Warning: Permanently added '[localhost]:39480' (ECDSA) to the list of known hosts. 2025/01/18 04:49:32 fuzzer started 2025/01/18 04:49:33 dialing manager at localhost:44245 syzkaller login: [ 61.954084] cgroup: Unknown subsys name 'net' [ 62.060191] cgroup: Unknown subsys name 'cpuset' [ 62.099549] cgroup: Unknown subsys name 'rlimit' [ 67.472862] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 04:49:51 syscalls: 2217 2025/01/18 04:49:51 code coverage: enabled 2025/01/18 04:49:51 comparison tracing: enabled 2025/01/18 04:49:51 extra coverage: enabled 2025/01/18 04:49:51 setuid sandbox: enabled 2025/01/18 04:49:51 namespace sandbox: enabled 2025/01/18 04:49:51 Android sandbox: enabled 2025/01/18 04:49:51 fault injection: enabled 2025/01/18 04:49:51 leak checking: enabled 2025/01/18 04:49:51 net packet injection: enabled 2025/01/18 04:49:51 net device setup: enabled 2025/01/18 04:49:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 04:49:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 04:49:51 USB emulation: enabled 2025/01/18 04:49:51 hci packet injection: enabled 2025/01/18 04:49:51 wifi device emulation: enabled 2025/01/18 04:49:51 802.15.4 emulation: enabled 2025/01/18 04:49:51 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 04:49:51 fetching corpus: 50, signal 25841/28556 (executing program) 2025/01/18 04:49:51 fetching corpus: 100, signal 42387/45232 (executing program) 2025/01/18 04:49:51 fetching corpus: 150, signal 46691/50076 (executing program) 2025/01/18 04:49:52 fetching corpus: 200, signal 53470/56858 (executing program) 2025/01/18 04:49:52 fetching corpus: 250, signal 56678/60356 (executing program) 2025/01/18 04:49:52 fetching corpus: 300, signal 60246/63873 (executing program) 2025/01/18 04:49:52 fetching corpus: 350, signal 64323/67643 (executing program) 2025/01/18 04:49:53 fetching corpus: 400, signal 68444/71234 (executing program) 2025/01/18 04:49:53 fetching corpus: 450, signal 71845/74066 (executing program) 2025/01/18 04:49:53 fetching corpus: 500, signal 76558/77749 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79515 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79556 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79590 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79637 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79685 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79737 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79780 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79828 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79873 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79920 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/79956 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80014 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80063 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80104 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80162 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80210 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80253 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80316 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80351 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80397 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80435 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80479 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80527 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80582 (executing program) 2025/01/18 04:49:53 fetching corpus: 528, signal 78927/80616 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80656 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80696 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80751 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80803 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80820 (executing program) 2025/01/18 04:49:54 fetching corpus: 528, signal 78927/80820 (executing program) 2025/01/18 04:49:58 starting 8 fuzzer processes 04:49:58 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) ioctl$sock_SIOCINQ(r0, 0x1276, 0x0) 04:49:58 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = dup3(r0, r1, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x4e, &(0x7f0000000540)={0x0, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, '\x00', 0x2}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) 04:49:58 executing program 3: syz_emit_ethernet(0x46, &(0x7f00000000c0)={@random="e59d5193649e", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc20", 0x10, 0x3a, 0xff, @private2, @local, {[], @ndisc_ra}}}}}, 0x0) 04:49:58 executing program 2: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendto(r0, &(0x7f0000000040)="ae", 0x1, 0x881, 0x0, 0x0) recvfrom(r1, 0x0, 0x0, 0x20012003, 0x0, 0x0) [ 86.505218] audit: type=1400 audit(1737175798.103:7): avc: denied { execmem } for pid=275 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 04:49:58 executing program 4: r0 = memfd_secret(0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3) 04:49:58 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000580), &(0x7f00000005c0)='./file1\x00', 0x0, 0x0, 0x0, 0xa00031, &(0x7f0000000b40)=ANY=[]) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) openat(r0, &(0x7f0000000080)='./file1\x00', 0xa0240, 0x0) 04:49:58 executing program 6: unshare(0x40400) r0 = getpid() r1 = pidfd_open(r0, 0x0) pidfd_send_signal(r1, 0x0, 0x0, 0x0) 04:49:58 executing program 7: syz_emit_ethernet(0x34, &(0x7f0000001500)={@local, @dev, @val={@void}, {@generic={0x88f7, "b871c7083f54ba3b3bab7f720c1f41c848f6043b00ecee96ba787dc9bc56878cfc85"}}}, 0x0) [ 87.882816] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.889231] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.895008] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.898050] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.903865] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.908882] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.916809] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.917876] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.919705] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.937621] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.943452] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.943995] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.949853] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.968187] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.986605] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.992135] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.014934] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.019065] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.023100] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.023782] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.041541] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.047694] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.052269] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.061794] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 88.070926] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.072969] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 88.084123] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 88.084159] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 88.085754] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 88.086031] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.118828] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 88.125674] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 88.128705] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 88.135453] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 88.142623] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 88.153962] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 88.156142] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 88.160928] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.174790] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.180675] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.189336] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.193961] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.194322] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.203661] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 88.208258] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.211129] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 88.214979] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.227239] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 90.018264] Bluetooth: hci1: command tx timeout [ 90.018320] Bluetooth: hci0: command tx timeout [ 90.145501] Bluetooth: hci3: command tx timeout [ 90.211505] Bluetooth: hci2: command tx timeout [ 90.211500] Bluetooth: hci4: command tx timeout [ 90.273571] Bluetooth: hci6: command tx timeout [ 90.273740] Bluetooth: hci5: command tx timeout [ 90.337489] Bluetooth: hci7: command tx timeout [ 92.065709] Bluetooth: hci0: command tx timeout [ 92.066618] Bluetooth: hci1: command tx timeout [ 92.194435] Bluetooth: hci3: command tx timeout [ 92.257524] Bluetooth: hci2: command tx timeout [ 92.258114] Bluetooth: hci4: command tx timeout [ 92.322744] Bluetooth: hci5: command tx timeout [ 92.322857] Bluetooth: hci6: command tx timeout [ 92.385508] Bluetooth: hci7: command tx timeout [ 94.114424] Bluetooth: hci1: command tx timeout [ 94.114555] Bluetooth: hci0: command tx timeout [ 94.241424] Bluetooth: hci3: command tx timeout [ 94.306572] Bluetooth: hci4: command tx timeout [ 94.306700] Bluetooth: hci2: command tx timeout [ 94.369529] Bluetooth: hci5: command tx timeout [ 94.369621] Bluetooth: hci6: command tx timeout [ 94.434023] Bluetooth: hci7: command tx timeout [ 96.161552] Bluetooth: hci0: command tx timeout [ 96.161595] Bluetooth: hci1: command tx timeout [ 96.289441] Bluetooth: hci3: command tx timeout [ 96.353659] Bluetooth: hci2: command tx timeout [ 96.355029] Bluetooth: hci4: command tx timeout [ 96.418429] Bluetooth: hci6: command tx timeout [ 96.418472] Bluetooth: hci5: command tx timeout [ 96.481506] Bluetooth: hci7: command tx timeout [ 150.265174] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.268959] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.271621] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.277716] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.281526] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.284077] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.292119] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.297015] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.300506] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.310686] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.321649] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.325798] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.331799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.338555] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.341288] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.347071] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.351959] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.355659] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.442953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.446556] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.448739] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.455880] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.458569] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.460887] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 150.606118] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.613463] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.624897] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.629516] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.633702] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.686220] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.692925] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 150.695649] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 150.698921] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 150.706607] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.707094] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 150.712064] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 150.714825] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 150.726643] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.729745] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.729808] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.730942] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.735285] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.740513] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.740552] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 150.760599] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.772770] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.794803] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.810865] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 152.353530] Bluetooth: hci1: command tx timeout [ 152.417659] Bluetooth: hci2: command tx timeout [ 152.418161] Bluetooth: hci0: command tx timeout [ 152.546574] Bluetooth: hci3: command tx timeout [ 152.801518] Bluetooth: hci6: command tx timeout [ 152.929452] Bluetooth: hci4: command tx timeout [ 152.993522] Bluetooth: hci5: command tx timeout [ 153.506858] Bluetooth: hci7: command tx timeout [ 154.401521] Bluetooth: hci1: command tx timeout [ 154.465414] Bluetooth: hci0: command tx timeout [ 154.465494] Bluetooth: hci2: command tx timeout [ 154.595445] Bluetooth: hci3: command tx timeout [ 154.849456] Bluetooth: hci6: command tx timeout [ 154.978544] Bluetooth: hci4: command tx timeout [ 155.041390] Bluetooth: hci5: command tx timeout [ 155.553528] Bluetooth: hci7: command tx timeout [ 156.452357] Bluetooth: hci1: command tx timeout [ 156.513423] Bluetooth: hci2: command tx timeout [ 156.513538] Bluetooth: hci0: command tx timeout [ 156.641483] Bluetooth: hci3: command tx timeout [ 156.898402] Bluetooth: hci6: command tx timeout [ 157.025474] Bluetooth: hci4: command tx timeout [ 157.089503] Bluetooth: hci5: command tx timeout [ 157.601461] Bluetooth: hci7: command tx timeout [ 158.497398] Bluetooth: hci1: command tx timeout [ 158.562450] Bluetooth: hci0: command tx timeout [ 158.562478] Bluetooth: hci2: command tx timeout [ 158.690505] Bluetooth: hci3: command tx timeout [ 158.947113] Bluetooth: hci6: command tx timeout [ 159.074435] Bluetooth: hci4: command tx timeout [ 159.140399] Bluetooth: hci5: command tx timeout [ 159.650414] Bluetooth: hci7: command tx timeout [ 208.764189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 208.765023] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 209.397932] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 209.398012] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 210.888896] [ 210.889226] ====================================================== [ 210.890065] WARNING: possible circular locking dependency detected [ 210.890896] 6.13.0-rc7-next-20250117 #1 Not tainted [ 210.892016] ------------------------------------------------------ [ 210.893649] kworker/u8:1/66 is trying to acquire lock: [ 210.894882] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.897245] [ 210.897245] but task is already holding lock: [ 210.899199] ffff88802fee8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 210.901534] [ 210.901534] which lock already depends on the new lock. [ 210.901534] [ 210.903549] [ 210.903549] the existing dependency chain (in reverse order) is: [ 210.904547] [ 210.904547] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 210.905488] __mutex_lock+0x13d/0xb50 [ 210.906157] wiphy_register+0x1b2e/0x25d0 [ 210.906839] ieee80211_register_hw+0x23a4/0x3d60 [ 210.907604] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 210.908386] init_mac80211_hwsim+0x389/0x870 [ 210.909117] do_one_initcall+0xf9/0x640 [ 210.909788] kernel_init_freeable+0x53d/0x7a0 [ 210.910514] kernel_init+0x1e/0x2d0 [ 210.911109] ret_from_fork+0x48/0x80 [ 210.911714] ret_from_fork_asm+0x1a/0x30 [ 210.912397] [ 210.912397] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 210.913351] __lock_acquire+0x29fd/0x4580 [ 210.914147] lock_acquire+0x19b/0x520 [ 210.914877] __mutex_lock+0x13d/0xb50 [ 210.915613] unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.916621] unregister_netdevice_queue+0x224/0x2e0 [ 210.917512] _cfg80211_unregister_wdev+0x57b/0x700 [ 210.918302] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 210.919061] ieee80211_unregister_hw+0x55/0x3a0 [ 210.919779] hwsim_exit_net+0x3a0/0x730 [ 210.920416] ops_exit_list+0xb3/0x180 [ 210.921030] cleanup_net+0x546/0xad0 [ 210.921643] process_one_work+0x8ee/0x1a10 [ 210.922343] worker_thread+0x674/0xe70 [ 210.922989] kthread+0x3ab/0x720 [ 210.923565] ret_from_fork+0x48/0x80 [ 210.924153] ret_from_fork_asm+0x1a/0x30 [ 210.924818] [ 210.924818] other info that might help us debug this: [ 210.924818] [ 210.925859] Possible unsafe locking scenario: [ 210.925859] [ 210.926667] CPU0 CPU1 [ 210.927278] ---- ---- [ 210.927897] lock(&rdev->wiphy.mtx); [ 210.928450] lock(rtnl_mutex); [ 210.929240] lock(&rdev->wiphy.mtx); [ 210.930122] lock(rtnl_mutex); [ 210.930579] [ 210.930579] *** DEADLOCK *** [ 210.930579] [ 210.931159] 4 locks held by kworker/u8:1/66: [ 210.931596] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 210.932617] #1: ffff88800e557d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 210.933601] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 210.934528] #3: ffff88802fee8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 210.935553] [ 210.935553] stack backtrace: [ 210.935984] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 210.936803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 210.937580] Workqueue: netns cleanup_net [ 210.938004] Call Trace: [ 210.938259] [ 210.938491] dump_stack_lvl+0xca/0x120 [ 210.938910] print_circular_bug+0x47b/0x750 [ 210.939347] check_noncircular+0x2e9/0x3c0 [ 210.939772] ? srso_return_thunk+0x5/0x5f [ 210.940207] ? __pfx_check_noncircular+0x10/0x10 [ 210.940700] ? hlock_class+0x4e/0x130 [ 210.941085] ? mark_lock+0xac/0xed0 [ 210.941465] ? srso_return_thunk+0x5/0x5f [ 210.941903] ? __dequeue_entity+0x9b1/0x1900 [ 210.942360] ? lockdep_lock+0xba/0x1b0 [ 210.942782] ? __pfx_lockdep_lock+0x10/0x10 [ 210.943241] __lock_acquire+0x29fd/0x4580 [ 210.943674] ? __pfx___lock_acquire+0x10/0x10 [ 210.944127] ? lock_release+0x20f/0x6f0 [ 210.944550] ? __pfx_lock_release+0x10/0x10 [ 210.944994] lock_acquire+0x19b/0x520 [ 210.945390] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.945977] ? __pfx_lock_acquire+0x10/0x10 [ 210.946415] ? srso_return_thunk+0x5/0x5f [ 210.946847] ? lock_release+0x20f/0x6f0 [ 210.947254] ? srso_return_thunk+0x5/0x5f [ 210.947686] ? lock_is_held_type+0x9e/0x120 [ 210.948142] ? srso_return_thunk+0x5/0x5f [ 210.948590] __mutex_lock+0x13d/0xb50 [ 210.948993] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.949570] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.950159] ? srso_return_thunk+0x5/0x5f [ 210.950595] ? synchronize_rcu_expedited+0x38a/0x420 [ 210.951102] ? __pfx___mutex_lock+0x10/0x10 [ 210.951554] ? __pfx_autoremove_wake_function+0x10/0x10 [ 210.952096] ? srso_return_thunk+0x5/0x5f [ 210.952530] ? kasan_quarantine_put+0x84/0x1e0 [ 210.953009] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 210.953464] ? srso_return_thunk+0x5/0x5f [ 210.953912] unregister_netdevice_many_notify+0x1612/0x1c80 [ 210.954475] ? __virt_addr_valid+0x2e8/0x5d0 [ 210.954935] ? __pfx_lock_release+0x10/0x10 [ 210.955378] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 210.955971] ? find_held_lock+0x2c/0x110 [ 210.956408] ? srso_return_thunk+0x5/0x5f [ 210.956844] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 210.957358] ? srso_return_thunk+0x5/0x5f [ 210.957796] ? lock_release+0x20f/0x6f0 [ 210.958212] ? __pfx_lock_release+0x10/0x10 [ 210.958654] ? srso_return_thunk+0x5/0x5f [ 210.959089] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 210.959621] ? srso_return_thunk+0x5/0x5f [ 210.960065] unregister_netdevice_queue+0x224/0x2e0 [ 210.960564] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 210.961107] ? up_write+0x195/0x520 [ 210.961505] _cfg80211_unregister_wdev+0x57b/0x700 [ 210.962009] ? srso_return_thunk+0x5/0x5f [ 210.962451] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 210.962956] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 210.963501] ? srso_return_thunk+0x5/0x5f [ 210.963939] ? srso_return_thunk+0x5/0x5f [ 210.964371] ? synchronize_rcu+0x1ff/0x260 [ 210.964799] ieee80211_unregister_hw+0x55/0x3a0 [ 210.965266] hwsim_exit_net+0x3a0/0x730 [ 210.965677] ? __pfx_hwsim_exit_net+0x10/0x10 [ 210.966138] ? srso_return_thunk+0x5/0x5f [ 210.966575] ? netdev_run_todo+0x788/0x1040 [ 210.967022] ? __pfx_hwsim_exit_net+0x10/0x10 [ 210.967476] ops_exit_list+0xb3/0x180 [ 210.967869] cleanup_net+0x546/0xad0 [ 210.968253] ? __pfx_cleanup_net+0x10/0x10 [ 210.968697] process_one_work+0x8ee/0x1a10 [ 210.969153] ? __pfx_lock_acquire+0x10/0x10 [ 210.969601] ? __pfx_process_one_work+0x10/0x10 [ 210.970094] ? srso_return_thunk+0x5/0x5f [ 210.970533] ? move_linked_works+0x172/0x270 [ 210.970986] ? srso_return_thunk+0x5/0x5f [ 210.971428] ? assign_work+0x196/0x240 [ 210.971846] worker_thread+0x674/0xe70 [ 210.972264] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 210.972798] ? srso_return_thunk+0x5/0x5f [ 210.973239] ? __pfx_worker_thread+0x10/0x10 [ 210.973708] kthread+0x3ab/0x720 [ 210.974080] ? __pfx_kthread+0x10/0x10 [ 210.974490] ? srso_return_thunk+0x5/0x5f [ 210.974931] ? finish_task_switch.isra.0+0x206/0x840 [ 210.975450] ? __pfx_kthread+0x10/0x10 [ 210.975863] ret_from_fork+0x48/0x80 [ 210.976244] ? __pfx_kthread+0x10/0x10 [ 210.976658] ret_from_fork_asm+0x1a/0x30 [ 210.977098] [ 212.401044] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.403519] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.404538] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.407939] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.409167] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.410053] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.469076] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.470731] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.472286] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.474785] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.476885] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.478605] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.527156] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.531076] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.532272] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.534757] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.537676] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.538916] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.596740] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.598613] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.602947] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.604966] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.613570] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.614787] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.652147] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.653681] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.655137] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.674503] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.677699] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.679160] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.700466] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 212.706884] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 212.719467] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 212.737453] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 212.743752] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 212.747406] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 212.754049] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 212.756861] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 212.758925] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 212.847097] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 212.864953] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 212.872494] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 212.872789] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 212.875893] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 212.875906] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 212.880258] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 212.882027] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 212.887463] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 214.434962] Bluetooth: hci0: command tx timeout [ 214.497472] Bluetooth: hci1: command tx timeout [ 214.627359] Bluetooth: hci2: command tx timeout [ 214.689423] Bluetooth: hci3: command tx timeout [ 214.753524] Bluetooth: hci4: command tx timeout [ 214.817445] Bluetooth: hci5: command tx timeout [ 214.945368] Bluetooth: hci6: command tx timeout [ 215.009380] Bluetooth: hci7: command tx timeout [ 216.482342] Bluetooth: hci0: command tx timeout [ 216.545380] Bluetooth: hci1: command tx timeout [ 216.673694] Bluetooth: hci2: command tx timeout [ 216.737513] Bluetooth: hci3: command tx timeout [ 216.801870] Bluetooth: hci4: command tx timeout [ 216.865385] Bluetooth: hci5: command tx timeout [ 216.993401] Bluetooth: hci6: command tx timeout [ 217.057449] Bluetooth: hci7: command tx timeout [ 218.530008] Bluetooth: hci0: command tx timeout [ 218.594336] Bluetooth: hci1: command tx timeout [ 218.721580] Bluetooth: hci2: command tx timeout [ 218.787026] Bluetooth: hci3: command tx timeout [ 218.849377] Bluetooth: hci4: command tx timeout [ 218.913384] Bluetooth: hci5: command tx timeout [ 219.041384] Bluetooth: hci6: command tx timeout [ 219.105395] Bluetooth: hci7: command tx timeout [ 220.577432] Bluetooth: hci0: command tx timeout [ 220.641383] Bluetooth: hci1: command tx timeout [ 220.770422] Bluetooth: hci2: command tx timeout [ 220.833375] Bluetooth: hci3: command tx timeout [ 220.899345] Bluetooth: hci4: command tx timeout VM DIAGNOSIS: 04:52:02 Registers: info registers vcpu 0 RAX=000000000000000a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800e556bb8 R8 =0000000000000001 R9 =ffffed1001caad67 R10=0000000000000001 R11=3a6b636f6c206762 R12=000000000000000a R13=0000000000000001 R14=ffff888008fea010 R15=ffff88800e556eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055721dcdf088 CR3=0000000015dba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffff0000ff000000 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=000055b161c10af000000000ffffffff XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ca04848 RCX=ffffffff81429a4a RDX=1ffff11001e23780 RSI=0000000000000008 RDI=ffff88800f11bc00 RBP=ffff88806ca04840 RSP=ffff88800f49fdd0 R8 =0000000000000000 R9 =ffffed1001e23780 R10=ffff88800f11bc07 R11=ffff88800e543c38 R12=ffff88806ca04ff9 R13=ffffffff88618798 R14=ffff88800e543780 R15=0000000000000086 RIP=ffffffff81aede14 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff87928ff8 CR3=000000000c6cc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=00000001ffffffff000055b161bd85c0 XMM05=00000000000000000000000000000000 XMM06=000055b161bfcb300000000000000004 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000