Warning: Permanently added '[localhost]:43173' (ECDSA) to the list of known hosts. 2025/01/17 17:56:47 fuzzer started 2025/01/17 17:56:48 dialing manager at localhost:44245 syzkaller login: [ 69.876456] cgroup: Unknown subsys name 'net' [ 69.973878] cgroup: Unknown subsys name 'cpuset' [ 69.993883] cgroup: Unknown subsys name 'rlimit' [ 75.354413] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 17:57:06 syscalls: 2217 2025/01/17 17:57:06 code coverage: enabled 2025/01/17 17:57:06 comparison tracing: enabled 2025/01/17 17:57:06 extra coverage: enabled 2025/01/17 17:57:06 setuid sandbox: enabled 2025/01/17 17:57:06 namespace sandbox: enabled 2025/01/17 17:57:06 Android sandbox: enabled 2025/01/17 17:57:06 fault injection: enabled 2025/01/17 17:57:06 leak checking: enabled 2025/01/17 17:57:06 net packet injection: enabled 2025/01/17 17:57:06 net device setup: enabled 2025/01/17 17:57:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 17:57:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 17:57:06 USB emulation: enabled 2025/01/17 17:57:06 hci packet injection: enabled 2025/01/17 17:57:06 wifi device emulation: enabled 2025/01/17 17:57:06 802.15.4 emulation: enabled 2025/01/17 17:57:06 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 17:57:06 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 17:57:09 starting 8 fuzzer processes 17:57:09 executing program 0: r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x401a012, r2, 0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x8, &(0x7f0000000140), 0x0) 17:57:09 executing program 1: syz_open_dev$vcsa(&(0x7f0000001d80), 0x0, 0x10440) 17:57:09 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) pwritev(r0, &(0x7f0000000380)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x7fffff8, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x44142, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) 17:57:09 executing program 3: clock_adjtime(0x0, &(0x7f0000000100)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0xffffffff98a8d5ef}) 17:57:09 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, &(0x7f0000000240)) [ 90.928649] audit: type=1400 audit(1737136629.502:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:57:09 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0x7, 0x0, 0x0) 17:57:09 executing program 6: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) rt_sigsuspend(0x0, 0x0) 17:57:09 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x27, 0x1, 0x0, 0x0, {{@in, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x4}}}, 0xb8}}, 0x0) sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0) [ 92.527480] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.533358] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.535502] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.538267] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.539855] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.541694] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.549052] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.552498] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.553800] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.556330] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.557220] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.565453] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.566622] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.571704] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.574508] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.585656] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.589849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.594732] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.596773] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.598742] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.600910] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.608642] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.624583] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.628170] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.642978] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.653382] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.656386] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.664873] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.667974] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.671764] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.672390] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.672698] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.679646] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.681563] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.687317] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.690470] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.692859] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.696613] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.704763] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.709733] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.712642] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.716442] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.719455] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.725230] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.732570] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.734627] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 92.745919] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.746713] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.658337] Bluetooth: hci0: command tx timeout [ 94.658337] Bluetooth: hci1: command tx timeout [ 94.722146] Bluetooth: hci2: command tx timeout [ 94.786167] Bluetooth: hci6: command tx timeout [ 94.786191] Bluetooth: hci4: command tx timeout [ 94.786326] Bluetooth: hci3: command tx timeout [ 94.787391] Bluetooth: hci7: command tx timeout [ 94.853096] Bluetooth: hci5: command tx timeout [ 96.706228] Bluetooth: hci1: command tx timeout [ 96.707156] Bluetooth: hci0: command tx timeout [ 96.771126] Bluetooth: hci2: command tx timeout [ 96.836259] Bluetooth: hci7: command tx timeout [ 96.836632] Bluetooth: hci3: command tx timeout [ 96.836719] Bluetooth: hci6: command tx timeout [ 96.836711] Bluetooth: hci4: command tx timeout [ 96.899162] Bluetooth: hci5: command tx timeout [ 98.755434] Bluetooth: hci0: command tx timeout [ 98.755561] Bluetooth: hci1: command tx timeout [ 98.820232] Bluetooth: hci2: command tx timeout [ 98.882775] Bluetooth: hci4: command tx timeout [ 98.882947] Bluetooth: hci3: command tx timeout [ 98.883575] Bluetooth: hci6: command tx timeout [ 98.883642] Bluetooth: hci7: command tx timeout [ 98.947286] Bluetooth: hci5: command tx timeout [ 100.802527] Bluetooth: hci0: command tx timeout [ 100.802684] Bluetooth: hci1: command tx timeout [ 100.866213] Bluetooth: hci2: command tx timeout [ 100.932148] Bluetooth: hci7: command tx timeout [ 100.932300] Bluetooth: hci6: command tx timeout [ 100.932385] Bluetooth: hci4: command tx timeout [ 100.932467] Bluetooth: hci3: command tx timeout [ 100.994181] Bluetooth: hci5: command tx timeout [ 154.572681] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.576426] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.579247] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.586547] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.592532] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.595919] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.897585] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.903431] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.905810] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.912515] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.918463] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.921648] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.961668] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.965709] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.967885] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.972242] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.975891] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.978537] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.984461] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.992434] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.997122] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 155.004165] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 155.020245] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 155.023808] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 155.040401] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 155.049765] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 155.057866] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 155.061459] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 155.063478] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 155.064219] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 155.071281] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 155.072003] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 155.072508] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.094822] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 155.120853] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 155.125827] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 155.126701] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 155.129493] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 155.130266] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 155.134264] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 155.138848] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 155.147288] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 155.147636] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 155.214421] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 155.214909] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 155.218684] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 155.260200] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 155.274509] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 156.674216] Bluetooth: hci0: command tx timeout [ 156.995174] Bluetooth: hci1: command tx timeout [ 157.058257] Bluetooth: hci3: command tx timeout [ 157.123451] Bluetooth: hci2: command tx timeout [ 157.187150] Bluetooth: hci4: command tx timeout [ 157.251264] Bluetooth: hci5: command tx timeout [ 157.380131] Bluetooth: hci7: command tx timeout [ 157.443382] Bluetooth: hci6: command tx timeout [ 158.722131] Bluetooth: hci0: command tx timeout [ 159.042479] Bluetooth: hci1: command tx timeout [ 159.106178] Bluetooth: hci3: command tx timeout [ 159.170243] Bluetooth: hci2: command tx timeout [ 159.234123] Bluetooth: hci4: command tx timeout [ 159.298354] Bluetooth: hci5: command tx timeout [ 159.427086] Bluetooth: hci7: command tx timeout [ 159.490148] Bluetooth: hci6: command tx timeout [ 160.770287] Bluetooth: hci0: command tx timeout [ 161.092202] Bluetooth: hci1: command tx timeout [ 161.156137] Bluetooth: hci3: command tx timeout [ 161.218185] Bluetooth: hci2: command tx timeout [ 161.282538] Bluetooth: hci4: command tx timeout [ 161.348120] Bluetooth: hci5: command tx timeout [ 161.474497] Bluetooth: hci7: command tx timeout [ 161.538122] Bluetooth: hci6: command tx timeout [ 162.819179] Bluetooth: hci0: command tx timeout [ 163.138136] Bluetooth: hci1: command tx timeout [ 163.202648] Bluetooth: hci3: command tx timeout [ 163.266236] Bluetooth: hci2: command tx timeout [ 163.330154] Bluetooth: hci4: command tx timeout [ 163.395127] Bluetooth: hci5: command tx timeout [ 163.523140] Bluetooth: hci7: command tx timeout [ 163.587573] Bluetooth: hci6: command tx timeout [ 213.374220] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.374340] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.054379] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.054552] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.422081] [ 215.422346] ====================================================== [ 215.422934] WARNING: possible circular locking dependency detected [ 215.423538] 6.13.0-rc7-next-20250117 #1 Not tainted [ 215.424018] ------------------------------------------------------ [ 215.427760] kworker/u8:2/6868 is trying to acquire lock: [ 215.428513] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.429504] [ 215.429504] but task is already holding lock: [ 215.430059] ffff888032158768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.431007] [ 215.431007] which lock already depends on the new lock. [ 215.431007] [ 215.431790] [ 215.431790] the existing dependency chain (in reverse order) is: [ 215.432486] [ 215.432486] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 215.433128] __mutex_lock+0x13d/0xb50 [ 215.433579] wiphy_register+0x1b2e/0x25d0 [ 215.434061] ieee80211_register_hw+0x23a4/0x3d60 [ 215.434584] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 215.435135] init_mac80211_hwsim+0x389/0x870 [ 215.435663] do_one_initcall+0xf9/0x640 [ 215.436136] kernel_init_freeable+0x53d/0x7a0 [ 215.436655] kernel_init+0x1e/0x2d0 [ 215.437067] ret_from_fork+0x48/0x80 [ 215.437491] ret_from_fork_asm+0x1a/0x30 [ 215.437964] [ 215.437964] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 215.438568] __lock_acquire+0x29fd/0x4580 [ 215.439044] lock_acquire+0x19b/0x520 [ 215.439484] __mutex_lock+0x13d/0xb50 [ 215.439931] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.440534] unregister_netdevice_queue+0x224/0x2e0 [ 215.441069] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.441624] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.442178] ieee80211_unregister_hw+0x55/0x3a0 [ 215.442692] hwsim_exit_net+0x3a0/0x730 [ 215.443141] ops_exit_list+0xb3/0x180 [ 215.443581] cleanup_net+0x546/0xad0 [ 215.444006] process_one_work+0x8ee/0x1a10 [ 215.444497] worker_thread+0x674/0xe70 [ 215.444967] kthread+0x3ab/0x720 [ 215.445380] ret_from_fork+0x48/0x80 [ 215.445797] ret_from_fork_asm+0x1a/0x30 [ 215.446272] [ 215.446272] other info that might help us debug this: [ 215.446272] [ 215.447021] Possible unsafe locking scenario: [ 215.447021] [ 215.447596] CPU0 CPU1 [ 215.448035] ---- ---- [ 215.448470] lock(&rdev->wiphy.mtx); [ 215.448863] lock(rtnl_mutex); [ 215.449419] lock(&rdev->wiphy.mtx); [ 215.450026] lock(rtnl_mutex); [ 215.450375] [ 215.450375] *** DEADLOCK *** [ 215.450375] [ 215.450938] 4 locks held by kworker/u8:2/6868: [ 215.451384] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 215.452432] #1: ffff888037827d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 215.453446] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 215.454342] #3: ffff888032158768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.455337] [ 215.455337] stack backtrace: [ 215.455796] CPU: 0 UID: 0 PID: 6868 Comm: kworker/u8:2 Not tainted 6.13.0-rc7-next-20250117 #1 [ 215.456597] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 215.457355] Workqueue: netns cleanup_net [ 215.457779] Call Trace: [ 215.458027] [ 215.458254] dump_stack_lvl+0xca/0x120 [ 215.458671] print_circular_bug+0x47b/0x750 [ 215.459107] check_noncircular+0x2e9/0x3c0 [ 215.459546] ? __pfx_check_noncircular+0x10/0x10 [ 215.460018] ? hlock_class+0x4e/0x130 [ 215.460390] ? mark_lock+0xac/0xed0 [ 215.460773] ? srso_return_thunk+0x5/0x5f [ 215.461206] ? sched_clock+0x37/0x60 [ 215.461604] ? lockdep_lock+0xba/0x1b0 [ 215.462012] ? __pfx_lockdep_lock+0x10/0x10 [ 215.462453] __lock_acquire+0x29fd/0x4580 [ 215.462891] ? __pfx___lock_acquire+0x10/0x10 [ 215.463335] ? lock_release+0x20f/0x6f0 [ 215.463756] ? __pfx_lock_release+0x10/0x10 [ 215.464190] lock_acquire+0x19b/0x520 [ 215.464584] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.465151] ? __pfx_lock_acquire+0x10/0x10 [ 215.465584] ? srso_return_thunk+0x5/0x5f [ 215.466025] ? lock_release+0x20f/0x6f0 [ 215.466436] ? srso_return_thunk+0x5/0x5f [ 215.466889] ? lock_is_held_type+0x9e/0x120 [ 215.467348] ? srso_return_thunk+0x5/0x5f [ 215.467808] __mutex_lock+0x13d/0xb50 [ 215.468215] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.468804] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.469382] ? srso_return_thunk+0x5/0x5f [ 215.469809] ? synchronize_rcu_expedited+0x38a/0x420 [ 215.470302] ? __pfx___mutex_lock+0x10/0x10 [ 215.470750] ? __pfx_autoremove_wake_function+0x10/0x10 [ 215.471274] ? srso_return_thunk+0x5/0x5f [ 215.471719] ? kasan_quarantine_put+0x84/0x1e0 [ 215.472188] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 215.472639] ? srso_return_thunk+0x5/0x5f [ 215.473072] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.473638] ? __virt_addr_valid+0x2e8/0x5d0 [ 215.474102] ? __pfx_lock_release+0x10/0x10 [ 215.474551] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 215.475148] ? find_held_lock+0x2c/0x110 [ 215.475612] ? srso_return_thunk+0x5/0x5f [ 215.476058] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 215.476564] ? srso_return_thunk+0x5/0x5f [ 215.476987] ? lock_release+0x20f/0x6f0 [ 215.477391] ? __pfx_lock_release+0x10/0x10 [ 215.477826] ? srso_return_thunk+0x5/0x5f [ 215.478255] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.478779] ? srso_return_thunk+0x5/0x5f [ 215.479208] unregister_netdevice_queue+0x224/0x2e0 [ 215.479722] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 215.480249] ? up_write+0x195/0x520 [ 215.480647] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.481140] ? srso_return_thunk+0x5/0x5f [ 215.481580] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.482076] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 215.482625] ? srso_return_thunk+0x5/0x5f [ 215.483063] ? srso_return_thunk+0x5/0x5f [ 215.483510] ? synchronize_rcu+0x1ff/0x260 [ 215.483936] ieee80211_unregister_hw+0x55/0x3a0 [ 215.484402] hwsim_exit_net+0x3a0/0x730 [ 215.484813] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.485260] ? srso_return_thunk+0x5/0x5f [ 215.485697] ? netdev_run_todo+0x788/0x1040 [ 215.486131] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.486590] ops_exit_list+0xb3/0x180 [ 215.486977] cleanup_net+0x546/0xad0 [ 215.487373] ? __pfx_cleanup_net+0x10/0x10 [ 215.487819] process_one_work+0x8ee/0x1a10 [ 215.488266] ? __pfx_lock_acquire+0x10/0x10 [ 215.488711] ? __pfx_process_one_work+0x10/0x10 [ 215.489190] ? srso_return_thunk+0x5/0x5f [ 215.489629] ? move_linked_works+0x172/0x270 [ 215.490076] ? srso_return_thunk+0x5/0x5f [ 215.490509] ? assign_work+0x196/0x240 [ 215.490918] worker_thread+0x674/0xe70 [ 215.491332] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.491869] ? srso_return_thunk+0x5/0x5f [ 215.492297] ? __pfx_worker_thread+0x10/0x10 [ 215.492758] kthread+0x3ab/0x720 [ 215.493120] ? __pfx_kthread+0x10/0x10 [ 215.493533] ? srso_return_thunk+0x5/0x5f [ 215.493960] ? finish_task_switch.isra.0+0x206/0x840 [ 215.494459] ? __pfx_kthread+0x10/0x10 [ 215.494868] ret_from_fork+0x48/0x80 [ 215.495237] ? __pfx_kthread+0x10/0x10 [ 215.495660] ret_from_fork_asm+0x1a/0x30 [ 215.496090] [ 217.161686] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 217.163418] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 217.164999] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 217.167820] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 217.169914] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 217.171617] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 217.231121] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 217.236155] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 217.240994] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 217.252144] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 217.258132] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 217.261535] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 217.298250] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 217.301291] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.303705] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 217.315334] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 217.319252] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 217.321210] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 217.369404] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.373383] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.383073] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 217.397390] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 217.400410] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 217.402546] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.565731] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.569542] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 217.575148] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 217.576131] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.579221] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 217.592730] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.592934] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.604332] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 217.608228] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.611690] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.614540] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.614693] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 217.623206] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.631259] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.636958] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.637421] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.641452] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.643507] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.647564] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 217.648997] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.650894] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.656641] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.661938] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.663879] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 219.203114] Bluetooth: hci0: command tx timeout [ 219.330103] Bluetooth: hci1: command tx timeout [ 219.394092] Bluetooth: hci2: command tx timeout [ 219.460059] Bluetooth: hci3: command tx timeout [ 219.714146] Bluetooth: hci5: command tx timeout [ 219.714933] Bluetooth: hci4: command tx timeout [ 219.778545] Bluetooth: hci6: command tx timeout [ 219.778640] Bluetooth: hci7: command tx timeout [ 221.252073] Bluetooth: hci0: command tx timeout [ 221.378146] Bluetooth: hci1: command tx timeout [ 221.442167] Bluetooth: hci2: command tx timeout [ 221.506107] Bluetooth: hci3: command tx timeout [ 221.762094] Bluetooth: hci5: command tx timeout [ 221.763130] Bluetooth: hci4: command tx timeout [ 221.826130] Bluetooth: hci7: command tx timeout [ 221.826201] Bluetooth: hci6: command tx timeout [ 223.298124] Bluetooth: hci0: command tx timeout [ 223.426170] Bluetooth: hci1: command tx timeout [ 223.491088] Bluetooth: hci2: command tx timeout [ 223.556055] Bluetooth: hci3: command tx timeout [ 223.812074] Bluetooth: hci4: command tx timeout [ 223.812125] Bluetooth: hci5: command tx timeout [ 223.874175] Bluetooth: hci7: command tx timeout [ 223.875246] Bluetooth: hci6: command tx timeout [ 225.346337] Bluetooth: hci0: command tx timeout VM DIAGNOSIS: 17:59:14 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff888037826bb8 R8 =0000000000000001 R9 =ffffed1006f04d67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea039 R15=ffff888037826eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000560f75b47310 CR3=000000000eed2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000ff000000ff00 XMM02=73656363757320676e69646e6553006d XMM03=65530073746e6576652e79726f6d656d XMM04=0000560f75b7dd800000560f75b7ace0 XMM05=ff000001000000010000000600000001 XMM06=697665642e31006563697665642e3369 XMM07=00000000000000000000000000000000 XMM08=4c4b4a4948474645444342417a797877 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=00000000688f9478 RBX=4000000000000000 RCX=0000000000000001 RDX=000000000000008d RSI=000000c00033dd90 RDI=0000000000000001 RBP=000000c00033dd80 RSP=000000c00033dd40 R8 =0012d65e9f677f00 R9 =00007f5a6551f000 R10=00007f5a6551f010 R11=00000000000635e8 R12=0000000000000002 R13=00007f5a654df108 R14=0000000000000004 R15=00000000000000fe RIP=00007f5a65523afd RFL=00000246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000000c00009c090 00000000 00000000 GS =0000 0000000000000000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1b2b5cf4a8 CR3=000000000dfaa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000003f3593adb9a49097 XMM01=000000c000308360000000c000308330 XMM02=000000c0000682d0000000c0003083c0 XMM03=000000c000068370000000c000068320 XMM04=000000c000148090000000c000148060 XMM05=000000c0001480f0000000c0001480c0 XMM06=000000c000148150000000c000148120 XMM07=000000c000147760000000c00008f4d0 XMM08=000000c0001484b0000000c000148480 XMM09=000000c000148510000000c0001484e0 XMM10=000000c000148540000000c00008f530 XMM11=000000c0001485a0000000c000148570 XMM12=000000c000148600000000c0001485d0 XMM13=000000c000148660000000c000148630 XMM14=000000c0001486c0000000c000148690 XMM15=000000c0000e9080000000c0001486f0