Warning: Permanently added '[localhost]:3777' (ECDSA) to the list of known hosts. 2025/01/20 17:21:58 fuzzer started 2025/01/20 17:21:58 dialing manager at localhost:44833 syzkaller login: [ 68.540677] cgroup: Unknown subsys name 'net' [ 68.659598] cgroup: Unknown subsys name 'cpuset' [ 68.695016] cgroup: Unknown subsys name 'rlimit' [ 74.630762] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 17:22:17 syscalls: 2217 2025/01/20 17:22:17 code coverage: enabled 2025/01/20 17:22:17 comparison tracing: enabled 2025/01/20 17:22:17 extra coverage: enabled 2025/01/20 17:22:17 setuid sandbox: enabled 2025/01/20 17:22:17 namespace sandbox: enabled 2025/01/20 17:22:17 Android sandbox: enabled 2025/01/20 17:22:17 fault injection: enabled 2025/01/20 17:22:17 leak checking: enabled 2025/01/20 17:22:17 net packet injection: enabled 2025/01/20 17:22:17 net device setup: enabled 2025/01/20 17:22:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 17:22:17 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 17:22:17 USB emulation: enabled 2025/01/20 17:22:17 hci packet injection: enabled 2025/01/20 17:22:17 wifi device emulation: enabled 2025/01/20 17:22:17 802.15.4 emulation: enabled 2025/01/20 17:22:17 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:22:17 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:22:20 starting 8 fuzzer processes 17:22:20 executing program 0: openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x81, 0x0) 17:22:20 executing program 1: r0 = getpid() r1 = pidfd_open(r0, 0x0) setns(r1, 0x80) 17:22:20 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$sock(r0, &(0x7f00000032c0)={0x0, 0x0, 0x0}, 0x0) 17:22:20 executing program 3: r0 = fsopen(&(0x7f0000000080)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) mknodat$null(r1, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) r2 = fsopen(&(0x7f0000000080)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) mknodat$null(r3, &(0x7f0000000000)='./file0\x00', 0x0, 0x103) move_mount(r1, &(0x7f0000000100)='./file0\x00', r3, &(0x7f0000000140)='./file0\x00', 0x0) 17:22:20 executing program 4: request_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='-[(\'.!{[/\x00', 0xfffffffffffffffb) [ 89.703277] audit: type=1400 audit(1737393740.138:7): avc: denied { execmem } for pid=270 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:22:20 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) mbind(&(0x7f0000fec000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0) 17:22:20 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000000)=@sr0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='iso9660\x00', 0x0, 0x0) 17:22:20 executing program 7: syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devpts\x00', 0x0, 0x0) pivot_root(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='.\x00') [ 91.175984] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.179174] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.181617] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.189730] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.193413] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.198237] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.201109] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.204601] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.207602] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.212743] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 91.215574] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.218247] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.238591] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.241716] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.242280] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.247558] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.250148] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 91.252626] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.254526] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.254832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.261002] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.283948] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.291430] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.297121] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.301253] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.301821] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.305793] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.319628] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.320251] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.321682] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 91.324822] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.334356] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.337581] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.339532] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 91.339794] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 91.347282] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 91.351285] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 91.353516] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 91.355483] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.356672] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 91.379300] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 91.397301] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 91.398074] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.414165] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 91.417178] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.435366] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.442957] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 91.445628] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.320266] Bluetooth: hci1: command tx timeout [ 93.322949] Bluetooth: hci2: command tx timeout [ 93.384943] Bluetooth: hci0: command tx timeout [ 93.448154] Bluetooth: hci4: command tx timeout [ 93.448568] Bluetooth: hci5: command tx timeout [ 93.448709] Bluetooth: hci3: command tx timeout [ 93.511973] Bluetooth: hci6: command tx timeout [ 93.512174] Bluetooth: hci7: command tx timeout [ 95.368016] Bluetooth: hci2: command tx timeout [ 95.368179] Bluetooth: hci1: command tx timeout [ 95.432271] Bluetooth: hci0: command tx timeout [ 95.496141] Bluetooth: hci3: command tx timeout [ 95.496306] Bluetooth: hci5: command tx timeout [ 95.496403] Bluetooth: hci4: command tx timeout [ 95.560123] Bluetooth: hci7: command tx timeout [ 95.560325] Bluetooth: hci6: command tx timeout [ 97.415994] Bluetooth: hci1: command tx timeout [ 97.416125] Bluetooth: hci2: command tx timeout [ 97.480090] Bluetooth: hci0: command tx timeout [ 97.544029] Bluetooth: hci4: command tx timeout [ 97.544153] Bluetooth: hci5: command tx timeout [ 97.544227] Bluetooth: hci3: command tx timeout [ 97.609915] Bluetooth: hci6: command tx timeout [ 97.610024] Bluetooth: hci7: command tx timeout [ 99.463987] Bluetooth: hci2: command tx timeout [ 99.464091] Bluetooth: hci1: command tx timeout [ 99.527951] Bluetooth: hci0: command tx timeout [ 99.592175] Bluetooth: hci3: command tx timeout [ 99.592941] Bluetooth: hci5: command tx timeout [ 99.593030] Bluetooth: hci4: command tx timeout [ 99.656929] Bluetooth: hci7: command tx timeout [ 99.657034] Bluetooth: hci6: command tx timeout [ 149.299452] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.299574] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 149.647498] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 149.647597] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 151.432911] [ 151.433167] ====================================================== [ 151.433776] WARNING: possible circular locking dependency detected [ 151.434364] 6.13.0-rc7-next-20250120 #1 Not tainted [ 151.434856] ------------------------------------------------------ [ 151.438700] kworker/u8:1/67 is trying to acquire lock: [ 151.439201] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.440222] [ 151.440222] but task is already holding lock: [ 151.440782] ffff888018ff0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 151.441739] [ 151.441739] which lock already depends on the new lock. [ 151.441739] [ 151.442496] [ 151.442496] the existing dependency chain (in reverse order) is: [ 151.443195] [ 151.443195] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 151.443872] __mutex_lock+0x13d/0xb50 [ 151.444328] wiphy_register+0x1b2e/0x25d0 [ 151.444824] ieee80211_register_hw+0x23a4/0x3d60 [ 151.445362] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 151.445933] init_mac80211_hwsim+0x389/0x870 [ 151.446456] do_one_initcall+0xf9/0x640 [ 151.446934] kernel_init_freeable+0x53d/0x7a0 [ 151.447467] kernel_init+0x1e/0x2d0 [ 151.447897] ret_from_fork+0x48/0x80 [ 151.448318] ret_from_fork_asm+0x1a/0x30 [ 151.448812] [ 151.448812] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 151.449428] __lock_acquire+0x29fd/0x4580 [ 151.449909] lock_acquire+0x19b/0x520 [ 151.450360] __mutex_lock+0x13d/0xb50 [ 151.450830] unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.451446] unregister_netdevice_queue+0x224/0x2e0 [ 151.452000] _cfg80211_unregister_wdev+0x57b/0x700 [ 151.452556] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 151.453097] ieee80211_unregister_hw+0x55/0x3a0 [ 151.453616] hwsim_exit_net+0x3a0/0x730 [ 151.454070] ops_exit_list+0xb3/0x180 [ 151.454515] cleanup_net+0x546/0xad0 [ 151.454946] process_one_work+0x8ee/0x1a10 [ 151.455445] worker_thread+0x674/0xe70 [ 151.455915] kthread+0x3ab/0x720 [ 151.456328] ret_from_fork+0x48/0x80 [ 151.456761] ret_from_fork_asm+0x1a/0x30 [ 151.457239] [ 151.457239] other info that might help us debug this: [ 151.457239] [ 151.457995] Possible unsafe locking scenario: [ 151.457995] [ 151.458562] CPU0 CPU1 [ 151.458988] ---- ---- [ 151.459408] lock(&rdev->wiphy.mtx); [ 151.459799] lock(rtnl_mutex); [ 151.460337] lock(&rdev->wiphy.mtx); [ 151.460930] lock(rtnl_mutex); [ 151.461266] [ 151.461266] *** DEADLOCK *** [ 151.461266] [ 151.461828] 4 locks held by kworker/u8:1/67: [ 151.462263] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 151.463289] #1: ffff88800f147d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 151.464259] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 151.465130] #3: ffff888018ff0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 151.466156] [ 151.466156] stack backtrace: [ 151.466582] CPU: 1 UID: 0 PID: 67 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250120 #1 [ 151.467412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 151.468238] Workqueue: netns cleanup_net [ 151.468687] Call Trace: [ 151.468951] [ 151.469184] dump_stack_lvl+0xca/0x120 [ 151.469630] print_circular_bug+0x47b/0x750 [ 151.470053] check_noncircular+0x2e9/0x3c0 [ 151.470475] ? lock_repin_lock+0x207/0x320 [ 151.470902] ? __pfx_check_noncircular+0x10/0x10 [ 151.471344] ? hlock_class+0x4e/0x130 [ 151.471705] ? mark_lock+0xac/0xed0 [ 151.472068] ? __pfx_lock_repin_lock+0x10/0x10 [ 151.472532] ? lockdep_lock+0xba/0x1b0 [ 151.472923] ? __pfx_lockdep_lock+0x10/0x10 [ 151.473349] __lock_acquire+0x29fd/0x4580 [ 151.473769] ? __pfx___lock_acquire+0x10/0x10 [ 151.474251] ? lock_release+0x20f/0x6f0 [ 151.474682] ? __pfx_lock_release+0x10/0x10 [ 151.475143] lock_acquire+0x19b/0x520 [ 151.475525] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.476113] ? __pfx_lock_acquire+0x10/0x10 [ 151.476582] ? srso_return_thunk+0x5/0x5f [ 151.477035] ? lock_release+0x20f/0x6f0 [ 151.477464] ? srso_return_thunk+0x5/0x5f [ 151.477916] ? lock_is_held_type+0x9e/0x120 [ 151.478363] ? srso_return_thunk+0x5/0x5f [ 151.478828] __mutex_lock+0x13d/0xb50 [ 151.479227] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.479806] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.480354] ? srso_return_thunk+0x5/0x5f [ 151.480777] ? synchronize_rcu_expedited+0x38a/0x420 [ 151.481251] ? __pfx___mutex_lock+0x10/0x10 [ 151.481677] ? __pfx_autoremove_wake_function+0x10/0x10 [ 151.482187] ? srso_return_thunk+0x5/0x5f [ 151.482641] ? kasan_quarantine_put+0x84/0x1e0 [ 151.483141] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 151.483626] ? srso_return_thunk+0x5/0x5f [ 151.484098] unregister_netdevice_many_notify+0x1612/0x1c80 [ 151.484638] ? __virt_addr_valid+0x2e8/0x5d0 [ 151.485076] ? __pfx_lock_release+0x10/0x10 [ 151.485492] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 151.486045] ? find_held_lock+0x2c/0x110 [ 151.486457] ? srso_return_thunk+0x5/0x5f [ 151.486921] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 151.487449] ? srso_return_thunk+0x5/0x5f [ 151.487908] ? lock_release+0x20f/0x6f0 [ 151.488330] ? __pfx_lock_release+0x10/0x10 [ 151.488798] ? srso_return_thunk+0x5/0x5f [ 151.489256] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 151.489821] ? srso_return_thunk+0x5/0x5f [ 151.490241] unregister_netdevice_queue+0x224/0x2e0 [ 151.490768] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 151.491339] ? up_write+0x195/0x520 [ 151.491741] _cfg80211_unregister_wdev+0x57b/0x700 [ 151.492214] ? srso_return_thunk+0x5/0x5f [ 151.492633] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 151.493103] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 151.493622] ? srso_return_thunk+0x5/0x5f [ 151.494078] ? srso_return_thunk+0x5/0x5f [ 151.494553] ? synchronize_rcu+0x1ff/0x260 [ 151.495006] ieee80211_unregister_hw+0x55/0x3a0 [ 151.495522] hwsim_exit_net+0x3a0/0x730 [ 151.496038] ? __pfx_hwsim_exit_net+0x10/0x10 [ 151.496530] ? srso_return_thunk+0x5/0x5f [ 151.496981] ? netdev_run_todo+0x788/0x1040 [ 151.497432] ? srso_return_thunk+0x5/0x5f [ 151.497874] ? __pfx_hwsim_exit_net+0x10/0x10 [ 151.498334] ops_exit_list+0xb3/0x180 [ 151.498735] cleanup_net+0x546/0xad0 [ 151.499126] ? __pfx_cleanup_net+0x10/0x10 [ 151.499574] process_one_work+0x8ee/0x1a10 [ 151.500045] ? __pfx_process_one_work+0x10/0x10 [ 151.500535] ? srso_return_thunk+0x5/0x5f [ 151.500975] ? srso_return_thunk+0x5/0x5f [ 151.501415] ? move_linked_works+0x172/0x270 [ 151.501868] ? srso_return_thunk+0x5/0x5f [ 151.502299] ? assign_work+0x196/0x240 [ 151.502713] worker_thread+0x674/0xe70 [ 151.503110] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 151.503625] ? __pfx_worker_thread+0x10/0x10 [ 151.504091] kthread+0x3ab/0x720 [ 151.504465] ? __pfx_kthread+0x10/0x10 [ 151.504872] ? srso_return_thunk+0x5/0x5f [ 151.505308] ? finish_task_switch.isra.0+0x206/0x840 [ 151.505822] ? __pfx_kthread+0x10/0x10 [ 151.506231] ret_from_fork+0x48/0x80 [ 151.506611] ? __pfx_kthread+0x10/0x10 [ 151.507025] ret_from_fork_asm+0x1a/0x30 [ 151.507471] [ 153.503031] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 153.503775] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 153.506762] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 153.508987] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 153.513695] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 153.515472] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 153.526148] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 153.530268] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 153.532513] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 153.536188] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 153.538139] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 153.541612] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 153.592202] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 153.593723] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 153.595733] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 153.596183] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 153.608292] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 153.609070] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 153.614711] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 153.618052] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 153.619449] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 153.623302] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 153.639434] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 153.644365] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 153.827340] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 153.840683] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 153.854483] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 153.864136] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 153.887309] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 153.892676] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.012778] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.013990] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.015394] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.019972] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.030655] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.030956] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.034334] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.038501] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.039564] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.045638] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.068687] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.074948] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.075222] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.084536] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 154.086294] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.087369] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.088636] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.088814] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 155.592019] Bluetooth: hci1: command tx timeout [ 155.592039] Bluetooth: hci0: command tx timeout [ 155.719945] Bluetooth: hci2: command tx timeout [ 155.720009] Bluetooth: hci3: command tx timeout [ 155.975996] Bluetooth: hci4: command tx timeout [ 156.168100] Bluetooth: hci7: command tx timeout [ 156.168180] Bluetooth: hci5: command tx timeout [ 156.232581] Bluetooth: hci6: command tx timeout [ 157.640260] Bluetooth: hci0: command tx timeout [ 157.640991] Bluetooth: hci1: command tx timeout [ 157.767964] Bluetooth: hci3: command tx timeout [ 157.768325] Bluetooth: hci2: command tx timeout [ 158.024967] Bluetooth: hci4: command tx timeout [ 158.216041] Bluetooth: hci5: command tx timeout [ 158.216148] Bluetooth: hci7: command tx timeout [ 158.281498] Bluetooth: hci6: command tx timeout [ 159.689890] Bluetooth: hci1: command tx timeout [ 159.689944] Bluetooth: hci0: command tx timeout [ 159.816529] Bluetooth: hci2: command tx timeout [ 159.816565] Bluetooth: hci3: command tx timeout [ 160.073855] Bluetooth: hci4: command tx timeout [ 160.265944] Bluetooth: hci7: command tx timeout [ 160.266012] Bluetooth: hci5: command tx timeout [ 160.329911] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 17:23:22 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff88800ef63000 RCX=ffffffff81429a0f RDX=1ffff11001de9b35 RSI=0000000000000008 RDI=ffff88800ef63000 RBP=0000000000200000 RSP=ffff88800f6efdb0 R8 =0000000000000000 R9 =ffffed1001dec600 R10=0000000000200000 R11=0000000000000000 R12=ffff88807a451ff9 R13=ffffffff886538c0 R14=ffff88800ef4d340 R15=0000000000000086 RIP=ffffffff81abd360 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000001f27f60 CR3=000000000ce70000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=8ad8647d0a1097a7a44fa43a7b3f1568 XMM02=00000000000fcfc8f61f520134a0d9c2 XMM03=0000000000133990f9980df3bdc2dbad XMM04=aca8982ef04fb73a00000000000ae988 XMM05=9f165a4fe6c971ad0000000000138448 XMM06=7c8d2a4f1e787a9800000000001383a8 XMM07=27e842290ee840ea0000000000133990 XMM08=ee7587d5db12e8e300000000000fcfc8 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000020200000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff88800f146bb8 R8 =0000000000000001 R9 =ffffed1001e28d67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea031 R15=ffff88800f146eb8 RIP=ffffffff8283e33d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056230c114500 CR3=00000000161d2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=ffffffff00000001000056230c10f5d0 XMM05=000056230c10f590000056230c100510 XMM06=00000000000000000000000400000003 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000020000000000000002000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000