Warning: Permanently added '[localhost]:1642' (ECDSA) to the list of known hosts. 2025/01/20 17:49:37 fuzzer started 2025/01/20 17:49:38 dialing manager at localhost:44833 syzkaller login: [ 62.106038] cgroup: Unknown subsys name 'net' [ 62.224252] cgroup: Unknown subsys name 'cpuset' [ 62.263807] cgroup: Unknown subsys name 'rlimit' [ 67.644952] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 77.910488] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 17:49:54 syscalls: 2217 2025/01/20 17:49:54 code coverage: enabled 2025/01/20 17:49:54 comparison tracing: enabled 2025/01/20 17:49:54 extra coverage: enabled 2025/01/20 17:49:54 setuid sandbox: enabled 2025/01/20 17:49:54 namespace sandbox: enabled 2025/01/20 17:49:54 Android sandbox: enabled 2025/01/20 17:49:54 fault injection: enabled 2025/01/20 17:49:54 leak checking: enabled 2025/01/20 17:49:54 net packet injection: enabled 2025/01/20 17:49:54 net device setup: enabled 2025/01/20 17:49:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 17:49:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 17:49:54 USB emulation: enabled 2025/01/20 17:49:54 hci packet injection: enabled 2025/01/20 17:49:54 wifi device emulation: enabled 2025/01/20 17:49:54 802.15.4 emulation: enabled 2025/01/20 17:49:54 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:49:54 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:49:57 starting 8 fuzzer processes 17:49:57 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_CCA_MODE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x0) 17:49:57 executing program 1: syz_io_uring_setup(0x781, &(0x7f0000000140)={0x0, 0x0, 0x2, 0x0, 0xfffffffe}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) 17:49:57 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)) llistxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000004c0)=""/4096, 0x1000) 17:49:57 executing program 3: r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f0000000540)) [ 81.579730] audit: type=1400 audit(1737395397.812:8): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:49:57 executing program 4: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockname(r0, 0x0, &(0x7f0000000200)) 17:49:57 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x22, &(0x7f0000000400)={[{@gid}]}) 17:49:57 executing program 6: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = dup(r0) bind$bt_hci(r1, 0x0, 0x0) 17:49:57 executing program 7: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) mkdir(&(0x7f0000000000)='./file1\x00', 0x0) listxattr(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 82.963482] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.966029] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.968503] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.973795] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.977235] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.979895] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.021921] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.026837] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 83.028838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 83.039731] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 83.042602] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 83.044864] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 83.085349] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.087638] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.089793] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.092182] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 83.094662] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 83.097283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 83.109652] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.111915] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 83.113152] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.115432] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 83.133135] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 83.139603] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 83.139624] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 83.143331] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 83.153562] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 83.160242] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.170719] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 83.174528] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.198724] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 83.213334] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.222643] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 83.225992] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 83.228644] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 83.230667] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 83.234636] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.239337] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 83.244773] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 83.245301] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 83.252060] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 83.274732] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 83.281821] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.287358] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 83.289905] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 83.293798] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.297258] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 83.300614] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.041844] Bluetooth: hci0: command tx timeout [ 85.105803] Bluetooth: hci1: command tx timeout [ 85.169750] Bluetooth: hci3: command tx timeout [ 85.233793] Bluetooth: hci2: command tx timeout [ 85.234479] Bluetooth: hci4: command tx timeout [ 85.297473] Bluetooth: hci7: command tx timeout [ 85.361546] Bluetooth: hci6: command tx timeout [ 85.427633] Bluetooth: hci5: command tx timeout [ 87.089823] Bluetooth: hci0: command tx timeout [ 87.153511] Bluetooth: hci1: command tx timeout [ 87.217660] Bluetooth: hci3: command tx timeout [ 87.281857] Bluetooth: hci2: command tx timeout [ 87.281967] Bluetooth: hci4: command tx timeout [ 87.345561] Bluetooth: hci7: command tx timeout [ 87.409495] Bluetooth: hci6: command tx timeout [ 87.473582] Bluetooth: hci5: command tx timeout [ 89.137519] Bluetooth: hci0: command tx timeout [ 89.203491] Bluetooth: hci1: command tx timeout [ 89.265775] Bluetooth: hci3: command tx timeout [ 89.329476] Bluetooth: hci2: command tx timeout [ 89.329565] Bluetooth: hci4: command tx timeout [ 89.393478] Bluetooth: hci7: command tx timeout [ 89.457449] Bluetooth: hci6: command tx timeout [ 89.521709] Bluetooth: hci5: command tx timeout [ 91.186463] Bluetooth: hci0: command tx timeout [ 91.249537] Bluetooth: hci1: command tx timeout [ 91.314428] Bluetooth: hci3: command tx timeout [ 91.377638] Bluetooth: hci2: command tx timeout [ 91.377777] Bluetooth: hci4: command tx timeout [ 91.443449] Bluetooth: hci7: command tx timeout [ 91.505576] Bluetooth: hci6: command tx timeout [ 91.569468] Bluetooth: hci5: command tx timeout [ 143.266477] [ 143.266748] ====================================================== [ 143.267306] WARNING: possible circular locking dependency detected [ 143.267911] 6.13.0-rc7-next-20250120 #1 Not tainted [ 143.268405] ------------------------------------------------------ [ 143.270325] kworker/u8:0/11 is trying to acquire lock: [ 143.271569] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.273876] [ 143.273876] but task is already holding lock: [ 143.275062] ffff8880373c0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 143.277110] [ 143.277110] which lock already depends on the new lock. [ 143.277110] [ 143.277856] [ 143.277856] the existing dependency chain (in reverse order) is: [ 143.278556] [ 143.278556] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 143.279216] __mutex_lock+0x13d/0xb50 [ 143.279682] wiphy_register+0x1b2e/0x25d0 [ 143.280177] ieee80211_register_hw+0x23a4/0x3d60 [ 143.280710] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 143.281262] init_mac80211_hwsim+0x389/0x870 [ 143.281750] do_one_initcall+0xf9/0x640 [ 143.282207] kernel_init_freeable+0x53d/0x7a0 [ 143.282731] kernel_init+0x1e/0x2d0 [ 143.283164] ret_from_fork+0x48/0x80 [ 143.283593] ret_from_fork_asm+0x1a/0x30 [ 143.284078] [ 143.284078] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 143.284659] __lock_acquire+0x29fd/0x4580 [ 143.285107] lock_acquire+0x19b/0x520 [ 143.285524] __mutex_lock+0x13d/0xb50 [ 143.285950] unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.286564] unregister_netdevice_queue+0x224/0x2e0 [ 143.287127] _cfg80211_unregister_wdev+0x57b/0x700 [ 143.287645] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 143.288162] ieee80211_unregister_hw+0x55/0x3a0 [ 143.288655] hwsim_exit_net+0x3a0/0x730 [ 143.289087] ops_exit_list+0xb3/0x180 [ 143.289511] cleanup_net+0x546/0xad0 [ 143.289925] process_one_work+0x8ee/0x1a10 [ 143.290424] worker_thread+0x674/0xe70 [ 143.290914] kthread+0x3ab/0x720 [ 143.291333] ret_from_fork+0x48/0x80 [ 143.291737] ret_from_fork_asm+0x1a/0x30 [ 143.292191] [ 143.292191] other info that might help us debug this: [ 143.292191] [ 143.292892] Possible unsafe locking scenario: [ 143.292892] [ 143.293461] CPU0 CPU1 [ 143.293911] ---- ---- [ 143.294368] lock(&rdev->wiphy.mtx); [ 143.294779] lock(rtnl_mutex); [ 143.295362] lock(&rdev->wiphy.mtx); [ 143.295993] lock(rtnl_mutex); [ 143.296337] [ 143.296337] *** DEADLOCK *** [ 143.296337] [ 143.296865] 4 locks held by kworker/u8:0/11: [ 143.297270] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 143.298211] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 143.299191] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 143.300105] #3: ffff8880373c0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 143.301136] [ 143.301136] stack backtrace: [ 143.301568] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250120 #1 [ 143.302381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 143.303164] Workqueue: netns cleanup_net [ 143.303589] Call Trace: [ 143.303845] [ 143.304075] dump_stack_lvl+0xca/0x120 [ 143.304507] print_circular_bug+0x47b/0x750 [ 143.304953] check_noncircular+0x2e9/0x3c0 [ 143.305387] ? srso_return_thunk+0x5/0x5f [ 143.305830] ? __pfx_check_noncircular+0x10/0x10 [ 143.306312] ? hlock_class+0x4e/0x130 [ 143.306701] ? mark_lock+0xac/0xed0 [ 143.307094] ? srso_return_thunk+0x5/0x5f [ 143.307532] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 143.307999] ? lockdep_lock+0xba/0x1b0 [ 143.308429] ? __pfx_lockdep_lock+0x10/0x10 [ 143.308863] __lock_acquire+0x29fd/0x4580 [ 143.309265] ? __pfx___lock_acquire+0x10/0x10 [ 143.309688] ? lock_release+0x20f/0x6f0 [ 143.310090] ? __pfx_lock_release+0x10/0x10 [ 143.310533] lock_acquire+0x19b/0x520 [ 143.310935] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.311515] ? __pfx_lock_acquire+0x10/0x10 [ 143.311952] ? srso_return_thunk+0x5/0x5f [ 143.312388] ? lock_release+0x20f/0x6f0 [ 143.312795] ? srso_return_thunk+0x5/0x5f [ 143.313228] ? lock_is_held_type+0x9e/0x120 [ 143.313679] ? srso_return_thunk+0x5/0x5f [ 143.314116] __mutex_lock+0x13d/0xb50 [ 143.314521] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.315107] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.315687] ? srso_return_thunk+0x5/0x5f [ 143.316123] ? synchronize_rcu_expedited+0x38a/0x420 [ 143.316635] ? __pfx___mutex_lock+0x10/0x10 [ 143.317073] ? __pfx_autoremove_wake_function+0x10/0x10 [ 143.317572] ? srso_return_thunk+0x5/0x5f [ 143.317979] ? kasan_quarantine_put+0x84/0x1e0 [ 143.318435] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 143.318862] ? srso_return_thunk+0x5/0x5f [ 143.319271] unregister_netdevice_many_notify+0x1612/0x1c80 [ 143.319791] ? __virt_addr_valid+0x2e8/0x5d0 [ 143.320222] ? __pfx_lock_release+0x10/0x10 [ 143.320629] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 143.321180] ? find_held_lock+0x2c/0x110 [ 143.321581] ? srso_return_thunk+0x5/0x5f [ 143.322005] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 143.322516] ? srso_return_thunk+0x5/0x5f [ 143.322957] ? lock_release+0x20f/0x6f0 [ 143.323366] ? __pfx_lock_release+0x10/0x10 [ 143.323806] ? srso_return_thunk+0x5/0x5f [ 143.324214] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 143.324704] ? srso_return_thunk+0x5/0x5f [ 143.325125] unregister_netdevice_queue+0x224/0x2e0 [ 143.325623] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 143.326130] ? up_write+0x195/0x520 [ 143.326494] _cfg80211_unregister_wdev+0x57b/0x700 [ 143.326969] ? srso_return_thunk+0x5/0x5f [ 143.327385] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 143.327853] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 143.328358] ? srso_return_thunk+0x5/0x5f [ 143.328762] ? srso_return_thunk+0x5/0x5f [ 143.329167] ? synchronize_rcu+0x1ff/0x260 [ 143.329566] ieee80211_unregister_hw+0x55/0x3a0 [ 143.330007] hwsim_exit_net+0x3a0/0x730 [ 143.330390] ? __pfx_hwsim_exit_net+0x10/0x10 [ 143.330821] ? srso_return_thunk+0x5/0x5f [ 143.331225] ? netdev_run_todo+0x788/0x1040 [ 143.331639] ? __pfx_hwsim_exit_net+0x10/0x10 [ 143.332081] ops_exit_list+0xb3/0x180 [ 143.332476] cleanup_net+0x546/0xad0 [ 143.332864] ? __pfx_cleanup_net+0x10/0x10 [ 143.333305] process_one_work+0x8ee/0x1a10 [ 143.333760] ? __pfx_lock_acquire+0x10/0x10 [ 143.334204] ? __pfx_process_one_work+0x10/0x10 [ 143.334696] ? srso_return_thunk+0x5/0x5f [ 143.335150] ? move_linked_works+0x172/0x270 [ 143.335567] ? srso_return_thunk+0x5/0x5f [ 143.335971] ? assign_work+0x196/0x240 [ 143.336360] worker_thread+0x674/0xe70 [ 143.336748] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 143.337241] ? __pfx_worker_thread+0x10/0x10 [ 143.337677] kthread+0x3ab/0x720 [ 143.338019] ? __pfx_kthread+0x10/0x10 [ 143.338403] ? srso_return_thunk+0x5/0x5f [ 143.338819] ? finish_task_switch.isra.0+0x206/0x840 [ 143.339295] ? __pfx_kthread+0x10/0x10 [ 143.339681] ret_from_fork+0x48/0x80 [ 143.340026] ? __pfx_kthread+0x10/0x10 [ 143.340408] ret_from_fork_asm+0x1a/0x30 [ 143.340816] [ 145.295333] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 145.299146] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 145.303104] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 145.316304] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 145.319720] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 145.328011] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 145.328278] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 145.337252] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 145.342510] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 145.345696] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 145.349249] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 145.353888] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 145.355755] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 145.356086] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 145.356636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 145.365326] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 145.367083] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 145.370875] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 145.371874] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 145.372179] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 145.372528] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 145.373808] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 145.386097] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 145.388252] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 145.391809] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 145.396055] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 145.401135] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 145.409326] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 145.413437] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 145.419676] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 145.421603] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 145.423591] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 145.424255] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 145.427222] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 145.428857] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 145.432135] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 145.433947] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 145.443301] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 145.443777] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 145.448091] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 145.451760] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 145.454804] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 145.457681] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 145.474602] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 145.475269] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 145.510852] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 145.513601] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 145.515760] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 147.441450] Bluetooth: hci1: command tx timeout [ 147.444396] Bluetooth: hci2: command tx timeout [ 147.505650] Bluetooth: hci3: command tx timeout [ 147.506200] Bluetooth: hci6: command tx timeout [ 147.506280] Bluetooth: hci0: command tx timeout [ 147.506310] Bluetooth: hci5: command tx timeout [ 147.570420] Bluetooth: hci7: command tx timeout [ 147.570485] Bluetooth: hci4: command tx timeout [ 149.490453] Bluetooth: hci2: command tx timeout [ 149.490536] Bluetooth: hci1: command tx timeout [ 149.553624] Bluetooth: hci5: command tx timeout [ 149.553936] Bluetooth: hci3: command tx timeout [ 149.554021] Bluetooth: hci0: command tx timeout [ 149.554085] Bluetooth: hci6: command tx timeout [ 149.617485] Bluetooth: hci4: command tx timeout [ 149.617512] Bluetooth: hci7: command tx timeout [ 151.538419] Bluetooth: hci1: command tx timeout [ 151.538498] Bluetooth: hci2: command tx timeout [ 151.601560] Bluetooth: hci6: command tx timeout [ 151.601581] Bluetooth: hci0: command tx timeout [ 151.601664] Bluetooth: hci3: command tx timeout [ 151.601693] Bluetooth: hci5: command tx timeout [ 151.665424] Bluetooth: hci7: command tx timeout [ 151.666549] Bluetooth: hci4: command tx timeout VM DIAGNOSIS: 17:50:59 Registers: info registers vcpu 0 RAX=ffff88800f245340 RBX=ffff88807be27d80 RCX=ffffffff81429a4a RDX=1ffff11001e4e680 RSI=0000000000000008 RDI=ffff88800f273400 RBP=fbfbfbfbfbfbfbfb RSP=ffff88800f617dd0 R8 =0000000000000000 R9 =ffffed1001e4e680 R10=ffff88800f273407 R11=ffff88800f2457f8 R12=ffff88807be27ff9 R13=ffffffff88654488 R14=ffff88800f245340 R15=0000000000000086 RIP=ffffffff81aef93f RFL=00000057 [---ZAPC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f39f225d170 CR3=0000000015ef2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=3e7f36801e54af978848ccee7f909d2a XMM02=d12871896912de2d00000000000fedb0 XMM03=f9980df3bdc2dbad0000000000133980 XMM04=8f8a9a633532077600000000000ae988 XMM05=9f165a4fe6c971ad0000000000137b50 XMM06=7c8d2a4f1e787a980000000000137ab0 XMM07=184cb7f5393d2afb00000000001339d8 XMM08=68a8aee3740b9fad00000000000feed0 XMM09=00000000000000000000000000000000 XMM10=00200000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff8880095deb28 R8 =0000000000000001 R9 =ffffed10012bbd55 R10=0000000000000066 R11=3038383866666666 R12=0000000000000066 R13=0000000000000001 R14=ffff888008fea05b R15=ffff8880095dee28 RIP=ffffffff8283e33d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe6b00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000561ec3e40c70 CR3=000000000aaba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=2039353a30353a3731203032206e614a XMM01=617420646570706f7453203a5d315b64 XMM02=6c6c694b20465220657661532f64616f XMM03=65747379732072656c6c616b7a797320 XMM04=2037353a39343a3731203032206e614a XMM05=65636f72703d7373616c63742030733a XMM06=733a755f6d65747379733d747865746e XMM07=725f6d65747379733a755f6d65747379 XMM08=7475636578652d7a7973223d6d6d6f63 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000