INFO: task syz-executor:5821 blocked for more than 143 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
      Blocked by coredump.
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:21472 pid:5821  tgid:5821  ppid:1      task_flags:0x40054c flags:0x00004006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_unregister+0xde/0x2c0 net/rfkill/core.c:1145
 hci_unregister_dev+0x323/0x620 net/bluetooth/hci_core.c:2694
 vhci_release+0x79/0xf0 drivers/bluetooth/hci_vhci.c:664
 __fput+0x3ff/0xb70 fs/file_table.c:464
 task_work_run+0x14e/0x250 kernel/task_work.c:227
 exit_task_work include/linux/task_work.h:40 [inline]
 do_exit+0xad8/0x2d70 kernel/exit.c:938
 do_group_exit+0xd3/0x2a0 kernel/exit.c:1087
 get_signal+0x24ed/0x26c0 kernel/signal.c:3036
 arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337
 exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
 exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]
 __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]
 syscall_exit_to_user_mode+0x150/0x2a0 kernel/entry/common.c:218
 do_syscall_64+0xda/0x250 arch/x86/entry/common.c:89
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f17d0d83057
RSP: 002b:00007ffee19bd9b0 EFLAGS: 00000293 ORIG_RAX: 000000000000003d
RAX: fffffffffffffe00 RBX: 000000000000000e RCX: 00007f17d0d83057
RDX: 0000000040000000 RSI: 00007ffee19bda1c RDI: 00000000ffffffff
RBP: 00007ffee19bda1c R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
R13: 00005555638d1590 R14: 00000000000113a0 R15: 00007ffee19bda70
 </TASK>
INFO: task kworker/1:8:5923 blocked for more than 143 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/1:8     state:D stack:26592 pid:5923  tgid:5923  ppid:2      task_flags:0x4208060 flags:0x00004000
Workqueue: events rfkill_global_led_trigger_worker
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_global_led_trigger_worker+0x1b/0x160 net/rfkill/core.c:182
 process_one_work+0x9c5/0x1ba0 kernel/workqueue.c:3236
 process_scheduled_works kernel/workqueue.c:3317 [inline]
 worker_thread+0x6c8/0xf00 kernel/workqueue.c:3398
 kthread+0x3af/0x750 kernel/kthread.c:464
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:148
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
INFO: task syz.2.8:5930 blocked for more than 143 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
      Blocked by coredump.
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.2.8         state:D stack:26016 pid:5930  tgid:5925  ppid:5821   task_flags:0x40044c flags:0x00004006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_unregister+0xde/0x2c0 net/rfkill/core.c:1145
 nfc_unregister_device+0x94/0x330 net/nfc/core.c:1167
 virtual_ncidev_close+0x4b/0xa0 drivers/nfc/virtual_ncidev.c:172
 __fput+0x3ff/0xb70 fs/file_table.c:464
 task_work_run+0x14e/0x250 kernel/task_work.c:227
 exit_task_work include/linux/task_work.h:40 [inline]
 do_exit+0xad8/0x2d70 kernel/exit.c:938
 do_group_exit+0xd3/0x2a0 kernel/exit.c:1087
 get_signal+0x24ed/0x26c0 kernel/signal.c:3036
 arch_do_signal_or_restart+0x90/0x7e0 arch/x86/kernel/signal.c:337
 exit_to_user_mode_loop kernel/entry/common.c:111 [inline]
 exit_to_user_mode_prepare include/linux/entry-common.h:329 [inline]
 __syscall_exit_to_user_mode_work kernel/entry/common.c:207 [inline]
 syscall_exit_to_user_mode+0x150/0x2a0 kernel/entry/common.c:218
 do_syscall_64+0xda/0x250 arch/x86/entry/common.c:89
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f17d0d8cde9
RSP: 002b:00007f17d1c94038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
RAX: 0000000000010106 RBX: 00007f17d0fa6080 RCX: 00007f17d0d8cde9
RDX: 0000000000010106 RSI: 00004000000000c0 RDI: 0000000000000003
RBP: 00007f17d0e0e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000001 R14: 00007f17d0fa6080 R15: 00007ffee19bd658
 </TASK>
INFO: task syz.4.25:5999 blocked for more than 144 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.4.25        state:D stack:25776 pid:5999  tgid:5997  ppid:5836   task_flags:0x400140 flags:0x00004006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 device_lock include/linux/device.h:1030 [inline]
 nfc_dev_down+0x2d/0x2e0 net/nfc/core.c:143
 nfc_rfkill_set_block+0x39/0xe0 net/nfc/core.c:179
 rfkill_set_block+0x203/0x560 net/rfkill/core.c:346
 rfkill_fop_write+0x2ce/0x570 net/rfkill/core.c:1301
 vfs_write+0x24c/0x1150 fs/read_write.c:677
 ksys_write+0x207/0x250 fs/read_write.c:731
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f6f5a18cde9
RSP: 002b:00007f6f5af76038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 00007f6f5a3a5fa0 RCX: 00007f6f5a18cde9
RDX: 0000000000000008 RSI: 0000400000000080 RDI: 0000000000000004
RBP: 00007f6f5a20e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f6f5a3a5fa0 R15: 00007ffe8c760648
 </TASK>
INFO: task syz.3.27:6009 blocked for more than 144 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.3.27        state:D stack:25232 pid:6009  tgid:6008  ppid:5825   task_flags:0x400140 flags:0x00004004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
 wiphy_register+0x224f/0x2860 net/wireless/core.c:1069
 ieee80211_register_hw+0x2455/0x4060 net/mac80211/main.c:1587
 mac80211_hwsim_new_radio+0x304e/0x54e0 drivers/net/wireless/virtual/mac80211_hwsim.c:5558
 hwsim_new_radio_nl+0xb42/0x12b0 drivers/net/wireless/virtual/mac80211_hwsim.c:6242
 genl_family_rcv_msg_doit+0x202/0x2f0 net/netlink/genetlink.c:1115
 genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
 genl_rcv_msg+0x565/0x800 net/netlink/genetlink.c:1210
 netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1348
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1892
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:733 [inline]
 ____sys_sendmsg+0xaaf/0xc90 net/socket.c:2573
 ___sys_sendmsg+0x135/0x1e0 net/socket.c:2627
 __sys_sendmsg+0x16e/0x220 net/socket.c:2659
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f60d478cde9
RSP: 002b:00007f60d554f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f60d49a5fa0 RCX: 00007f60d478cde9
RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000009
RBP: 00007f60d480e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f60d49a5fa0 R15: 00007ffefad5f4e8
 </TASK>
INFO: task syz.3.27:6012 blocked for more than 144 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.3.27        state:D stack:24688 pid:6012  tgid:6008  ppid:5825   task_flags:0x400140 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 genl_lock net/netlink/genetlink.c:35 [inline]
 genl_op_lock net/netlink/genetlink.c:60 [inline]
 genl_op_lock net/netlink/genetlink.c:57 [inline]
 genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
 netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1348
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1892
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:733 [inline]
 __sys_sendto+0x488/0x4f0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f60d478ec7c
RSP: 002b:00007f60d552cec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f60d552cfc0 RCX: 00007f60d478ec7c
RDX: 0000000000000020 RSI: 00007f60d552d010 RDI: 000000000000000d
RBP: 0000000000000000 R08: 00007f60d552cf14 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000d
R13: 00007f60d552cf68 R14: 00007f60d552d010 R15: 0000000000000000
 </TASK>
INFO: task syz.1.34:6095 blocked for more than 145 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.1.34        state:D stack:28368 pid:6095  tgid:6078  ppid:5834   task_flags:0x400040 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 genl_lock net/netlink/genetlink.c:35 [inline]
 genl_op_lock net/netlink/genetlink.c:60 [inline]
 genl_op_lock net/netlink/genetlink.c:57 [inline]
 genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
 netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1348
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1892
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:733 [inline]
 __sys_sendto+0x488/0x4f0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f4ec738ec7c
RSP: 002b:00007f4ec81f5ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f4ec81f5fc0 RCX: 00007f4ec738ec7c
RDX: 0000000000000024 RSI: 00007f4ec81f6010 RDI: 000000000000000a
RBP: 0000000000000000 R08: 00007f4ec81f5f14 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000000a
R13: 00007f4ec81f5f68 R14: 00007f4ec81f6010 R15: 0000000000000000
 </TASK>
INFO: task syz.0.37:6109 blocked for more than 145 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.0.37        state:D stack:26848 pid:6109  tgid:6108  ppid:5831   task_flags:0x400140 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 genl_lock net/netlink/genetlink.c:35 [inline]
 genl_op_lock net/netlink/genetlink.c:60 [inline]
 genl_op_lock net/netlink/genetlink.c:57 [inline]
 genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
 netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1348
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1892
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:733 [inline]
 __sys_sendto+0x488/0x4f0 net/socket.c:2187
 __do_sys_sendto net/socket.c:2194 [inline]
 __se_sys_sendto net/socket.c:2190 [inline]
 __x64_sys_sendto+0xe0/0x1c0 net/socket.c:2190
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f477cb8ec7c
RSP: 002b:00007f477c9f7ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
RAX: ffffffffffffffda RBX: 00007f477c9f7fc0 RCX: 00007f477cb8ec7c
RDX: 0000000000000024 RSI: 00007f477c9f8010 RDI: 0000000000000007
RBP: 0000000000000000 R08: 00007f477c9f7f14 R09: 000000000000000c
R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007
R13: 00007f477c9f7f68 R14: 00007f477c9f8010 R15: 0000000000000000
 </TASK>
INFO: task syz.0.37:6116 blocked for more than 145 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.0.37        state:D stack:28048 pid:6116  tgid:6108  ppid:5831   task_flags:0x400040 flags:0x00000004
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 genl_lock net/netlink/genetlink.c:35 [inline]
 genl_op_lock net/netlink/genetlink.c:60 [inline]
 genl_op_lock net/netlink/genetlink.c:57 [inline]
 genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
 netlink_rcv_skb+0x16b/0x440 net/netlink/af_netlink.c:2543
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline]
 netlink_unicast+0x53c/0x7f0 net/netlink/af_netlink.c:1348
 netlink_sendmsg+0x8b8/0xd70 net/netlink/af_netlink.c:1892
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:733 [inline]
 ____sys_sendmsg+0xaaf/0xc90 net/socket.c:2573
 ___sys_sendmsg+0x135/0x1e0 net/socket.c:2627
 __sys_sendmsg+0x16e/0x220 net/socket.c:2659
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f477cb8cde9
RSP: 002b:00007f477c9b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007f477cda6160 RCX: 00007f477cb8cde9
RDX: 0000000020000000 RSI: 0000400000000140 RDI: 000000000000000b
RBP: 00007f477cc0e2a0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007f477cda6160 R15: 00007ffc8dc18588
 </TASK>
INFO: task syz-executor:6136 blocked for more than 146 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:28416 pid:6136  tgid:6136  ppid:1      task_flags:0x400040 flags:0x00000000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
 hci_register_dev+0x3cc/0xc60 net/bluetooth/hci_core.c:2596
 __vhci_create_device+0x344/0x7e0 drivers/bluetooth/hci_vhci.c:428
 vhci_create_device drivers/bluetooth/hci_vhci.c:470 [inline]
 vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 vhci_write+0x2c3/0x470 drivers/bluetooth/hci_vhci.c:607
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0x5ae/0x1150 fs/read_write.c:679
 ksys_write+0x12b/0x250 fs/read_write.c:731
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fefb2f8b860
RSP: 002b:00007fff37d4eec8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fefb2f8b860
RDX: 0000000000000002 RSI: 00007fff37d4eeda RDI: 00000000000000ca
RBP: 00007fefb31a6738 R08: 0000000000000000 R09: 00007fefb3cdd6c0
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
 </TASK>
Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
INFO: task syz-executor:6139 blocked for more than 146 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:28400 pid:6139  tgid:6139  ppid:1      task_flags:0x400040 flags:0x00000000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
 hci_register_dev+0x3cc/0xc60 net/bluetooth/hci_core.c:2596
 __vhci_create_device+0x344/0x7e0 drivers/bluetooth/hci_vhci.c:428
 vhci_create_device drivers/bluetooth/hci_vhci.c:470 [inline]
 vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 vhci_write+0x2c3/0x470 drivers/bluetooth/hci_vhci.c:607
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0x5ae/0x1150 fs/read_write.c:679
 ksys_write+0x12b/0x250 fs/read_write.c:731
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fbce9d8b860
RSP: 002b:00007ffd52cc57a8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fbce9d8b860
RDX: 0000000000000002 RSI: 00007ffd52cc57ba RDI: 00000000000000ca
RBP: 00007fbce9fa6738 R08: 0000000000000000 R09: 00007fbceaadd6c0
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
 </TASK>
Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
INFO: task syz-executor:6141 blocked for more than 146 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:27728 pid:6141  tgid:6141  ppid:1      task_flags:0x400040 flags:0x00000000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
 hci_register_dev+0x3cc/0xc60 net/bluetooth/hci_core.c:2596
 __vhci_create_device+0x344/0x7e0 drivers/bluetooth/hci_vhci.c:428
 vhci_create_device drivers/bluetooth/hci_vhci.c:470 [inline]
 vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 vhci_write+0x2c3/0x470 drivers/bluetooth/hci_vhci.c:607
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0x5ae/0x1150 fs/read_write.c:679
 ksys_write+0x12b/0x250 fs/read_write.c:731
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f143678b860
RSP: 002b:00007ffd61419d38 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f143678b860
RDX: 0000000000000002 RSI: 00007ffd61419d4a RDI: 00000000000000ca
RBP: 00007f14369a6738 R08: 0000000000000000 R09: 00007f14374dd6c0
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
 </TASK>
Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
INFO: task syz-executor:6145 blocked for more than 147 seconds.
      Not tainted 6.14.0-rc3-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D stack:28416 pid:6145  tgid:6145  ppid:1      task_flags:0x400040 flags:0x00000000
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5378 [inline]
 __schedule+0xf43/0x5890 kernel/sched/core.c:6765
 __schedule_loop kernel/sched/core.c:6842 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6857
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6914
 __mutex_lock_common kernel/locking/mutex.c:662 [inline]
 __mutex_lock+0x6bd/0xb10 kernel/locking/mutex.c:730
 rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
 hci_register_dev+0x3cc/0xc60 net/bluetooth/hci_core.c:2596
 __vhci_create_device+0x344/0x7e0 drivers/bluetooth/hci_vhci.c:428
 vhci_create_device drivers/bluetooth/hci_vhci.c:470 [inline]
 vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 vhci_write+0x2c3/0x470 drivers/bluetooth/hci_vhci.c:607
 new_sync_write fs/read_write.c:586 [inline]
 vfs_write+0x5ae/0x1150 fs/read_write.c:679
 ksys_write+0x12b/0x250 fs/read_write.c:731
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xcd/0x250 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f3e5198b860
RSP: 002b:00007fff542002e8 EFLAGS: 00000202 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f3e5198b860
RDX: 0000000000000002 RSI: 00007fff542002fa RDI: 00000000000000ca
RBP: 00007f3e51ba6738 R08: 0000000000000000 R09: 00007f3e526dd6c0
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008
R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
 </TASK>
Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings

Showing all locks held in the system:
1 lock held by khungtaskd/30:
 #0: ffffffff8e1bcc80 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]
 #0: ffffffff8e1bcc80 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:849 [inline]
 #0: ffffffff8e1bcc80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 kernel/locking/lockdep.c:6746
2 locks held by getty/5585:
 #0: ffff8880361820a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
 #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480 drivers/tty/n_tty.c:2211
1 lock held by syz-executor/5821:
 #0: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xde/0x2c0 net/rfkill/core.c:1145
3 locks held by kworker/1:8/5923:
 #0: ffff88801b078d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 kernel/workqueue.c:3211
 #1: ffffc90004e8fd18 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 kernel/workqueue.c:3212
 #2: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x1b/0x160 net/rfkill/core.c:182
2 locks held by syz.2.8/5930:
 #0: ffff88802863c100 (&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1030 [inline]
 #0: ffff88802863c100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x60/0x330 net/nfc/core.c:1165
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_unregister+0xde/0x2c0 net/rfkill/core.c:1145
2 locks held by syz.4.25/5999:
 #0: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_fop_write+0x168/0x570 net/rfkill/core.c:1293
 #1: ffff88802863c100 (&dev->mutex){....}-{4:4}, at: device_lock include/linux/device.h:1030 [inline]
 #1: ffff88802863c100 (&dev->mutex){....}-{4:4}, at: nfc_dev_down+0x2d/0x2e0 net/nfc/core.c:143
3 locks held by syz.3.27/6009:
 #0: ffffffff8ff976b0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:57 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
 #2: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz.3.27/6012:
 #0: ffffffff8ff976b0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:57 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
2 locks held by syz.1.34/6095:
 #0: ffffffff8ff976b0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:57 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
2 locks held by syz.0.37/6109:
 #0: ffffffff8ff976b0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:57 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
2 locks held by syz.0.37/6116:
 #0: ffffffff8ff976b0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 net/netlink/genetlink.c:1218
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_lock net/netlink/genetlink.c:35 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:60 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_op_lock net/netlink/genetlink.c:57 [inline]
 #1: ffffffff8ff97768 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x580/0x800 net/netlink/genetlink.c:1209
2 locks held by syz-executor/6136:
 #0: ffff888034133918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888034133918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888034133918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6139:
 #0: ffff88803507a918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88803507a918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88803507a918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6141:
 #0: ffff8880289f0918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff8880289f0918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff8880289f0918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6145:
 #0: ffff88803552b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88803552b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88803552b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6147:
 #0: ffff88807eb0f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88807eb0f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88807eb0f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6156:
 #0: ffff888026069118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888026069118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888026069118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6159:
 #0: ffff88807f9da918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88807f9da918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88807f9da918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6162:
 #0: ffff888027f06118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888027f06118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888027f06118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6164:
 #0: ffff88807897f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88807897f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88807897f918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6167:
 #0: ffff88807766b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88807766b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88807766b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6169:
 #0: ffff888021ff8918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888021ff8918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888021ff8918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6172:
 #0: ffff888078a3b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888078a3b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888078a3b918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6175:
 #0: ffff888078a38118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff888078a38118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff888078a38118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6177:
 #0: ffff8880250bf918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff8880250bf918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff8880250bf918 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071
2 locks held by syz-executor/6180:
 #0: ffff88802a27f118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_create_device drivers/bluetooth/hci_vhci.c:469 [inline]
 #0: ffff88802a27f118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_get_user drivers/bluetooth/hci_vhci.c:527 [inline]
 #0: ffff88802a27f118 (&data->open_mutex){+.+.}-{4:4}, at: vhci_write+0x2b7/0x470 drivers/bluetooth/hci_vhci.c:607
 #1: ffffffff9039a1c8 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x3a/0xb40 net/rfkill/core.c:1071

=============================================

NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
 nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:236 [inline]
 watchdog+0xf62/0x12b0 kernel/hung_task.c:399
 kthread+0x3af/0x750 kernel/kthread.c:464
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:148
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0 skipped: idling at native_safe_halt arch/x86/include/asm/irqflags.h:48 [inline]
NMI backtrace for cpu 0 skipped: idling at arch_safe_halt arch/x86/include/asm/irqflags.h:106 [inline]
NMI backtrace for cpu 0 skipped: idling at acpi_safe_halt+0x1a/0x20 drivers/acpi/processor_idle.c:111