Warning: Permanently added '[localhost]:10729' (ECDSA) to the list of known hosts. 2025/01/18 13:44:23 fuzzer started 2025/01/18 13:44:24 dialing manager at localhost:44245 syzkaller login: [ 67.285302] cgroup: Unknown subsys name 'net' [ 67.394474] cgroup: Unknown subsys name 'cpuset' [ 67.421723] cgroup: Unknown subsys name 'rlimit' [ 73.182893] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 83.123837] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 13:44:40 syscalls: 2217 2025/01/18 13:44:40 code coverage: enabled 2025/01/18 13:44:40 comparison tracing: enabled 2025/01/18 13:44:40 extra coverage: enabled 2025/01/18 13:44:40 setuid sandbox: enabled 2025/01/18 13:44:40 namespace sandbox: enabled 2025/01/18 13:44:40 Android sandbox: enabled 2025/01/18 13:44:40 fault injection: enabled 2025/01/18 13:44:40 leak checking: enabled 2025/01/18 13:44:40 net packet injection: enabled 2025/01/18 13:44:40 net device setup: enabled 2025/01/18 13:44:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 13:44:40 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 13:44:40 USB emulation: enabled 2025/01/18 13:44:40 hci packet injection: enabled 2025/01/18 13:44:40 wifi device emulation: enabled 2025/01/18 13:44:40 802.15.4 emulation: enabled 2025/01/18 13:44:40 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 13:44:40 fetching corpus: 50, signal 28061/31053 (executing program) 2025/01/18 13:44:41 fetching corpus: 100, signal 36923/40851 (executing program) 2025/01/18 13:44:41 fetching corpus: 150, signal 43782/48532 (executing program) 2025/01/18 13:44:41 fetching corpus: 200, signal 51905/57069 (executing program) 2025/01/18 13:44:41 fetching corpus: 250, signal 56537/62238 (executing program) 2025/01/18 13:44:41 fetching corpus: 300, signal 60355/66488 (executing program) 2025/01/18 13:44:41 fetching corpus: 350, signal 62859/69491 (executing program) 2025/01/18 13:44:42 fetching corpus: 400, signal 67106/73863 (executing program) 2025/01/18 13:44:42 fetching corpus: 450, signal 70921/77700 (executing program) 2025/01/18 13:44:42 fetching corpus: 500, signal 74539/81176 (executing program) 2025/01/18 13:44:42 fetching corpus: 550, signal 77242/83898 (executing program) 2025/01/18 13:44:42 fetching corpus: 600, signal 78864/85665 (executing program) 2025/01/18 13:44:43 fetching corpus: 650, signal 80762/87579 (executing program) 2025/01/18 13:44:43 fetching corpus: 700, signal 82801/89535 (executing program) 2025/01/18 13:44:43 fetching corpus: 750, signal 84604/91237 (executing program) 2025/01/18 13:44:43 fetching corpus: 800, signal 86123/92622 (executing program) 2025/01/18 13:44:43 fetching corpus: 850, signal 89619/95340 (executing program) 2025/01/18 13:44:43 fetching corpus: 900, signal 90716/96379 (executing program) 2025/01/18 13:44:43 fetching corpus: 950, signal 92828/97935 (executing program) 2025/01/18 13:44:44 fetching corpus: 1000, signal 97396/101000 (executing program) 2025/01/18 13:44:44 fetching corpus: 1050, signal 98311/101751 (executing program) 2025/01/18 13:44:44 fetching corpus: 1100, signal 100692/103264 (executing program) 2025/01/18 13:44:44 fetching corpus: 1150, signal 102092/104134 (executing program) 2025/01/18 13:44:44 fetching corpus: 1200, signal 103181/104785 (executing program) 2025/01/18 13:44:44 fetching corpus: 1250, signal 104572/105593 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105798 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105825 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105858 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105884 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105911 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105951 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/105977 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106016 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106049 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106095 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106131 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106161 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106183 (executing program) 2025/01/18 13:44:44 fetching corpus: 1264, signal 104923/106212 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106252 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106286 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106316 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106343 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106363 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106409 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106450 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106486 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106516 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106542 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106576 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106615 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106651 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:44:45 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:44:48 starting 8 fuzzer processes 13:44:48 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed}, 0x8) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000180), 0x4) 13:44:48 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r0, &(0x7f00000000c0)='9', 0x1, 0x8040000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) copy_file_range(r0, &(0x7f0000000000), r1, &(0x7f0000000080)=0x9, 0x1, 0x0) 13:44:48 executing program 1: perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1f, 0x2}, 0x28d4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x4) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x2) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000002c0)={@dev, 0x0, 0x0, 0xff, 0x9}, 0x20) dup3(r0, r1, 0x0) 13:44:48 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$binfmt_aout(r2, &(0x7f0000000040), 0x20) splice(r1, 0x0, r0, 0x0, 0x4, 0x0) 13:44:48 executing program 4: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) ioctl$CDROMREADMODE2(r0, 0x5319, 0x0) 13:44:48 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_int(r0, 0x11, 0xb, &(0x7f0000000280), 0x4) [ 90.987510] audit: type=1400 audit(1737207888.206:7): avc: denied { execmem } for pid=275 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:44:48 executing program 7: sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x1) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fork() 13:44:48 executing program 6: prlimit64(0x0, 0x7, &(0x7f0000000080)={0x4, 0xff22}, 0x0) pipe2(0x0, 0x0) [ 92.392703] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.397493] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.400129] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.406492] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.410067] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.413471] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.450538] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.456245] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.457162] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.457421] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.463384] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.466242] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.468197] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.468401] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.469410] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.470923] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.473760] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.477735] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.478303] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.482684] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.483238] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.488972] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.489946] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.493467] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.494209] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.506363] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.514912] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.514990] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.523133] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.531822] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.532261] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.532249] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.537064] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.537944] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.542534] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.543520] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.559950] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.566427] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.566866] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.570306] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.572170] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.575068] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 92.578373] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.586250] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.587911] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.615974] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.616915] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.617306] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 94.479919] Bluetooth: hci0: command tx timeout [ 94.542831] Bluetooth: hci2: command tx timeout [ 94.606974] Bluetooth: hci4: command tx timeout [ 94.607012] Bluetooth: hci3: command tx timeout [ 94.607280] Bluetooth: hci1: command tx timeout [ 94.670821] Bluetooth: hci7: command tx timeout [ 94.671157] Bluetooth: hci5: command tx timeout [ 94.671325] Bluetooth: hci6: command tx timeout [ 96.527858] Bluetooth: hci0: command tx timeout [ 96.591739] Bluetooth: hci2: command tx timeout [ 96.656661] Bluetooth: hci3: command tx timeout [ 96.656756] Bluetooth: hci1: command tx timeout [ 96.656925] Bluetooth: hci4: command tx timeout [ 96.718739] Bluetooth: hci6: command tx timeout [ 96.719084] Bluetooth: hci5: command tx timeout [ 96.719448] Bluetooth: hci7: command tx timeout [ 98.575715] Bluetooth: hci0: command tx timeout [ 98.639636] Bluetooth: hci2: command tx timeout [ 98.702739] Bluetooth: hci4: command tx timeout [ 98.703299] Bluetooth: hci3: command tx timeout [ 98.703391] Bluetooth: hci1: command tx timeout [ 98.766712] Bluetooth: hci7: command tx timeout [ 98.766810] Bluetooth: hci5: command tx timeout [ 98.767830] Bluetooth: hci6: command tx timeout [ 100.622910] Bluetooth: hci0: command tx timeout [ 100.686752] Bluetooth: hci2: command tx timeout [ 100.750724] Bluetooth: hci3: command tx timeout [ 100.750836] Bluetooth: hci1: command tx timeout [ 100.750890] Bluetooth: hci4: command tx timeout [ 100.814703] Bluetooth: hci6: command tx timeout [ 100.814796] Bluetooth: hci7: command tx timeout [ 100.814888] Bluetooth: hci5: command tx timeout [ 154.779533] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.782680] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.783878] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.788644] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.790769] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.792197] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.868778] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.870760] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.874198] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.875880] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.877912] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.878774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.880210] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.880937] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.884028] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.885059] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.892843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.910820] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.911195] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 154.911544] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.914884] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.915396] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.917287] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.921973] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.924925] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 154.930191] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.933159] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.935155] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.937094] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.938384] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.939652] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.942101] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 154.954427] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 154.957128] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 154.957769] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.964856] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.995859] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 155.003848] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 155.029210] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 155.044006] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 155.048032] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 155.059954] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 155.075390] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 155.076797] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 155.088885] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 155.096472] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 155.096898] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 155.099534] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.879798] Bluetooth: hci0: command tx timeout [ 157.006993] Bluetooth: hci4: command tx timeout [ 157.007383] Bluetooth: hci1: command tx timeout [ 157.007551] Bluetooth: hci5: command tx timeout [ 157.070779] Bluetooth: hci3: command tx timeout [ 157.071169] Bluetooth: hci2: command tx timeout [ 157.198823] Bluetooth: hci7: command tx timeout [ 157.199279] Bluetooth: hci6: command tx timeout [ 158.928614] Bluetooth: hci0: command tx timeout [ 159.055716] Bluetooth: hci5: command tx timeout [ 159.055810] Bluetooth: hci1: command tx timeout [ 159.055862] Bluetooth: hci4: command tx timeout [ 159.119682] Bluetooth: hci2: command tx timeout [ 159.119779] Bluetooth: hci3: command tx timeout [ 159.246826] Bluetooth: hci6: command tx timeout [ 159.246996] Bluetooth: hci7: command tx timeout [ 160.975646] Bluetooth: hci0: command tx timeout [ 161.102679] Bluetooth: hci4: command tx timeout [ 161.102788] Bluetooth: hci1: command tx timeout [ 161.102884] Bluetooth: hci5: command tx timeout [ 161.166698] Bluetooth: hci3: command tx timeout [ 161.166799] Bluetooth: hci2: command tx timeout [ 161.294947] Bluetooth: hci6: command tx timeout [ 161.295074] Bluetooth: hci7: command tx timeout [ 163.023785] Bluetooth: hci0: command tx timeout [ 163.150785] Bluetooth: hci4: command tx timeout [ 163.150980] Bluetooth: hci5: command tx timeout [ 163.151058] Bluetooth: hci1: command tx timeout [ 163.214995] Bluetooth: hci3: command tx timeout [ 163.215541] Bluetooth: hci2: command tx timeout [ 163.342840] Bluetooth: hci7: command tx timeout [ 163.342981] Bluetooth: hci6: command tx timeout [ 215.412150] [ 215.412628] ====================================================== [ 215.413757] WARNING: possible circular locking dependency detected [ 215.414856] 6.13.0-rc7-next-20250117 #1 Not tainted [ 215.415759] ------------------------------------------------------ [ 215.416893] kworker/u8:0/11 is trying to acquire lock: [ 215.417854] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.419725] [ 215.419725] but task is already holding lock: [ 215.424651] ffff88803a460768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.426507] [ 215.426507] which lock already depends on the new lock. [ 215.426507] [ 215.427988] [ 215.427988] the existing dependency chain (in reverse order) is: [ 215.429367] [ 215.429367] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 215.430632] __mutex_lock+0x13d/0xb50 [ 215.431507] wiphy_register+0x1b2e/0x25d0 [ 215.432448] ieee80211_register_hw+0x23a4/0x3d60 [ 215.433459] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 215.434525] init_mac80211_hwsim+0x389/0x870 [ 215.435513] do_one_initcall+0xf9/0x640 [ 215.436436] kernel_init_freeable+0x53d/0x7a0 [ 215.437432] kernel_init+0x1e/0x2d0 [ 215.438238] ret_from_fork+0x48/0x80 [ 215.439050] ret_from_fork_asm+0x1a/0x30 [ 215.439979] [ 215.439979] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 215.441166] __lock_acquire+0x29fd/0x4580 [ 215.442096] lock_acquire+0x19b/0x520 [ 215.442962] __mutex_lock+0x13d/0xb50 [ 215.443841] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.445049] unregister_netdevice_queue+0x224/0x2e0 [ 215.446114] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.447187] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.448247] ieee80211_unregister_hw+0x55/0x3a0 [ 215.449261] hwsim_exit_net+0x3a0/0x730 [ 215.450157] ops_exit_list+0xb3/0x180 [ 215.451006] cleanup_net+0x546/0xad0 [ 215.451850] process_one_work+0x8ee/0x1a10 [ 215.452834] worker_thread+0x674/0xe70 [ 215.453749] kthread+0x3ab/0x720 [ 215.454563] ret_from_fork+0x48/0x80 [ 215.455390] ret_from_fork_asm+0x1a/0x30 [ 215.456325] [ 215.456325] other info that might help us debug this: [ 215.456325] [ 215.457730] Possible unsafe locking scenario: [ 215.457730] [ 215.458836] CPU0 CPU1 [ 215.459721] ---- ---- [ 215.460608] lock(&rdev->wiphy.mtx); [ 215.461402] lock(rtnl_mutex); [ 215.462542] lock(&rdev->wiphy.mtx); [ 215.463704] lock(rtnl_mutex); [ 215.464389] [ 215.464389] *** DEADLOCK *** [ 215.464389] [ 215.465468] 4 locks held by kworker/u8:0/11: [ 215.466312] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 215.468253] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 215.470101] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 215.471835] #3: ffff88803a460768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.473881] [ 215.473881] stack backtrace: [ 215.474711] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 215.476247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 215.477765] Workqueue: netns cleanup_net [ 215.478602] Call Trace: [ 215.479088] [ 215.479516] dump_stack_lvl+0xca/0x120 [ 215.480309] print_circular_bug+0x47b/0x750 [ 215.481129] check_noncircular+0x2e9/0x3c0 [ 215.481967] ? __pfx_check_noncircular+0x10/0x10 [ 215.482873] ? hlock_class+0x4e/0x130 [ 215.483607] ? srso_return_thunk+0x5/0x5f [ 215.484443] ? mark_lock+0xac/0xed0 [ 215.485188] ? lockdep_lock+0xba/0x1b0 [ 215.485998] ? __pfx_lockdep_lock+0x10/0x10 [ 215.486891] __lock_acquire+0x29fd/0x4580 [ 215.487738] ? __pfx___lock_acquire+0x10/0x10 [ 215.488631] ? lock_release+0x20f/0x6f0 [ 215.489430] ? __pfx_lock_release+0x10/0x10 [ 215.490260] ? srso_return_thunk+0x5/0x5f [ 215.491528] lock_acquire+0x19b/0x520 [ 215.492758] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.494045] ? __pfx_lock_acquire+0x10/0x10 [ 215.495031] ? srso_return_thunk+0x5/0x5f [ 215.495994] ? lock_is_held_type+0x9e/0x120 [ 215.497007] ? srso_return_thunk+0x5/0x5f [ 215.497982] __mutex_lock+0x13d/0xb50 [ 215.498877] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.500168] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.501581] ? srso_return_thunk+0x5/0x5f [ 215.502681] ? synchronize_rcu_expedited+0x38a/0x420 [ 215.503811] ? __pfx___mutex_lock+0x10/0x10 [ 215.504787] ? srso_return_thunk+0x5/0x5f [ 215.505705] ? srso_return_thunk+0x5/0x5f [ 215.506650] ? kasan_quarantine_put+0x84/0x1e0 [ 215.508324] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 215.509332] ? srso_return_thunk+0x5/0x5f [ 215.510321] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.511542] ? __virt_addr_valid+0x2e8/0x5d0 [ 215.512565] ? __pfx_lock_release+0x10/0x10 [ 215.513534] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 215.514812] ? find_held_lock+0x2c/0x110 [ 215.515655] ? srso_return_thunk+0x5/0x5f [ 215.516504] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 215.517437] ? srso_return_thunk+0x5/0x5f [ 215.518239] ? lock_release+0x20f/0x6f0 [ 215.519023] ? __pfx_lock_release+0x10/0x10 [ 215.519862] ? srso_return_thunk+0x5/0x5f [ 215.520705] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.521712] ? srso_return_thunk+0x5/0x5f [ 215.522549] unregister_netdevice_queue+0x224/0x2e0 [ 215.523502] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 215.524546] ? up_write+0x195/0x520 [ 215.525300] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.526265] ? srso_return_thunk+0x5/0x5f [ 215.527102] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.528056] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 215.529108] ? srso_return_thunk+0x5/0x5f [ 215.529947] ? srso_return_thunk+0x5/0x5f [ 215.530777] ? synchronize_rcu+0x1ff/0x260 [ 215.531595] ieee80211_unregister_hw+0x55/0x3a0 [ 215.532504] hwsim_exit_net+0x3a0/0x730 [ 215.533292] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.534158] ? srso_return_thunk+0x5/0x5f [ 215.534998] ? netdev_run_todo+0x788/0x1040 [ 215.535855] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.536736] ops_exit_list+0xb3/0x180 [ 215.537482] cleanup_net+0x546/0xad0 [ 215.538220] ? __pfx_cleanup_net+0x10/0x10 [ 215.539059] process_one_work+0x8ee/0x1a10 [ 215.539938] ? __pfx_lock_acquire+0x10/0x10 [ 215.540794] ? __pfx_process_one_work+0x10/0x10 [ 215.541726] ? srso_return_thunk+0x5/0x5f [ 215.542557] ? move_linked_works+0x172/0x270 [ 215.543414] ? srso_return_thunk+0x5/0x5f [ 215.544259] ? assign_work+0x196/0x240 [ 215.545064] worker_thread+0x674/0xe70 [ 215.545859] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.546879] ? __pfx_worker_thread+0x10/0x10 [ 215.547769] kthread+0x3ab/0x720 [ 215.548494] ? __pfx_kthread+0x10/0x10 [ 215.549291] ? srso_return_thunk+0x5/0x5f [ 215.550123] ? finish_task_switch.isra.0+0x206/0x840 [ 215.551114] ? __pfx_kthread+0x10/0x10 [ 215.551899] ret_from_fork+0x48/0x80 [ 215.552651] ? __pfx_kthread+0x10/0x10 [ 215.553451] ret_from_fork_asm+0x1a/0x30 [ 215.554304] [ 216.727722] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.730433] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.733157] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.737309] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.740276] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.742432] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.983371] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.985263] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.987092] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.992210] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.995112] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.999862] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 217.000105] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 217.002194] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 217.002391] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 217.013800] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 217.014530] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 217.016188] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 217.069725] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 217.071172] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.078355] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 217.080094] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.081611] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 217.082024] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.094225] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 217.102234] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 217.106233] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.112716] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.114356] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 217.116249] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.118121] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.121882] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.124837] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.125520] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 217.127103] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 217.128354] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.130517] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 217.131192] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 217.134303] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 217.134664] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 217.134807] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.136111] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.160997] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.161703] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.161988] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.164515] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.186747] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.187060] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 218.766727] Bluetooth: hci0: command tx timeout [ 219.086792] Bluetooth: hci2: command tx timeout [ 219.086843] Bluetooth: hci1: command tx timeout [ 219.217060] Bluetooth: hci3: command tx timeout [ 219.217081] Bluetooth: hci5: command tx timeout [ 219.217165] Bluetooth: hci4: command tx timeout [ 219.217243] Bluetooth: hci7: command tx timeout [ 219.217299] Bluetooth: hci6: command tx timeout [ 220.816646] Bluetooth: hci0: command tx timeout [ 221.134659] Bluetooth: hci1: command tx timeout [ 221.134880] Bluetooth: hci2: command tx timeout [ 221.262792] Bluetooth: hci3: command tx timeout [ 221.262960] Bluetooth: hci4: command tx timeout [ 221.263041] Bluetooth: hci6: command tx timeout [ 221.263100] Bluetooth: hci7: command tx timeout [ 221.263159] Bluetooth: hci5: command tx timeout [ 222.862613] Bluetooth: hci0: command tx timeout [ 223.182707] Bluetooth: hci2: command tx timeout [ 223.182905] Bluetooth: hci1: command tx timeout [ 223.310725] Bluetooth: hci5: command tx timeout [ 223.310870] Bluetooth: hci7: command tx timeout [ 223.310909] Bluetooth: hci6: command tx timeout [ 223.310947] Bluetooth: hci4: command tx timeout [ 223.310984] Bluetooth: hci3: command tx timeout [ 224.910607] Bluetooth: hci0: command tx timeout [ 225.230624] Bluetooth: hci2: command tx timeout [ 225.230707] Bluetooth: hci1: command tx timeout [ 225.359694] Bluetooth: hci3: command tx timeout [ 225.361415] Bluetooth: hci4: command tx timeout [ 225.361621] Bluetooth: hci6: command tx timeout [ 225.361669] Bluetooth: hci7: command tx timeout [ 225.361714] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 13:46:52 Registers: info registers vcpu 0 RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095debb8 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000073 R11=3a6b636f6c206762 R12=0000000000000073 R13=0000000000000001 R14=ffff888008fea026 R15=ffff8880095deeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc93b85000 CR3=000000001b920000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffff0000ff000000 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000559c4e3c62600000559c4e43e470 XMM06=0000559c4e414f600000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=dead000000000100 RCX=ffffffff815092f3 RDX=0000000000000000 RSI=0000000000000246 RDI=ffff888010c1f000 RBP=ffff888010c1f000 RSP=ffff88800f56fe00 R8 =0000000000000000 R9 =fffffbfff0ba088c R10=ffffffff85d04463 R11=ffff88800ebda078 R12=ffff88800ebd9bc0 R13=ffff888010c1a9a0 R14=0000000000000246 R15=ffff888010c1a9a0 RIP=ffffffff84aae1e0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe4e00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000559c4e3f8bc0 CR3=000000000de36000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=00000003000000000000559c4e43dc40 XMM05=0000559c4e4007a00000559c4e3c63d0 XMM06=0000559c4e4069700000000000000000 XMM07=00000000000000000000000000000000 XMM08=0000000000000031494b465200687400 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000