program: sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8014}, 0x20000000) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e1f0a"], 0x22) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e079c0814"], 0xa) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002}) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) dup3(r1, r0, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12bc23010000055ea008410e5982d36925e5784d683602120001004f0634a9196bb15a7ceb34"], 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c000000b646ddae3992a9a0d4824f46dd923cc6f0d48fb9be38564ab9bb4675de37242c06cff0275c95c94befef5e2f4faf755bf8c6e864298166208688a8a3", @ANYRES16=r3, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000000005001800010000000800140001000000"], 0x3c}}, 0x0) r4 = syz_open_dev$usbfs(&(0x7f0000000180), 0x10000001d, 0x8041) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000e80)={{0x14}, [@NFT_MSG_NEWTABLE={0x1c, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x0, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELFLOWTABLE={0xf8, 0x18, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_FLOWTABLE_HOOK={0x88, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x7c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wlan1\x00'}, {0x14, 0x1, 'xfrm0\x00'}, {0x14, 0x1, 'sit0\x00'}, {0x14, 0x1, 'hsr0\x00'}, {0x14, 0x1, 'ip6tnl0\x00'}, {0x14, 0x1, 'bridge0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0x40, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'lo\x00'}, {0x14, 0x1, 'netdevsim0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}]}, @NFT_MSG_NEWRULE={0x5dc, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x84}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x84}]}, @NFTA_RULE_EXPRESSIONS={0x5ac, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xd}, @NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x17}]}}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @bitwise={{0xc}, @void}}, {0x568, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x554, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_IMMEDIATE_DATA={0x7c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x400}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x0, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}]}, @NFTA_IMMEDIATE_DATA={0x30, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x3, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_IMMEDIATE_DATA={0x21c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x68, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x0, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0x4a3147c364857b4c}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8}]}, @NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CODE={0x8}]}, @NFTA_DATA_VALUE={0x13, 0x1, "b7a5e0d2bb0ed83ffe2679c6bb85d4"}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VALUE={0xed, 0x1, "730bdffa239b58da432e70554fc6884c51bf6fddfb7a3e9eadc9be7ab3b81f9e2332c75f94b52d3e2516a1c17d0eeeaccb84224f759d477c4989b9d7e0c89b20ad4b0a1993730104a2a2b61d87968a3621e61351239c2c4f6cf4b898666f1bf957fcf147860fe1e1bb0d7586def043cebea40091a0bae681aa3e934300e59c19fc894cf6d285267d1a64ea0d299815962a6a8f700ba4ef6743ec10fac01ad3e305cc6e2790a3d5ed9b2c6470e8f27d528b9e4241703ace3a6b40673b08f851b04e37a130a80ae7fb944f469ecf794fd3a468ccaabcf5b0d9523f6810d155e0eeef7e4bf7b1f2effff7"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}]}, @NFTA_IMMEDIATE_DATA={0x184, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VALUE={0x100, 0x1, "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"}, @NFTA_DATA_VALUE={0x3c, 0x1, "6edcc217c0e34dd9f6dac79311d9626dd0eeb9888fded0bb00862eee372ce188507c336fa8ca375f3871f001483e1f747d082e3e094b331e"}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_IMMEDIATE_DATA={0xdc, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x30, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VERDICT={0x48, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}]}, @NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x12}]}}}]}]}], {0x14}}, 0x718}}, 0x1) r6 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r6, &(0x7f0000000000)={0xa, 0xe22, 0x2, @empty}, 0x1c) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r7, 0x1, 0x54, &(0x7f0000000080)=0x1, 0x4) close(0x3) recvmsg$unix(r7, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x62) syz_emit_ethernet(0x7e, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6001010000481100fe8000000000000000000000000000bbfe8000000000000000000000000000aa4e200e22"], 0x0) mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc) syz_emit_ethernet(0x7e, &(0x7f0000000300)={@broadcast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x48, 0x11, 0x0, @remote, @ipv4={'\x00', '\xff\xff', @multicast1}, {[], {0x4e20, 0xe22, 0x48, 0x0, @wg=@cookie={0x3, 0x1, "88c73b21f267636d01dbe5712c1c941e1cdafbbb43f09c70", "e13808ca72381f41e5fff9620915b6f78670dfaf9a2038083179cf6b7931c9b4"}}}}}}}, 0x0) ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000200)=@usbdevfs_connect) socket$nl_route(0x10, 0x3, 0x0) socket$inet(0x2, 0x2, 0x1) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) [ 87.249157][ T5302] Bluetooth: hci0: command tx timeout [ 87.723505][ T54] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 87.852933][ T54] usb 5-1: device descriptor read/64, error -71 [ 88.092935][ T54] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 88.222862][ T54] usb 5-1: device descriptor read/64, error -71 [ 88.333184][ T54] usb usb5-port1: attempt power cycle [ 88.672919][ T54] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 88.693708][ T54] usb 5-1: device descriptor read/8, error -71 [ 88.932927][ T54] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 88.953661][ T54] usb 5-1: device descriptor read/8, error -71 [ 89.063172][ T54] usb usb5-port1: unable to enumerate USB device [ 89.553382][ T5302] Bluetooth: hci0: command 0x040f tx timeout [ 89.557164][ T5302] ------------[ cut here ]------------ [ 89.559497][ T5302] refcnt < 0 [ 89.559515][ T5302] WARNING: net/bluetooth/hci_conn.c:567 at hci_conn_timeout+0xff/0x2c0, CPU#0: kworker/u5:2/5302 [ 89.565459][ T5302] Modules linked in: [ 89.567339][ T5302] CPU: 0 UID: 0 PID: 5302 Comm: kworker/u5:2 Not tainted syzkaller #0 PREEMPT(full) [ 89.571270][ T5302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 89.575501][ T5302] Workqueue: hci0 hci_conn_timeout [ 89.577875][ T5302] RIP: 0010:hci_conn_timeout+0xff/0x2c0 [ 89.580165][ T5302] Code: 48 89 df e8 33 93 09 00 eb 07 e8 5c a3 30 f7 b0 13 0f b6 f0 48 89 df 5b 41 5c 41 5e 41 5f 5d e9 17 ae fe ff e8 42 a3 30 f7 90 <0f> 0b 90 eb 8c 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 31 ff ff ff [ 89.588605][ T5302] RSP: 0018:ffffc9000eabfad0 EFLAGS: 00010293 [ 89.591481][ T5302] RAX: ffffffff8a93e44e RBX: ffff8880126e8000 RCX: ffff888000d02480 [ 89.594830][ T5302] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000 [ 89.598264][ T5302] RBP: 00000000ffffffff R08: ffff8880126e8013 R09: 1ffff110024dd002 [ 89.601480][ T5302] R10: dffffc0000000000 R11: ffffed10024dd003 R12: dffffc0000000000 [ 89.604906][ T5302] R13: ffff88801266e018 R14: ffff8880126e8a40 R15: ffff8880126e8010 [ 89.608435][ T5302] FS: 0000000000000000(0000) GS:ffff88808cabd000(0000) knlGS:0000000000000000 [ 89.612206][ T5302] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 89.615114][ T5302] CR2: 000055d887b4c028 CR3: 0000000041c32000 CR4: 0000000000352ef0 [ 89.618591][ T5302] Call Trace: [ 89.620107][ T5302] [ 89.621379][ T5302] ? process_scheduled_works+0xa0f/0x17a0 [ 89.623888][ T5302] process_scheduled_works+0xaec/0x17a0 [ 89.626171][ T5302] ? __pfx_process_scheduled_works+0x10/0x10 [ 89.628870][ T5302] ? do_raw_spin_lock+0x12b/0x2f0 [ 89.631500][ T5302] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 89.634105][ T5302] worker_thread+0xda6/0x1360 [ 89.636175][ T5302] ? __kthread_parkme+0x19c/0x1f0 [ 89.638353][ T5302] kthread+0x388/0x470 [ 89.640141][ T5302] ? __pfx_worker_thread+0x10/0x10 [ 89.642395][ T5302] ? __pfx_kthread+0x10/0x10 [ 89.644451][ T5302] ret_from_fork+0x51e/0xb90 [ 89.646551][ T5302] ? __pfx_ret_from_fork+0x10/0x10 [ 89.648821][ T5302] ? __switch_to+0xc7d/0x1400 [ 89.651327][ T5302] ? __pfx_kthread+0x10/0x10 [ 89.654039][ T5302] ret_from_fork_asm+0x1a/0x30 [ 89.656954][ T5302] [ 89.658840][ T5302] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 89.662631][ T5302] CPU: 0 UID: 0 PID: 5302 Comm: kworker/u5:2 Not tainted syzkaller #0 PREEMPT(full) [ 89.666528][ T5302] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 89.670783][ T5302] Workqueue: hci0 hci_conn_timeout [ 89.672997][ T5302] Call Trace: [ 89.674450][ T5302] [ 89.675767][ T5302] vpanic+0x1e0/0x670 [ 89.677602][ T5302] panic+0xc5/0xd0 [ 89.679219][ T5302] ? __pfx_panic+0x10/0x10 [ 89.681295][ T5302] ? ret_from_fork_asm+0x1a/0x30 [ 89.683473][ T5302] __warn+0x315/0x4a0 [ 89.685258][ T5302] ? hci_conn_timeout+0xff/0x2c0 [ 89.687510][ T5302] ? hci_conn_timeout+0xff/0x2c0 [ 89.689719][ T5302] __report_bug+0x29a/0x540 [ 89.692107][ T5302] ? hci_conn_timeout+0xff/0x2c0 [ 89.694428][ T5302] ? __pfx___report_bug+0x10/0x10 [ 89.696610][ T5302] ? add_lock_to_list+0xc7/0x100 [ 89.698682][ T5302] ? lockdep_unlock+0x5d/0xd0 [ 89.700786][ T5302] ? __lock_acquire+0x146e/0x2cf0 [ 89.702968][ T5302] ? hci_conn_timeout+0xff/0x2c0 [ 89.705063][ T5302] report_bug+0x16a/0x220 [ 89.706833][ T5302] ? hci_conn_timeout+0xff/0x2c0 [ 89.709083][ T5302] ? hci_conn_timeout+0x101/0x2c0 [ 89.711307][ T5302] handle_bug+0x98/0x200 [ 89.713205][ T5302] exc_invalid_op+0x1a/0x50 [ 89.715185][ T5302] asm_exc_invalid_op+0x1a/0x20 [ 89.717210][ T5302] RIP: 0010:hci_conn_timeout+0xff/0x2c0 [ 89.719482][ T5302] Code: 48 89 df e8 33 93 09 00 eb 07 e8 5c a3 30 f7 b0 13 0f b6 f0 48 89 df 5b 41 5c 41 5e 41 5f 5d e9 17 ae fe ff e8 42 a3 30 f7 90 <0f> 0b 90 eb 8c 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 31 ff ff ff [ 89.727623][ T5302] RSP: 0018:ffffc9000eabfad0 EFLAGS: 00010293 [ 89.730232][ T5302] RAX: ffffffff8a93e44e RBX: ffff8880126e8000 RCX: ffff888000d02480 [ 89.733740][ T5302] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000 [ 89.737252][ T5302] RBP: 00000000ffffffff R08: ffff8880126e8013 R09: 1ffff110024dd002 [ 89.740619][ T5302] R10: dffffc0000000000 R11: ffffed10024dd003 R12: dffffc0000000000 [ 89.744050][ T5302] R13: ffff88801266e018 R14: ffff8880126e8a40 R15: ffff8880126e8010 [ 89.747556][ T5302] ? hci_conn_timeout+0xfe/0x2c0 [ 89.749768][ T5302] ? process_scheduled_works+0xa0f/0x17a0 [ 89.752271][ T5302] process_scheduled_works+0xaec/0x17a0 [ 89.754790][ T5302] ? __pfx_process_scheduled_works+0x10/0x10 [ 89.757549][ T5302] ? do_raw_spin_lock+0x12b/0x2f0 [ 89.759792][ T5302] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 89.762166][ T5302] worker_thread+0xda6/0x1360 [ 89.764348][ T5302] ? __kthread_parkme+0x19c/0x1f0 [ 89.766681][ T5302] kthread+0x388/0x470 [ 89.768618][ T5302] ? __pfx_worker_thread+0x10/0x10 [ 89.771073][ T5302] ? __pfx_kthread+0x10/0x10 [ 89.773183][ T5302] ret_from_fork+0x51e/0xb90 [ 89.775322][ T5302] ? __pfx_ret_from_fork+0x10/0x10 [ 89.777448][ T5302] ? __switch_to+0xc7d/0x1400 [ 89.779416][ T5302] ? __pfx_kthread+0x10/0x10 [ 89.781318][ T5302] ret_from_fork_asm+0x1a/0x30 [ 89.783292][ T5302] [ 89.784853][ T5302] Kernel Offset: disabled [ 89.786374][ T5302] Rebooting in 86400 seconds..