Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:2113' (ECDSA) to the list of known hosts. 2025/01/20 18:38:01 fuzzer started 2025/01/20 18:38:02 dialing manager at localhost:44833 syzkaller login: [ 78.405829] cgroup: Unknown subsys name 'net' [ 78.523479] cgroup: Unknown subsys name 'cpuset' [ 78.559999] cgroup: Unknown subsys name 'rlimit' [ 84.098919] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 18:38:19 syscalls: 2217 2025/01/20 18:38:19 code coverage: enabled 2025/01/20 18:38:19 comparison tracing: enabled 2025/01/20 18:38:19 extra coverage: enabled 2025/01/20 18:38:19 setuid sandbox: enabled 2025/01/20 18:38:19 namespace sandbox: enabled 2025/01/20 18:38:19 Android sandbox: enabled 2025/01/20 18:38:19 fault injection: enabled 2025/01/20 18:38:19 leak checking: enabled 2025/01/20 18:38:19 net packet injection: enabled 2025/01/20 18:38:19 net device setup: enabled 2025/01/20 18:38:19 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 18:38:19 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 18:38:19 USB emulation: enabled 2025/01/20 18:38:19 hci packet injection: enabled 2025/01/20 18:38:19 wifi device emulation: enabled 2025/01/20 18:38:19 802.15.4 emulation: enabled 2025/01/20 18:38:19 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 18:38:19 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 18:38:22 starting 8 fuzzer processes 18:38:22 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) eventfd(0x0) 18:38:22 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000480)={0x18, 0x69, 0x101, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@local}]}, 0x18}], 0x1}, 0x0) 18:38:22 executing program 2: r0 = perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 18:38:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x38, r1, 0x42d926fcd0eb0549, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'veth0\x00'}]}, 0x38}}, 0x0) 18:38:22 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x28}}, 0x0) 18:38:22 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) io_submit(0x0, 0x0, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) pwrite64(0xffffffffffffffff, &(0x7f0000000280), 0x0, 0x0) 18:38:22 executing program 6: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x0, 0x2) [ 98.272650] audit: type=1400 audit(1737398302.123:7): avc: denied { execmem } for pid=279 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:38:22 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x18, 0x0, 0x101, 0x0, 0x0, {0x2, 0xcc}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0) [ 99.666040] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 99.671453] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 99.673849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 99.680630] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 99.685930] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 99.688890] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.752920] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 99.758554] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 99.760957] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 99.771214] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 99.775248] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 99.777422] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 99.778663] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.780029] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.782009] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.787351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 99.791754] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.795738] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 99.799742] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 99.801966] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 99.805788] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 99.810433] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 99.832634] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 99.835644] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.898068] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 99.903069] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 99.906660] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 99.912808] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 99.913250] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 99.920017] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 99.929047] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 99.931821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 99.934926] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 99.937042] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 99.947106] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 99.950746] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 99.973195] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 99.991746] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 99.994558] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 100.020618] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 100.024768] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 100.029086] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 100.035785] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 100.038821] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 100.047075] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 100.052682] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 100.058628] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 100.075551] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 101.746053] Bluetooth: hci0: command tx timeout [ 101.874370] Bluetooth: hci2: command tx timeout [ 101.874547] Bluetooth: hci1: command tx timeout [ 101.936499] Bluetooth: hci3: command tx timeout [ 102.000600] Bluetooth: hci5: command tx timeout [ 102.064378] Bluetooth: hci4: command tx timeout [ 102.128553] Bluetooth: hci6: command tx timeout [ 102.192560] Bluetooth: hci7: command tx timeout [ 103.792777] Bluetooth: hci0: command tx timeout [ 103.922401] Bluetooth: hci1: command tx timeout [ 103.922547] Bluetooth: hci2: command tx timeout [ 103.985448] Bluetooth: hci3: command tx timeout [ 104.050335] Bluetooth: hci5: command tx timeout [ 104.119210] Bluetooth: hci4: command tx timeout [ 104.176399] Bluetooth: hci6: command tx timeout [ 104.240513] Bluetooth: hci7: command tx timeout [ 105.842339] Bluetooth: hci0: command tx timeout [ 105.968403] Bluetooth: hci2: command tx timeout [ 105.968482] Bluetooth: hci1: command tx timeout [ 106.032474] Bluetooth: hci3: command tx timeout [ 106.096381] Bluetooth: hci5: command tx timeout [ 106.161357] Bluetooth: hci4: command tx timeout [ 106.225326] Bluetooth: hci6: command tx timeout [ 106.288362] Bluetooth: hci7: command tx timeout [ 107.889735] Bluetooth: hci0: command tx timeout [ 108.016472] Bluetooth: hci2: command tx timeout [ 108.017431] Bluetooth: hci1: command tx timeout [ 108.080370] Bluetooth: hci3: command tx timeout [ 108.146413] Bluetooth: hci5: command tx timeout [ 108.208512] Bluetooth: hci4: command tx timeout [ 108.273507] Bluetooth: hci6: command tx timeout [ 108.336475] Bluetooth: hci7: command tx timeout [ 158.035695] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 158.035814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 158.385171] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 158.385253] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 159.410324] [ 159.410588] ====================================================== [ 159.411176] WARNING: possible circular locking dependency detected [ 159.411763] 6.13.0-rc7-next-20250120 #1 Not tainted [ 159.412244] ------------------------------------------------------ [ 159.413593] kworker/u8:1/66 is trying to acquire lock: [ 159.414736] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.416580] [ 159.416580] but task is already holding lock: [ 159.418079] ffff888036770768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 159.419112] [ 159.419112] which lock already depends on the new lock. [ 159.419112] [ 159.419953] [ 159.419953] the existing dependency chain (in reverse order) is: [ 159.420700] [ 159.420700] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 159.421409] __mutex_lock+0x13d/0xb50 [ 159.421896] wiphy_register+0x1b2e/0x25d0 [ 159.422436] ieee80211_register_hw+0x23a4/0x3d60 [ 159.422988] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 159.423596] init_mac80211_hwsim+0x389/0x870 [ 159.424488] do_one_initcall+0xf9/0x640 [ 159.425510] kernel_init_freeable+0x53d/0x7a0 [ 159.426605] kernel_init+0x1e/0x2d0 [ 159.427777] ret_from_fork+0x48/0x80 [ 159.428211] ret_from_fork_asm+0x1a/0x30 [ 159.428664] [ 159.428664] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 159.429264] __lock_acquire+0x29fd/0x4580 [ 159.429751] lock_acquire+0x19b/0x520 [ 159.430190] __mutex_lock+0x13d/0xb50 [ 159.430652] unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.431258] unregister_netdevice_queue+0x224/0x2e0 [ 159.431818] _cfg80211_unregister_wdev+0x57b/0x700 [ 159.432368] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 159.432906] ieee80211_unregister_hw+0x55/0x3a0 [ 159.433431] hwsim_exit_net+0x3a0/0x730 [ 159.433891] ops_exit_list+0xb3/0x180 [ 159.434346] cleanup_net+0x546/0xad0 [ 159.434780] process_one_work+0x8ee/0x1a10 [ 159.435282] worker_thread+0x674/0xe70 [ 159.435753] kthread+0x3ab/0x720 [ 159.436173] ret_from_fork+0x48/0x80 [ 159.436606] ret_from_fork_asm+0x1a/0x30 [ 159.437126] [ 159.437126] other info that might help us debug this: [ 159.437126] [ 159.438007] Possible unsafe locking scenario: [ 159.438007] [ 159.438579] CPU0 CPU1 [ 159.439021] ---- ---- [ 159.439474] lock(&rdev->wiphy.mtx); [ 159.439870] lock(rtnl_mutex); [ 159.440439] lock(&rdev->wiphy.mtx); [ 159.441069] lock(rtnl_mutex); [ 159.441418] [ 159.441418] *** DEADLOCK *** [ 159.441418] [ 159.441991] 4 locks held by kworker/u8:1/66: [ 159.442421] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 159.443431] #1: ffff88800ed8fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 159.444407] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 159.445316] #3: ffff888036770768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 159.446344] [ 159.446344] stack backtrace: [ 159.446776] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250120 #1 [ 159.447564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 159.448326] Workqueue: netns cleanup_net [ 159.448746] Call Trace: [ 159.449004] [ 159.449229] dump_stack_lvl+0xca/0x120 [ 159.449642] print_circular_bug+0x47b/0x750 [ 159.450081] check_noncircular+0x2e9/0x3c0 [ 159.450500] ? srso_return_thunk+0x5/0x5f [ 159.450932] ? __pfx_check_noncircular+0x10/0x10 [ 159.451402] ? hlock_class+0x4e/0x130 [ 159.451778] ? mark_lock+0xac/0xed0 [ 159.452150] ? srso_return_thunk+0x5/0x5f [ 159.452589] ? sched_clock+0x37/0x60 [ 159.452992] ? lockdep_lock+0xba/0x1b0 [ 159.453408] ? __pfx_lockdep_lock+0x10/0x10 [ 159.453857] __lock_acquire+0x29fd/0x4580 [ 159.454287] ? __pfx___lock_acquire+0x10/0x10 [ 159.454743] ? lock_release+0x20f/0x6f0 [ 159.455145] ? __pfx_lock_release+0x10/0x10 [ 159.455584] lock_acquire+0x19b/0x520 [ 159.455977] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.456548] ? __pfx_lock_acquire+0x10/0x10 [ 159.456983] ? srso_return_thunk+0x5/0x5f [ 159.457414] ? lock_release+0x20f/0x6f0 [ 159.457820] ? srso_return_thunk+0x5/0x5f [ 159.458250] ? lock_is_held_type+0x9e/0x120 [ 159.458698] ? srso_return_thunk+0x5/0x5f [ 159.459135] __mutex_lock+0x13d/0xb50 [ 159.459536] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.460107] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.460676] ? srso_return_thunk+0x5/0x5f [ 159.461113] ? synchronize_rcu_expedited+0x38a/0x420 [ 159.461617] ? __pfx___mutex_lock+0x10/0x10 [ 159.462064] ? __pfx_autoremove_wake_function+0x10/0x10 [ 159.462599] ? srso_return_thunk+0x5/0x5f [ 159.463028] ? kasan_quarantine_put+0x84/0x1e0 [ 159.463504] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 159.463958] ? srso_return_thunk+0x5/0x5f [ 159.464397] unregister_netdevice_many_notify+0x1612/0x1c80 [ 159.464962] ? __virt_addr_valid+0x2e8/0x5d0 [ 159.465421] ? __pfx_lock_release+0x10/0x10 [ 159.465859] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 159.466453] ? find_held_lock+0x2c/0x110 [ 159.466878] ? srso_return_thunk+0x5/0x5f [ 159.467313] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 159.467818] ? srso_return_thunk+0x5/0x5f [ 159.468255] ? lock_release+0x20f/0x6f0 [ 159.468663] ? __pfx_lock_release+0x10/0x10 [ 159.469106] ? srso_return_thunk+0x5/0x5f [ 159.469537] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 159.470058] ? srso_return_thunk+0x5/0x5f [ 159.470505] unregister_netdevice_queue+0x224/0x2e0 [ 159.470996] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 159.471533] ? up_write+0x195/0x520 [ 159.471921] _cfg80211_unregister_wdev+0x57b/0x700 [ 159.472417] ? srso_return_thunk+0x5/0x5f [ 159.472854] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 159.473365] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 159.473909] ? srso_return_thunk+0x5/0x5f [ 159.474346] ? srso_return_thunk+0x5/0x5f [ 159.474777] ? synchronize_rcu+0x1ff/0x260 [ 159.475206] ieee80211_unregister_hw+0x55/0x3a0 [ 159.475674] hwsim_exit_net+0x3a0/0x730 [ 159.476080] ? __pfx_hwsim_exit_net+0x10/0x10 [ 159.476527] ? srso_return_thunk+0x5/0x5f [ 159.476964] ? netdev_run_todo+0x788/0x1040 [ 159.477406] ? __pfx_hwsim_exit_net+0x10/0x10 [ 159.477859] ops_exit_list+0xb3/0x180 [ 159.478253] cleanup_net+0x546/0xad0 [ 159.478638] ? __pfx_cleanup_net+0x10/0x10 [ 159.479082] process_one_work+0x8ee/0x1a10 [ 159.479529] ? __pfx_lock_acquire+0x10/0x10 [ 159.479967] ? __pfx_process_one_work+0x10/0x10 [ 159.480451] ? srso_return_thunk+0x5/0x5f [ 159.480883] ? move_linked_works+0x172/0x270 [ 159.481340] ? srso_return_thunk+0x5/0x5f [ 159.481773] ? assign_work+0x196/0x240 [ 159.482186] worker_thread+0x674/0xe70 [ 159.482605] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 159.483125] ? srso_return_thunk+0x5/0x5f [ 159.483557] ? __pfx_worker_thread+0x10/0x10 [ 159.484023] kthread+0x3ab/0x720 [ 159.484381] ? __pfx_kthread+0x10/0x10 [ 159.484783] ? srso_return_thunk+0x5/0x5f [ 159.485223] ? finish_task_switch.isra.0+0x206/0x840 [ 159.485731] ? __pfx_kthread+0x10/0x10 [ 159.486139] ret_from_fork+0x48/0x80 [ 159.486509] ? __pfx_kthread+0x10/0x10 [ 159.486912] ret_from_fork_asm+0x1a/0x30 [ 159.487350] [ 161.849770] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.850557] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.851197] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.854845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.856111] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.858075] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 162.041589] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 162.043415] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 162.044874] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 162.048913] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 162.050812] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 162.052599] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 162.114120] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 162.117504] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 162.118727] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 162.122409] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 162.124956] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 162.125938] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 162.139865] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 162.143772] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 162.147521] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 162.157678] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 162.160597] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 162.175587] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 162.236782] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 162.250618] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 162.255413] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 162.258171] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 162.260455] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 162.261404] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 162.371877] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 162.382706] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 162.396633] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 162.407837] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 162.408773] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 162.409696] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 162.411217] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 162.412668] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 162.413604] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 162.416066] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 162.463823] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 162.465360] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 162.490007] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 162.491165] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 162.491758] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 162.522508] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 162.549557] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 162.550996] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 163.890482] Bluetooth: hci0: command tx timeout [ 164.080384] Bluetooth: hci1: command tx timeout [ 164.144390] Bluetooth: hci2: command tx timeout [ 164.209486] Bluetooth: hci3: command tx timeout [ 164.336372] Bluetooth: hci4: command tx timeout [ 164.528377] Bluetooth: hci7: command tx timeout [ 164.592483] Bluetooth: hci6: command tx timeout [ 164.592522] Bluetooth: hci5: command tx timeout [ 165.936385] Bluetooth: hci0: command tx timeout [ 166.128430] Bluetooth: hci1: command tx timeout [ 166.193332] Bluetooth: hci2: command tx timeout [ 166.258363] Bluetooth: hci3: command tx timeout [ 166.384365] Bluetooth: hci4: command tx timeout [ 166.578313] Bluetooth: hci7: command tx timeout [ 166.640465] Bluetooth: hci6: command tx timeout [ 166.640561] Bluetooth: hci5: command tx timeout [ 167.984331] Bluetooth: hci0: command tx timeout [ 168.176320] Bluetooth: hci1: command tx timeout [ 168.240501] Bluetooth: hci2: command tx timeout [ 168.305329] Bluetooth: hci3: command tx timeout [ 168.432310] Bluetooth: hci4: command tx timeout [ 168.624338] Bluetooth: hci7: command tx timeout [ 168.688962] Bluetooth: hci6: command tx timeout [ 168.689088] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 18:39:23 Registers: info registers vcpu 0 RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff88800ed8ebb8 R8 =0000000000000001 R9 =ffffed1001db1d67 R10=0000000000000065 R11=3a6b636f6c206762 R12=0000000000000065 R13=0000000000000001 R14=ffff888008fea02f R15=ffff88800ed8eeb8 RIP=ffffffff8283e33d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005610e16c5f30 CR3=000000000c2da000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0008016c6c6f502e726567616e614d0c XMM02=0a0065676169727420636578650b0a01 XMM03=636578650a0073746e69682063657865 XMM04=6e696d20636578650d00736465657320 XMM05=73616d7320636578650a00657a696d69 XMM06=6511006c61746f7420636578650a0068 XMM07=737472617473657220726f7475636578 XMM08=696820636578650a0065676169727420 XMM09=00736465657320636578650a0073746e XMM10=0a00657a696d696e696d20636578650d XMM11=636578650a006873616d732063657865 XMM12=726f74756365786511006c61746f7420 XMM13=20636578650800737472617473657220 XMM14=0e007a7a7566206365786509006e6567 XMM15=00006574616469646e61632063657865 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff8140f3a3 RDX=ffff888016078000 RSI=0000000000000000 RDI=0000000000000005 RBP=ffff8880157d8a80 RSP=ffff888029b47890 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000003 R12=0000000000000001 R13=0000000000000000 R14=ffff8880157d8a98 R15=ffff88800e31da38 RIP=ffffffff8171a3d0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6c403bf190 CR3=000000000c2da000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000bfe62e42fefa39ef XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000