Warning: Permanently added '[localhost]:53996' (ECDSA) to the list of known hosts. 2025/01/18 13:08:21 fuzzer started 2025/01/18 13:08:21 dialing manager at localhost:44245 syzkaller login: [ 76.965542] cgroup: Unknown subsys name 'net' [ 77.059219] cgroup: Unknown subsys name 'cpuset' [ 77.091198] cgroup: Unknown subsys name 'rlimit' [ 83.947455] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 94.492880] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 13:08:40 syscalls: 2217 2025/01/18 13:08:40 code coverage: enabled 2025/01/18 13:08:40 comparison tracing: enabled 2025/01/18 13:08:40 extra coverage: enabled 2025/01/18 13:08:40 setuid sandbox: enabled 2025/01/18 13:08:40 namespace sandbox: enabled 2025/01/18 13:08:40 Android sandbox: enabled 2025/01/18 13:08:40 fault injection: enabled 2025/01/18 13:08:40 leak checking: enabled 2025/01/18 13:08:40 net packet injection: enabled 2025/01/18 13:08:40 net device setup: enabled 2025/01/18 13:08:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 13:08:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 13:08:40 USB emulation: enabled 2025/01/18 13:08:40 hci packet injection: enabled 2025/01/18 13:08:40 wifi device emulation: enabled 2025/01/18 13:08:40 802.15.4 emulation: enabled 2025/01/18 13:08:40 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 13:08:40 fetching corpus: 50, signal 24030/27127 (executing program) 2025/01/18 13:08:40 fetching corpus: 100, signal 37224/41145 (executing program) 2025/01/18 13:08:40 fetching corpus: 150, signal 45580/50202 (executing program) 2025/01/18 13:08:40 fetching corpus: 200, signal 51214/56490 (executing program) 2025/01/18 13:08:40 fetching corpus: 250, signal 55693/61464 (executing program) 2025/01/18 13:08:41 fetching corpus: 300, signal 61118/67062 (executing program) 2025/01/18 13:08:41 fetching corpus: 350, signal 64408/70736 (executing program) 2025/01/18 13:08:41 fetching corpus: 400, signal 67660/74230 (executing program) 2025/01/18 13:08:41 fetching corpus: 450, signal 72262/78719 (executing program) 2025/01/18 13:08:41 fetching corpus: 500, signal 74535/81178 (executing program) 2025/01/18 13:08:41 fetching corpus: 550, signal 77049/83743 (executing program) 2025/01/18 13:08:42 fetching corpus: 600, signal 78574/85466 (executing program) 2025/01/18 13:08:42 fetching corpus: 650, signal 81652/88299 (executing program) 2025/01/18 13:08:42 fetching corpus: 700, signal 83776/90307 (executing program) 2025/01/18 13:08:42 fetching corpus: 750, signal 86497/92617 (executing program) 2025/01/18 13:08:42 fetching corpus: 800, signal 88679/94470 (executing program) 2025/01/18 13:08:42 fetching corpus: 850, signal 89872/95561 (executing program) 2025/01/18 13:08:43 fetching corpus: 900, signal 91458/96911 (executing program) 2025/01/18 13:08:43 fetching corpus: 950, signal 93093/98213 (executing program) 2025/01/18 13:08:43 fetching corpus: 1000, signal 94595/99343 (executing program) 2025/01/18 13:08:43 fetching corpus: 1050, signal 95823/100257 (executing program) 2025/01/18 13:08:43 fetching corpus: 1100, signal 98500/101971 (executing program) 2025/01/18 13:08:43 fetching corpus: 1150, signal 99412/102627 (executing program) 2025/01/18 13:08:44 fetching corpus: 1200, signal 101115/103643 (executing program) 2025/01/18 13:08:44 fetching corpus: 1250, signal 104720/105674 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105792 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105825 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105856 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105888 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105926 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105960 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/105998 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106036 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106071 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106099 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106130 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106161 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106200 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106236 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106263 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106297 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106331 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106366 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106401 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106436 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106474 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106505 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106537 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106561 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106584 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106614 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106648 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:08:44 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:08:47 starting 8 fuzzer processes 13:08:47 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setgroups(0x1, &(0x7f0000002a40)=[0xffffffffffffffff]) 13:08:47 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000d3f4655fd4f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000012c00)) 13:08:47 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x26, &(0x7f00000001c0)={0x6}) 13:08:47 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000a00)=[{{&(0x7f0000000700)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000100)='wH', 0x2}], 0x1}}, {{&(0x7f0000000000)={0x3, 0x0, @remote}, 0x10, 0x0}}], 0x2, 0x0) [ 102.059149] audit: type=1400 audit(1737205727.283:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:08:47 executing program 4: r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$tcp_congestion(r0, &(0x7f0000000100)='cubic\x00', 0x6) vmsplice(r2, &(0x7f00000002c0)=[{&(0x7f0000000000)='C', 0x1}], 0x1, 0x0) splice(r1, 0x0, r0, 0x0, 0x3, 0x0) 13:08:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x5, &(0x7f0000000a80)=0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x401a012, r2, 0x0) io_submit(r0, 0x3, &(0x7f00000007c0)=[&(0x7f0000000200)={0xeffdffff, 0x8008, 0x10, 0x0, 0x4, 0xffffffffffffffff, &(0x7f00000001c0)}, 0x0, 0x0]) 13:08:47 executing program 6: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000001740)={0x18, 0x2, 0x1, 0x3, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x4, 0x2}]}, 0x18}}, 0x0) 13:08:47 executing program 7: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) pread64(r0, &(0x7f0000000100)=""/144, 0x90, 0x9) [ 103.413211] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 103.415103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 103.416704] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 103.424133] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 103.426437] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 103.427493] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 103.482973] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 103.487578] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 103.491632] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 103.503711] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 103.511124] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 103.513412] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 103.567292] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 103.578922] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 103.579675] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 103.583866] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 103.585917] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 103.587061] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 103.587895] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 103.596882] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 103.597708] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 103.599285] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 103.599733] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 103.601749] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 103.604676] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 103.607027] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 103.611612] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 103.612338] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 103.616742] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 103.618456] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 103.619769] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 103.632490] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 103.635087] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 103.637484] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 103.638271] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 103.644327] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 103.658859] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 103.660730] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 103.664494] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 103.666591] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 103.668975] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 103.671215] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 103.671699] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 103.671727] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 103.675687] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 103.675985] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 103.677138] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 103.679440] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 105.512345] Bluetooth: hci0: command tx timeout [ 105.575548] Bluetooth: hci1: command tx timeout [ 105.703646] Bluetooth: hci7: command tx timeout [ 105.767551] Bluetooth: hci3: command tx timeout [ 105.767647] Bluetooth: hci2: command tx timeout [ 105.768620] Bluetooth: hci4: command tx timeout [ 105.768857] Bluetooth: hci6: command tx timeout [ 105.769076] Bluetooth: hci5: command tx timeout [ 107.559501] Bluetooth: hci0: command tx timeout [ 107.623804] Bluetooth: hci1: command tx timeout [ 107.752429] Bluetooth: hci7: command tx timeout [ 107.815455] Bluetooth: hci2: command tx timeout [ 107.815689] Bluetooth: hci5: command tx timeout [ 107.815820] Bluetooth: hci6: command tx timeout [ 107.815923] Bluetooth: hci4: command tx timeout [ 107.816025] Bluetooth: hci3: command tx timeout [ 109.607518] Bluetooth: hci0: command tx timeout [ 109.671468] Bluetooth: hci1: command tx timeout [ 109.801414] Bluetooth: hci7: command tx timeout [ 109.863650] Bluetooth: hci2: command tx timeout [ 109.863746] Bluetooth: hci3: command tx timeout [ 109.863838] Bluetooth: hci4: command tx timeout [ 109.863903] Bluetooth: hci6: command tx timeout [ 109.863965] Bluetooth: hci5: command tx timeout [ 111.655527] Bluetooth: hci0: command tx timeout [ 111.719510] Bluetooth: hci1: command tx timeout [ 111.847485] Bluetooth: hci7: command tx timeout [ 111.911493] Bluetooth: hci5: command tx timeout [ 111.911656] Bluetooth: hci6: command tx timeout [ 111.911755] Bluetooth: hci4: command tx timeout [ 111.911854] Bluetooth: hci3: command tx timeout [ 111.911949] Bluetooth: hci2: command tx timeout [ 163.650779] [ 163.651033] ====================================================== [ 163.651626] WARNING: possible circular locking dependency detected [ 163.652215] 6.13.0-rc7-next-20250117 #1 Not tainted [ 163.652698] ------------------------------------------------------ [ 163.654145] kworker/u8:0/11 is trying to acquire lock: [ 163.655571] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.657981] [ 163.657981] but task is already holding lock: [ 163.659354] ffff888029908768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 163.661850] [ 163.661850] which lock already depends on the new lock. [ 163.661850] [ 163.663784] [ 163.663784] the existing dependency chain (in reverse order) is: [ 163.665611] [ 163.665611] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 163.666529] __mutex_lock+0x13d/0xb50 [ 163.667157] wiphy_register+0x1b2e/0x25d0 [ 163.667834] ieee80211_register_hw+0x23a4/0x3d60 [ 163.668563] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 163.669330] init_mac80211_hwsim+0x389/0x870 [ 163.670060] do_one_initcall+0xf9/0x640 [ 163.670725] kernel_init_freeable+0x53d/0x7a0 [ 163.671451] kernel_init+0x1e/0x2d0 [ 163.672029] ret_from_fork+0x48/0x80 [ 163.672632] ret_from_fork_asm+0x1a/0x30 [ 163.673299] [ 163.673299] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 163.674146] __lock_acquire+0x29fd/0x4580 [ 163.674819] lock_acquire+0x19b/0x520 [ 163.675433] __mutex_lock+0x13d/0xb50 [ 163.676061] unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.676904] unregister_netdevice_queue+0x224/0x2e0 [ 163.677658] _cfg80211_unregister_wdev+0x57b/0x700 [ 163.678431] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 163.679187] ieee80211_unregister_hw+0x55/0x3a0 [ 163.679902] hwsim_exit_net+0x3a0/0x730 [ 163.680547] ops_exit_list+0xb3/0x180 [ 163.681156] cleanup_net+0x546/0xad0 [ 163.681761] process_one_work+0x8ee/0x1a10 [ 163.682463] worker_thread+0x674/0xe70 [ 163.683123] kthread+0x3ab/0x720 [ 163.683700] ret_from_fork+0x48/0x80 [ 163.684290] ret_from_fork_asm+0x1a/0x30 [ 163.684959] [ 163.684959] other info that might help us debug this: [ 163.684959] [ 163.685994] Possible unsafe locking scenario: [ 163.685994] [ 163.686778] CPU0 CPU1 [ 163.687390] ---- ---- [ 163.688001] lock(&rdev->wiphy.mtx); [ 163.688554] lock(rtnl_mutex); [ 163.689352] lock(&rdev->wiphy.mtx); [ 163.690204] lock(rtnl_mutex); [ 163.690700] [ 163.690700] *** DEADLOCK *** [ 163.690700] [ 163.691472] 4 locks held by kworker/u8:0/11: [ 163.692072] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 163.693461] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 163.694804] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 163.696047] #3: ffff888029908768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 163.697442] [ 163.697442] stack backtrace: [ 163.698034] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 163.699130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 163.700188] Workqueue: netns cleanup_net [ 163.700752] Call Trace: [ 163.701097] [ 163.701409] dump_stack_lvl+0xca/0x120 [ 163.701976] print_circular_bug+0x47b/0x750 [ 163.702586] check_noncircular+0x2e9/0x3c0 [ 163.703028] ? lock_repin_lock+0x207/0x320 [ 163.703472] ? __pfx_check_noncircular+0x10/0x10 [ 163.703944] ? hlock_class+0x4e/0x130 [ 163.704324] ? mark_lock+0xac/0xed0 [ 163.704701] ? __pfx_lock_repin_lock+0x10/0x10 [ 163.705186] ? lockdep_lock+0xba/0x1b0 [ 163.705605] ? __pfx_lockdep_lock+0x10/0x10 [ 163.706063] __lock_acquire+0x29fd/0x4580 [ 163.706504] ? __pfx___lock_acquire+0x10/0x10 [ 163.706974] ? lock_release+0x20f/0x6f0 [ 163.707388] ? __pfx_lock_release+0x10/0x10 [ 163.707832] lock_acquire+0x19b/0x520 [ 163.708224] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.708800] ? __pfx_lock_acquire+0x10/0x10 [ 163.709238] ? srso_return_thunk+0x5/0x5f [ 163.709675] ? lock_release+0x20f/0x6f0 [ 163.710085] ? srso_return_thunk+0x5/0x5f [ 163.710530] ? lock_is_held_type+0x9e/0x120 [ 163.710988] ? srso_return_thunk+0x5/0x5f [ 163.711431] __mutex_lock+0x13d/0xb50 [ 163.711835] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.712410] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.712996] ? srso_return_thunk+0x5/0x5f [ 163.713433] ? synchronize_rcu_expedited+0x38a/0x420 [ 163.713944] ? __pfx___mutex_lock+0x10/0x10 [ 163.714397] ? __pfx_autoremove_wake_function+0x10/0x10 [ 163.714929] ? srso_return_thunk+0x5/0x5f [ 163.715356] ? kasan_quarantine_put+0x84/0x1e0 [ 163.715824] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 163.716273] ? srso_return_thunk+0x5/0x5f [ 163.716704] unregister_netdevice_many_notify+0x1612/0x1c80 [ 163.717256] ? __virt_addr_valid+0x2e8/0x5d0 [ 163.717718] ? __pfx_lock_release+0x10/0x10 [ 163.718161] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 163.718761] ? find_held_lock+0x2c/0x110 [ 163.719194] ? srso_return_thunk+0x5/0x5f [ 163.719634] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 163.720146] ? srso_return_thunk+0x5/0x5f [ 163.720584] ? lock_release+0x20f/0x6f0 [ 163.720993] ? __pfx_lock_release+0x10/0x10 [ 163.721434] ? srso_return_thunk+0x5/0x5f [ 163.721873] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 163.722406] ? srso_return_thunk+0x5/0x5f [ 163.722845] unregister_netdevice_queue+0x224/0x2e0 [ 163.723343] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 163.723884] ? up_write+0x195/0x520 [ 163.724276] _cfg80211_unregister_wdev+0x57b/0x700 [ 163.724774] ? srso_return_thunk+0x5/0x5f [ 163.725210] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 163.725710] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 163.726257] ? srso_return_thunk+0x5/0x5f [ 163.726705] ? srso_return_thunk+0x5/0x5f [ 163.727139] ? synchronize_rcu+0x1ff/0x260 [ 163.727566] ieee80211_unregister_hw+0x55/0x3a0 [ 163.728038] hwsim_exit_net+0x3a0/0x730 [ 163.728442] ? __pfx_hwsim_exit_net+0x10/0x10 [ 163.728892] ? srso_return_thunk+0x5/0x5f [ 163.729326] ? netdev_run_todo+0x788/0x1040 [ 163.729777] ? srso_return_thunk+0x5/0x5f [ 163.730216] ? __pfx_hwsim_exit_net+0x10/0x10 [ 163.730681] ops_exit_list+0xb3/0x180 [ 163.731073] cleanup_net+0x546/0xad0 [ 163.731465] ? __pfx_cleanup_net+0x10/0x10 [ 163.731906] process_one_work+0x8ee/0x1a10 [ 163.732360] ? __pfx_lock_acquire+0x10/0x10 [ 163.732794] ? __pfx_process_one_work+0x10/0x10 [ 163.733277] ? srso_return_thunk+0x5/0x5f [ 163.733711] ? move_linked_works+0x172/0x270 [ 163.734162] ? srso_return_thunk+0x5/0x5f [ 163.734605] ? assign_work+0x196/0x240 [ 163.735020] worker_thread+0x674/0xe70 [ 163.735438] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 163.735970] ? __pfx_worker_thread+0x10/0x10 [ 163.736429] kthread+0x3ab/0x720 [ 163.736795] ? __pfx_kthread+0x10/0x10 [ 163.737205] ? srso_return_thunk+0x5/0x5f [ 163.737638] ? finish_task_switch.isra.0+0x206/0x840 [ 163.738156] ? __pfx_kthread+0x10/0x10 [ 163.738568] ret_from_fork+0x48/0x80 [ 163.738937] ? __pfx_kthread+0x10/0x10 [ 163.739339] ret_from_fork_asm+0x1a/0x30 [ 163.739778] [ 164.352055] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 165.745828] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 165.748733] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 165.750666] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 165.753229] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 165.758814] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 165.760178] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 165.939018] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 165.944011] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 165.947001] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 165.947735] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 165.952668] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 165.953685] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 165.955587] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 165.957238] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 165.958125] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 165.959381] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 165.966009] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 165.976160] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 166.009991] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 166.016626] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 166.016891] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 166.017778] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 166.025663] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 166.029682] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 166.030131] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 166.031986] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 166.037141] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 166.039074] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 166.040166] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 166.040808] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 166.048455] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 166.050053] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 166.053011] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 166.057636] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 166.058285] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 166.060598] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 166.062482] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 166.064092] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 166.064791] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 166.065025] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 166.065465] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 166.072445] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 166.076663] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 166.086570] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 166.100460] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 166.124476] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 166.131904] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 166.132856] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 167.784016] Bluetooth: hci0: command tx timeout [ 167.977474] Bluetooth: hci2: command tx timeout [ 168.039482] Bluetooth: hci1: command tx timeout [ 168.103475] Bluetooth: hci5: command tx timeout [ 168.167594] Bluetooth: hci4: command tx timeout [ 168.168779] Bluetooth: hci6: command tx timeout [ 168.168870] Bluetooth: hci3: command tx timeout [ 168.168951] Bluetooth: hci7: command tx timeout [ 169.832442] Bluetooth: hci0: command tx timeout [ 170.024466] Bluetooth: hci2: command tx timeout [ 170.088420] Bluetooth: hci1: command tx timeout [ 170.152485] Bluetooth: hci5: command tx timeout [ 170.216604] Bluetooth: hci7: command tx timeout [ 170.216644] Bluetooth: hci3: command tx timeout [ 170.216870] Bluetooth: hci6: command tx timeout [ 170.217023] Bluetooth: hci4: command tx timeout [ 171.880667] Bluetooth: hci0: command tx timeout [ 172.071455] Bluetooth: hci2: command tx timeout [ 172.136763] Bluetooth: hci1: command tx timeout [ 172.199541] Bluetooth: hci5: command tx timeout [ 172.263564] Bluetooth: hci3: command tx timeout [ 172.264805] Bluetooth: hci6: command tx timeout [ 172.265442] Bluetooth: hci7: command tx timeout [ 172.265513] Bluetooth: hci4: command tx timeout VM DIAGNOSIS: 13:09:49 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff888016a75f70 RCX=ffffffff81429a4a RDX=1ffff11001907a80 RSI=0000000000000008 RDI=ffff88800c83d400 RBP=ffff888016a75f60 RSP=ffff88800f49fdd0 R8 =0000000000000000 R9 =ffffed1001907a80 R10=ffff88800c83d407 R11=0000000000000532 R12=ffff888016a76239 R13=ffff88800f216cb8 R14=ffff88800c88d340 R15=0000000000000082 RIP=ffffffff81aede14 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7bad618008 CR3=000000000d25c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004177f0bc00000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095debb8 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000065 R11=7369786520656874 R12=0000000000000065 R13=0000000000000001 R14=ffff888008fea02e R15=ffff8880095deeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe6c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000c0002fb000 CR3=000000000d25c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=000000000000000040ce700000000000 XMM03=000000c0001b9000000000c0001c3000 XMM04=000000c000133ef0000000c000133ec0 XMM05=000000c000133f50000000c000133f20 XMM06=000000c000133f80000000c00008f4a0 XMM07=000000c000146c60000000c000133fb0 XMM08=000000c000148180000000c00008f4d0 XMM09=000000c0001481e0000000c0001481b0 XMM10=000000c000148240000000c000148210 XMM11=000000c0001482a0000000c000148270 XMM12=000000c000148300000000c0001482d0 XMM13=000000c00008f500000000c000148330 XMM14=000000c000148390000000c000148360 XMM15=000000c00014a9a0000000c0001483c0