ata2.00: qc timeout after 5000 msecs (cmd 0xa0)
ata2: found unknown device (class 0)
watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [syz-executor.4:20073]
Modules linked in:
irq event stamp: 4367471
hardirqs last  enabled at (4367470): [<ffffffff8485078b>] irqentry_exit+0x3b/0x90
hardirqs last disabled at (4367471): [<ffffffff8484f14f>] sysvec_apic_timer_interrupt+0xf/0x80
softirqs last  enabled at (4352420): [<ffffffff811a97cc>] handle_softirqs+0x50c/0x770
softirqs last disabled at (4352427): [<ffffffff811a9b64>] __irq_exit_rcu+0xc4/0x100
CPU: 1 UID: 0 PID: 20073 Comm: syz-executor.4 Not tainted 6.12.0-next-20241126 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
RIP: 0010:__x86_indirect_thunk_rbx+0x6/0x20
Code: 1f 44 00 00 e8 01 00 00 00 cc 48 89 14 24 e9 31 06 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 0f 1f 44 00 00 e8 01 00 00 00 cc <48> 89 1c 24 e9 11 06 00 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 0f
RSP: 0018:ffff88806cf097c8 EFLAGS: 00000286
RAX: ffffffff813f26cf RBX: ffffffff813f2420 RCX: ffff88806cf09878
RDX: 1ffff1100d9e1306 RSI: ffffffff813f26cf RDI: ffff88806cf098a0
RBP: ffff88806cf09870 R08: 0000000000000001 R09: ffff88806cf09818
R10: 000000000003c001 R11: 0000000000003f0f R12: ffff88806cf098a0
R13: 0000000000000000 R14: ffff88800c168000 R15: ffff88801df50c00
FS:  00007f2fb85a4700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055557d718c58 CR3: 000000001e768000 CR4: 0000000000350ef0
Call Trace:
 <IRQ>
 </IRQ>
 <TASK>
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 33 Comm: kworker/u9:1 Not tainted 6.12.0-next-20241126 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Workqueue: events_unbound cfg80211_wiphy_work
RIP: 0010:mark_lock+0xb6/0x1370
Code: 83 fc 08 0f 84 9c 00 00 00 41 be 01 00 00 00 44 89 e1 41 d3 e6 4d 63 f6 4c 89 ef e8 a4 64 ff ff 48 ba 00 00 00 00 00 fc ff df <48> 8d 78 60 48 89 f9 48 c1 e9 03 80 3c 11 00 0f 85 5b 0e 00 00 4c
RSP: 0018:ffff888009a5f0f8 EFLAGS: 00000047
RAX: ffffffff87f02c60 RBX: 1ffff1100134be24 RCX: ffffffff812f35be
RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffffffff87eeff88
RBP: ffff888009a49b80 R08: 0000000000000000 R09: fffffbfff0fddff1
R10: ffffffff87eeff8f R11: 0000000000000118 R12: 0000000000000002
R13: ffff888009a4a5c0 R14: 0000000000000004 R15: 0000000000000282
FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f47f1d05920 CR3: 0000000015562000 CR4: 0000000000350ef0
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 mark_held_locks+0x9e/0xe0
 lockdep_hardirqs_on_prepare+0x12b/0x3f0
 trace_hardirqs_on+0x36/0x40
 _raw_spin_unlock_irqrestore+0x2c/0x50
 __create_object+0x59/0x80
 __kmalloc_noprof+0x37e/0x4b0
 cfg80211_inform_single_bss_data+0x4f1/0x1c50
 cfg80211_inform_bss_data+0x20f/0x3510
 cfg80211_inform_bss_frame_data+0x250/0x690
 ieee80211_bss_info_update+0x2f6/0xa90
 ieee80211_ibss_rx_queued_mgmt+0x18ba/0x2f90
 ieee80211_iface_work+0xb5f/0xe40
 cfg80211_wiphy_work+0x38d/0x610
 process_one_work+0x8ee/0x1a00
 worker_thread+0x674/0xe70
 kthread+0x2c2/0x3a0
 ret_from_fork+0x48/0x80
 ret_from_fork_asm+0x1a/0x30
 </TASK>
Bluetooth: hci2: command 0x0406 tx timeout
----------------
Code disassembly (best guess), 1 bytes skipped:
   0:	44 00 00             	add    %r8b,(%rax)
   3:	e8 01 00 00 00       	callq  0x9
   8:	cc                   	int3
   9:	48 89 14 24          	mov    %rdx,(%rsp)
   d:	e9 31 06 00 00       	jmpq   0x643
  12:	66 66 2e 0f 1f 84 00 	data16 nopw %cs:0x0(%rax,%rax,1)
  19:	00 00 00 00
  1d:	66 0f 1f 44 00 00    	nopw   0x0(%rax,%rax,1)
  23:	e8 01 00 00 00       	callq  0x29
  28:	cc                   	int3
* 29:	48 89 1c 24          	mov    %rbx,(%rsp) <-- trapping instruction
  2d:	e9 11 06 00 00       	jmpq   0x643
  32:	66 66 2e 0f 1f 84 00 	data16 nopw %cs:0x0(%rax,%rax,1)
  39:	00 00 00 00
  3d:	66                   	data16
  3e:	0f                   	.byte 0xf