Warning: Permanently added '[localhost]:31194' (ECDSA) to the list of known hosts. 2025/01/18 09:30:26 fuzzer started 2025/01/18 09:30:26 dialing manager at localhost:44245 syzkaller login: [ 69.493688] cgroup: Unknown subsys name 'net' [ 69.565702] cgroup: Unknown subsys name 'cpuset' [ 69.582654] cgroup: Unknown subsys name 'rlimit' [ 76.352885] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 09:30:45 syscalls: 2217 2025/01/18 09:30:45 code coverage: enabled 2025/01/18 09:30:45 comparison tracing: enabled 2025/01/18 09:30:45 extra coverage: enabled 2025/01/18 09:30:45 setuid sandbox: enabled 2025/01/18 09:30:45 namespace sandbox: enabled 2025/01/18 09:30:45 Android sandbox: enabled 2025/01/18 09:30:45 fault injection: enabled 2025/01/18 09:30:45 leak checking: enabled 2025/01/18 09:30:45 net packet injection: enabled 2025/01/18 09:30:45 net device setup: enabled 2025/01/18 09:30:45 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 09:30:45 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 09:30:45 USB emulation: enabled 2025/01/18 09:30:45 hci packet injection: enabled 2025/01/18 09:30:45 wifi device emulation: enabled 2025/01/18 09:30:45 802.15.4 emulation: enabled 2025/01/18 09:30:45 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 09:30:45 fetching corpus: 50, signal 25874/28615 (executing program) 2025/01/18 09:30:45 fetching corpus: 100, signal 38660/41824 (executing program) 2025/01/18 09:30:45 fetching corpus: 150, signal 47239/50601 (executing program) 2025/01/18 09:30:46 fetching corpus: 200, signal 53398/56811 (executing program) 2025/01/18 09:30:46 fetching corpus: 250, signal 60935/63909 (executing program) 2025/01/18 09:30:46 fetching corpus: 300, signal 65815/68432 (executing program) 2025/01/18 09:30:46 fetching corpus: 350, signal 70822/72813 (executing program) 2025/01/18 09:30:46 fetching corpus: 400, signal 73777/75387 (executing program) 2025/01/18 09:30:47 fetching corpus: 450, signal 76255/77406 (executing program) 2025/01/18 09:30:47 fetching corpus: 500, signal 78138/78909 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79609 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79669 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79713 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79769 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79825 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79869 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79912 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/79959 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80008 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80040 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80107 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80158 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80199 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80242 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80304 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80344 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80393 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80430 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80481 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80517 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80558 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80610 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80663 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80719 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80756 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80797 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80849 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80896 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80946 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 09:30:47 fetching corpus: 529, signal 79062/80964 (executing program) 2025/01/18 09:30:51 starting 8 fuzzer processes 09:30:51 executing program 0: futex(0x0, 0xc, 0x0, 0x0, 0x0, 0x0) 09:30:51 executing program 1: connect$802154_dgram(0xffffffffffffffff, &(0x7f0000000000)={0x24, @short={0x2, 0x2, 0xaaa0}}, 0x2) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_setup(0x1f, &(0x7f0000000640)=0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000600)="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", 0x100, 0x6}]) write(r2, &(0x7f0000000180)="ab539b71", 0x4) r3 = socket$packet(0x11, 0x3, 0x300) getsockopt$sock_int(r3, 0x1, 0x2f, 0x0, &(0x7f00000000c0)) ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r3, 0x8983, &(0x7f0000000040)={0x0, 'wg2\x00', {0x1}, 0x82}) ioctl$TIOCCONS(r0, 0x541d) io_setup(0x1f, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) io_submit(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) 09:30:51 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000004c0)={0x1, &(0x7f0000000480)=[{0x6}]}, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0) 09:30:51 executing program 3: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, 0x0, 0x0) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc4}, &(0x7f00000000c0)={0x0, "365858a87af435f24b3eccfc09e41de4cc3b7483ebf9058324ec7f5c0ac447399bdf65b59962dad6aaca496959090f51aa0b34bfa31680fbd349accf1910d268"}, 0x48, r0) 09:30:51 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) sendmmsg(r0, &(0x7f0000000940)=[{{&(0x7f0000000780)=@hci={0x1f, 0x5865, 0x2}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000800)="9c", 0x1}, {&(0x7f0000000000)="d8e290fdf018b1514c39a95df3", 0xd}], 0x2}}], 0x1, 0x0) 09:30:51 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpid() r1 = pidfd_open(r0, 0x0) pidfd_send_signal(r1, 0x22, &(0x7f0000000000)={0x35, 0x9, 0x1}, 0x0) [ 94.610870] audit: type=1400 audit(1737192651.857:7): avc: denied { execmem } for pid=279 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:30:51 executing program 6: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'syz_tun\x00', &(0x7f00000003c0)=@ethtool_perm_addr}) 09:30:51 executing program 7: r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xd}, 0x4) [ 96.006747] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 96.009917] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 96.012230] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 96.020376] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 96.023626] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 96.025703] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 96.036753] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 96.038079] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 96.041155] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 96.042981] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 96.047101] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 96.049003] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 96.050977] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 96.051910] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 96.053291] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 96.057692] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 96.065765] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 96.070596] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 96.071173] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 96.072967] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 96.109239] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 96.121441] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 96.124250] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 96.126116] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 96.231988] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 96.257058] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 96.315529] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 96.315980] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 96.322617] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 96.323043] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 96.323957] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 96.329314] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 96.333988] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 96.337945] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 96.342368] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.350456] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 96.353159] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 96.357483] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 96.359406] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 96.364272] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 96.366355] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 96.368606] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 96.386340] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 96.401244] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 96.402941] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 96.437234] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 96.445255] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 96.446498] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 98.142332] Bluetooth: hci1: command tx timeout [ 98.142339] Bluetooth: hci2: command tx timeout [ 98.142672] Bluetooth: hci0: command tx timeout [ 98.270140] Bluetooth: hci3: command tx timeout [ 98.397883] Bluetooth: hci5: command tx timeout [ 98.461920] Bluetooth: hci6: command tx timeout [ 98.462200] Bluetooth: hci4: command tx timeout [ 98.526022] Bluetooth: hci7: command tx timeout [ 100.190286] Bluetooth: hci0: command tx timeout [ 100.190401] Bluetooth: hci1: command tx timeout [ 100.191516] Bluetooth: hci2: command tx timeout [ 100.317937] Bluetooth: hci3: command tx timeout [ 100.445930] Bluetooth: hci5: command tx timeout [ 100.510063] Bluetooth: hci4: command tx timeout [ 100.510169] Bluetooth: hci6: command tx timeout [ 100.574850] Bluetooth: hci7: command tx timeout [ 102.237883] Bluetooth: hci2: command tx timeout [ 102.237981] Bluetooth: hci1: command tx timeout [ 102.238070] Bluetooth: hci0: command tx timeout [ 102.365849] Bluetooth: hci3: command tx timeout [ 102.493885] Bluetooth: hci5: command tx timeout [ 102.557910] Bluetooth: hci6: command tx timeout [ 102.558018] Bluetooth: hci4: command tx timeout [ 102.622132] Bluetooth: hci7: command tx timeout [ 104.286281] Bluetooth: hci0: command tx timeout [ 104.286501] Bluetooth: hci1: command tx timeout [ 104.286592] Bluetooth: hci2: command tx timeout [ 104.413967] Bluetooth: hci3: command tx timeout [ 104.541963] Bluetooth: hci5: command tx timeout [ 104.606642] Bluetooth: hci4: command tx timeout [ 104.606896] Bluetooth: hci6: command tx timeout [ 104.669923] Bluetooth: hci7: command tx timeout [ 158.314277] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 158.318242] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 158.321060] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 158.328597] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 158.332194] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 158.335253] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 158.438150] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 158.443636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 158.446202] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 158.450824] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 158.457175] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 158.459633] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 158.504635] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 158.512243] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 158.521284] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 158.529214] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 158.532280] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 158.534074] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 158.545459] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 158.549129] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 158.552130] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 158.569097] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 158.575098] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 158.578121] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 158.644007] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 158.651196] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 158.657381] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 158.663701] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 158.666587] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 158.668925] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 158.759276] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 158.759455] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 158.766218] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 158.770081] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 158.772118] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 158.787585] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 158.798516] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 158.801504] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 158.804048] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 158.810111] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 158.811049] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 158.817794] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 158.836697] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 158.859714] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 158.859988] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 158.867246] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 158.867661] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 158.893309] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 160.414033] Bluetooth: hci0: command tx timeout [ 160.542995] Bluetooth: hci1: command tx timeout [ 160.605846] Bluetooth: hci2: command tx timeout [ 160.671312] Bluetooth: hci3: command tx timeout [ 160.797919] Bluetooth: hci4: command tx timeout [ 160.989960] Bluetooth: hci7: command tx timeout [ 160.991012] Bluetooth: hci5: command tx timeout [ 161.118216] Bluetooth: hci6: command tx timeout [ 162.463048] Bluetooth: hci0: command tx timeout [ 162.590860] Bluetooth: hci1: command tx timeout [ 162.655052] Bluetooth: hci2: command tx timeout [ 162.719845] Bluetooth: hci3: command tx timeout [ 162.847834] Bluetooth: hci4: command tx timeout [ 163.038929] Bluetooth: hci5: command tx timeout [ 163.039523] Bluetooth: hci7: command tx timeout [ 163.166654] Bluetooth: hci6: command tx timeout [ 164.509929] Bluetooth: hci0: command tx timeout [ 164.639597] Bluetooth: hci1: command tx timeout [ 164.701854] Bluetooth: hci2: command tx timeout [ 164.766852] Bluetooth: hci3: command tx timeout [ 164.893831] Bluetooth: hci4: command tx timeout [ 165.085856] Bluetooth: hci5: command tx timeout [ 165.085883] Bluetooth: hci7: command tx timeout [ 165.213832] Bluetooth: hci6: command tx timeout [ 166.557840] Bluetooth: hci0: command tx timeout [ 166.686285] Bluetooth: hci1: command tx timeout [ 166.749976] Bluetooth: hci2: command tx timeout [ 166.813898] Bluetooth: hci3: command tx timeout [ 166.941933] Bluetooth: hci4: command tx timeout [ 167.133864] Bluetooth: hci7: command tx timeout [ 167.135031] Bluetooth: hci5: command tx timeout [ 167.261832] Bluetooth: hci6: command tx timeout [ 216.074600] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.074726] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.449180] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.449260] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 218.098310] [ 218.098605] ====================================================== [ 218.099232] WARNING: possible circular locking dependency detected [ 218.099868] 6.13.0-rc7-next-20250117 #1 Not tainted [ 218.100350] ------------------------------------------------------ [ 218.101153] kworker/u8:1/65 is trying to acquire lock: [ 218.102144] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.104275] [ 218.104275] but task is already holding lock: [ 218.105547] ffff888016508768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 218.107840] [ 218.107840] which lock already depends on the new lock. [ 218.107840] [ 218.109499] [ 218.109499] the existing dependency chain (in reverse order) is: [ 218.110579] [ 218.110579] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 218.111231] __mutex_lock+0x13d/0xb50 [ 218.111693] wiphy_register+0x1b2e/0x25d0 [ 218.112180] ieee80211_register_hw+0x23a4/0x3d60 [ 218.112715] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 218.113262] init_mac80211_hwsim+0x389/0x870 [ 218.113773] do_one_initcall+0xf9/0x640 [ 218.114246] kernel_init_freeable+0x53d/0x7a0 [ 218.114749] kernel_init+0x1e/0x2d0 [ 218.115163] ret_from_fork+0x48/0x80 [ 218.115594] ret_from_fork_asm+0x1a/0x30 [ 218.116098] [ 218.116098] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 218.116723] __lock_acquire+0x29fd/0x4580 [ 218.117200] lock_acquire+0x19b/0x520 [ 218.117647] __mutex_lock+0x13d/0xb50 [ 218.118111] unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.118712] unregister_netdevice_queue+0x224/0x2e0 [ 218.119255] _cfg80211_unregister_wdev+0x57b/0x700 [ 218.119800] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 218.120341] ieee80211_unregister_hw+0x55/0x3a0 [ 218.120868] hwsim_exit_net+0x3a0/0x730 [ 218.121339] ops_exit_list+0xb3/0x180 [ 218.121776] cleanup_net+0x546/0xad0 [ 218.122209] process_one_work+0x8ee/0x1a10 [ 218.122714] worker_thread+0x674/0xe70 [ 218.123172] kthread+0x3ab/0x720 [ 218.123595] ret_from_fork+0x48/0x80 [ 218.124020] ret_from_fork_asm+0x1a/0x30 [ 218.124514] [ 218.124514] other info that might help us debug this: [ 218.124514] [ 218.125254] Possible unsafe locking scenario: [ 218.125254] [ 218.125823] CPU0 CPU1 [ 218.126269] ---- ---- [ 218.126716] lock(&rdev->wiphy.mtx); [ 218.127118] lock(rtnl_mutex); [ 218.127676] lock(&rdev->wiphy.mtx); [ 218.128283] lock(rtnl_mutex); [ 218.128638] [ 218.128638] *** DEADLOCK *** [ 218.128638] [ 218.129194] 4 locks held by kworker/u8:1/65: [ 218.129614] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 218.130601] #1: ffff88800bab7d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 218.131564] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 218.132479] #3: ffff888016508768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 218.133479] [ 218.133479] stack backtrace: [ 218.133899] CPU: 0 UID: 0 PID: 65 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 218.134672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 218.135431] Workqueue: netns cleanup_net [ 218.135860] Call Trace: [ 218.136112] [ 218.136338] dump_stack_lvl+0xca/0x120 [ 218.136790] print_circular_bug+0x47b/0x750 [ 218.137221] check_noncircular+0x2e9/0x3c0 [ 218.137644] ? __pfx_check_noncircular+0x10/0x10 [ 218.138128] ? hlock_class+0x4e/0x130 [ 218.138507] ? mark_lock+0xac/0xed0 [ 218.138886] ? srso_return_thunk+0x5/0x5f [ 218.139318] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 218.139783] ? lockdep_lock+0xba/0x1b0 [ 218.140192] ? __pfx_lockdep_lock+0x10/0x10 [ 218.140648] __lock_acquire+0x29fd/0x4580 [ 218.141070] ? __pfx___lock_acquire+0x10/0x10 [ 218.141519] ? lock_release+0x20f/0x6f0 [ 218.141934] ? __pfx_lock_release+0x10/0x10 [ 218.142375] lock_acquire+0x19b/0x520 [ 218.142765] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.143324] ? __pfx_lock_acquire+0x10/0x10 [ 218.143765] ? srso_return_thunk+0x5/0x5f [ 218.144198] ? lock_release+0x20f/0x6f0 [ 218.144606] ? srso_return_thunk+0x5/0x5f [ 218.145043] ? lock_is_held_type+0x9e/0x120 [ 218.145499] ? srso_return_thunk+0x5/0x5f [ 218.145929] __mutex_lock+0x13d/0xb50 [ 218.146309] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.146887] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.147469] ? srso_return_thunk+0x5/0x5f [ 218.147910] ? synchronize_rcu_expedited+0x38a/0x420 [ 218.148417] ? __pfx___mutex_lock+0x10/0x10 [ 218.148867] ? __pfx_autoremove_wake_function+0x10/0x10 [ 218.149401] ? srso_return_thunk+0x5/0x5f [ 218.149831] ? kasan_quarantine_put+0x84/0x1e0 [ 218.150299] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 218.150744] ? srso_return_thunk+0x5/0x5f [ 218.151188] unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.151746] ? __virt_addr_valid+0x2e8/0x5d0 [ 218.152206] ? __pfx_lock_release+0x10/0x10 [ 218.152650] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 218.153246] ? find_held_lock+0x2c/0x110 [ 218.153684] ? srso_return_thunk+0x5/0x5f [ 218.154129] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 218.154644] ? srso_return_thunk+0x5/0x5f [ 218.155070] ? lock_release+0x20f/0x6f0 [ 218.155477] ? __pfx_lock_release+0x10/0x10 [ 218.155905] ? srso_return_thunk+0x5/0x5f [ 218.156335] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 218.156866] ? srso_return_thunk+0x5/0x5f [ 218.157297] unregister_netdevice_queue+0x224/0x2e0 [ 218.157781] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 218.158315] ? up_write+0x195/0x520 [ 218.158713] _cfg80211_unregister_wdev+0x57b/0x700 [ 218.159214] ? srso_return_thunk+0x5/0x5f [ 218.159652] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 218.160142] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 218.160674] ? srso_return_thunk+0x5/0x5f [ 218.161100] ? srso_return_thunk+0x5/0x5f [ 218.161526] ? synchronize_rcu+0x1ff/0x260 [ 218.161951] ieee80211_unregister_hw+0x55/0x3a0 [ 218.162412] hwsim_exit_net+0x3a0/0x730 [ 218.162807] ? __pfx_hwsim_exit_net+0x10/0x10 [ 218.163265] ? srso_return_thunk+0x5/0x5f [ 218.163685] ? netdev_run_todo+0x788/0x1040 [ 218.164125] ? __pfx_hwsim_exit_net+0x10/0x10 [ 218.164574] ops_exit_list+0xb3/0x180 [ 218.164961] cleanup_net+0x546/0xad0 [ 218.165341] ? __pfx_cleanup_net+0x10/0x10 [ 218.165772] process_one_work+0x8ee/0x1a10 [ 218.166220] ? __pfx_lock_acquire+0x10/0x10 [ 218.166657] ? __pfx_process_one_work+0x10/0x10 [ 218.167110] ? srso_return_thunk+0x5/0x5f [ 218.167535] ? move_linked_works+0x172/0x270 [ 218.167983] ? srso_return_thunk+0x5/0x5f [ 218.168412] ? assign_work+0x196/0x240 [ 218.168830] worker_thread+0x674/0xe70 [ 218.169231] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 218.169730] ? srso_return_thunk+0x5/0x5f [ 218.170156] ? __pfx_worker_thread+0x10/0x10 [ 218.170616] kthread+0x3ab/0x720 [ 218.170980] ? __pfx_kthread+0x10/0x10 [ 218.171391] ? srso_return_thunk+0x5/0x5f [ 218.171819] ? finish_task_switch.isra.0+0x206/0x840 [ 218.172317] ? __pfx_kthread+0x10/0x10 [ 218.172728] ret_from_fork+0x48/0x80 [ 218.173096] ? __pfx_kthread+0x10/0x10 [ 218.173506] ret_from_fork_asm+0x1a/0x30 [ 218.173934] [ 220.203502] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 220.204572] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 220.207078] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 220.209428] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 220.211267] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 220.212021] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 220.387816] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 220.388450] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 220.389120] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 220.390707] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 220.392075] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 220.393148] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 220.524373] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 220.527506] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 220.528516] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 220.536483] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 220.538855] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 220.539711] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 220.585123] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 220.590390] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 220.594001] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 220.602006] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 220.603712] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 220.605398] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 220.657893] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 220.658984] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 220.663313] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 220.668001] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 220.672897] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 220.681011] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 220.684940] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 220.698016] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 220.716002] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 220.728352] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 220.732086] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 220.732914] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 220.733887] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 220.740038] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 220.761436] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 220.768560] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 220.773434] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 220.779894] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 220.807077] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 220.815212] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 220.821973] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 220.852260] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 220.863919] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 220.865177] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 222.237805] Bluetooth: hci0: command tx timeout [ 222.429818] Bluetooth: hci1: command tx timeout [ 222.559765] Bluetooth: hci2: command tx timeout [ 222.685953] Bluetooth: hci3: command tx timeout [ 222.749848] Bluetooth: hci4: command tx timeout [ 222.813855] Bluetooth: hci5: command tx timeout [ 222.877958] Bluetooth: hci6: command tx timeout [ 222.941843] Bluetooth: hci7: command tx timeout [ 224.286958] Bluetooth: hci0: command tx timeout [ 224.477819] Bluetooth: hci1: command tx timeout [ 224.605887] Bluetooth: hci2: command tx timeout [ 224.733865] Bluetooth: hci3: command tx timeout [ 224.797817] Bluetooth: hci4: command tx timeout [ 224.861821] Bluetooth: hci5: command tx timeout [ 224.926015] Bluetooth: hci6: command tx timeout [ 224.989842] Bluetooth: hci7: command tx timeout [ 226.333835] Bluetooth: hci0: command tx timeout [ 226.525957] Bluetooth: hci1: command tx timeout [ 226.653869] Bluetooth: hci2: command tx timeout [ 226.781839] Bluetooth: hci3: command tx timeout [ 226.845826] Bluetooth: hci4: command tx timeout [ 226.909806] Bluetooth: hci5: command tx timeout [ 226.973802] Bluetooth: hci6: command tx timeout [ 227.037812] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 09:32:55 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800bab6b08 R8 =0000000000000001 R9 =ffffed1001756d55 R10=0000000000000000 R11=3038383866666666 R12=0000000000000000 R13=ffff88800bab6e28 R14=ffffffff88693320 R15=0000000000000000 RIP=ffffffff8283ce1d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000561ab8b6a2d0 CR3=0000000009cf2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=682e29646e616d6d6f632a282e637069 XMM03=00000000000000000000000000000000 XMM04=78650b00737472617473657220726f74 XMM05=20636578650d00656761697274206365 XMM06=6320636578650e00657a696d696e696d XMM07=7320636578650a006574616469646e61 XMM08=6e696820636578650a006873616d7320 XMM09=73657220726f74756365786511007374 XMM10=6169727420636578650b007374726174 XMM11=7a696d696e696d20636578650d006567 XMM12=74616469646e616320636578650e0065 XMM13=650a00736465657320636578650a0065 XMM14=206365786508006c61746f7420636578 XMM15=00007a7a7566206365786509006e6567 info registers vcpu 1 RAX=ffffffff86bf7a9d RBX=0000000000000001 RCX=ffffffff86bf7a9a RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff86bf7a9c RBP=ffff88803b78f5c0 RSP=ffff88803b78f4f8 R8 =0000000000000001 R9 =ffff88803b78f5a8 R10=000000000003ab4d R11=00000000000c12af R12=ffff88803b78f5c8 R13=ffff88803b78f5b0 R14=ffff88803b78f8a8 R15=ffff88803b78f568 RIP=ffffffff81349a71 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fa49c87e900 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa49cfcf000 CR3=000000000da26000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000ff00000000000000000000ff XMM01=00000000010000000000000000000000 XMM02=494c4700362e322e325f4342494c4700 XMM03=00000000000000000000000000004700 XMM04=4342494c4700362e322e325f4342494c XMM05=00007fa49cc9200000007fa49cc938c0 XMM06=00007fa49cc932f000007fa49cdf8950 XMM07=00007fa49cc92cf000007fa49cc92760 XMM08=00007fa49cc9200000007fa49cdf8950 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000