Extracting prog: 2m10.265491907s
Minimizing prog: 21m2.509084297s
Simplifying prog options: 0s
Extracting C: 29.101513893s
Simplifying C: 10m4.21229134s


30 programs, timeouts [30s 1m40s 6m0s]
extracting reproducer from 30 programs
testing a last program of every proc
single: executing 5 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): socket$kcm-bpf$ENABLE_STATS-socket$nl_route-socket$inet_udplite-socket-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-socket$nl_route-socket-socketpair$unix-socket$netlink-socket$inet_tcp-ioctl$sock_SIOCGIFINDEX-bpf$MAP_CREATE-bpf$MAP_CREATE-bpf$PROG_LOAD-openat$cgroup_ro-socketpair$unix-pipe-socket$netlink-openat$cgroup_ro-bpf$MAP_UPDATE_ELEM_TAIL_CALL-bpf$BPF_LINK_CREATE_XDP-syz_emit_ethernet
detailed listing:
executing program 0:
socket$kcm(0x29, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000820000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480))
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pipe(&(0x7f0000000080))
socket$netlink(0x10, 0x3, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r4}, &(0x7f0000000240), &(0x7f00000003c0)=r6}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r5, r2, 0x25, 0x2, @val=@tcx={@void, @value}}, 0x40)
syz_emit_ethernet(0x22, &(0x7f0000000100)={@broadcast, @local, @val={@void, {0x8847}}, {@can={0xc, {{}, 0x0, 0x0, 0x0, 0x0, "534ead40a3537293"}}}}, 0x0)

program did not crash
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): socket$key-ioctl$EXT4_IOC_GROUP_EXTEND-bpf$BPF_BTF_LOAD-openat$cgroup_ro-socket$inet6-bpf$PROG_LOAD-prlimit64-sched_setscheduler-getpid-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-sendmmsg$unix-bpf$PROG_LOAD-pipe2$9p-epoll_create-epoll_ctl$EPOLL_CTL_ADD-epoll_pwait-write$P9_RVERSION-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$MAP_CREATE-select
detailed listing:
executing program 0:
socket$key(0xf, 0x3, 0x2)
ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000300)=0x1000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)=""/130, 0x4a, 0x82, 0x1, 0x0, 0x0, @void, @value}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
socket$inet6(0xa, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x16}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000100)={0x10000011})
epoll_pwait(r3, &(0x7f0000000000)=[{}], 0x1, 0xfcb, 0x0, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000140)={0x13, 0x65, 0xffff, 0x0, 0x6, '9P2000'}, 0x13)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
select(0x40, &(0x7f0000000340)={0x0, 0x0, 0x4, 0x0, 0x0, 0x1000, 0xfffffffffffffffe}, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-socket$netlink-openat$vicodec0-ioctl$SECCOMP_IOCTL_NOTIF_ADDFD-syz_open_procfs-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40082104, 0x0)
syz_open_procfs(0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
single: successfully extracted reproducer
found reproducer with 23 syscalls
minimizing guilty program
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-socket$netlink-openat$vicodec0-ioctl$SECCOMP_IOCTL_NOTIF_ADDFD-syz_open_procfs
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40082104, 0x0)
syz_open_procfs(0x0, 0x0)

program did not crash
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-socket$netlink-openat$vicodec0-ioctl$SECCOMP_IOCTL_NOTIF_ADDFD-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40082104, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-socket$netlink-openat$vicodec0-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-socket$netlink-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-bind$inet6-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x22, 0x2, @local}, 0x1c)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-setsockopt$inet6_int-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-socket$inet6-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
socket$inet6(0xa, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-sched_setaffinity-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
sched_setaffinity(0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="04040a00000000000054d64e1cf33429e26ea36f8b71679240"], 0xd)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-bpf$MAP_UPDATE_ELEM-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r2, &(0x7f0000000240), &(0x7f0000000300)=@tcp=r4}, 0x20)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-bpf$BPF_PROG_DETACH-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r5, 0x4, 0x0, 0x0, @void, @value}, 0x10)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-bpf$PROG_LOAD-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-bpf$MAP_UPDATE_ELEM-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, &(0x7f0000000240), &(0x7f0000000280)=@udp6=r4}, 0x20)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-fcntl$dupfd-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
fcntl$dupfd(r3, 0x0, r3)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-socket$inet6-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
socket$inet6(0xa, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-bpf$BPF_PROG_DETACH-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-bpf$MAP_CREATE-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-bpf$PROG_LOAD-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb9)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-listen-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
listen(r0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program did not crash
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-bind$bt_sco-connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000080), 0x8)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program crashed: possible deadlock in sco_connect_cfm
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000040), 0x8)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program did not crash
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000140)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_conn_complete={{0x2c, 0x11}}}, 0x14)

program did not crash
testing program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
syz_emit_vhci(0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=1m4.024320916s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
simplifying C reproducer
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program did not crash
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program did not crash
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program did not crash
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program did not crash
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:true UseTmpDir:true HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
testing compiled C program (duration=1m4.024320916s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_sco-connect$bt_sco-syz_emit_vhci
program crashed: possible deadlock in sco_connect_cfm
reproducing took 33m46.088409667s
repro crashed as (corrupted=false):
======================================================
WARNING: possible circular locking dependency detected
5.15.168-syzkaller #0 Not tainted
------------------------------------------------------
kworker/u5:7/3607 is trying to acquire lock:
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1678 [inline]
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_conn_ready net/bluetooth/sco.c:1110 [inline]
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201

but task is already holding lock:
ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0x45f/0x9b0 net/bluetooth/hci_event.c:4551

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (hci_cb_list_lock){+.+.}-{3:3}:
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       __mutex_lock_common+0x1da/0x25a0 kernel/locking/mutex.c:596
       __mutex_lock kernel/locking/mutex.c:729 [inline]
       mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743
       hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
       hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352
       hci_event_packet+0x6fe/0x1550 net/bluetooth/hci_event.c:6421
       hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
       process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
       worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
       kthread+0x3f6/0x4f0 kernel/kthread.c:334
       ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287

-> #1 (&hdev->lock){+.+.}-{3:3}:
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       __mutex_lock_common+0x1da/0x25a0 kernel/locking/mutex.c:596
       __mutex_lock kernel/locking/mutex.c:729 [inline]
       mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743
       sco_sock_connect+0x181/0x8e0 net/bluetooth/sco.c:591
       __sys_connect_file net/socket.c:1923 [inline]
       __sys_connect+0x38b/0x410 net/socket.c:1940
       __do_sys_connect net/socket.c:1950 [inline]
       __se_sys_connect net/socket.c:1947 [inline]
       __x64_sys_connect+0x76/0x80 net/socket.c:1947
       do_syscall_x64 arch/x86/entry/common.c:50 [inline]
       do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
       entry_SYSCALL_64_after_hwframe+0x66/0xd0

-> #0 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}:
       check_prev_add kernel/locking/lockdep.c:3053 [inline]
       check_prevs_add kernel/locking/lockdep.c:3172 [inline]
       validate_chain+0x1649/0x5930 kernel/locking/lockdep.c:3788
       __lock_acquire+0x1295/0x1ff0 kernel/locking/lockdep.c:5012
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       lock_sock_nested+0x44/0x100 net/core/sock.c:3250
       lock_sock include/net/sock.h:1678 [inline]
       sco_conn_ready net/bluetooth/sco.c:1110 [inline]
       sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201
       hci_connect_cfm include/net/bluetooth/hci_core.h:1505 [inline]
       hci_sync_conn_complete_evt+0x4ce/0x9b0 net/bluetooth/hci_event.c:4551
       hci_event_packet+0xa12/0x1550 net/bluetooth/hci_event.c:6483
       hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
       process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
       worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
       kthread+0x3f6/0x4f0 kernel/kthread.c:334
       ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287

other info that might help us debug this:

Chain exists of:
  sk_lock-AF_BLUETOOTH-BTPROTO_SCO --> &hdev->lock --> hci_cb_list_lock

 Possible unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(hci_cb_list_lock);
                               lock(&hdev->lock);
                               lock(hci_cb_list_lock);
  lock(sk_lock-AF_BLUETOOTH-BTPROTO_SCO);

 *** DEADLOCK ***

4 locks held by kworker/u5:7/3607:
 #0: ffff888021d82138 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283
 #1: ffffc90002f37d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285
 #2: ffff88807cc54078 (&hdev->lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0xab/0x9b0 net/bluetooth/hci_event.c:4471
 #3: ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
 #3: ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0x45f/0x9b0 net/bluetooth/hci_event.c:4551

stack backtrace:
CPU: 0 PID: 3607 Comm: kworker/u5:7 Not tainted 5.15.168-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Workqueue: hci0 hci_rx_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x1e3/0x2d0 lib/dump_stack.c:106
 check_noncircular+0x2f8/0x3b0 kernel/locking/lockdep.c:2133
 check_prev_add kernel/locking/lockdep.c:3053 [inline]
 check_prevs_add kernel/locking/lockdep.c:3172 [inline]
 validate_chain+0x1649/0x5930 kernel/locking/lockdep.c:3788
 __lock_acquire+0x1295/0x1ff0 kernel/locking/lockdep.c:5012
 lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
 lock_sock_nested+0x44/0x100 net/core/sock.c:3250
 lock_sock include/net/sock.h:1678 [inline]
 sco_conn_ready net/bluetooth/sco.c:1110 [inline]
 sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201
 hci_connect_cfm include/net/bluetooth/hci_core.h:1505 [inline]
 hci_sync_conn_complete_evt+0x4ce/0x9b0 net/bluetooth/hci_event.c:4551
 hci_event_packet+0xa12/0x1550 net/bluetooth/hci_event.c:6483
 hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
 process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
 worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
 kthread+0x3f6/0x4f0 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection

final repro crashed as (corrupted=false):
======================================================
WARNING: possible circular locking dependency detected
5.15.168-syzkaller #0 Not tainted
------------------------------------------------------
kworker/u5:7/3607 is trying to acquire lock:
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1678 [inline]
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_conn_ready net/bluetooth/sco.c:1110 [inline]
ffff888023240120 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201

but task is already holding lock:
ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0x45f/0x9b0 net/bluetooth/hci_event.c:4551

which lock already depends on the new lock.


the existing dependency chain (in reverse order) is:

-> #2 (hci_cb_list_lock){+.+.}-{3:3}:
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       __mutex_lock_common+0x1da/0x25a0 kernel/locking/mutex.c:596
       __mutex_lock kernel/locking/mutex.c:729 [inline]
       mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743
       hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
       hci_remote_features_evt+0x52f/0xb50 net/bluetooth/hci_event.c:3352
       hci_event_packet+0x6fe/0x1550 net/bluetooth/hci_event.c:6421
       hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
       process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
       worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
       kthread+0x3f6/0x4f0 kernel/kthread.c:334
       ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287

-> #1 (&hdev->lock){+.+.}-{3:3}:
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       __mutex_lock_common+0x1da/0x25a0 kernel/locking/mutex.c:596
       __mutex_lock kernel/locking/mutex.c:729 [inline]
       mutex_lock_nested+0x17/0x20 kernel/locking/mutex.c:743
       sco_sock_connect+0x181/0x8e0 net/bluetooth/sco.c:591
       __sys_connect_file net/socket.c:1923 [inline]
       __sys_connect+0x38b/0x410 net/socket.c:1940
       __do_sys_connect net/socket.c:1950 [inline]
       __se_sys_connect net/socket.c:1947 [inline]
       __x64_sys_connect+0x76/0x80 net/socket.c:1947
       do_syscall_x64 arch/x86/entry/common.c:50 [inline]
       do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:80
       entry_SYSCALL_64_after_hwframe+0x66/0xd0

-> #0 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}:
       check_prev_add kernel/locking/lockdep.c:3053 [inline]
       check_prevs_add kernel/locking/lockdep.c:3172 [inline]
       validate_chain+0x1649/0x5930 kernel/locking/lockdep.c:3788
       __lock_acquire+0x1295/0x1ff0 kernel/locking/lockdep.c:5012
       lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
       lock_sock_nested+0x44/0x100 net/core/sock.c:3250
       lock_sock include/net/sock.h:1678 [inline]
       sco_conn_ready net/bluetooth/sco.c:1110 [inline]
       sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201
       hci_connect_cfm include/net/bluetooth/hci_core.h:1505 [inline]
       hci_sync_conn_complete_evt+0x4ce/0x9b0 net/bluetooth/hci_event.c:4551
       hci_event_packet+0xa12/0x1550 net/bluetooth/hci_event.c:6483
       hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
       process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
       worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
       kthread+0x3f6/0x4f0 kernel/kthread.c:334
       ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287

other info that might help us debug this:

Chain exists of:
  sk_lock-AF_BLUETOOTH-BTPROTO_SCO --> &hdev->lock --> hci_cb_list_lock

 Possible unsafe locking scenario:

       CPU0                    CPU1
       ----                    ----
  lock(hci_cb_list_lock);
                               lock(&hdev->lock);
                               lock(hci_cb_list_lock);
  lock(sk_lock-AF_BLUETOOTH-BTPROTO_SCO);

 *** DEADLOCK ***

4 locks held by kworker/u5:7/3607:
 #0: ffff888021d82138 ((wq_completion)hci0#2){+.+.}-{0:0}, at: process_one_work+0x78a/0x10c0 kernel/workqueue.c:2283
 #1: ffffc90002f37d20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7d0/0x10c0 kernel/workqueue.c:2285
 #2: ffff88807cc54078 (&hdev->lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0xab/0x9b0 net/bluetooth/hci_event.c:4471
 #3: ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_connect_cfm include/net/bluetooth/hci_core.h:1502 [inline]
 #3: ffffffff8db7b528 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_sync_conn_complete_evt+0x45f/0x9b0 net/bluetooth/hci_event.c:4551

stack backtrace:
CPU: 0 PID: 3607 Comm: kworker/u5:7 Not tainted 5.15.168-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Workqueue: hci0 hci_rx_work
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x1e3/0x2d0 lib/dump_stack.c:106
 check_noncircular+0x2f8/0x3b0 kernel/locking/lockdep.c:2133
 check_prev_add kernel/locking/lockdep.c:3053 [inline]
 check_prevs_add kernel/locking/lockdep.c:3172 [inline]
 validate_chain+0x1649/0x5930 kernel/locking/lockdep.c:3788
 __lock_acquire+0x1295/0x1ff0 kernel/locking/lockdep.c:5012
 lock_acquire+0x1db/0x4f0 kernel/locking/lockdep.c:5623
 lock_sock_nested+0x44/0x100 net/core/sock.c:3250
 lock_sock include/net/sock.h:1678 [inline]
 sco_conn_ready net/bluetooth/sco.c:1110 [inline]
 sco_connect_cfm+0x146/0xad0 net/bluetooth/sco.c:1201
 hci_connect_cfm include/net/bluetooth/hci_core.h:1505 [inline]
 hci_sync_conn_complete_evt+0x4ce/0x9b0 net/bluetooth/hci_event.c:4551
 hci_event_packet+0xa12/0x1550 net/bluetooth/hci_event.c:6483
 hci_rx_work+0x232/0x990 net/bluetooth/hci_core.c:5155
 process_one_work+0x8a1/0x10c0 kernel/workqueue.c:2310
 worker_thread+0xaca/0x1280 kernel/workqueue.c:2457
 kthread+0x3f6/0x4f0 kernel/kthread.c:334
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:287
 </TASK>
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection
Bluetooth: hci0: Ignoring connect complete event for existing connection