Warning: Permanently added '[localhost]:50256' (ECDSA) to the list of known hosts. 2025/01/17 17:35:44 fuzzer started 2025/01/17 17:35:44 dialing manager at localhost:44245 syzkaller login: [ 77.031769] cgroup: Unknown subsys name 'net' [ 77.146275] cgroup: Unknown subsys name 'cpuset' [ 77.174679] cgroup: Unknown subsys name 'rlimit' [ 84.472646] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 95.082799] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 17:36:03 syscalls: 2217 2025/01/17 17:36:03 code coverage: enabled 2025/01/17 17:36:03 comparison tracing: enabled 2025/01/17 17:36:03 extra coverage: enabled 2025/01/17 17:36:03 setuid sandbox: enabled 2025/01/17 17:36:03 namespace sandbox: enabled 2025/01/17 17:36:03 Android sandbox: enabled 2025/01/17 17:36:03 fault injection: enabled 2025/01/17 17:36:03 leak checking: enabled 2025/01/17 17:36:03 net packet injection: enabled 2025/01/17 17:36:03 net device setup: enabled 2025/01/17 17:36:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 17:36:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 17:36:03 USB emulation: enabled 2025/01/17 17:36:03 hci packet injection: enabled 2025/01/17 17:36:03 wifi device emulation: enabled 2025/01/17 17:36:03 802.15.4 emulation: enabled 2025/01/17 17:36:03 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 17:36:03 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 17:36:05 starting 8 fuzzer processes 17:36:05 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) readv(r0, 0x0, 0x0) 17:36:05 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, 0x0, 0x0) 17:36:05 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000004a80)=[{{&(0x7f0000000140)={0xa, 0x4e21, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f00000006c0)=[@rthdr_2292={{0x18}}], 0xf}}], 0x1, 0x0) 17:36:05 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000080)={0x0, 0xffffff95, &(0x7f0000000500)="d922471c8668666e9b"}) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000440)=""/51) 17:36:05 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmctl$IPC_RMID(r0, 0x0) r1 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r1, &(0x7f0000ff0000/0x3000)=nil, 0x4000) [ 97.268639] audit: type=1400 audit(1737135365.388:7): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:36:05 executing program 5: mkdir(&(0x7f0000003b80)='./file0\x00', 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0) 17:36:05 executing program 7: capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000580)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000080)={0x200017e}) 17:36:05 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000100)={'syztnl2\x00', 0x0}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000340)={'syztnl1\x00', 0x0}) io_setup(0xfdd, &(0x7f0000000380)) [ 98.648990] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 98.653376] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 98.654701] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 98.660783] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 98.664464] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 98.665806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 98.707576] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 98.709298] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 98.710403] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 98.713799] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 98.716005] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 98.718917] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 98.776861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 98.779179] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 98.781754] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 98.785844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 98.791392] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 98.793757] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 98.795042] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 98.809964] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 98.833806] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 98.846454] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 98.849047] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 98.852808] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 98.854258] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 98.855923] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 98.857658] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 98.859265] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 98.862806] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 98.866797] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 98.866795] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 98.868656] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 98.870448] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 98.876326] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 98.876624] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 98.877312] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 98.880276] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 98.882134] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 98.900873] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 98.900986] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 98.905829] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 98.905920] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 98.908872] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 98.914068] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 98.915777] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 98.925789] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 98.977890] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 98.984853] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 100.738258] Bluetooth: hci0: command tx timeout [ 100.801709] Bluetooth: hci1: command tx timeout [ 100.865563] Bluetooth: hci3: command tx timeout [ 100.931055] Bluetooth: hci4: command tx timeout [ 100.931333] Bluetooth: hci2: command tx timeout [ 100.993607] Bluetooth: hci7: command tx timeout [ 100.993916] Bluetooth: hci5: command tx timeout [ 101.058259] Bluetooth: hci6: command tx timeout [ 102.785640] Bluetooth: hci0: command tx timeout [ 102.849777] Bluetooth: hci1: command tx timeout [ 102.913620] Bluetooth: hci3: command tx timeout [ 102.978203] Bluetooth: hci2: command tx timeout [ 102.978305] Bluetooth: hci4: command tx timeout [ 103.041936] Bluetooth: hci5: command tx timeout [ 103.041961] Bluetooth: hci7: command tx timeout [ 103.106609] Bluetooth: hci6: command tx timeout [ 104.833564] Bluetooth: hci0: command tx timeout [ 104.899562] Bluetooth: hci1: command tx timeout [ 104.961565] Bluetooth: hci3: command tx timeout [ 105.025641] Bluetooth: hci4: command tx timeout [ 105.025668] Bluetooth: hci2: command tx timeout [ 105.089782] Bluetooth: hci5: command tx timeout [ 105.089822] Bluetooth: hci7: command tx timeout [ 105.155525] Bluetooth: hci6: command tx timeout [ 106.882635] Bluetooth: hci0: command tx timeout [ 106.946654] Bluetooth: hci1: command tx timeout [ 107.010673] Bluetooth: hci3: command tx timeout [ 107.073622] Bluetooth: hci2: command tx timeout [ 107.076546] Bluetooth: hci4: command tx timeout [ 107.137693] Bluetooth: hci5: command tx timeout [ 107.137894] Bluetooth: hci7: command tx timeout [ 107.203022] Bluetooth: hci6: command tx timeout [ 161.098507] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.099874] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.101182] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.109179] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.111140] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.112516] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 161.239726] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 161.241248] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 161.242487] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 161.245944] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 161.246365] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 161.249053] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 161.249253] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 161.251596] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 161.252711] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 161.253765] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 161.256394] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 161.259881] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 161.260054] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 161.260296] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 161.272693] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 161.277713] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 161.278084] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 161.279461] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 161.301247] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 161.305911] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 161.309325] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 161.311836] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 161.319038] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 161.328160] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 161.328599] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 161.336836] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 161.338812] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 161.340733] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 161.344073] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 161.367913] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 161.369239] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 161.371842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 161.378301] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 161.381047] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 161.381325] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 161.381410] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 161.384104] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 161.386974] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 161.394836] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 161.422717] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 161.431960] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 161.433706] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 163.138663] Bluetooth: hci0: command tx timeout [ 163.329616] Bluetooth: hci3: command tx timeout [ 163.329636] Bluetooth: hci2: command tx timeout [ 163.395512] Bluetooth: hci1: command tx timeout [ 163.457581] Bluetooth: hci5: command tx timeout [ 163.521651] Bluetooth: hci6: command tx timeout [ 163.521810] Bluetooth: hci7: command tx timeout [ 163.585614] Bluetooth: hci4: command tx timeout [ 165.186264] Bluetooth: hci0: command tx timeout [ 165.377655] Bluetooth: hci3: command tx timeout [ 165.377817] Bluetooth: hci2: command tx timeout [ 165.441587] Bluetooth: hci1: command tx timeout [ 165.505773] Bluetooth: hci5: command tx timeout [ 165.569840] Bluetooth: hci7: command tx timeout [ 165.569912] Bluetooth: hci6: command tx timeout [ 165.634567] Bluetooth: hci4: command tx timeout [ 167.235645] Bluetooth: hci0: command tx timeout [ 167.425734] Bluetooth: hci3: command tx timeout [ 167.426927] Bluetooth: hci2: command tx timeout [ 167.491597] Bluetooth: hci1: command tx timeout [ 167.553599] Bluetooth: hci5: command tx timeout [ 167.618056] Bluetooth: hci6: command tx timeout [ 167.618658] Bluetooth: hci7: command tx timeout [ 167.682416] Bluetooth: hci4: command tx timeout [ 169.282555] Bluetooth: hci0: command tx timeout [ 169.473708] Bluetooth: hci3: command tx timeout [ 169.473729] Bluetooth: hci2: command tx timeout [ 169.538700] Bluetooth: hci1: command tx timeout [ 169.603008] Bluetooth: hci5: command tx timeout [ 169.665904] Bluetooth: hci7: command tx timeout [ 169.666755] Bluetooth: hci6: command tx timeout [ 169.730550] Bluetooth: hci4: command tx timeout [ 223.952168] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 223.959990] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 223.963335] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 223.969264] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 223.970034] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 223.976643] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 223.977843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 223.980778] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 223.988038] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 224.007283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 224.014264] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 224.021323] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 224.022513] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 224.023690] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 224.025031] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 224.030609] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 224.037693] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 224.039061] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 224.070790] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 224.072216] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 224.073318] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 224.076599] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 224.078716] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 224.083623] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 224.120922] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 224.127758] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 224.140782] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 224.143666] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 224.150554] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 224.153396] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 224.154709] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 224.156218] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 224.157539] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 224.169655] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 224.176544] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 224.186838] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 224.233903] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 224.266122] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 224.271470] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 224.277555] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 224.278438] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 224.295223] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 224.301688] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 224.316048] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 224.324874] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 224.357443] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 224.364000] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 224.412038] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 226.049803] Bluetooth: hci0: command tx timeout [ 226.050589] Bluetooth: hci1: command tx timeout [ 226.114846] Bluetooth: hci4: command tx timeout [ 226.115663] Bluetooth: hci2: command tx timeout [ 226.241593] Bluetooth: hci3: command tx timeout [ 226.305533] Bluetooth: hci5: command tx timeout [ 226.433569] Bluetooth: hci7: command tx timeout [ 226.498602] Bluetooth: hci6: command tx timeout [ 228.097693] Bluetooth: hci0: command tx timeout [ 228.098390] Bluetooth: hci1: command tx timeout [ 228.161579] Bluetooth: hci2: command tx timeout [ 228.162178] Bluetooth: hci4: command tx timeout [ 228.289560] Bluetooth: hci3: command tx timeout [ 228.353936] Bluetooth: hci5: command tx timeout [ 228.481580] Bluetooth: hci7: command tx timeout [ 228.545559] Bluetooth: hci6: command tx timeout [ 230.145574] Bluetooth: hci1: command tx timeout [ 230.145668] Bluetooth: hci0: command tx timeout [ 230.209581] Bluetooth: hci2: command tx timeout [ 230.210145] Bluetooth: hci4: command tx timeout [ 230.337514] Bluetooth: hci3: command tx timeout [ 230.401594] Bluetooth: hci5: command tx timeout [ 230.530507] Bluetooth: hci7: command tx timeout [ 230.593541] Bluetooth: hci6: command tx timeout [ 232.193573] Bluetooth: hci0: command tx timeout [ 232.193666] Bluetooth: hci1: command tx timeout [ 232.258560] Bluetooth: hci4: command tx timeout [ 232.258658] Bluetooth: hci2: command tx timeout [ 232.385541] Bluetooth: hci3: command tx timeout [ 232.449591] Bluetooth: hci5: command tx timeout [ 232.577767] Bluetooth: hci7: command tx timeout [ 232.641774] Bluetooth: hci6: command tx timeout [ 284.797601] [ 284.798085] ====================================================== [ 284.799401] WARNING: possible circular locking dependency detected [ 284.800687] 6.13.0-rc7-next-20250117 #1 Not tainted [ 284.807203] ------------------------------------------------------ [ 284.808591] kworker/u8:1/66 is trying to acquire lock: [ 284.809810] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.812246] [ 284.812246] but task is already holding lock: [ 284.813510] ffff888018b10768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 284.815698] [ 284.815698] which lock already depends on the new lock. [ 284.815698] [ 284.817405] [ 284.817405] the existing dependency chain (in reverse order) is: [ 284.819032] [ 284.819032] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 284.820530] __mutex_lock+0x13d/0xb50 [ 284.821503] wiphy_register+0x1b2e/0x25d0 [ 284.822646] ieee80211_register_hw+0x23a4/0x3d60 [ 284.823870] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 284.825148] init_mac80211_hwsim+0x389/0x870 [ 284.826323] do_one_initcall+0xf9/0x640 [ 284.827436] kernel_init_freeable+0x53d/0x7a0 [ 284.828620] kernel_init+0x1e/0x2d0 [ 284.829553] ret_from_fork+0x48/0x80 [ 284.830561] ret_from_fork_asm+0x1a/0x30 [ 284.831666] [ 284.831666] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 284.833027] __lock_acquire+0x29fd/0x4580 [ 284.834187] lock_acquire+0x19b/0x520 [ 284.835285] __mutex_lock+0x13d/0xb50 [ 284.836383] unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.837854] unregister_netdevice_queue+0x224/0x2e0 [ 284.839160] _cfg80211_unregister_wdev+0x57b/0x700 [ 284.840406] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 284.841887] ieee80211_unregister_hw+0x55/0x3a0 [ 284.843188] hwsim_exit_net+0x3a0/0x730 [ 284.844206] ops_exit_list+0xb3/0x180 [ 284.845147] cleanup_net+0x546/0xad0 [ 284.846072] process_one_work+0x8ee/0x1a10 [ 284.847246] worker_thread+0x674/0xe70 [ 284.848275] kthread+0x3ab/0x720 [ 284.849233] ret_from_fork+0x48/0x80 [ 284.850208] ret_from_fork_asm+0x1a/0x30 [ 284.851356] [ 284.851356] other info that might help us debug this: [ 284.851356] [ 284.852582] Possible unsafe locking scenario: [ 284.852582] [ 284.853515] CPU0 CPU1 [ 284.854290] ---- ---- [ 284.855124] lock(&rdev->wiphy.mtx); [ 284.855791] lock(rtnl_mutex); [ 284.856748] lock(&rdev->wiphy.mtx); [ 284.857828] lock(rtnl_mutex); [ 284.858480] [ 284.858480] *** DEADLOCK *** [ 284.858480] [ 284.859441] 4 locks held by kworker/u8:1/66: [ 284.860156] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 284.861810] #1: ffff88800ed0fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 284.863484] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 284.865003] #3: ffff888018b10768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 284.866727] [ 284.866727] stack backtrace: [ 284.867438] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 284.868844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 284.870181] Workqueue: netns cleanup_net [ 284.870971] Call Trace: [ 284.871439] [ 284.871851] dump_stack_lvl+0xca/0x120 [ 284.872606] print_circular_bug+0x47b/0x750 [ 284.873404] check_noncircular+0x2e9/0x3c0 [ 284.874167] ? __pfx_check_noncircular+0x10/0x10 [ 284.875036] ? hlock_class+0x4e/0x130 [ 284.875738] ? mark_lock+0xac/0xed0 [ 284.876393] ? srso_return_thunk+0x5/0x5f [ 284.877104] ? sched_clock+0x37/0x60 [ 284.877785] ? lockdep_lock+0xba/0x1b0 [ 284.878655] ? __pfx_lockdep_lock+0x10/0x10 [ 284.879438] __lock_acquire+0x29fd/0x4580 [ 284.880167] ? __pfx___lock_acquire+0x10/0x10 [ 284.880926] ? lock_release+0x20f/0x6f0 [ 284.881611] ? __pfx_lock_release+0x10/0x10 [ 284.882357] lock_acquire+0x19b/0x520 [ 284.883042] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.884005] ? __pfx_lock_acquire+0x10/0x10 [ 284.884734] ? srso_return_thunk+0x5/0x5f [ 284.885461] ? lock_release+0x20f/0x6f0 [ 284.886141] ? srso_return_thunk+0x5/0x5f [ 284.886872] ? lock_is_held_type+0x9e/0x120 [ 284.887623] ? srso_return_thunk+0x5/0x5f [ 284.888360] __mutex_lock+0x13d/0xb50 [ 284.889033] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.889990] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.890958] ? srso_return_thunk+0x5/0x5f [ 284.891713] ? synchronize_rcu_expedited+0x38a/0x420 [ 284.892591] ? __pfx___mutex_lock+0x10/0x10 [ 284.893353] ? __pfx_autoremove_wake_function+0x10/0x10 [ 284.894294] ? srso_return_thunk+0x5/0x5f [ 284.895060] ? kasan_quarantine_put+0x84/0x1e0 [ 284.895894] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 284.896681] ? srso_return_thunk+0x5/0x5f [ 284.897419] unregister_netdevice_many_notify+0x1612/0x1c80 [ 284.898397] ? __virt_addr_valid+0x2e8/0x5d0 [ 284.899195] ? __pfx_lock_release+0x10/0x10 [ 284.899954] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 284.900980] ? find_held_lock+0x2c/0x110 [ 284.901724] ? srso_return_thunk+0x5/0x5f [ 284.902495] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 284.903375] ? srso_return_thunk+0x5/0x5f [ 284.904130] ? lock_release+0x20f/0x6f0 [ 284.904831] ? __pfx_lock_release+0x10/0x10 [ 284.905589] ? srso_return_thunk+0x5/0x5f [ 284.906345] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 284.907272] ? srso_return_thunk+0x5/0x5f [ 284.908038] unregister_netdevice_queue+0x224/0x2e0 [ 284.908903] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 284.909846] ? up_write+0x195/0x520 [ 284.910523] _cfg80211_unregister_wdev+0x57b/0x700 [ 284.911376] ? srso_return_thunk+0x5/0x5f [ 284.912123] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 284.912999] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 284.913946] ? srso_return_thunk+0x5/0x5f [ 284.914686] ? srso_return_thunk+0x5/0x5f [ 284.915438] ? synchronize_rcu+0x1ff/0x260 [ 284.916175] ieee80211_unregister_hw+0x55/0x3a0 [ 284.916995] hwsim_exit_net+0x3a0/0x730 [ 284.917699] ? __pfx_hwsim_exit_net+0x10/0x10 [ 284.918494] ? srso_return_thunk+0x5/0x5f [ 284.919232] ? netdev_run_todo+0x788/0x1040 [ 284.919982] ? __pfx_hwsim_exit_net+0x10/0x10 [ 284.920740] ops_exit_list+0xb3/0x180 [ 284.921395] cleanup_net+0x546/0xad0 [ 284.922040] ? __pfx_cleanup_net+0x10/0x10 [ 284.922778] process_one_work+0x8ee/0x1a10 [ 284.923569] ? __pfx_lock_acquire+0x10/0x10 [ 284.924304] ? __pfx_process_one_work+0x10/0x10 [ 284.925115] ? srso_return_thunk+0x5/0x5f [ 284.925839] ? move_linked_works+0x172/0x270 [ 284.926596] ? srso_return_thunk+0x5/0x5f [ 284.927324] ? assign_work+0x196/0x240 [ 284.928019] worker_thread+0x674/0xe70 [ 284.928717] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 284.929640] ? srso_return_thunk+0x5/0x5f [ 284.930398] ? __pfx_worker_thread+0x10/0x10 [ 284.931195] kthread+0x3ab/0x720 [ 284.931820] ? __pfx_kthread+0x10/0x10 [ 284.932534] ? srso_return_thunk+0x5/0x5f [ 284.933289] ? finish_task_switch.isra.0+0x206/0x840 [ 284.934184] ? __pfx_kthread+0x10/0x10 [ 284.934911] ret_from_fork+0x48/0x80 [ 284.935563] ? __pfx_kthread+0x10/0x10 [ 284.936261] ret_from_fork_asm+0x1a/0x30 [ 284.937028] [ 286.157007] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 286.158830] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 286.162064] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 286.167891] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 286.171627] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 286.173880] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 286.348955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 286.351002] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 286.355339] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 286.363864] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 286.365133] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 286.367898] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 286.368277] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 286.371691] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 286.373896] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 286.379656] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 286.386751] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 286.390763] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 286.482194] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 286.484131] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 286.491405] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 286.500951] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 286.504400] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 286.508775] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 286.554069] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 286.557240] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 286.560992] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 286.562849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 286.564735] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 286.567228] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 286.571291] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 286.575720] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 286.578747] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 286.593361] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 286.605604] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 286.613390] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 286.620387] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 286.626145] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 286.645726] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 286.653833] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 286.657163] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 286.657892] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 286.669171] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 286.669676] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 286.672509] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 286.759368] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 286.770149] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 286.776777] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 288.193565] Bluetooth: hci0: command tx timeout [ 288.450136] Bluetooth: hci1: command tx timeout [ 288.450627] Bluetooth: hci2: command tx timeout [ 288.578531] Bluetooth: hci4: command tx timeout [ 288.643019] Bluetooth: hci6: command tx timeout [ 288.769892] Bluetooth: hci5: command tx timeout [ 288.769912] Bluetooth: hci3: command tx timeout [ 288.897735] Bluetooth: hci7: command tx timeout [ 290.241553] Bluetooth: hci0: command tx timeout [ 290.498525] Bluetooth: hci1: command tx timeout [ 290.498663] Bluetooth: hci2: command tx timeout [ 290.627485] Bluetooth: hci4: command tx timeout [ 290.691496] Bluetooth: hci6: command tx timeout [ 290.817573] Bluetooth: hci5: command tx timeout [ 290.818613] Bluetooth: hci3: command tx timeout [ 290.947482] Bluetooth: hci7: command tx timeout [ 292.289785] Bluetooth: hci0: command tx timeout [ 292.545641] Bluetooth: hci2: command tx timeout [ 292.546514] Bluetooth: hci1: command tx timeout [ 292.673754] Bluetooth: hci4: command tx timeout [ 292.737548] Bluetooth: hci6: command tx timeout [ 292.865554] Bluetooth: hci3: command tx timeout [ 292.865707] Bluetooth: hci5: command tx timeout [ 292.994586] Bluetooth: hci7: command tx timeout [ 294.338656] Bluetooth: hci0: command tx timeout [ 294.595691] Bluetooth: hci1: command tx timeout [ 294.596259] Bluetooth: hci2: command tx timeout [ 294.721546] Bluetooth: hci4: command tx timeout [ 294.785942] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 17:39:13 Registers: info registers vcpu 0 RAX=0000000000000078 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800ed0ebb8 R8 =0000000000000001 R9 =ffffed1001da1d67 R10=0000000000000078 R11=0000000033312e36 R12=0000000000000078 R13=0000000000000001 R14=ffff888008fea01d R15=ffff88800ed0eeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3d77b1c000 CR3=000000001597c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000000e402fc9c06947d0 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=0000000000ea8a4000000000005baa49 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=000000c0001ebf4000000000004643c1 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=000000c0000ec8d0000000c0000ec8a0 XMM14=000000c0000865a0000000c0000ec900 XMM15=000000c0000f4420000000c0000ec930 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000cc0 RCX=ffffffff8150243e RDX=0000000080000000 RSI=0000000000000cc0 RDI=ffff888036735d20 RBP=ffff88802930fa10 RSP=ffff88802930f9b0 R8 =0000000000000000 R9 =fffffbfff0c8043a R10=ffffffff864021d7 R11=0000000000000000 R12=ffff888009445640 R13=0000000000000cc0 R14=0000000000000168 R15=ffffffff81b15236 RIP=ffffffff81a494b8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000000c000031c90 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f834ff0d348 CR3=000000001597c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=38303939323933303572696474736574 XMM02=6573755f776f6c6c6120303d76676573 XMM03=313d72656c646e61685f766765735f72 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=000000000000000a000000c000014016 XMM09=000000000000002a000000c000016000 XMM10=0000000000000009000000c000014040 XMM11=0000000000000007000000c000014049 XMM12=000000000000001c000000c000018000 XMM13=0000000000000041000000c00001a000 XMM14=000000000000000c000000c000014050 XMM15=000000000000000d000000c000014060