Warning: Permanently added '[localhost]:27390' (ECDSA) to the list of known hosts. 2025/01/18 13:52:14 fuzzer started 2025/01/18 13:52:14 dialing manager at localhost:44245 syzkaller login: [ 78.499773] cgroup: Unknown subsys name 'net' [ 78.558462] cgroup: Unknown subsys name 'cpuset' [ 78.575349] cgroup: Unknown subsys name 'rlimit' [ 83.331906] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 94.507403] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 13:52:31 syscalls: 2217 2025/01/18 13:52:31 code coverage: enabled 2025/01/18 13:52:31 comparison tracing: enabled 2025/01/18 13:52:31 extra coverage: enabled 2025/01/18 13:52:31 setuid sandbox: enabled 2025/01/18 13:52:31 namespace sandbox: enabled 2025/01/18 13:52:31 Android sandbox: enabled 2025/01/18 13:52:31 fault injection: enabled 2025/01/18 13:52:31 leak checking: enabled 2025/01/18 13:52:31 net packet injection: enabled 2025/01/18 13:52:31 net device setup: enabled 2025/01/18 13:52:31 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 13:52:31 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 13:52:31 USB emulation: enabled 2025/01/18 13:52:31 hci packet injection: enabled 2025/01/18 13:52:31 wifi device emulation: enabled 2025/01/18 13:52:31 802.15.4 emulation: enabled 2025/01/18 13:52:31 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 13:52:31 fetching corpus: 50, signal 27536/30503 (executing program) 2025/01/18 13:52:31 fetching corpus: 100, signal 38202/42080 (executing program) 2025/01/18 13:52:31 fetching corpus: 150, signal 46598/51136 (executing program) 2025/01/18 13:52:32 fetching corpus: 200, signal 50243/55495 (executing program) 2025/01/18 13:52:32 fetching corpus: 250, signal 54869/60630 (executing program) 2025/01/18 13:52:32 fetching corpus: 300, signal 60304/66366 (executing program) 2025/01/18 13:52:32 fetching corpus: 350, signal 64130/70476 (executing program) 2025/01/18 13:52:33 fetching corpus: 400, signal 67754/74293 (executing program) 2025/01/18 13:52:33 fetching corpus: 450, signal 70496/77192 (executing program) 2025/01/18 13:52:33 fetching corpus: 500, signal 73217/80091 (executing program) 2025/01/18 13:52:33 fetching corpus: 550, signal 75451/82428 (executing program) 2025/01/18 13:52:33 fetching corpus: 600, signal 77518/84563 (executing program) 2025/01/18 13:52:33 fetching corpus: 650, signal 79580/86652 (executing program) 2025/01/18 13:52:33 fetching corpus: 700, signal 83030/89627 (executing program) 2025/01/18 13:52:34 fetching corpus: 750, signal 84654/91223 (executing program) 2025/01/18 13:52:34 fetching corpus: 800, signal 86877/93178 (executing program) 2025/01/18 13:52:34 fetching corpus: 850, signal 89203/95082 (executing program) 2025/01/18 13:52:34 fetching corpus: 900, signal 92744/97720 (executing program) 2025/01/18 13:52:34 fetching corpus: 950, signal 94757/99256 (executing program) 2025/01/18 13:52:34 fetching corpus: 1000, signal 96959/100813 (executing program) 2025/01/18 13:52:34 fetching corpus: 1050, signal 98260/101751 (executing program) 2025/01/18 13:52:35 fetching corpus: 1100, signal 99379/102526 (executing program) 2025/01/18 13:52:35 fetching corpus: 1150, signal 100757/103416 (executing program) 2025/01/18 13:52:35 fetching corpus: 1200, signal 103084/104751 (executing program) 2025/01/18 13:52:35 fetching corpus: 1250, signal 104252/105415 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105794 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105822 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105851 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105880 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105923 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105952 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/105983 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106002 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106044 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106077 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106121 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106154 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106182 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106212 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106246 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106274 (executing program) 2025/01/18 13:52:35 fetching corpus: 1264, signal 104923/106315 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106345 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106378 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106425 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106448 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106479 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106506 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106539 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106577 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106609 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106644 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:52:36 fetching corpus: 1264, signal 104923/106655 (executing program) 2025/01/18 13:52:39 starting 8 fuzzer processes 13:52:39 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000009080)='/sys/kernel/notes', 0x0, 0x0) pread64(r0, &(0x7f00000010c0)=""/15, 0xf, 0x0) 13:52:39 executing program 1: r0 = msgget$private(0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x0, 0x0) msgctl$IPC_RMID(r0, 0x0) 13:52:39 executing program 2: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) setxattr$system_posix_acl(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340)='system.posix_acl_access\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="02"], 0x24, 0x0) [ 102.969572] audit: type=1400 audit(1737208359.472:7): avc: denied { execmem } for pid=273 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:52:39 executing program 3: ioperm(0x0, 0x6d1f, 0x562) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 13:52:39 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) stat(&(0x7f0000000240)='./file1\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = gettid() ioctl$sock_FIOSETOWN(r2, 0x8901, &(0x7f0000000000)=r3) sendmsg$unix(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000800)="84", 0x1}], 0x1}, 0x8011) 13:52:39 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_int(r0, 0x29, 0x11, 0x0, &(0x7f00000001c0)) 13:52:39 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000000)='./file1\x00', &(0x7f0000000300)='./file1\x00', 0x0, 0x281814, 0x0) mount$9p_unix(&(0x7f0000000040)='.\x00', &(0x7f00000000c0)='./file1\x00', 0x0, 0x1005002, 0x0) umount2(&(0x7f0000000140)='./file1\x00', 0x0) 13:52:39 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r0, 0x0, 0x0, 0x9) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x141042, 0x0) pwritev(r1, &(0x7f0000000640)=[{&(0x7f00000002c0)="02", 0x1}], 0x1, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000000)={0x0, r1, 0x2}) [ 104.422437] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.427327] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 104.427842] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 104.434557] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.435809] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 104.436255] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 104.454948] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 104.463858] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 104.468323] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 104.469093] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 104.469479] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 104.473487] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 104.474967] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 104.479911] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 104.480760] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 104.482085] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 104.494307] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 104.496701] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 104.499287] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 104.505295] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 104.513455] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 104.521497] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 104.522319] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 104.526080] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 104.530679] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 104.530891] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 104.531603] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.536879] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 104.537706] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 104.538114] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.565810] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 104.580394] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 104.584687] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 104.587187] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 104.589280] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 104.594280] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 104.598395] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 104.602611] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 104.604330] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 104.606938] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 104.615609] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 104.616322] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 104.616478] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 104.622326] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 104.643213] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 104.652253] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 104.657281] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 104.661115] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 106.495932] Bluetooth: hci0: command tx timeout [ 106.558121] Bluetooth: hci2: command tx timeout [ 106.559211] Bluetooth: hci4: command tx timeout [ 106.622079] Bluetooth: hci1: command tx timeout [ 106.622378] Bluetooth: hci3: command tx timeout [ 106.687099] Bluetooth: hci7: command tx timeout [ 106.687314] Bluetooth: hci5: command tx timeout [ 106.687471] Bluetooth: hci6: command tx timeout [ 108.543219] Bluetooth: hci0: command tx timeout [ 108.606107] Bluetooth: hci4: command tx timeout [ 108.606200] Bluetooth: hci2: command tx timeout [ 108.670221] Bluetooth: hci3: command tx timeout [ 108.670387] Bluetooth: hci1: command tx timeout [ 108.737041] Bluetooth: hci6: command tx timeout [ 108.737131] Bluetooth: hci5: command tx timeout [ 108.737186] Bluetooth: hci7: command tx timeout [ 110.590078] Bluetooth: hci0: command tx timeout [ 110.655029] Bluetooth: hci4: command tx timeout [ 110.655128] Bluetooth: hci2: command tx timeout [ 110.719180] Bluetooth: hci3: command tx timeout [ 110.719686] Bluetooth: hci1: command tx timeout [ 110.782070] Bluetooth: hci6: command tx timeout [ 110.782150] Bluetooth: hci5: command tx timeout [ 110.782228] Bluetooth: hci7: command tx timeout [ 112.638058] Bluetooth: hci0: command tx timeout [ 112.702059] Bluetooth: hci2: command tx timeout [ 112.702145] Bluetooth: hci4: command tx timeout [ 112.767066] Bluetooth: hci1: command tx timeout [ 112.767159] Bluetooth: hci3: command tx timeout [ 112.831207] Bluetooth: hci7: command tx timeout [ 112.831887] Bluetooth: hci5: command tx timeout [ 112.832003] Bluetooth: hci6: command tx timeout [ 162.533114] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 162.533235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 162.794236] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 162.794318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 163.228041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 163.228115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 164.057383] [ 164.057804] ====================================================== [ 164.058841] WARNING: possible circular locking dependency detected [ 164.059909] 6.13.0-rc7-next-20250117 #1 Not tainted [ 164.061730] ------------------------------------------------------ [ 164.063292] kworker/u8:0/11 is trying to acquire lock: [ 164.064691] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.067384] [ 164.067384] but task is already holding lock: [ 164.069574] ffff88803b3f0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 164.072050] [ 164.072050] which lock already depends on the new lock. [ 164.072050] [ 164.074025] [ 164.074025] the existing dependency chain (in reverse order) is: [ 164.075909] [ 164.075909] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 164.077460] __mutex_lock+0x13d/0xb50 [ 164.078301] wiphy_register+0x1b2e/0x25d0 [ 164.079177] ieee80211_register_hw+0x23a4/0x3d60 [ 164.080137] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 164.081170] init_mac80211_hwsim+0x389/0x870 [ 164.082116] do_one_initcall+0xf9/0x640 [ 164.082984] kernel_init_freeable+0x53d/0x7a0 [ 164.083926] kernel_init+0x1e/0x2d0 [ 164.084698] ret_from_fork+0x48/0x80 [ 164.085491] ret_from_fork_asm+0x1a/0x30 [ 164.086375] [ 164.086375] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 164.087496] __lock_acquire+0x29fd/0x4580 [ 164.088369] lock_acquire+0x19b/0x520 [ 164.089184] __mutex_lock+0x13d/0xb50 [ 164.090012] unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.091117] unregister_netdevice_queue+0x224/0x2e0 [ 164.092099] _cfg80211_unregister_wdev+0x57b/0x700 [ 164.093098] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 164.094084] ieee80211_unregister_hw+0x55/0x3a0 [ 164.095018] hwsim_exit_net+0x3a0/0x730 [ 164.095847] ops_exit_list+0xb3/0x180 [ 164.096670] cleanup_net+0x546/0xad0 [ 164.097487] process_one_work+0x8ee/0x1a10 [ 164.098386] worker_thread+0x674/0xe70 [ 164.099241] kthread+0x3ab/0x720 [ 164.100007] ret_from_fork+0x48/0x80 [ 164.100795] ret_from_fork_asm+0x1a/0x30 [ 164.101681] [ 164.101681] other info that might help us debug this: [ 164.101681] [ 164.103035] Possible unsafe locking scenario: [ 164.103035] [ 164.104058] CPU0 CPU1 [ 164.104860] ---- ---- [ 164.105691] lock(&rdev->wiphy.mtx); [ 164.106407] lock(rtnl_mutex); [ 164.107442] lock(&rdev->wiphy.mtx); [ 164.108582] lock(rtnl_mutex); [ 164.109242] [ 164.109242] *** DEADLOCK *** [ 164.109242] [ 164.110261] 4 locks held by kworker/u8:0/11: [ 164.111046] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 164.112871] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 164.114659] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 164.116282] #3: ffff88803b3f0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 164.118152] [ 164.118152] stack backtrace: [ 164.118944] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 164.120362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 164.121765] Workqueue: netns cleanup_net [ 164.122510] Call Trace: [ 164.122973] [ 164.123383] dump_stack_lvl+0xca/0x120 [ 164.124125] print_circular_bug+0x47b/0x750 [ 164.124961] check_noncircular+0x2e9/0x3c0 [ 164.125732] ? __pfx_check_noncircular+0x10/0x10 [ 164.126586] ? hlock_class+0x4e/0x130 [ 164.127285] ? mark_lock+0xac/0xed0 [ 164.127966] ? srso_return_thunk+0x5/0x5f [ 164.128749] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 164.129599] ? lockdep_lock+0xba/0x1b0 [ 164.130342] ? __pfx_lockdep_lock+0x10/0x10 [ 164.131170] __lock_acquire+0x29fd/0x4580 [ 164.131968] ? __pfx___lock_acquire+0x10/0x10 [ 164.132787] ? lock_release+0x20f/0x6f0 [ 164.133552] ? __pfx_lock_release+0x10/0x10 [ 164.134344] lock_acquire+0x19b/0x520 [ 164.135062] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.136095] ? __pfx_lock_acquire+0x10/0x10 [ 164.136888] ? srso_return_thunk+0x5/0x5f [ 164.137688] ? lock_release+0x20f/0x6f0 [ 164.138434] ? srso_return_thunk+0x5/0x5f [ 164.139207] ? lock_is_held_type+0x9e/0x120 [ 164.140014] ? srso_return_thunk+0x5/0x5f [ 164.140795] __mutex_lock+0x13d/0xb50 [ 164.141552] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.142597] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.143641] ? srso_return_thunk+0x5/0x5f [ 164.144421] ? synchronize_rcu_expedited+0x38a/0x420 [ 164.145378] ? __pfx___mutex_lock+0x10/0x10 [ 164.146183] ? __pfx_autoremove_wake_function+0x10/0x10 [ 164.147154] ? srso_return_thunk+0x5/0x5f [ 164.147946] ? kasan_quarantine_put+0x84/0x1e0 [ 164.148821] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 164.149659] ? srso_return_thunk+0x5/0x5f [ 164.150453] unregister_netdevice_many_notify+0x1612/0x1c80 [ 164.151455] ? __virt_addr_valid+0x2e8/0x5d0 [ 164.152288] ? __pfx_lock_release+0x10/0x10 [ 164.153088] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 164.154144] ? find_held_lock+0x2c/0x110 [ 164.154930] ? srso_return_thunk+0x5/0x5f [ 164.155722] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 164.156644] ? srso_return_thunk+0x5/0x5f [ 164.157437] ? lock_release+0x20f/0x6f0 [ 164.158164] ? __pfx_lock_release+0x10/0x10 [ 164.158940] ? srso_return_thunk+0x5/0x5f [ 164.159719] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 164.160656] ? srso_return_thunk+0x5/0x5f [ 164.161472] unregister_netdevice_queue+0x224/0x2e0 [ 164.162373] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 164.163332] ? up_write+0x195/0x520 [ 164.164038] _cfg80211_unregister_wdev+0x57b/0x700 [ 164.164946] ? srso_return_thunk+0x5/0x5f [ 164.165729] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 164.166614] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 164.167584] ? srso_return_thunk+0x5/0x5f [ 164.168355] ? srso_return_thunk+0x5/0x5f [ 164.169135] ? synchronize_rcu+0x1ff/0x260 [ 164.169903] ieee80211_unregister_hw+0x55/0x3a0 [ 164.170737] hwsim_exit_net+0x3a0/0x730 [ 164.171462] ? __pfx_hwsim_exit_net+0x10/0x10 [ 164.172269] ? srso_return_thunk+0x5/0x5f [ 164.173049] ? netdev_run_todo+0x788/0x1040 [ 164.173837] ? __pfx_hwsim_exit_net+0x10/0x10 [ 164.174655] ops_exit_list+0xb3/0x180 [ 164.175350] cleanup_net+0x546/0xad0 [ 164.176038] ? __pfx_cleanup_net+0x10/0x10 [ 164.176816] process_one_work+0x8ee/0x1a10 [ 164.177633] ? __pfx_lock_acquire+0x10/0x10 [ 164.178411] ? __pfx_process_one_work+0x10/0x10 [ 164.179274] ? srso_return_thunk+0x5/0x5f [ 164.180047] ? move_linked_works+0x172/0x270 [ 164.180848] ? srso_return_thunk+0x5/0x5f [ 164.181640] ? assign_work+0x196/0x240 [ 164.182399] worker_thread+0x674/0xe70 [ 164.183146] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 164.184116] ? __pfx_worker_thread+0x10/0x10 [ 164.184975] kthread+0x3ab/0x720 [ 164.185639] ? __pfx_kthread+0x10/0x10 [ 164.186386] ? srso_return_thunk+0x5/0x5f [ 164.187185] ? finish_task_switch.isra.0+0x206/0x840 [ 164.188124] ? __pfx_kthread+0x10/0x10 [ 164.188865] ret_from_fork+0x48/0x80 [ 164.189565] ? __pfx_kthread+0x10/0x10 [ 164.190307] ret_from_fork_asm+0x1a/0x30 [ 164.191104] [ 166.602323] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 166.604364] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 166.606432] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 166.612476] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 166.615934] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 166.618392] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 166.852528] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 166.855933] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 166.858818] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 166.863276] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 166.866792] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 166.868572] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 166.985956] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 166.990276] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 166.992247] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 166.999447] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 167.002745] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 167.004368] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 167.057578] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 167.070118] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 167.072131] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 167.078632] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 167.105892] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 167.111181] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 167.130819] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 167.135478] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 167.138907] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 167.143702] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 167.146332] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 167.148112] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 167.149743] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 167.156726] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 167.159587] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 167.160226] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 167.160740] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 167.162429] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 167.163569] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 167.164291] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 167.173598] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 167.175660] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 167.176867] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 167.187181] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 167.187699] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 167.190399] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 167.194393] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 167.231666] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 167.234910] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 167.246274] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 168.638050] Bluetooth: hci0: command tx timeout [ 168.894090] Bluetooth: hci1: command tx timeout [ 169.024239] Bluetooth: hci2: command tx timeout [ 169.214089] Bluetooth: hci7: command tx timeout [ 169.214125] Bluetooth: hci3: command tx timeout [ 169.214204] Bluetooth: hci6: command tx timeout [ 169.278105] Bluetooth: hci4: command tx timeout [ 169.343417] Bluetooth: hci5: command tx timeout [ 170.686992] Bluetooth: hci0: command tx timeout [ 170.942369] Bluetooth: hci1: command tx timeout [ 171.070034] Bluetooth: hci2: command tx timeout [ 171.262037] Bluetooth: hci3: command tx timeout [ 171.262145] Bluetooth: hci6: command tx timeout [ 171.262206] Bluetooth: hci7: command tx timeout [ 171.327061] Bluetooth: hci4: command tx timeout [ 171.390038] Bluetooth: hci5: command tx timeout [ 172.735231] Bluetooth: hci0: command tx timeout [ 172.990035] Bluetooth: hci1: command tx timeout [ 173.119016] Bluetooth: hci2: command tx timeout [ 173.310118] Bluetooth: hci6: command tx timeout [ 173.312190] Bluetooth: hci3: command tx timeout [ 173.312355] Bluetooth: hci7: command tx timeout [ 173.375170] Bluetooth: hci4: command tx timeout [ 173.438054] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 13:53:40 Registers: info registers vcpu 0 RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095debb8 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000036 R11=3a6b636f6c206762 R12=0000000000000036 R13=0000000000000001 R14=ffff888008fea015 R15=ffff8880095deeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f75f9a27269 CR3=00000000193ae000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000020000020000000002000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffff88800baf5340 RBX=ffffc900045a9448 RCX=ffffffff81429a4a RDX=1ffff11001765800 RSI=0000000000000008 RDI=ffff88800bb2c000 RBP=0000000000000000 RSP=ffff88800ed5fdd0 R8 =0000000000000000 R9 =ffffed1001765800 R10=ffff88800bb2c007 R11=ffff888014f43c38 R12=ffffc900045a9ff9 R13=ffff88800e0afde0 R14=ffff88800baf5340 R15=0000000000000086 RIP=ffffffff81aedd9a RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0a00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005588e00dcca0 CR3=000000000db92000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000417346e000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000