Warning: Permanently added '10.128.0.37' (ECDSA) to the list of known hosts. executing program [ 42.541023][ T3968] [ 42.541580][ T3968] ===================================== [ 42.542767][ T3968] WARNING: bad unlock balance detected! [ 42.543920][ T3968] 5.15.110-syzkaller #0 Not tainted [ 42.545093][ T3968] ------------------------------------- [ 42.546263][ T3968] kworker/u5:1/3968 is trying to release lock (&conn->chan_lock) at: [ 42.548084][ T3968] [] l2cap_disconnect_rsp+0x210/0x30c [ 42.549591][ T3968] but there are no more locks to release! [ 42.550874][ T3968] [ 42.550874][ T3968] other info that might help us debug this: [ 42.552587][ T3968] 2 locks held by kworker/u5:1/3968: [ 42.553802][ T3968] #0: ffff0000d5247138 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 [ 42.556035][ T3968] #1: ffff80001acf7c00 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 [ 42.558421][ T3968] [ 42.558421][ T3968] stack backtrace: [ 42.559705][ T3968] CPU: 0 PID: 3968 Comm: kworker/u5:1 Not tainted 5.15.110-syzkaller #0 [ 42.561448][ T3968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 42.563709][ T3968] Workqueue: hci0 hci_rx_work [ 42.564712][ T3968] Call trace: [ 42.565395][ T3968] dump_backtrace+0x0/0x530 [ 42.566327][ T3968] show_stack+0x2c/0x3c [ 42.567221][ T3968] dump_stack_lvl+0x108/0x170 [ 42.568246][ T3968] dump_stack+0x1c/0x58 [ 42.569140][ T3968] print_unlock_imbalance_bug+0x250/0x2a4 [ 42.570295][ T3968] lock_release+0x4b8/0xa1c [ 42.571253][ T3968] __mutex_unlock_slowpath+0xe0/0x6d4 [ 42.572458][ T3968] mutex_unlock+0x8c/0xe0 [ 42.573401][ T3968] l2cap_disconnect_rsp+0x210/0x30c [ 42.574556][ T3968] l2cap_recv_frame+0x188c/0x6a48 [ 42.575639][ T3968] l2cap_recv_acldata+0x4f4/0x163c [ 42.576823][ T3968] hci_rx_work+0x3b0/0x6d0 [ 42.577793][ T3968] process_one_work+0x790/0x11b8 [ 42.578866][ T3968] worker_thread+0x910/0x1034 [ 42.579952][ T3968] kthread+0x37c/0x45c [ 42.580866][ T3968] ret_from_fork+0x10/0x20