Warning: Permanently added '[localhost]:44713' (ECDSA) to the list of known hosts. 2025/01/20 21:11:13 fuzzer started 2025/01/20 21:11:14 dialing manager at localhost:44833 syzkaller login: [ 69.404317] cgroup: Unknown subsys name 'net' [ 69.499737] cgroup: Unknown subsys name 'cpuset' [ 69.525146] cgroup: Unknown subsys name 'rlimit' [ 75.571544] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 21:11:32 syscalls: 2217 2025/01/20 21:11:32 code coverage: enabled 2025/01/20 21:11:32 comparison tracing: enabled 2025/01/20 21:11:32 extra coverage: enabled 2025/01/20 21:11:32 setuid sandbox: enabled 2025/01/20 21:11:32 namespace sandbox: enabled 2025/01/20 21:11:32 Android sandbox: enabled 2025/01/20 21:11:32 fault injection: enabled 2025/01/20 21:11:32 leak checking: enabled 2025/01/20 21:11:32 net packet injection: enabled 2025/01/20 21:11:32 net device setup: enabled 2025/01/20 21:11:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 21:11:32 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 21:11:32 USB emulation: enabled 2025/01/20 21:11:32 hci packet injection: enabled 2025/01/20 21:11:32 wifi device emulation: enabled 2025/01/20 21:11:32 802.15.4 emulation: enabled 2025/01/20 21:11:32 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/20 21:11:32 fetching corpus: 1, signal 584/4181 (executing program) 2025/01/20 21:11:32 fetching corpus: 1, signal 584/5903 (executing program) 2025/01/20 21:11:32 fetching corpus: 1, signal 584/5903 (executing program) 2025/01/20 21:11:36 starting 8 fuzzer processes 21:11:36 executing program 0: inotify_add_watch(0xffffffffffffffff, 0x0, 0x500000a) 21:11:36 executing program 1: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sync_file_range(r0, 0x0, 0x548, 0x0) 21:11:36 executing program 2: ioperm(0x0, 0x80, 0x414b) openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) 21:11:36 executing program 3: r0 = fsopen(&(0x7f0000000000)='tmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x7, 0x0, 0x0, 0x0) [ 91.784437] audit: type=1400 audit(1737407496.803:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 21:11:36 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0) chmod(&(0x7f0000000180)='./file0\x00', 0x0) 21:11:36 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x2a, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000800100000f000000000000000100000005000000000004000040000020000000d3f4655fd3f4655f0100ffff53ef010001000000d3f4655f000000000000000001000000000000000b0000000004000008000000d2c20100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32373131373433303500"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000079d64a30b19941939d5c6a24092e8c9a010040000c00000000000000d3f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000004400000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0300000004000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000018000f000300040000000000000000000f00c2b4", 0x20, 0x800}, {&(0x7f0000010500)="ff000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d3f4655fd3f4655fd3f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011600)="ed41000000080000d3f4655fd3f4655fd3f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000020000000", 0x40, 0x2400}, {&(0x7f0000011700)="200000004c7ddc8f4c7ddc8f00000000d3f4655f00"/32, 0x20, 0x2480}, {&(0x7f0000011800)="8081000000180000d3f4655fd3f4655fd3f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000040000000", 0x40, 0x2800}, {&(0x7f0000011900)="20000000000000000000000000000000d3f4655f00"/32, 0x20, 0x2880}, {&(0x7f0000011a00)="8081000000180000d3f4655fd3f4655fd3f4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000050000000", 0x40, 0x2c00}, {&(0x7f0000011b00)="20000000000000000000000000000000d3f4655f00"/32, 0x20, 0x2c80}, {&(0x7f0000011c00)="c041000000380000d3f4655fd3f4655fd3f4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000030000000", 0x40, 0x4800}, {&(0x7f0000011d00)="20000000000000000000000000000000d3f4655f000000000000000000000000000002ea00"/64, 0x40, 0x4880}, {&(0x7f0000011e00)="ed4100003c000000d3f4655fd3f4655fd3f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b65c7bf3000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x4c00}, {&(0x7f0000011f00)="ed8100001a040000d3f4655fd3f4655fd3f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000600000000000000000000000000000000000000000000000000000000000000000000000000000005a0e0125000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000", 0xa0, 0x5000}, {&(0x7f0000012000)="ffa1000026000000d3f4655fd3f4655fd3f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3237313137343330352f66696c65302f66696c653000000000000000000000000000000000000000000000b8e8b49f000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000", 0xa0, 0x5400}, {&(0x7f0000012100)="ed8100000a000000d3f4655fd3f4655fd3f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008b63b3ec000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000000002ea040700000000000000000000000000006461746106015403000000000600000000000000786174747231000006014c0300000000060000000000000078617474723200"/256, 0x100, 0x5800}, {&(0x7f0000012200)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d3f4655fd3f4655fd3f4655f00000000000002004000000000000800010000000af30100040000000000000000000000050000007000000000000000000000000000000000000000000000000000000000000000000000000000000044cd9848000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000", 0xc0, 0x5be0}, {&(0x7f0000012300)="ed81000064000000d3f4655fd3f4655fd3f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c4794644c000000000000000000000000000000000000000000000000200000004c7ddc8f4c7ddc8f4c7ddc8fd3f4655f4c7ddc8f0000000000000000000002ea04073403000000002800000000000000646174610000000000000000", 0xc0, 0x6000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x63c0}, {&(0x7f0000012500)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x10000}, {&(0x7f0000012600)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x18000}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x18800}, {&(0x7f0000012800)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x19000}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x19800}, {&(0x7f0000012a00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x1a000}, {&(0x7f0000012b00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x1a800}, {&(0x7f0000012c00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x1b000}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x20000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x20400}, {&(0x7f0000012f00)="0300"/32, 0x20, 0x20800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x20c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x21000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000200"/96, 0x60, 0x21400}, {&(0x7f0000013300)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x28000}, {&(0x7f0000013400)="0200"/32, 0x20, 0x28400}, {&(0x7f0000013500)="0300"/32, 0x20, 0x28800}, {&(0x7f0000013600)="0400"/32, 0x20, 0x28c00}, {&(0x7f0000013700)="0500"/32, 0x20, 0x29000}, {&(0x7f0000013800)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000200"/96, 0x60, 0x29400}, {&(0x7f0000013900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x30000}], 0x0, &(0x7f0000013e00)) 21:11:36 executing program 6: move_pages(0x0, 0xcd, &(0x7f0000000000), &(0x7f0000003840), &(0x7f0000000000), 0x0) 21:11:36 executing program 7: r0 = gettid() rt_sigqueueinfo(r0, 0x11, &(0x7f0000000080)={0x0, 0x0, 0x9}) [ 93.182998] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.188356] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.190281] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.195194] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 93.197630] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 93.201354] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 93.268272] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 93.280314] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 93.281282] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 93.289242] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 93.295488] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 93.296120] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 93.300405] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 93.301769] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 93.304116] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 93.306135] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 93.311543] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 93.312053] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 93.326524] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 93.328677] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 93.332578] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 93.336070] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 93.336425] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 93.339299] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 93.343304] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 93.344958] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 93.353746] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 93.354219] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 93.354536] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 93.359312] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 93.379517] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 93.385345] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 93.406390] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 93.411389] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 93.425373] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 93.431448] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 93.434108] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 93.436617] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 93.440106] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 93.442010] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 93.444223] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.456641] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 93.488082] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 93.492930] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 93.495227] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 93.496341] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 93.511348] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 93.512456] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 95.260252] Bluetooth: hci0: command tx timeout [ 95.452487] Bluetooth: hci2: command tx timeout [ 95.452662] Bluetooth: hci4: command tx timeout [ 95.452817] Bluetooth: hci1: command tx timeout [ 95.515209] Bluetooth: hci7: command tx timeout [ 95.515371] Bluetooth: hci3: command tx timeout [ 95.579061] Bluetooth: hci6: command tx timeout [ 95.580003] Bluetooth: hci5: command tx timeout [ 97.308412] Bluetooth: hci0: command tx timeout [ 97.499949] Bluetooth: hci1: command tx timeout [ 97.500042] Bluetooth: hci4: command tx timeout [ 97.500092] Bluetooth: hci2: command tx timeout [ 97.564106] Bluetooth: hci3: command tx timeout [ 97.564367] Bluetooth: hci7: command tx timeout [ 97.628046] Bluetooth: hci5: command tx timeout [ 97.628155] Bluetooth: hci6: command tx timeout [ 99.355038] Bluetooth: hci0: command tx timeout [ 99.547349] Bluetooth: hci2: command tx timeout [ 99.547390] Bluetooth: hci4: command tx timeout [ 99.547560] Bluetooth: hci1: command tx timeout [ 99.611118] Bluetooth: hci3: command tx timeout [ 99.611166] Bluetooth: hci7: command tx timeout [ 99.675960] Bluetooth: hci6: command tx timeout [ 99.675994] Bluetooth: hci5: command tx timeout [ 101.404146] Bluetooth: hci0: command tx timeout [ 101.595047] Bluetooth: hci4: command tx timeout [ 101.596117] Bluetooth: hci1: command tx timeout [ 101.596198] Bluetooth: hci2: command tx timeout [ 101.660064] Bluetooth: hci3: command tx timeout [ 101.660096] Bluetooth: hci7: command tx timeout [ 101.723900] Bluetooth: hci5: command tx timeout [ 101.724051] Bluetooth: hci6: command tx timeout [ 152.984817] syz-executor.0 (285) used greatest stack depth: 23584 bytes left [ 155.697164] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 155.698961] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 155.701291] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 155.710098] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 155.714142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 155.715246] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 155.718778] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 155.720538] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 155.721527] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 155.724743] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 155.738287] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 155.745212] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 155.745894] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 155.754355] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 155.764492] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 155.772190] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 155.777045] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 155.778422] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 155.793718] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 155.802364] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 155.807406] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 155.829229] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 155.837384] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 155.840156] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 155.845444] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 155.847625] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 155.887768] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 155.892570] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 155.898815] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 155.910177] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 155.915150] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 155.916180] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 155.916432] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.924025] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 155.944260] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 155.952995] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 155.965172] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 155.974945] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 155.992489] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 155.996453] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.000388] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.001985] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.002774] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 156.003061] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.005458] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.017255] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.030023] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.031618] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 157.787944] Bluetooth: hci0: command tx timeout [ 157.788368] Bluetooth: hci1: command tx timeout [ 157.852495] Bluetooth: hci2: command tx timeout [ 157.914942] Bluetooth: hci3: command tx timeout [ 157.979897] Bluetooth: hci4: command tx timeout [ 158.042917] Bluetooth: hci6: command tx timeout [ 158.042993] Bluetooth: hci5: command tx timeout [ 158.107113] Bluetooth: hci7: command tx timeout [ 159.835899] Bluetooth: hci1: command tx timeout [ 159.835924] Bluetooth: hci0: command tx timeout [ 159.901908] Bluetooth: hci2: command tx timeout [ 159.964114] Bluetooth: hci3: command tx timeout [ 160.026966] Bluetooth: hci4: command tx timeout [ 160.091025] Bluetooth: hci5: command tx timeout [ 160.091218] Bluetooth: hci6: command tx timeout [ 160.154916] Bluetooth: hci7: command tx timeout [ 161.884884] Bluetooth: hci1: command tx timeout [ 161.884989] Bluetooth: hci0: command tx timeout [ 161.946940] Bluetooth: hci2: command tx timeout [ 162.010905] Bluetooth: hci3: command tx timeout [ 162.075977] Bluetooth: hci4: command tx timeout [ 162.138960] Bluetooth: hci5: command tx timeout [ 162.141076] Bluetooth: hci6: command tx timeout [ 162.203068] Bluetooth: hci7: command tx timeout [ 163.930925] Bluetooth: hci0: command tx timeout [ 163.931021] Bluetooth: hci1: command tx timeout [ 163.994907] Bluetooth: hci2: command tx timeout [ 164.059931] Bluetooth: hci3: command tx timeout [ 164.124050] Bluetooth: hci4: command tx timeout [ 164.189894] Bluetooth: hci6: command tx timeout [ 164.189917] Bluetooth: hci5: command tx timeout [ 164.252044] Bluetooth: hci7: command tx timeout [ 217.867673] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 217.868459] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 217.871570] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 217.872145] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 217.875165] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 217.875554] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 217.888091] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 217.889650] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 217.890277] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 217.896727] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 217.908459] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 217.913087] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.970350] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 217.985696] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.987849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.989795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.996121] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 218.001281] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 218.004647] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 218.007055] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 218.020719] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 218.040687] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 218.075366] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 218.083586] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 218.155296] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 218.170034] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 218.172279] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 218.182543] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 218.183432] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 218.185639] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 218.203565] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 218.221518] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 218.244669] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 218.249796] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 218.250855] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 218.251661] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 218.262511] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 218.263119] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 218.266175] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 218.267085] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 218.286230] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 218.286649] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 218.313236] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 218.315649] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 218.317749] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 218.360149] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 218.415281] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 218.427562] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 219.930964] Bluetooth: hci1: command tx timeout [ 219.997571] Bluetooth: hci0: command tx timeout [ 220.059027] Bluetooth: hci3: command tx timeout [ 220.186930] Bluetooth: hci2: command tx timeout [ 220.314948] Bluetooth: hci5: command tx timeout [ 220.315367] Bluetooth: hci4: command tx timeout [ 220.378933] Bluetooth: hci6: command tx timeout [ 220.506963] Bluetooth: hci7: command tx timeout [ 221.978902] Bluetooth: hci1: command tx timeout [ 222.043341] Bluetooth: hci0: command tx timeout [ 222.106912] Bluetooth: hci3: command tx timeout [ 222.235856] Bluetooth: hci2: command tx timeout [ 222.362974] Bluetooth: hci4: command tx timeout [ 222.363176] Bluetooth: hci5: command tx timeout [ 222.427623] Bluetooth: hci6: command tx timeout [ 222.554917] Bluetooth: hci7: command tx timeout [ 224.027921] Bluetooth: hci1: command tx timeout [ 224.091926] Bluetooth: hci0: command tx timeout [ 224.155903] Bluetooth: hci3: command tx timeout [ 224.282908] Bluetooth: hci2: command tx timeout [ 224.410998] Bluetooth: hci4: command tx timeout [ 224.411025] Bluetooth: hci5: command tx timeout [ 224.475001] Bluetooth: hci6: command tx timeout [ 224.604053] Bluetooth: hci7: command tx timeout [ 226.075587] Bluetooth: hci1: command tx timeout [ 226.139037] Bluetooth: hci0: command tx timeout [ 226.203049] Bluetooth: hci3: command tx timeout [ 226.331074] Bluetooth: hci2: command tx timeout [ 226.458981] Bluetooth: hci5: command tx timeout [ 226.460242] Bluetooth: hci4: command tx timeout [ 226.523004] Bluetooth: hci6: command tx timeout [ 226.651361] Bluetooth: hci7: command tx timeout [ 280.177662] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 280.180519] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 280.182771] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 280.189207] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 280.194258] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 280.196502] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 280.494398] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 280.498284] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 280.500530] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 280.509414] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 280.513254] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 280.516287] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 280.576146] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 280.583603] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 280.586441] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 280.588177] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 280.589741] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 280.605990] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 280.610181] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 280.611184] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 280.612021] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 280.641677] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 280.645190] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 280.646552] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 280.675113] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 280.689904] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 280.703517] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 280.711081] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 280.716246] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 280.720454] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 280.741477] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 280.743613] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 280.756296] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 280.756905] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 280.763138] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 280.772291] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 280.774637] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 280.776675] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 280.778656] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 280.843663] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 280.878318] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 280.887545] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 280.892186] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 280.915406] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 280.924173] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 280.935934] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 280.952920] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 280.964626] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 282.267062] Bluetooth: hci0: command tx timeout [ 282.587059] Bluetooth: hci1: command tx timeout [ 282.715008] Bluetooth: hci3: command tx timeout [ 282.715839] Bluetooth: hci2: command tx timeout [ 282.843383] Bluetooth: hci4: command tx timeout [ 282.906900] Bluetooth: hci6: command tx timeout [ 282.970973] Bluetooth: hci5: command tx timeout [ 283.098925] Bluetooth: hci7: command tx timeout [ 284.314872] Bluetooth: hci0: command tx timeout [ 284.634884] Bluetooth: hci1: command tx timeout [ 284.764905] Bluetooth: hci2: command tx timeout [ 284.765028] Bluetooth: hci3: command tx timeout [ 284.891066] Bluetooth: hci4: command tx timeout [ 284.957848] Bluetooth: hci6: command tx timeout [ 285.020114] Bluetooth: hci5: command tx timeout [ 285.148070] Bluetooth: hci7: command tx timeout [ 286.362883] Bluetooth: hci0: command tx timeout [ 286.682876] Bluetooth: hci1: command tx timeout [ 286.811907] Bluetooth: hci3: command tx timeout [ 286.811993] Bluetooth: hci2: command tx timeout [ 286.938936] Bluetooth: hci4: command tx timeout [ 287.002917] Bluetooth: hci6: command tx timeout [ 287.066872] Bluetooth: hci5: command tx timeout [ 287.194869] Bluetooth: hci7: command tx timeout [ 288.410951] Bluetooth: hci0: command tx timeout [ 288.731865] Bluetooth: hci1: command tx timeout [ 288.862314] Bluetooth: hci2: command tx timeout [ 288.862349] Bluetooth: hci3: command tx timeout [ 288.986897] Bluetooth: hci4: command tx timeout [ 289.052922] Bluetooth: hci6: command tx timeout [ 289.116299] Bluetooth: hci5: command tx timeout [ 289.244045] Bluetooth: hci7: command tx timeout [ 340.619296] [ 340.619562] ====================================================== [ 340.620168] WARNING: possible circular locking dependency detected [ 340.620768] 6.13.0-rc7-next-20250120 #1 Not tainted [ 340.621243] ------------------------------------------------------ [ 340.622360] kworker/u8:0/11 is trying to acquire lock: [ 340.623472] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.625504] [ 340.625504] but task is already holding lock: [ 340.626944] ffff888015b88768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 340.629600] [ 340.629600] which lock already depends on the new lock. [ 340.629600] [ 340.631448] [ 340.631448] the existing dependency chain (in reverse order) is: [ 340.633031] [ 340.633031] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 340.634697] __mutex_lock+0x13d/0xb50 [ 340.635330] wiphy_register+0x1b2e/0x25d0 [ 340.635995] ieee80211_register_hw+0x23a4/0x3d60 [ 340.636721] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 340.637490] init_mac80211_hwsim+0x389/0x870 [ 340.638207] do_one_initcall+0xf9/0x640 [ 340.638858] kernel_init_freeable+0x53d/0x7a0 [ 340.639575] kernel_init+0x1e/0x2d0 [ 340.640151] ret_from_fork+0x48/0x80 [ 340.640730] ret_from_fork_asm+0x1a/0x30 [ 340.641380] [ 340.641380] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 340.642225] __lock_acquire+0x29fd/0x4580 [ 340.642884] lock_acquire+0x19b/0x520 [ 340.643498] __mutex_lock+0x13d/0xb50 [ 340.644125] unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.644988] unregister_netdevice_queue+0x224/0x2e0 [ 340.645735] _cfg80211_unregister_wdev+0x57b/0x700 [ 340.646512] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 340.647268] ieee80211_unregister_hw+0x55/0x3a0 [ 340.647994] hwsim_exit_net+0x3a0/0x730 [ 340.648630] ops_exit_list+0xb3/0x180 [ 340.649232] cleanup_net+0x546/0xad0 [ 340.649827] process_one_work+0x8ee/0x1a10 [ 340.650526] worker_thread+0x674/0xe70 [ 340.651175] kthread+0x3ab/0x720 [ 340.651756] ret_from_fork+0x48/0x80 [ 340.652347] ret_from_fork_asm+0x1a/0x30 [ 340.653011] [ 340.653011] other info that might help us debug this: [ 340.653011] [ 340.654027] Possible unsafe locking scenario: [ 340.654027] [ 340.654800] CPU0 CPU1 [ 340.655395] ---- ---- [ 340.656004] lock(&rdev->wiphy.mtx); [ 340.656548] lock(rtnl_mutex); [ 340.657326] lock(&rdev->wiphy.mtx); [ 340.658184] lock(rtnl_mutex); [ 340.658665] [ 340.658665] *** DEADLOCK *** [ 340.658665] [ 340.659430] 4 locks held by kworker/u8:0/11: [ 340.660019] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 340.661417] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 340.662764] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 340.663989] #3: ffff888015b88768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 340.665378] [ 340.665378] stack backtrace: [ 340.665965] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250120 #1 [ 340.667069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 340.668123] Workqueue: netns cleanup_net [ 340.668695] Call Trace: [ 340.669043] [ 340.669356] dump_stack_lvl+0xca/0x120 [ 340.669925] print_circular_bug+0x47b/0x750 [ 340.670535] check_noncircular+0x2e9/0x3c0 [ 340.671119] ? __pfx_check_noncircular+0x10/0x10 [ 340.671767] ? hlock_class+0x4e/0x130 [ 340.672281] ? mark_lock+0xac/0xed0 [ 340.672787] ? srso_return_thunk+0x5/0x5f [ 340.673370] ? timerqueue_del+0x83/0x150 [ 340.673938] ? lockdep_lock+0xba/0x1b0 [ 340.674523] ? __pfx_lockdep_lock+0x10/0x10 [ 340.675043] __lock_acquire+0x29fd/0x4580 [ 340.675477] ? __pfx___lock_acquire+0x10/0x10 [ 340.675938] ? lock_release+0x20f/0x6f0 [ 340.676345] ? __pfx_lock_release+0x10/0x10 [ 340.676774] lock_acquire+0x19b/0x520 [ 340.677154] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.677717] ? __pfx_lock_acquire+0x10/0x10 [ 340.678147] ? srso_return_thunk+0x5/0x5f [ 340.678567] ? lock_release+0x20f/0x6f0 [ 340.678974] ? srso_return_thunk+0x5/0x5f [ 340.679403] ? lock_is_held_type+0x9e/0x120 [ 340.679849] ? srso_return_thunk+0x5/0x5f [ 340.680286] __mutex_lock+0x13d/0xb50 [ 340.680678] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.681261] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.681847] ? srso_return_thunk+0x5/0x5f [ 340.682285] ? synchronize_rcu_expedited+0x38a/0x420 [ 340.682800] ? __pfx___mutex_lock+0x10/0x10 [ 340.683248] ? __pfx_autoremove_wake_function+0x10/0x10 [ 340.683790] ? srso_return_thunk+0x5/0x5f [ 340.684218] ? kasan_quarantine_put+0x84/0x1e0 [ 340.684682] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 340.685132] ? srso_return_thunk+0x5/0x5f [ 340.685573] unregister_netdevice_many_notify+0x1612/0x1c80 [ 340.686145] ? __virt_addr_valid+0x2e8/0x5d0 [ 340.686604] ? __pfx_lock_release+0x10/0x10 [ 340.687048] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 340.687647] ? find_held_lock+0x2c/0x110 [ 340.688081] ? srso_return_thunk+0x5/0x5f [ 340.688520] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 340.689032] ? srso_return_thunk+0x5/0x5f [ 340.689471] ? lock_release+0x20f/0x6f0 [ 340.689882] ? __pfx_lock_release+0x10/0x10 [ 340.690322] ? srso_return_thunk+0x5/0x5f [ 340.690756] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 340.691281] ? srso_return_thunk+0x5/0x5f [ 340.691724] unregister_netdevice_queue+0x224/0x2e0 [ 340.692227] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 340.692771] ? up_write+0x195/0x520 [ 340.693161] _cfg80211_unregister_wdev+0x57b/0x700 [ 340.693668] ? srso_return_thunk+0x5/0x5f [ 340.694118] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 340.694624] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 340.695180] ? srso_return_thunk+0x5/0x5f [ 340.695613] ? srso_return_thunk+0x5/0x5f [ 340.696049] ? synchronize_rcu+0x1ff/0x260 [ 340.696475] ieee80211_unregister_hw+0x55/0x3a0 [ 340.696941] hwsim_exit_net+0x3a0/0x730 [ 340.697350] ? __pfx_hwsim_exit_net+0x10/0x10 [ 340.697805] ? srso_return_thunk+0x5/0x5f [ 340.698249] ? netdev_run_todo+0x788/0x1040 [ 340.698688] ? __pfx_hwsim_exit_net+0x10/0x10 [ 340.699126] ops_exit_list+0xb3/0x180 [ 340.699509] cleanup_net+0x546/0xad0 [ 340.699885] ? __pfx_cleanup_net+0x10/0x10 [ 340.700311] process_one_work+0x8ee/0x1a10 [ 340.700751] ? __pfx_lock_acquire+0x10/0x10 [ 340.701173] ? __pfx_process_one_work+0x10/0x10 [ 340.701638] ? srso_return_thunk+0x5/0x5f [ 340.702080] ? move_linked_works+0x172/0x270 [ 340.702533] ? srso_return_thunk+0x5/0x5f [ 340.702976] ? assign_work+0x196/0x240 [ 340.703391] worker_thread+0x674/0xe70 [ 340.703809] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 340.704342] ? __pfx_worker_thread+0x10/0x10 [ 340.704799] kthread+0x3ab/0x720 [ 340.705161] ? __pfx_kthread+0x10/0x10 [ 340.705562] ? srso_return_thunk+0x5/0x5f [ 340.705998] ? finish_task_switch.isra.0+0x206/0x840 [ 340.706498] ? __pfx_kthread+0x10/0x10 [ 340.706904] ret_from_fork+0x48/0x80 [ 340.707269] ? __pfx_kthread+0x10/0x10 [ 340.707663] ret_from_fork_asm+0x1a/0x30 [ 340.708094] [ 342.312704] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 342.316308] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 342.320326] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 342.327270] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 342.333927] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 342.337270] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 342.437401] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 342.440221] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 342.442756] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 342.447353] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 342.450729] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 342.453017] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 342.633212] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 342.635052] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 342.637112] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 342.642152] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 342.644742] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 342.646623] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 342.799180] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 342.806643] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 342.810258] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 342.818509] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 342.828258] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 342.828539] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 342.831884] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 342.832142] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 342.832728] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 342.845939] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 342.846033] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 342.847321] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 342.847928] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 342.848332] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 342.857124] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 342.857692] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 342.858169] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 342.859275] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 342.871944] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 342.886589] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 342.886910] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 342.908037] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 342.915164] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 342.917328] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 342.952131] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 342.953657] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 342.954502] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 342.957684] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 342.980399] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 342.985981] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 344.411826] Bluetooth: hci0: command tx timeout [ 344.475026] Bluetooth: hci1: command tx timeout [ 344.666862] Bluetooth: hci2: command tx timeout [ 344.986884] Bluetooth: hci3: command tx timeout [ 344.986923] Bluetooth: hci4: command tx timeout [ 344.986987] Bluetooth: hci5: command tx timeout [ 345.050861] Bluetooth: hci7: command tx timeout [ 345.114863] Bluetooth: hci6: command tx timeout [ 346.459888] Bluetooth: hci0: command tx timeout [ 346.522838] Bluetooth: hci1: command tx timeout [ 346.716884] Bluetooth: hci2: command tx timeout [ 347.034961] Bluetooth: hci4: command tx timeout [ 347.035853] Bluetooth: hci5: command tx timeout [ 347.036405] Bluetooth: hci3: command tx timeout [ 347.098982] Bluetooth: hci7: command tx timeout [ 347.162981] Bluetooth: hci6: command tx timeout [ 348.507151] Bluetooth: hci0: command tx timeout [ 348.570823] Bluetooth: hci1: command tx timeout [ 348.762851] Bluetooth: hci2: command tx timeout [ 349.082956] Bluetooth: hci5: command tx timeout [ 349.083577] Bluetooth: hci3: command tx timeout [ 349.083656] Bluetooth: hci4: command tx timeout [ 349.147814] Bluetooth: hci7: command tx timeout [ 349.210866] Bluetooth: hci6: command tx timeout [ 350.555035] Bluetooth: hci0: command tx timeout [ 350.618900] Bluetooth: hci1: command tx timeout VM DIAGNOSIS: 21:15:45 Registers: info registers vcpu 0 RAX=00000000000595f9 RBX=0000000000000000 RCX=ffffffff84a8d9d7 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff814b1b6a RBP=dffffc0000000000 RSP=ffffffff85a07e10 R8 =0000000000000001 R9 =ffffed100d9c6c4a R10=ffff88806ce36253 R11=0000000000000001 R12=ffffffff864053d0 R13=1ffffffff0b40fc7 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff84a8e97e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000562403277e70 CR3=000000000bf5e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004111f9c000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff8880095deb60 R8 =0000000000000001 R9 =ffffed10012bbd5c R10=0000000000000020 R11=0000000023203e2d R12=0000000000000020 R13=0000000000000001 R14=ffff888008fea025 R15=ffff8880095dee60 RIP=ffffffff8283e33d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f5d016c03a0 CR3=000000000bf5e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=000000c000080370000000c0000802d0 XMM04=000000c000146090000000c000146060 XMM05=000000c0001460f0000000c0001460c0 XMM06=000000c000146150000000c000146120 XMM07=000000c000145760000000c0000874d0 XMM08=000000c0001464b0000000c000146480 XMM09=000000c000146510000000c0001464e0 XMM10=000000c000146540000000c000087530 XMM11=000000c0001465a0000000c000146570 XMM12=000000c000146600000000c0001465d0 XMM13=000000c000146660000000c000146630 XMM14=000000c0001466c0000000c000146690 XMM15=000000c0000e7080000000c0001466f0