Warning: Permanently added '[localhost]:50727' (ECDSA) to the list of known hosts. 2025/01/22 07:19:44 fuzzer started 2025/01/22 07:19:44 dialing manager at localhost:44689 syzkaller login: [ 74.088808] cgroup: Unknown subsys name 'net' [ 74.198772] cgroup: Unknown subsys name 'cpuset' [ 74.231422] cgroup: Unknown subsys name 'rlimit' [ 79.499078] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/22 07:20:01 syscalls: 213 2025/01/22 07:20:01 code coverage: enabled 2025/01/22 07:20:01 comparison tracing: enabled 2025/01/22 07:20:01 extra coverage: enabled 2025/01/22 07:20:01 setuid sandbox: enabled 2025/01/22 07:20:01 namespace sandbox: enabled 2025/01/22 07:20:01 Android sandbox: enabled 2025/01/22 07:20:01 fault injection: enabled 2025/01/22 07:20:01 leak checking: enabled 2025/01/22 07:20:01 net packet injection: enabled 2025/01/22 07:20:01 net device setup: enabled 2025/01/22 07:20:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/22 07:20:01 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/22 07:20:01 USB emulation: enabled 2025/01/22 07:20:01 hci packet injection: enabled 2025/01/22 07:20:01 wifi device emulation: enabled 2025/01/22 07:20:01 802.15.4 emulation: enabled 2025/01/22 07:20:01 fetching corpus: 0, signal 0/0 (executing program) 2025/01/22 07:20:03 starting 8 fuzzer processes 07:20:03 executing program 0: mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1147b6c9579e10e, 0x100010, 0xffffffffffffffff, 0x10000000) r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x0, 0x402) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000040)=0x1) wait4(0x0, &(0x7f0000000080), 0x0, 0x0) faccessat(r0, &(0x7f00000000c0)='./file0\x00', 0x63) getsockopt$inet_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000100)=""/53, &(0x7f0000000140)=0x35) recvmsg$unix(r0, &(0x7f0000001580)={&(0x7f0000000180), 0x6e, &(0x7f0000001440)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/125, 0x7d}, {&(0x7f0000001280)=""/51, 0x33}, {&(0x7f00000012c0)=""/76, 0x4c}, {&(0x7f0000001340)=""/162, 0xa2}, {&(0x7f0000001400)}], 0x6, &(0x7f00000014c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xb0}, 0x20) ioctl$CDROMSTOP(r3, 0x5307) r4 = syz_open_dev$vcsn(&(0x7f00000015c0), 0x3, 0x141040) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000001600)) r5 = syz_open_dev$vcsa(&(0x7f0000001640), 0x100000000, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r5, 0x541b, &(0x7f0000001680)) r6 = openat$cdrom(0xffffffffffffff9c, &(0x7f00000016c0), 0x2000, 0x0) ioctl$CDROMPLAYTRKIND(r6, 0x5304, &(0x7f0000001700)={0x40, 0x8, 0x6, 0x80}) socketpair(0x2, 0x4, 0x5, &(0x7f0000001740)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f0000001780), 0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000017c0)=0x2, 0x4) symlinkat(&(0x7f0000001800)='./file0\x00', r5, &(0x7f0000001840)='./file0\x00') accept(r2, &(0x7f0000001880)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff}}, &(0x7f0000001900)=0x80) connect$802154_dgram(r8, &(0x7f0000001940)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) 07:20:03 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x20, 0x100) openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mem_hardwall\x00', 0x2, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000140)) r2 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x8, 0x4, &(0x7f0000000580)=[{&(0x7f0000000200)="48b2563407988fe612f51857bc4c483ccd86f405f9dd8c926cf55691c3ab1b18879c485b9975b2aed12a9a7c7f54ea7f85c97a198fbfb375da9c31bd8a8ee94e690303a715c9752d8c5476a457bec5c8dd8104c28146ded27f9968669ea37c6ec280ca82b54fb37cae204f774aaefdf56f8c38fabac771262567d51b8ab5cf6b2fbf2299efff134fede49f0a391e4dc9610008f5d6a922a315a0489e73b6f95ba76c8e11e9b08d7a8eff15c12c3b67dd1c1a06530d70f5501e64e564d1cb65e380cc37fcd346cdac6f9761d439953576fe0d4625139e0f2c59b9fe6b4c034cf10624e8d8a10a4d7c", 0xe8, 0x400}, {&(0x7f0000000300)="11fc3335da19cea96ef1068487b5e2d45c23191777382c3155b5e94c7236c4073c4be610ae0bec9a7f0555bf4c0752a131ef2c0b50dbb0e74e29d139ccd8f9bb0bc4102fadfe8ede93e61a85876a655bd9ccaff41d96310edc214728a72ac3d19ff6", 0x62, 0xff}, {&(0x7f0000000380)="f6a62499245174148a33f00d8ae109e5f00e55ca21d02d3a30c4424f97dd07eb2a52f590cf8eef768cfe0d498889494813443c539a1d8cec159d8132bc813c12d111f4f10f683331df745f033affb0dde2d39eddff2d35c9727b2e2d93bf3de3eaef387f7a6c708d7d9c293d9eecece6254e7bb7a4f0f47eac8a65ffd79c22f0d02a1a73345015ba31176bd8e9152985ad3304b1206a2f1a39a1bc138f089b5b3646ab12167e70816b37dd9eb4296b628fb1e63d70875f9411b16299195a9da9d26168ff2f527aec53cb8fe83d6d481bbfe4b08f8d22", 0xd6, 0x6}, {&(0x7f0000000480)="6b3b8360bd99f799607f05d5a9235770881f8b0eb49b8c73a94e904882f7d062fac2ba4bf08f727528d3feeb53e2da59533859223fe3f12019576df116c55d02e173cc910c26dd66692cc6b0e372147a3159864014d17b5a4aa77f364073e7e5b946d3d6fd92a5569ec5a1b68acb0e86322594d197dad173132bb478bd46df9da3654e815f42615ecaafea1926f7dc4ee2378792e7e4a70bb3662a55eec24ea47408779cf5b9aa77c78ae47dbfd953e377a75c0f1ef37c743c45eb6453ba817931b39d3ba78fac1eae7c19cbc71c4b13a5c9c796", 0xd4, 0x3}], 0x120841, &(0x7f0000000600)={[{@noload}, {@usrquota}, {@norecovery}, {@bh}], [{@appraise_type}, {@smackfsfloor={'smackfsfloor', 0x3d, 'cpuset.mem_hardwall\x00'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}]}) readlinkat(r2, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)=""/230, 0xe6) r3 = syz_open_dev$vcsa(&(0x7f00000007c0), 0x7, 0x80000) faccessat2(r3, &(0x7f0000000800)='./file0\x00', 0x41, 0x1100) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r2, 0xc080661a, &(0x7f0000000840)={@desc={0x1, 0x0, @auto="cdc6acac2bb3ad99"}}) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000008c0)='highspeed\x00', 0xa) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000900), 0x2, 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, &(0x7f0000000940)={0x1}) name_to_handle_at(r2, &(0x7f0000000980)='./file1\x00', &(0x7f00000009c0)=@ocfs2_parent={0x18, 0x2, {{0x3, 0xfff, 0x3}, {0x4, 0xff, 0xf9}}}, &(0x7f0000000a00), 0x1000) ioctl$DVD_WRITE_STRUCT(r0, 0x5390, &(0x7f0000000a40)=@type=0x4) ioctl$BLKBSZSET(r3, 0x40081271, &(0x7f0000001280)=0x81) ioctl$CDROMPAUSE(r3, 0x5301) ioctl$BLKBSZSET(r3, 0x40081271, &(0x7f00000012c0)=0xdd3) mknodat(r1, &(0x7f0000001300)='./file1\x00', 0x800, 0xfffffffa) ioctl$BLKSECDISCARD(r3, 0x127d, &(0x7f0000001340)=0x3) recvfrom$unix(r0, &(0x7f0000001380)=""/144, 0x90, 0x2043, &(0x7f0000001440)=@file={0x0, './file0\x00'}, 0x6e) 07:20:03 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x2c008045) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x120, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_SEC_KEY={0xe4, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x80}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "cf19f5956623468834a72f2638108b24"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x3}, @NL802154_KEY_ATTR_ID={0x1c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1ae}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x80}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "d24266a7a6a43f1ac059c380c6b991e334d2e1f1e0e8f424774b16c4fe350df9"}, @NL802154_KEY_ATTR_ID={0x50, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xde7d}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "09622276d2ee8d7add81e59c23c7225602e824eadfa341c2a6c8db7b3ae92eed"}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_KEY(r2, &(0x7f0000000640)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000600)={&(0x7f00000003c0)={0x240, 0x0, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_KEY={0x20, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "9de3b4e82a7755e5bbbeafbfc4b9132d"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x6}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_KEY={0xa8, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "a20e779aa84b1b267b3c9c30a1a7648c"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x92}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "e320e46526b0765cace6387b746a2cb536d3762da4a00a3ce9e120441ef13e64"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "173746ac7f1a1dab0e08a34f3a308a44"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x80}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "733a5f73b0d444679212cdccbaf575954819b8a361fd1ecb8e40c51eea7be22e"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "35bb2f9dad04c53e4230dd87c712e93480dcad9106307c7bd6e159064ba6a3e3"}]}, @NL802154_ATTR_SEC_KEY={0x134, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x80}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "50ce6c0e26f7774f623ff2ef7046353344e71c730b984d833320f245ee090caf"}, @NL802154_KEY_ATTR_ID={0x8c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x100}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x101}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7fff}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0x1}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xffffff7f}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "ec144b6ffd1c691671854cb5324528d66f61ddda7f11eb31b6c1833ebc78af85"}, @NL802154_KEY_ATTR_ID={0x14, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "b01b94a5d1925450974ccb4b97eae0954a15713e843e51b6e7a474a483a615f0"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "085a6bf785e54e21a851b1e246cc7c5f"}]}, @NL802154_ATTR_SEC_KEY={0xc, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xc6}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x240}, 0x1, 0x0, 0x0, 0x44000}, 0x44001) sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x1c, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004800}, 0x4) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f00000007c0), r2) sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000000900)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x28100418}, 0xc, &(0x7f00000008c0)={&(0x7f0000000800)={0x8c, r4, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_DEVICE={0xc, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0xffff}]}, @NL802154_ATTR_SEC_DEVICE={0x20, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0x1}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0xffff}]}, @NL802154_ATTR_SEC_DEVICE={0xc, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xffff}]}, @NL802154_ATTR_SEC_DEVICE={0xc, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa3}]}, @NL802154_ATTR_SEC_DEVICE={0x34, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0x3}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24008004) r5 = accept(0xffffffffffffffff, &(0x7f0000000940)=@nfc_llcp, &(0x7f00000009c0)=0x80) sendmsg$SMC_PNETID_FLUSH(r5, &(0x7f0000000ac0)={&(0x7f0000000a00), 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x28, 0x0, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x36}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4800) getpeername(r5, &(0x7f0000000b00)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, &(0x7f0000000b80)=0x80) r6 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000bc0)='.pending_reads\x00', 0x541100, 0x145) ioctl$sock_inet_tcp_SIOCOUTQ(r6, 0x5411, &(0x7f0000000c00)) r7 = syz_open_dev$vcsn(&(0x7f0000000d00), 0x1ff, 0x212082) r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000d80), r6) sendmsg$GTP_CMD_GETPDP(r7, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x1100a0}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x5c, r8, 0x4, 0x70bd25, 0x25dfdbfe, {}, [@GTPA_FLOW={0x6}, @GTPA_I_TEI={0x8, 0x8, 0x3}, @GTPA_MS_ADDRESS={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x43}}, @GTPA_LINK={0x8}, @GTPA_NET_NS_FD={0x8, 0x7, r6}, @GTPA_FLOW={0x6, 0x6, 0x2}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @loopback}, @GTPA_MS_ADDRESS={0x8, 0x5, @empty}]}, 0x5c}, 0x1, 0x0, 0x0, 0x90}, 0x20000044) r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000f00), r0) sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x18, r9, 0x2, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVICE={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8000}, 0x400c0) 07:20:03 executing program 3: sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {}, [@GTPA_NET_NS_FD={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000080) r0 = socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x7c, 0x0, 0xd02, 0x70bd28, 0x25dfdbfc, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gre0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x40}, 0x8081) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x300080c4}, 0x800) r1 = syz_open_dev$vcsn(&(0x7f0000000340), 0x6, 0x2000) ioctl$CDROMPLAYTRKIND(r1, 0x5304, &(0x7f0000000380)={0xfc, 0x3, 0x43, 0x4}) syz_genetlink_get_family_id$smc(&(0x7f00000003c0), r1) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000400)={0x4, 0x800, 0x3, 0x2, 0x8001}, 0x14) setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000440)=0x4, 0x4) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000480), &(0x7f00000004c0)=0x14) sendmsg$GTP_CMD_GETPDP(r1, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x48004) socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x20, 0x0, 0x800, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x94) r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0) ioctl$CDROMPLAYBLK(r2, 0x5317, &(0x7f0000000840)={0x18d7, 0x5}) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000880), 0x8000, 0x0) ioctl$HDIO_GETGEO(r1, 0x301, &(0x7f00000008c0)) r4 = syz_open_dev$vcsa(&(0x7f0000000900), 0x8, 0x302) ioctl$LOOP_SET_FD(r4, 0x4c00, r3) [ 92.715686] audit: type=1400 audit(1737530403.434:7): avc: denied { execmem } for pid=272 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:20:03 executing program 4: r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.pending_reads\x00', 0x2000, 0x58) linkat(r0, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1400) r1 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x4, 0x101400) linkat(r1, &(0x7f0000000100)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x1000) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000180)=0x1) r2 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x8, 0x101000) ioctl$CDROM_CLEAR_OPTIONS(r2, 0x5321, 0xc) statx(r0, &(0x7f0000000240)='./file0\x00', 0x0, 0x40, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r0, &(0x7f0000000200)='./file0\x00', r3, 0x0, 0x1000) ioctl$CDROMREADTOCENTRY(r2, 0x5306, &(0x7f0000000380)={0x7f, 0x6, 0x3, 0x3, @msf={0xfc, 0x0, 0x30}}) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) utimensat(r0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)={{0x77359400}, {r4, r5/1000+10000}}, 0x100) mknodat(r2, &(0x7f0000000480)='./file0/file0\x00', 0xc000, 0x2) ioctl$CDROMPLAYMSF(r0, 0x5303, &(0x7f00000004c0)={0x81, 0x5, 0x0, 0x9, 0x0, 0x20}) setsockopt$WPAN_SECURITY(r2, 0x0, 0x1, &(0x7f0000000500)=0x1, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$CDROMREADTOCENTRY(0xffffffffffffffff, 0x5306, &(0x7f0000000540)={0x74, 0x4, 0x8, 0x0, @msf={0x5, 0x6, 0x2b}, 0x9}) write$cgroup_int(r1, &(0x7f0000000580)=0x4a, 0x12) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f00000005c0)={@id={0x2, 0x0, @b}}) ioctl$CDROMMULTISESSION(0xffffffffffffffff, 0x5310, &(0x7f0000000600)={@msf={0x0, 0x53, 0x8}, 0x0, 0x2}) 07:20:03 executing program 5: set_tid_address(&(0x7f0000000000)) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x220880, 0x2, 0x8}, 0x18) renameat2(r0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x5) r1 = syz_io_uring_setup(0x3547, &(0x7f0000000140)={0x0, 0xbd67, 0x10, 0x0, 0x16c}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000002c0)=@IORING_OP_WRITE={0x17, 0x4, 0x2000, @fd_index=0x9, 0x6, &(0x7f0000000240)="ccbc823d322e8869461a93db0a05ed63c38413bd6d094be50da67ab8155ed8cdd8a646e3822dbe9e579ba0ea6a9b9f67ca4a23be11967a2cd22a1d68206ba836a6c90a2b24812d258fefb0273e563977570e6bafe5c12cc30138de2f96a1a58d7e58d734666f5437afcc0a82", 0x6c, 0x0, 0x1}, 0x4b998c60) sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2148210}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x28, 0x0, 0x10, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_TID={0xc}, @GTPA_O_TEI={0x8, 0x9, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000015}, 0x840) set_tid_address(&(0x7f0000000400)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0x0) io_uring_setup(0x4fbc, &(0x7f0000000440)={0x0, 0x7f54, 0x20, 0x3, 0x1df, 0x0, r1}) recvfrom$unix(0xffffffffffffffff, &(0x7f00000004c0)=""/86, 0x56, 0x40002040, &(0x7f0000000540)=@abs={0x0, 0x0, 0x4e20}, 0x6e) socketpair(0xf, 0x4, 0x3, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, 0x0, 0x400, 0x70bd2b, 0xffffffff, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) sendto$unix(r4, &(0x7f0000000700)="4cdee017b4a92a52c3de9fcfcc5874b668b752b0d7ebfe1d8da091b1860b278acc20a767ac28e3a6d43a82f8ffca4c1749a25a39ed7b24f8ce729b073ff25b6c699206be0bf887a458aaffd25b061905c2b57c952f0523c9efcc6728b01b21f7a69ea26ffd4405855d4b612091106b6eef224d77ae0234912961e9b87288", 0x7e, 0x8800, &(0x7f0000000780)=@file={0x1, './file0\x00'}, 0x6e) io_uring_setup(0x2095, &(0x7f0000000800)={0x0, 0x1e53, 0x1, 0x1, 0x28f, 0x0, r1}) r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000880), r3) recvmsg$unix(r4, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001b80)=[{&(0x7f00000008c0)=""/130, 0x82}, {&(0x7f0000000980)=""/112, 0x70}, {&(0x7f0000000a00)=""/103, 0x67}, {&(0x7f0000000a80)=""/101, 0x65}, {&(0x7f0000000b00)=""/4096, 0x1000}, {&(0x7f0000001b00)=""/90, 0x5a}], 0x6, &(0x7f0000001c00)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc0}, 0x4) connect$802154_dgram(r6, &(0x7f0000001d00)={0x24, @none={0x0, 0x1}}, 0x14) io_uring_setup(0x60ed, &(0x7f0000001d40)={0x0, 0x50f1, 0x0, 0x1, 0x71, 0x0, r6}) sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000001f80)={&(0x7f0000001e80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001f40)={&(0x7f0000001ec0)={0x50, r5, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bridge0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000000}, 0x101) 07:20:03 executing program 6: r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.log\x00', 0x98340, 0x2) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040), 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='reno\x00', 0x5) setsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1c, &(0x7f00000000c0)="1bb50db61f353df8d689a5b4b55f5d05cfe11b91e5c1d8598a59681ecc9098c9640729973c6222fe0eeaf9dde5ac047ceb06b1c660452d174cdad13da1cf70dba00212459de9eff632388b242436ed25090b6ec0cbb40e2cd9c840ff4b2ae447fceef7d194c0248a61c4c3e7848e8109a5c217b47a97c36296d6ff86a59d48d6b96ed6e9801c87454dd4a1150469b23ae6", 0x91) setsockopt$inet_tcp_int(r0, 0x6, 0x1, &(0x7f0000000180)=0x20, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000004, 0x4001810, r0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x200) r2 = syz_open_dev$vcsa(&(0x7f0000000200), 0x0, 0x200200) setsockopt$inet_tcp_int(r2, 0x6, 0x18, &(0x7f0000000240)=0x61ad7839, 0x4) write$nbd(r0, &(0x7f0000000280)={0x67446698, 0x1, 0x0, 0x4, 0x3, "967d850aae3ce71d8dae2a3f32251dbce0902606ad912959ef4fb69b8dd1734481764a4748000869a20dfd39f2b03f1975eb8190"}, 0x44) r3 = openat$incfs(r2, &(0x7f0000000300)='.log\x00', 0x189540, 0xd1) r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000380), r0) sendmsg$GTP_CMD_GETPDP(r3, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, r4, 0x0, 0x70bd27, 0x25dfdbfe, {}, [@GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @empty}, @GTPA_FLOW={0x6}, @GTPA_VERSION={0x8}, @GTPA_VERSION={0x8}, @GTPA_VERSION={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x61}, 0x4051) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f00000004c0)=@ccm_128={{0x303}, "2c20e837be2ef731", "91a7b9f19b4f0c08bcba18ec50945fb9", "80fba0ac", "89ad1d576c5b3ec2"}, 0x28) r5 = syz_open_dev$vcsa(&(0x7f0000000500), 0x10001, 0x343542) setsockopt$inet_tcp_int(r5, 0x6, 0x2, &(0x7f0000000540)=0x1, 0x4) syz_io_uring_setup(0xe4, &(0x7f0000000580)={0x0, 0xb649, 0x8, 0x3, 0x297, 0x0, r5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000600), &(0x7f0000000640)=0x0) r7 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_submit(r1, r6, &(0x7f00000006c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r7, 0x0, &(0x7f0000000680)="d8b95cc2ecaeccdc9d17314cd68733bd7dd5bf97341dfe042943896f99620063597261971b20e5ad2ae61e76a06cf6bc2072944b", 0x34, 0x4000000, 0x1}, 0x3) 07:20:03 executing program 7: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x643, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000040)={@in6={{0xa, 0x4e22, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0xda26}}, 0x0, 0x0, 0x46, 0x0, "449b541b3848a31344136f59d020a9d54a44f8214560635befb39d4034c49dc1eacccd92f76ea1997d6b0a4abed29299bbdad4626a83560679276b2f3ea128e04a7d641026106d9495866f5cd2e4e835"}, 0xd8) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000140)={0x5, 0xd0, 0x1, 0x2, 0x4}, 0x14) sendmsg$SMC_PNETID_GET(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x88, 0x0, 0xc0a, 0xa355, 0x25dfdbfe, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'macvlan0\x00'}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x24040040) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000300)=@gcm_256={{0x303}, "2a913107dc2e690b", "9238720a52acd483793407093c4ac829d7689df30d5e7a42ac4efa1fd1b9db7f", "0e27600e", "13b22c20c0d90264"}, 0x38) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x10, r0, 0x10000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000340)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r0}, 0x76) r2 = syz_open_dev$vcsa(&(0x7f0000000500), 0x4, 0x10000) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000540), &(0x7f0000000580)=0x14) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x60, r3, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x60}, 0x1, 0x0, 0x0, 0x2000c001}, 0x20048084) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000780)) r5 = syz_genetlink_get_family_id$gtp(&(0x7f00000007c0), 0xffffffffffffffff) r6 = syz_open_dev$vcsn(&(0x7f0000000800), 0xfffffffffffffffa, 0x101000) sendmsg$GTP_CMD_DELPDP(r6, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x64, r5, 0x8, 0x70bd27, 0x25dfdbfc, {}, [@GTPA_VERSION={0x8}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_MS_ADDRESS={0x8, 0x5, @empty}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_VERSION={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_O_TEI={0x8, 0x9, 0x4}, @GTPA_O_TEI={0x8, 0x9, 0x4}, @GTPA_FLOW={0x6, 0x6, 0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x24000045}, 0x40000) getsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, &(0x7f0000000980), &(0x7f00000009c0)=0x4) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r6, 0x6, 0x14, &(0x7f0000000a00), 0x4) sendmsg$NL802154_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x20040800}, 0x4041) ioctl$CDROM_MEDIA_CHANGED(r0, 0x5325, 0x54) [ 94.499233] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.504287] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.507057] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.513922] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.519484] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.522276] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.569840] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.575277] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.577276] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.578584] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.582791] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.585609] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.589759] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 94.591759] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.611235] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.639970] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 94.642777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.649717] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 94.650463] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.652649] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 94.653210] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.656130] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 94.657718] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 94.661689] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 94.662024] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 94.674181] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 94.675090] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.682002] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 94.684829] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.687593] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 94.687940] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 94.692489] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 94.692806] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.696963] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 94.700288] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 94.702369] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 94.702724] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.709465] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 94.710705] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.727048] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 94.741409] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 94.747216] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 94.747852] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 94.754648] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 94.756988] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.784709] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 94.802070] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 94.811369] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 96.584079] Bluetooth: hci0: command tx timeout [ 96.649359] Bluetooth: hci2: command tx timeout [ 96.775412] Bluetooth: hci6: command tx timeout [ 96.775450] Bluetooth: hci1: command tx timeout [ 96.839427] Bluetooth: hci5: command tx timeout [ 96.839462] Bluetooth: hci4: command tx timeout [ 96.839909] Bluetooth: hci3: command tx timeout [ 96.903399] Bluetooth: hci7: command tx timeout [ 98.631386] Bluetooth: hci0: command tx timeout [ 98.695456] Bluetooth: hci2: command tx timeout [ 98.823503] Bluetooth: hci1: command tx timeout [ 98.824726] Bluetooth: hci6: command tx timeout [ 98.889496] Bluetooth: hci3: command tx timeout [ 98.890515] Bluetooth: hci5: command tx timeout [ 98.890641] Bluetooth: hci4: command tx timeout [ 98.952362] Bluetooth: hci7: command tx timeout [ 100.680092] Bluetooth: hci0: command tx timeout [ 100.744390] Bluetooth: hci2: command tx timeout [ 100.872435] Bluetooth: hci1: command tx timeout [ 100.872523] Bluetooth: hci6: command tx timeout [ 100.936381] Bluetooth: hci4: command tx timeout [ 100.936467] Bluetooth: hci5: command tx timeout [ 100.936554] Bluetooth: hci3: command tx timeout [ 100.999411] Bluetooth: hci7: command tx timeout [ 102.728366] Bluetooth: hci0: command tx timeout [ 102.791437] Bluetooth: hci2: command tx timeout [ 102.919505] Bluetooth: hci6: command tx timeout [ 102.919667] Bluetooth: hci1: command tx timeout [ 102.983498] Bluetooth: hci3: command tx timeout [ 102.984679] Bluetooth: hci5: command tx timeout [ 102.986397] Bluetooth: hci4: command tx timeout [ 103.047432] Bluetooth: hci7: command tx timeout [ 156.311472] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 156.314215] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 156.316466] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 156.320518] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 156.324816] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 156.326846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 156.372425] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 156.377676] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 156.386716] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 156.394965] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 156.397565] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 156.399436] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 156.452809] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 156.459892] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 156.460889] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 156.481810] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 156.487961] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 156.492010] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 156.637747] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 156.647996] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 156.649372] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.650241] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.652907] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 156.654530] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 156.655403] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.674898] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 156.679127] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.682678] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.683608] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.688269] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.692004] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.694093] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 156.706267] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 156.719041] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 156.727709] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 156.731668] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 156.740676] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 156.765460] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.768936] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.771120] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.799356] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 156.799448] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.810518] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 156.831973] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 156.833844] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.839609] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 156.845104] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.845214] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 158.343430] Bluetooth: hci0: command tx timeout [ 158.471502] Bluetooth: hci1: command tx timeout [ 158.535610] Bluetooth: hci2: command tx timeout [ 158.727376] Bluetooth: hci5: command tx timeout [ 158.793415] Bluetooth: hci6: command tx timeout [ 158.919461] Bluetooth: hci7: command tx timeout [ 158.919863] Bluetooth: hci4: command tx timeout [ 158.983392] Bluetooth: hci3: command tx timeout [ 160.391386] Bluetooth: hci0: command tx timeout [ 160.519353] Bluetooth: hci1: command tx timeout [ 160.583392] Bluetooth: hci2: command tx timeout [ 160.777324] Bluetooth: hci5: command tx timeout [ 160.839391] Bluetooth: hci6: command tx timeout [ 160.968439] Bluetooth: hci4: command tx timeout [ 160.968606] Bluetooth: hci7: command tx timeout [ 161.032350] Bluetooth: hci3: command tx timeout [ 162.440568] Bluetooth: hci0: command tx timeout [ 162.567515] Bluetooth: hci1: command tx timeout [ 162.631336] Bluetooth: hci2: command tx timeout [ 162.823434] Bluetooth: hci5: command tx timeout [ 162.887514] Bluetooth: hci6: command tx timeout [ 163.016332] Bluetooth: hci4: command tx timeout [ 163.016435] Bluetooth: hci7: command tx timeout [ 163.079626] Bluetooth: hci3: command tx timeout [ 164.488008] Bluetooth: hci0: command tx timeout [ 164.615548] Bluetooth: hci1: command tx timeout [ 164.679409] Bluetooth: hci2: command tx timeout [ 164.871368] Bluetooth: hci5: command tx timeout [ 164.935356] Bluetooth: hci6: command tx timeout [ 165.063366] Bluetooth: hci7: command tx timeout [ 165.063458] Bluetooth: hci4: command tx timeout [ 165.127355] Bluetooth: hci3: command tx timeout [ 214.985822] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.985966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.678825] [ 216.679221] ====================================================== [ 216.680277] WARNING: possible circular locking dependency detected [ 216.681360] 6.13.0-next-20250121 #1 Not tainted [ 216.682195] ------------------------------------------------------ [ 216.688846] kworker/u8:1/65 is trying to acquire lock: [ 216.689726] ffffffff8621ece8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.691561] [ 216.691561] but task is already holding lock: [ 216.692561] ffff8880163d8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 216.694305] [ 216.694305] which lock already depends on the new lock. [ 216.694305] [ 216.695693] [ 216.695693] the existing dependency chain (in reverse order) is: [ 216.696969] [ 216.696969] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 216.698147] __mutex_lock+0x13d/0xb50 [ 216.698982] wiphy_register+0x1b2e/0x25d0 [ 216.699873] ieee80211_register_hw+0x23a4/0x3d60 [ 216.700850] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 216.701890] init_mac80211_hwsim+0x389/0x870 [ 216.702851] do_one_initcall+0xf9/0x640 [ 216.703756] kernel_init_freeable+0x53d/0x7a0 [ 216.704718] kernel_init+0x1e/0x2d0 [ 216.705492] ret_from_fork+0x48/0x80 [ 216.706283] ret_from_fork_asm+0x1a/0x30 [ 216.707199] [ 216.707199] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 216.708323] __lock_acquire+0x29fd/0x4580 [ 216.709212] lock_acquire+0x19b/0x520 [ 216.710041] __mutex_lock+0x13d/0xb50 [ 216.710875] unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.711965] unregister_netdevice_queue+0x224/0x2e0 [ 216.712961] _cfg80211_unregister_wdev+0x57b/0x700 [ 216.713981] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 216.714983] ieee80211_unregister_hw+0x55/0x3a0 [ 216.715964] hwsim_exit_net+0x3a0/0x730 [ 216.716807] ops_exit_list+0xb3/0x180 [ 216.717621] cleanup_net+0x546/0xad0 [ 216.718439] process_one_work+0x8ee/0x1a10 [ 216.719382] worker_thread+0x674/0xe70 [ 216.720261] kthread+0x3ab/0x720 [ 216.721041] ret_from_fork+0x48/0x80 [ 216.721818] ret_from_fork_asm+0x1a/0x30 [ 216.722719] [ 216.722719] other info that might help us debug this: [ 216.722719] [ 216.724064] Possible unsafe locking scenario: [ 216.724064] [ 216.725054] CPU0 CPU1 [ 216.725850] ---- ---- [ 216.726657] lock(&rdev->wiphy.mtx); [ 216.727392] lock(rtnl_mutex); [ 216.728426] lock(&rdev->wiphy.mtx); [ 216.729553] lock(rtnl_mutex); [ 216.730184] [ 216.730184] *** DEADLOCK *** [ 216.730184] [ 216.731182] 4 locks held by kworker/u8:1/65: [ 216.731959] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 216.733799] #1: ffff88800f097d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 216.735548] #2: ffffffff86212d10 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 216.737207] #3: ffff8880163d8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 216.739041] [ 216.739041] stack backtrace: [ 216.739838] CPU: 1 UID: 0 PID: 65 Comm: kworker/u8:1 Not tainted 6.13.0-next-20250121 #1 [ 216.741183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 216.742534] Workqueue: netns cleanup_net [ 216.743307] Call Trace: [ 216.743757] [ 216.744174] dump_stack_lvl+0xca/0x120 [ 216.744931] print_circular_bug+0x47b/0x750 [ 216.745724] check_noncircular+0x2e9/0x3c0 [ 216.746507] ? lock_repin_lock+0x207/0x320 [ 216.747360] ? __pfx_check_noncircular+0x10/0x10 [ 216.748222] ? hlock_class+0x4e/0x130 [ 216.748888] ? mark_lock+0xac/0xed0 [ 216.749589] ? __pfx_lock_repin_lock+0x10/0x10 [ 216.750491] ? lockdep_lock+0xba/0x1b0 [ 216.751278] ? __pfx_lockdep_lock+0x10/0x10 [ 216.752111] __lock_acquire+0x29fd/0x4580 [ 216.752887] ? __pfx___lock_acquire+0x10/0x10 [ 216.753713] ? lock_release+0x20f/0x6f0 [ 216.754442] ? __pfx_lock_release+0x10/0x10 [ 216.755253] lock_acquire+0x19b/0x520 [ 216.755966] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.757031] ? __pfx_lock_acquire+0x10/0x10 [ 216.757815] ? srso_return_thunk+0x5/0x5f [ 216.758608] ? lock_release+0x20f/0x6f0 [ 216.759347] ? srso_return_thunk+0x5/0x5f [ 216.760160] ? lock_is_held_type+0x9e/0x120 [ 216.761002] ? srso_return_thunk+0x5/0x5f [ 216.761839] __mutex_lock+0x13d/0xb50 [ 216.762591] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.763649] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.764704] ? srso_return_thunk+0x5/0x5f [ 216.765536] ? synchronize_rcu_expedited+0x38a/0x420 [ 216.766448] ? __pfx___mutex_lock+0x10/0x10 [ 216.767300] ? __pfx_autoremove_wake_function+0x10/0x10 [ 216.768292] ? srso_return_thunk+0x5/0x5f [ 216.769102] ? kasan_quarantine_put+0x84/0x1e0 [ 216.769995] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 216.770806] ? srso_return_thunk+0x5/0x5f [ 216.771625] unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.772611] ? __virt_addr_valid+0x2e8/0x5d0 [ 216.773426] ? __pfx_lock_release+0x10/0x10 [ 216.774228] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 216.775289] ? find_held_lock+0x2c/0x110 [ 216.776076] ? srso_return_thunk+0x5/0x5f [ 216.776907] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 216.777861] ? srso_return_thunk+0x5/0x5f [ 216.778687] ? lock_release+0x20f/0x6f0 [ 216.779457] ? __pfx_lock_release+0x10/0x10 [ 216.780248] ? srso_return_thunk+0x5/0x5f [ 216.781041] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 216.781965] ? srso_return_thunk+0x5/0x5f [ 216.782772] unregister_netdevice_queue+0x224/0x2e0 [ 216.783664] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 216.784664] ? up_write+0x195/0x520 [ 216.785379] _cfg80211_unregister_wdev+0x57b/0x700 [ 216.786287] ? srso_return_thunk+0x5/0x5f [ 216.787092] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 216.788009] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 216.789005] ? srso_return_thunk+0x5/0x5f [ 216.789828] ? srso_return_thunk+0x5/0x5f [ 216.790644] ? synchronize_rcu+0x1ff/0x260 [ 216.791430] ieee80211_unregister_hw+0x55/0x3a0 [ 216.792286] hwsim_exit_net+0x3a0/0x730 [ 216.793035] ? __pfx_hwsim_exit_net+0x10/0x10 [ 216.793864] ? srso_return_thunk+0x5/0x5f [ 216.794688] ? netdev_run_todo+0x788/0x1040 [ 216.795497] ? srso_return_thunk+0x5/0x5f [ 216.796314] ? __pfx_hwsim_exit_net+0x10/0x10 [ 216.797144] ops_exit_list+0xb3/0x180 [ 216.797872] cleanup_net+0x546/0xad0 [ 216.798583] ? __pfx_cleanup_net+0x10/0x10 [ 216.799409] process_one_work+0x8ee/0x1a10 [ 216.800255] ? __pfx_lock_acquire+0x10/0x10 [ 216.801054] ? __pfx_process_one_work+0x10/0x10 [ 216.801952] ? srso_return_thunk+0x5/0x5f [ 216.802747] ? move_linked_works+0x172/0x270 [ 216.803548] ? srso_return_thunk+0x5/0x5f [ 216.804344] ? assign_work+0x196/0x240 [ 216.805119] worker_thread+0x674/0xe70 [ 216.805907] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 216.806886] ? srso_return_thunk+0x5/0x5f [ 216.807693] ? __pfx_worker_thread+0x10/0x10 [ 216.808566] kthread+0x3ab/0x720 [ 216.809259] ? __pfx_kthread+0x10/0x10 [ 216.810007] ? srso_return_thunk+0x5/0x5f [ 216.810803] ? finish_task_switch.isra.0+0x206/0x840 [ 216.811725] ? __pfx_kthread+0x10/0x10 [ 216.812484] ret_from_fork+0x48/0x80 [ 216.813154] ? __pfx_kthread+0x10/0x10 [ 216.813922] ret_from_fork_asm+0x1a/0x30 [ 216.814736] [ 218.514421] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 218.519019] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 218.522460] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 218.522637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 218.522757] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 218.523056] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 218.525500] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 218.526950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 218.528341] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 218.529400] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 218.535398] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 218.535547] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 218.535669] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 218.540054] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 218.542149] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 218.548782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 218.548958] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 218.552814] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 218.555463] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 218.557202] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 218.557857] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 218.561150] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 218.562988] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 218.564906] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 218.572505] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 218.575498] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 218.575807] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 218.581413] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 218.583202] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 218.584417] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 218.651391] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 218.674823] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 218.680442] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 218.692378] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 218.696574] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 218.697898] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 218.771349] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 218.771675] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 218.793431] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 218.794058] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 218.804522] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 218.805353] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 218.810965] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 218.816401] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 218.818458] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 218.818711] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 218.827481] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 218.833634] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 220.551388] Bluetooth: hci3: command tx timeout [ 220.616388] Bluetooth: hci4: command tx timeout [ 220.616499] Bluetooth: hci0: command tx timeout [ 220.616562] Bluetooth: hci1: command tx timeout [ 220.680324] Bluetooth: hci2: command tx timeout [ 220.808387] Bluetooth: hci5: command tx timeout [ 220.871407] Bluetooth: hci6: command tx timeout [ 220.871619] Bluetooth: hci7: command tx timeout [ 222.599460] Bluetooth: hci3: command tx timeout [ 222.663366] Bluetooth: hci1: command tx timeout [ 222.663390] Bluetooth: hci0: command tx timeout [ 222.663481] Bluetooth: hci4: command tx timeout [ 222.727502] Bluetooth: hci2: command tx timeout [ 222.855335] Bluetooth: hci5: command tx timeout [ 222.920329] Bluetooth: hci6: command tx timeout [ 222.920421] Bluetooth: hci7: command tx timeout [ 224.647339] Bluetooth: hci3: command tx timeout [ 224.711599] Bluetooth: hci0: command tx timeout [ 224.712334] Bluetooth: hci1: command tx timeout [ 224.712389] Bluetooth: hci4: command tx timeout [ 224.775304] Bluetooth: hci2: command tx timeout [ 224.906292] Bluetooth: hci5: command tx timeout [ 224.967449] Bluetooth: hci7: command tx timeout [ 224.968555] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 07:22:07 Registers: info registers vcpu 0 RAX=ffff88800bb45340 RBX=ffff88806bc6abf0 RCX=ffffffff81429a4a RDX=0000000000000000 RSI=ffff88806bc6abf0 RDI=ffffffff8861e798 RBP=ffff88806bc6abf0 RSP=ffff88800f967db0 R8 =0000000000000000 R9 =ffffed1001e1d780 R10=ffff88800f0ebc07 R11=ffff88800bb457f8 R12=ffff88806bc6aff9 R13=ffffffff8861e798 R14=ffff88800bb45340 R15=0000000000000086 RIP=ffffffff81aeec74 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0c2046f4b0 CR3=0000000013640000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000416b553b00000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff8283eb10 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff88800f096b60 R8 =0000000000000000 R9 =fffffbfff0be1bfc R10=00000000000fe503 R11=2d2d2d2d2d2d2d2d R12=0000000000000823 R13=0000000000000020 R14=fffffbfff10d3266 R15=dffffc0000000000 RIP=ffffffff8283eb65 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005650f1bcaab0 CR3=000000000ce3a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=00000000000000000000000000000000 XMM05=01020202020100ffffffffff00000001 XMM06=000000000000006563697665642e3269 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000