Warning: Permanently added '[localhost]:3788' (ECDSA) to the list of known hosts. 2025/01/18 09:45:13 fuzzer started 2025/01/18 09:45:13 dialing manager at localhost:44245 syzkaller login: [ 69.485409] cgroup: Unknown subsys name 'net' [ 69.558327] cgroup: Unknown subsys name 'cpuset' [ 69.594158] cgroup: Unknown subsys name 'rlimit' [ 75.303933] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 85.267703] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 09:45:29 syscalls: 2217 2025/01/18 09:45:29 code coverage: enabled 2025/01/18 09:45:29 comparison tracing: enabled 2025/01/18 09:45:29 extra coverage: enabled 2025/01/18 09:45:29 setuid sandbox: enabled 2025/01/18 09:45:29 namespace sandbox: enabled 2025/01/18 09:45:29 Android sandbox: enabled 2025/01/18 09:45:29 fault injection: enabled 2025/01/18 09:45:29 leak checking: enabled 2025/01/18 09:45:29 net packet injection: enabled 2025/01/18 09:45:29 net device setup: enabled 2025/01/18 09:45:29 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 09:45:29 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 09:45:29 USB emulation: enabled 2025/01/18 09:45:29 hci packet injection: enabled 2025/01/18 09:45:29 wifi device emulation: enabled 2025/01/18 09:45:29 802.15.4 emulation: enabled 2025/01/18 09:45:29 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 09:45:29 fetching corpus: 50, signal 24917/27703 (executing program) 2025/01/18 09:45:30 fetching corpus: 100, signal 38039/41247 (executing program) 2025/01/18 09:45:30 fetching corpus: 150, signal 47004/50364 (executing program) 2025/01/18 09:45:30 fetching corpus: 200, signal 52299/55794 (executing program) 2025/01/18 09:45:30 fetching corpus: 250, signal 58234/61610 (executing program) 2025/01/18 09:45:31 fetching corpus: 300, signal 65187/67901 (executing program) 2025/01/18 09:45:31 fetching corpus: 350, signal 68845/71261 (executing program) 2025/01/18 09:45:31 fetching corpus: 400, signal 73320/75062 (executing program) 2025/01/18 09:45:31 fetching corpus: 450, signal 75498/76866 (executing program) 2025/01/18 09:45:31 fetching corpus: 500, signal 78264/79003 (executing program) 2025/01/18 09:45:31 fetching corpus: 530, signal 79094/79654 (executing program) 2025/01/18 09:45:31 fetching corpus: 530, signal 79094/79687 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79751 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79793 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79844 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79884 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79941 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/79997 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80036 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80087 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80141 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80187 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80238 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80290 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80327 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80370 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80416 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80463 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80498 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80545 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80593 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80643 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80689 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80735 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80778 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80826 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80878 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80929 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80971 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80999 (executing program) 2025/01/18 09:45:32 fetching corpus: 530, signal 79094/80999 (executing program) 2025/01/18 09:45:35 starting 8 fuzzer processes 09:45:35 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x540d, 0x0) 09:45:35 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)={0x1c, 0x5f, 0x1, 0x0, 0x0, "", [@generic="006f75b66e3cf02d5c"]}, 0x1c}], 0x1}, 0x0) 09:45:35 executing program 2: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) openat2(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x6842}, 0x18) [ 91.227700] audit: type=1400 audit(1737193535.356:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:45:35 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0) 09:45:35 executing program 4: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file0\x00'}) 09:45:35 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x4, 0x0, &(0x7f00000003c0)) 09:45:35 executing program 6: r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r0, 0x29, 0x10, &(0x7f0000001700), 0x3) 09:45:35 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, 0x2, 0x1, 0x3, 0x0, 0x0, {}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1000}]}, 0x1c}}, 0x0) [ 92.539144] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.541511] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.543430] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.548268] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.551158] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.553321] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.727090] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.731259] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.734608] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.738721] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.743572] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.745254] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.807005] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.809196] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.810054] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.819464] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.824325] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.825894] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 92.828626] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.834249] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.835194] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.838283] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.843260] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.850716] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.854164] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.857465] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.861765] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.863313] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.864245] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 92.871736] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.875485] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.877893] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.880225] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.880560] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.886395] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.893787] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.894280] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.900483] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.911720] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.914671] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.922109] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.922439] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.936045] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.936393] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.939316] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.944411] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.946973] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.949601] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.627565] Bluetooth: hci0: command tx timeout [ 94.819879] Bluetooth: hci1: command tx timeout [ 94.885089] Bluetooth: hci7: command tx timeout [ 94.947995] Bluetooth: hci4: command tx timeout [ 94.948550] Bluetooth: hci6: command tx timeout [ 95.011044] Bluetooth: hci5: command tx timeout [ 95.012745] Bluetooth: hci3: command tx timeout [ 95.076058] Bluetooth: hci2: command tx timeout [ 96.674923] Bluetooth: hci0: command tx timeout [ 96.869884] Bluetooth: hci1: command tx timeout [ 96.930887] Bluetooth: hci7: command tx timeout [ 96.994889] Bluetooth: hci4: command tx timeout [ 96.995431] Bluetooth: hci6: command tx timeout [ 97.058958] Bluetooth: hci3: command tx timeout [ 97.059038] Bluetooth: hci5: command tx timeout [ 97.123104] Bluetooth: hci2: command tx timeout [ 98.722983] Bluetooth: hci0: command tx timeout [ 98.915329] Bluetooth: hci1: command tx timeout [ 98.978968] Bluetooth: hci7: command tx timeout [ 99.044996] Bluetooth: hci4: command tx timeout [ 99.045477] Bluetooth: hci6: command tx timeout [ 99.107738] Bluetooth: hci5: command tx timeout [ 99.107908] Bluetooth: hci3: command tx timeout [ 99.170904] Bluetooth: hci2: command tx timeout [ 100.770909] Bluetooth: hci0: command tx timeout [ 100.962937] Bluetooth: hci1: command tx timeout [ 101.027353] Bluetooth: hci7: command tx timeout [ 101.091023] Bluetooth: hci6: command tx timeout [ 101.092388] Bluetooth: hci4: command tx timeout [ 101.155274] Bluetooth: hci3: command tx timeout [ 101.155947] Bluetooth: hci5: command tx timeout [ 101.219935] Bluetooth: hci2: command tx timeout [ 153.081994] syz-executor.1 (280) used greatest stack depth: 23744 bytes left [ 155.438438] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 155.440601] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 155.443002] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 155.446837] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 155.449668] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 155.451592] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 155.631430] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 155.636359] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 155.640151] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 155.645143] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 155.647704] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 155.650527] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 155.654892] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 155.655067] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 155.661232] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 155.678039] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 155.696343] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 155.703184] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 155.754987] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 155.757416] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 155.767095] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 155.772413] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 155.780932] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 155.788909] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 155.869329] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 155.887006] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 155.890755] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 155.923920] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 155.955058] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 155.967327] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.968929] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 155.985009] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.027774] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.043362] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 156.062189] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 156.062820] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.069285] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.075274] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.088412] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.100017] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.125079] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.126081] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.175008] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.175905] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.178110] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.179073] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.179503] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 156.188220] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 157.538900] Bluetooth: hci0: command tx timeout [ 157.730871] Bluetooth: hci1: command tx timeout [ 157.732941] Bluetooth: hci2: command tx timeout [ 157.860482] Bluetooth: hci3: command tx timeout [ 158.051950] Bluetooth: hci4: command tx timeout [ 158.243052] Bluetooth: hci7: command tx timeout [ 158.243493] Bluetooth: hci5: command tx timeout [ 158.243953] Bluetooth: hci6: command tx timeout [ 159.586888] Bluetooth: hci0: command tx timeout [ 159.780958] Bluetooth: hci2: command tx timeout [ 159.781064] Bluetooth: hci1: command tx timeout [ 159.906968] Bluetooth: hci3: command tx timeout [ 160.099943] Bluetooth: hci4: command tx timeout [ 160.290937] Bluetooth: hci7: command tx timeout [ 160.290981] Bluetooth: hci6: command tx timeout [ 160.291072] Bluetooth: hci5: command tx timeout [ 161.634886] Bluetooth: hci0: command tx timeout [ 161.827938] Bluetooth: hci1: command tx timeout [ 161.828073] Bluetooth: hci2: command tx timeout [ 161.954989] Bluetooth: hci3: command tx timeout [ 162.146902] Bluetooth: hci4: command tx timeout [ 162.339116] Bluetooth: hci5: command tx timeout [ 162.339190] Bluetooth: hci7: command tx timeout [ 162.340304] Bluetooth: hci6: command tx timeout [ 163.684115] Bluetooth: hci0: command tx timeout [ 163.876834] Bluetooth: hci2: command tx timeout [ 163.876937] Bluetooth: hci1: command tx timeout [ 164.004842] Bluetooth: hci3: command tx timeout [ 164.194893] Bluetooth: hci4: command tx timeout [ 164.387056] Bluetooth: hci6: command tx timeout [ 164.387101] Bluetooth: hci5: command tx timeout [ 164.387718] Bluetooth: hci7: command tx timeout [ 214.321018] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.321146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.532572] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.532662] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.564333] [ 215.564587] ====================================================== [ 215.565189] WARNING: possible circular locking dependency detected [ 215.565753] 6.13.0-rc7-next-20250117 #1 Not tainted [ 215.566258] ------------------------------------------------------ [ 215.569219] kworker/u8:2/7320 is trying to acquire lock: [ 215.570372] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.572096] [ 215.572096] but task is already holding lock: [ 215.572665] ffff88803c2b8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.573621] [ 215.573621] which lock already depends on the new lock. [ 215.573621] [ 215.574401] [ 215.574401] the existing dependency chain (in reverse order) is: [ 215.575094] [ 215.575094] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 215.575753] __mutex_lock+0x13d/0xb50 [ 215.576302] wiphy_register+0x1b2e/0x25d0 [ 215.576820] ieee80211_register_hw+0x23a4/0x3d60 [ 215.577447] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 215.578127] init_mac80211_hwsim+0x389/0x870 [ 215.578752] do_one_initcall+0xf9/0x640 [ 215.579256] kernel_init_freeable+0x53d/0x7a0 [ 215.579785] kernel_init+0x1e/0x2d0 [ 215.580205] ret_from_fork+0x48/0x80 [ 215.580638] ret_from_fork_asm+0x1a/0x30 [ 215.581132] [ 215.581132] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 215.581764] __lock_acquire+0x29fd/0x4580 [ 215.582247] lock_acquire+0x19b/0x520 [ 215.582723] __mutex_lock+0x13d/0xb50 [ 215.583221] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.583984] unregister_netdevice_queue+0x224/0x2e0 [ 215.584607] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.585210] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.585838] ieee80211_unregister_hw+0x55/0x3a0 [ 215.586467] hwsim_exit_net+0x3a0/0x730 [ 215.586944] ops_exit_list+0xb3/0x180 [ 215.587379] cleanup_net+0x546/0xad0 [ 215.587815] process_one_work+0x8ee/0x1a10 [ 215.588319] worker_thread+0x674/0xe70 [ 215.588798] kthread+0x3ab/0x720 [ 215.589218] ret_from_fork+0x48/0x80 [ 215.589637] ret_from_fork_asm+0x1a/0x30 [ 215.590157] [ 215.590157] other info that might help us debug this: [ 215.590157] [ 215.590924] Possible unsafe locking scenario: [ 215.590924] [ 215.591477] CPU0 CPU1 [ 215.591934] ---- ---- [ 215.592346] lock(&rdev->wiphy.mtx); [ 215.592728] lock(rtnl_mutex); [ 215.593270] lock(&rdev->wiphy.mtx); [ 215.593878] lock(rtnl_mutex); [ 215.594241] [ 215.594241] *** DEADLOCK *** [ 215.594241] [ 215.594803] 4 locks held by kworker/u8:2/7320: [ 215.595238] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 215.596266] #1: ffff88803c257d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 215.597270] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 215.598264] #3: ffff88803c2b8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.599317] [ 215.599317] stack backtrace: [ 215.599776] CPU: 1 UID: 0 PID: 7320 Comm: kworker/u8:2 Not tainted 6.13.0-rc7-next-20250117 #1 [ 215.600601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 215.601420] Workqueue: netns cleanup_net [ 215.601855] Call Trace: [ 215.602127] [ 215.602356] dump_stack_lvl+0xca/0x120 [ 215.602796] print_circular_bug+0x47b/0x750 [ 215.603251] check_noncircular+0x2e9/0x3c0 [ 215.603673] ? srso_return_thunk+0x5/0x5f [ 215.604133] ? __pfx_check_noncircular+0x10/0x10 [ 215.604627] ? hlock_class+0x4e/0x130 [ 215.605033] ? mark_lock+0xac/0xed0 [ 215.605410] ? srso_return_thunk+0x5/0x5f [ 215.605881] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 215.606368] ? lockdep_lock+0xba/0x1b0 [ 215.606781] ? __pfx_lockdep_lock+0x10/0x10 [ 215.607277] __lock_acquire+0x29fd/0x4580 [ 215.607710] ? __pfx___lock_acquire+0x10/0x10 [ 215.608160] ? lock_release+0x20f/0x6f0 [ 215.608570] ? __pfx_lock_release+0x10/0x10 [ 215.609032] lock_acquire+0x19b/0x520 [ 215.609428] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.610001] ? __pfx_lock_acquire+0x10/0x10 [ 215.610475] ? srso_return_thunk+0x5/0x5f [ 215.610913] ? lock_release+0x20f/0x6f0 [ 215.611317] ? srso_return_thunk+0x5/0x5f [ 215.611788] ? lock_is_held_type+0x9e/0x120 [ 215.612254] ? srso_return_thunk+0x5/0x5f [ 215.612697] __mutex_lock+0x13d/0xb50 [ 215.613136] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.613740] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.614352] ? srso_return_thunk+0x5/0x5f [ 215.614849] ? synchronize_rcu_expedited+0x38a/0x420 [ 215.615370] ? __pfx___mutex_lock+0x10/0x10 [ 215.615843] ? __pfx_autoremove_wake_function+0x10/0x10 [ 215.616380] ? srso_return_thunk+0x5/0x5f [ 215.616812] ? kasan_quarantine_put+0x84/0x1e0 [ 215.617322] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 215.617776] ? srso_return_thunk+0x5/0x5f [ 215.618253] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.618847] ? __virt_addr_valid+0x2e8/0x5d0 [ 215.619322] ? __pfx_lock_release+0x10/0x10 [ 215.619753] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 215.620377] ? find_held_lock+0x2c/0x110 [ 215.620796] ? srso_return_thunk+0x5/0x5f [ 215.621241] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 215.621771] ? srso_return_thunk+0x5/0x5f [ 215.622238] ? lock_release+0x20f/0x6f0 [ 215.622650] ? __pfx_lock_release+0x10/0x10 [ 215.623127] ? srso_return_thunk+0x5/0x5f [ 215.623566] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.624101] ? srso_return_thunk+0x5/0x5f [ 215.624580] unregister_netdevice_queue+0x224/0x2e0 [ 215.625093] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 215.625658] ? up_write+0x195/0x520 [ 215.626092] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.626627] ? srso_return_thunk+0x5/0x5f [ 215.627100] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.627596] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 215.628167] ? srso_return_thunk+0x5/0x5f [ 215.628638] ? srso_return_thunk+0x5/0x5f [ 215.629109] ? synchronize_rcu+0x1ff/0x260 [ 215.629540] ieee80211_unregister_hw+0x55/0x3a0 [ 215.630051] hwsim_exit_net+0x3a0/0x730 [ 215.630472] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.630924] ? srso_return_thunk+0x5/0x5f [ 215.631328] ? netdev_run_todo+0x788/0x1040 [ 215.631754] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.632194] ops_exit_list+0xb3/0x180 [ 215.632558] cleanup_net+0x546/0xad0 [ 215.632956] ? __pfx_cleanup_net+0x10/0x10 [ 215.633368] process_one_work+0x8ee/0x1a10 [ 215.633869] ? __pfx_lock_acquire+0x10/0x10 [ 215.634321] ? __pfx_process_one_work+0x10/0x10 [ 215.634882] ? srso_return_thunk+0x5/0x5f [ 215.635344] ? move_linked_works+0x172/0x270 [ 215.635868] ? srso_return_thunk+0x5/0x5f [ 215.636352] ? assign_work+0x196/0x240 [ 215.636819] worker_thread+0x674/0xe70 [ 215.637277] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.637839] ? srso_return_thunk+0x5/0x5f [ 215.638335] ? __pfx_worker_thread+0x10/0x10 [ 215.638859] kthread+0x3ab/0x720 [ 215.639266] ? __pfx_kthread+0x10/0x10 [ 215.639717] ? srso_return_thunk+0x5/0x5f [ 215.640196] ? finish_task_switch.isra.0+0x206/0x840 [ 215.640755] ? __pfx_kthread+0x10/0x10 [ 215.641216] ret_from_fork+0x48/0x80 [ 215.641618] ? __pfx_kthread+0x10/0x10 [ 215.642070] ret_from_fork_asm+0x1a/0x30 [ 215.642566] [ 217.321285] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 217.321926] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 217.322510] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 217.324600] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 217.325969] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 217.326953] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.390421] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 217.393031] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 217.393601] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 217.400505] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 217.402520] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 217.403547] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 217.578190] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 217.579675] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.583168] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 217.594903] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 217.598912] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 217.599866] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 217.649378] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.650098] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.653394] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 217.666528] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 217.668156] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 217.674003] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.717103] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.718982] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.720489] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.731127] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.732856] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.733749] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 217.742126] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 217.746263] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 217.747960] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 217.750250] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 217.751168] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 217.751523] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.923375] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.943940] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.961890] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.967213] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.967563] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.971976] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.972584] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.973430] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.973751] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 218.033214] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 218.038016] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 218.038364] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 219.362863] Bluetooth: hci0: command tx timeout [ 219.427840] Bluetooth: hci1: command tx timeout [ 219.619900] Bluetooth: hci2: command tx timeout [ 219.746880] Bluetooth: hci3: command tx timeout [ 219.875830] Bluetooth: hci5: command tx timeout [ 219.875913] Bluetooth: hci4: command tx timeout [ 220.067930] Bluetooth: hci6: command tx timeout [ 220.195890] Bluetooth: hci7: command tx timeout [ 221.410805] Bluetooth: hci0: command tx timeout [ 221.474848] Bluetooth: hci1: command tx timeout [ 221.669803] Bluetooth: hci2: command tx timeout [ 221.796513] Bluetooth: hci3: command tx timeout [ 221.923924] Bluetooth: hci4: command tx timeout [ 221.923994] Bluetooth: hci5: command tx timeout [ 222.116016] Bluetooth: hci6: command tx timeout [ 222.243840] Bluetooth: hci7: command tx timeout [ 223.459920] Bluetooth: hci0: command tx timeout [ 223.525800] Bluetooth: hci1: command tx timeout [ 223.715925] Bluetooth: hci2: command tx timeout [ 223.843811] Bluetooth: hci3: command tx timeout [ 223.972008] Bluetooth: hci5: command tx timeout [ 223.972082] Bluetooth: hci4: command tx timeout [ 224.163866] Bluetooth: hci6: command tx timeout [ 224.292012] Bluetooth: hci7: command tx timeout [ 225.507942] Bluetooth: hci0: command tx timeout VM DIAGNOSIS: 09:47:39 Registers: info registers vcpu 0 RAX=ffff888035fd7000 RBX=ffffffff88618798 RCX=ffffffff81429a4a RDX=ffff88802d35f380 RSI=0000000000000001 RDI=ffff888031fe21d0 RBP=ffff888031fe21d0 RSP=ffff88800f55fda0 R8 =0000000000000000 R9 =ffffed100179cf80 R10=ffff88800bce7c07 R11=0000000000000001 R12=ffff88801aa17508 R13=ffffffff88618798 R14=ffff88800f550000 R15=0000000000000086 RIP=ffffffff81aeced0 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007effb362ac00 CR3=000000000c924000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=484da0403c91d3bcbf47ed1433b3c555 XMM02=00000000000fcc60f61f520134a0d9c2 XMM03=0000000000138bd0f9980df3bdc2dbad XMM04=ff1c105bcdae153900000000000ae988 XMM05=3cc027b654ebc5060000000000141de8 XMM06=9f165a4fe6c971ad0000000000138cd8 XMM07=711fbe8126c5d3440000000000138bd0 XMM08=ee7587d5db12e8e300000000000fcc60 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000028 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88803c256b28 R8 =0000000000000001 R9 =ffffed100784ad55 R10=0000000000000028 R11=6666666666666666 R12=0000000000000028 R13=0000000000000001 R14=ffff888008fea021 R15=ffff88803c256e28 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055d8e198db30 CR3=000000000ef80000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=000055d8e19cd1b0000055d8e19aefb0 XMM05=ff0100ff020202020000000600000000 XMM06=00000000006563697665642e35696368 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000