685868] ? srso_return_thunk+0x5/0x5f [ 324.685924] ? kasan_quarantine_put+0x84/0x1e0 [ 324.685985] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 324.686020] ? srso_return_thunk+0x5/0x5f [ 324.686080] unregister_netdevice_many_notify+0x1612/0x1c80 [ 324.686126] ? __virt_addr_valid+0x2e8/0x5d0 [ 324.686179] ? __pfx_lock_release+0x10/0x10 [ 324.686224] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 324.686270] ? find_held_lock+0x2c/0x110 [ 324.686328] ? srso_return_thunk+0x5/0x5f [ 324.686386] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 324.686447] ? srso_return_thunk+0x5/0x5f [ 324.686503] ? lock_release+0x20f/0x6f0 [ 324.686547] ? __pfx_lock_release+0x10/0x10 [ 324.686590] ? srso_return_thunk+0x5/0x5f [ 324.686646] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 324.686693] ? srso_return_thunk+0x5/0x5f [ 324.686755] unregister_netdevice_queue+0x224/0x2e0 [ 324.686798] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 324.686842] ? up_write+0x195/0x520 [ 324.686897] _cfg80211_unregister_wdev+0x57b/0x700 [ 324.686950] ? srso_return_thunk+0x5/0x5f [ 324.687009] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 324.687048] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 324.687087] ? srso_return_thunk+0x5/0x5f [ 324.687143] ? srso_return_thunk+0x5/0x5f [ 324.687199] ? synchronize_rcu+0x1ff/0x260 [ 324.687242] ieee80211_unregister_hw+0x55/0x3a0 [ 324.687287] hwsim_exit_net+0x3a0/0x730 [ 324.687329] ? __pfx_hwsim_exit_net+0x10/0x10 [ 324.687369] ? srso_return_thunk+0x5/0x5f [ 324.687425] ? netdev_run_todo+0x788/0x1040 [ 324.687474] ? __pfx_hwsim_exit_net+0x10/0x10 [ 324.687517] ops_exit_list+0xb3/0x180 [ 324.687560] cleanup_net+0x546/0xad0 [ 324.687605] ? __pfx_cleanup_net+0x10/0x10 [ 324.687659] process_one_work+0x8ee/0x1a10 [ 324.687724] ? __pfx_lock_acquire+0x10/0x10 [ 324.687769] ? __pfx_process_one_work+0x10/0x10 [ 324.687833] ? srso_return_thunk+0x5/0x5f [ 324.687888] ? move_linked_works+0x172/0x270 [ 324.687933] ? srso_return_thunk+0x5/0x5f [ 324.687989] ? assign_work+0x196/0x240 [ 324.688046] worker_thread+0x674/0xe70 [ 324.688105] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 324.688157] ? __pfx_worker_thread+0x10/0x10 [ 324.688217] kthread+0x3ab/0x720 [ 324.688269] ? __pfx_kthread+0x10/0x10 [ 324.688321] ? srso_return_thunk+0x5/0x5f [ 324.688377] ? finish_task_switch.isra.0+0x206/0x840 [ 324.688428] ? __pfx_kthread+0x10/0x10 [ 324.688482] ret_from_fork+0x48/0x80 [ 324.688513] ? __pfx_kthread+0x10/0x10 [ 324.688566] ret_from_fork_asm+0x1a/0x30 [ 324.688633] 16:21:18 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) recvmmsg(r0, &(0x7f0000004f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000140, 0x0) [ 327.186050] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 327.188214] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 327.191703] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 327.198062] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 327.200883] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 327.203015] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 327.573262] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 327.576030] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 327.586264] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 327.590126] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 327.593951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 327.596124] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 327.708827] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 327.710737] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 327.712806] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 327.724008] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 327.735047] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 327.738531] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 327.773849] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 327.780417] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 327.781926] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 327.796966] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 327.807011] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 327.820109] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 327.826056] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 327.832196] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 327.833780] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 327.835167] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 327.837054] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 327.839356] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 327.842318] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 327.849761] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 327.852764] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 327.860641] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 327.863118] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 327.864925] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 327.870697] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 327.872486] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 327.895781] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 327.900240] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 327.904164] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 327.907579] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 329.227463] Bluetooth: hci0: command tx timeout [ 329.611504] Bluetooth: hci1: command tx timeout [ 329.803600] Bluetooth: hci3: command tx timeout [ 329.932139] Bluetooth: hci7: command tx timeout [ 329.932167] Bluetooth: hci4: command tx timeout [ 329.932613] Bluetooth: hci5: command tx timeout [ 330.059581] Bluetooth: hci6: command tx timeout [ 331.277429] Bluetooth: hci0: command tx timeout [ 331.659630] Bluetooth: hci1: command tx timeout [ 331.851541] Bluetooth: hci3: command tx timeout [ 331.979514] Bluetooth: hci4: command tx timeout [ 331.979532] Bluetooth: hci7: command tx timeout [ 331.980458] Bluetooth: hci5: command tx timeout [ 332.107535] Bluetooth: hci6: command tx timeout [ 333.323504] Bluetooth: hci0: command tx timeout [ 333.707499] Bluetooth: hci1: command tx timeout [ 333.899485] Bluetooth: hci3: command tx timeout [ 334.027455] Bluetooth: hci5: command tx timeout [ 334.027526] Bluetooth: hci7: command tx timeout [ 334.027912] Bluetooth: hci4: command tx timeout [ 334.155485] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 16:21:18 Registers: info registers vcpu 0 RAX=ffffffff816368df RBX=0000000000000000 RCX=ffffffff8150263e RDX=0000000000000000 RSI=0000000000000008 RDI=ffff88806ce36290 RBP=ffff88806ce28300 RSP=ffff88806ce09e98 R8 =0000000000000000 R9 =fffffbfff0c8089a R10=ffffffff864044d7 R11=00000000fa83b2da R12=0000004b91a42180 R13=dffffc0000000000 R14=0000000000000000 R15=ffff88806ce2cac0 RIP=ffffffff81609d52 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9f92cc1540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f9f931bd6f4 CR3=000000002edac000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f9f931cc47000007f9f931cbf20 XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283f415 RDI=ffffffff886970a0 RBP=ffffffff88697060 RSP=ffff8880095decc8 R8 =0000000000000000 R9 =ffffed100169a046 R10=0000000000000034 R11=0000000023203e2d R12=0000000000000034 R13=0000000000000010 R14=ffffffff88697060 R15=ffffffff8283f400 RIP=ffffffff8283f46d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f70a6fcb620 CR3=000000000e7d2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00ffffffffffff0000000000000000 XMM01=0100010001000000ffffffffffffffff XMM02=0500050005000000455441564952505f XMM03=0000000000000000000000564952505f XMM04=00030005000500050005000000455441 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000