Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:6853' (ECDSA) to the list of known hosts. 2025/01/28 16:18:49 fuzzer started 2025/01/28 16:18:49 dialing manager at localhost:40187 syzkaller login: [ 53.892897] cgroup: Unknown subsys name 'net' [ 53.982486] cgroup: Unknown subsys name 'cpuset' [ 54.022262] cgroup: Unknown subsys name 'rlimit' 2025/01/28 16:19:09 syscalls: 2217 2025/01/28 16:19:09 code coverage: enabled 2025/01/28 16:19:09 comparison tracing: enabled 2025/01/28 16:19:09 extra coverage: enabled 2025/01/28 16:19:09 setuid sandbox: enabled 2025/01/28 16:19:09 namespace sandbox: enabled 2025/01/28 16:19:09 Android sandbox: enabled 2025/01/28 16:19:09 fault injection: enabled 2025/01/28 16:19:09 leak checking: enabled 2025/01/28 16:19:09 net packet injection: enabled 2025/01/28 16:19:09 net device setup: enabled 2025/01/28 16:19:09 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/28 16:19:09 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/28 16:19:09 USB emulation: enabled 2025/01/28 16:19:09 hci packet injection: enabled 2025/01/28 16:19:09 wifi device emulation: enabled 2025/01/28 16:19:09 802.15.4 emulation: enabled 2025/01/28 16:19:09 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/28 16:19:09 fetching corpus: 43, signal 12394/15172 (executing program) 2025/01/28 16:19:09 fetching corpus: 90, signal 24354/26728 (executing program) 2025/01/28 16:19:09 fetching corpus: 139, signal 28248/30625 (executing program) 2025/01/28 16:19:09 fetching corpus: 187, signal 31968/34057 (executing program) 2025/01/28 16:19:09 fetching corpus: 235, signal 33532/35528 (executing program) 2025/01/28 16:19:10 fetching corpus: 285, signal 34241/36378 (executing program) 2025/01/28 16:19:10 fetching corpus: 333, signal 35274/37334 (executing program) 2025/01/28 16:19:10 fetching corpus: 382, signal 36408/38220 (executing program) 2025/01/28 16:19:10 fetching corpus: 430, signal 37919/39180 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40038 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40086 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40146 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40196 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40250 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40313 (executing program) 2025/01/28 16:19:10 fetching corpus: 460, signal 39437/40369 (executing program) 2025/01/28 16:19:10 fetching corpus: 461, signal 39442/40431 (executing program) 2025/01/28 16:19:11 fetching corpus: 461, signal 39442/40494 (executing program) 2025/01/28 16:19:11 fetching corpus: 461, signal 39442/40552 (executing program) 2025/01/28 16:19:11 fetching corpus: 461, signal 39442/40571 (executing program) 2025/01/28 16:19:11 fetching corpus: 461, signal 39442/40571 (executing program) 2025/01/28 16:19:14 starting 8 fuzzer processes 16:19:14 executing program 0: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001a80)={'wlan0\x00'}) 16:19:14 executing program 1: prctl$PR_SET_THP_DISABLE(0x29, 0x1) 16:19:14 executing program 2: ioctl$HIDIOCGCOLLECTIONINFO(0xffffffffffffffff, 0xc0104811, 0x0) syz_io_uring_setup(0x786, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) 16:19:14 executing program 3: r0 = inotify_init1(0x0) fcntl$setsig(r0, 0xa, 0x0) 16:19:14 executing program 4: rename(&(0x7f0000000180)='./file0\x00', 0x0) 16:19:14 executing program 5: mount$cgroup2(0x0, 0x0, &(0x7f0000000240), 0x0, 0xffffffffffffffff) [ 78.377688] audit: type=1400 audit(1738081154.782:7): avc: denied { execmem } for pid=272 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:19:14 executing program 6: openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)) 16:19:14 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x27, 0x0, &(0x7f0000000140)=0x47) [ 79.888604] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 79.891568] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 79.893652] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 79.898534] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.901682] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 79.903742] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.952000] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.965314] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 79.967557] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.969293] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 79.972496] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 79.976320] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.980199] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 79.982824] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.984787] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 79.987078] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 79.990593] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 79.994890] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 80.002362] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.005291] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 80.008003] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 80.009567] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.012382] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.017607] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.021573] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.024340] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.027269] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 80.029686] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.031317] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.033167] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.034664] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 80.035566] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.036305] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 80.041361] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 80.049210] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 80.052866] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.054882] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.057300] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.059504] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 80.061713] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 80.065785] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 80.068256] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.098421] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.104485] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 80.116128] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 80.135200] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 80.140484] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 80.146440] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 81.976492] Bluetooth: hci0: command tx timeout [ 82.105414] Bluetooth: hci3: command tx timeout [ 82.106634] Bluetooth: hci2: command tx timeout [ 82.168119] Bluetooth: hci1: command tx timeout [ 82.168836] Bluetooth: hci5: command tx timeout [ 82.169568] Bluetooth: hci4: command tx timeout [ 82.232325] Bluetooth: hci6: command tx timeout [ 82.233088] Bluetooth: hci7: command tx timeout [ 84.024137] Bluetooth: hci0: command tx timeout [ 84.152314] Bluetooth: hci2: command tx timeout [ 84.152817] Bluetooth: hci3: command tx timeout [ 84.217035] Bluetooth: hci5: command tx timeout [ 84.217537] Bluetooth: hci4: command tx timeout [ 84.217566] Bluetooth: hci1: command tx timeout [ 84.281906] Bluetooth: hci6: command tx timeout [ 84.282173] Bluetooth: hci7: command tx timeout [ 86.072996] Bluetooth: hci0: command tx timeout [ 86.200429] Bluetooth: hci2: command tx timeout [ 86.200921] Bluetooth: hci3: command tx timeout [ 86.264314] Bluetooth: hci1: command tx timeout [ 86.264798] Bluetooth: hci5: command tx timeout [ 86.265299] Bluetooth: hci4: command tx timeout [ 86.330379] Bluetooth: hci6: command tx timeout [ 86.330857] Bluetooth: hci7: command tx timeout [ 88.122041] Bluetooth: hci0: command tx timeout [ 88.250978] Bluetooth: hci2: command tx timeout [ 88.251480] Bluetooth: hci3: command tx timeout [ 88.312034] Bluetooth: hci1: command tx timeout [ 88.312513] Bluetooth: hci4: command tx timeout [ 88.313000] Bluetooth: hci5: command tx timeout [ 88.377105] Bluetooth: hci7: command tx timeout [ 88.377585] Bluetooth: hci6: command tx timeout [ 135.692304] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.693052] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 135.967225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 135.967894] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 136.233310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.234017] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 136.522786] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.523871] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 136.780130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.780786] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 136.983659] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 136.984347] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:13 executing program 0: keyctl$unlink(0x9, 0x0, 0xfffffffffffffffb) [ 137.131035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.131689] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:13 executing program 0: keyctl$unlink(0x9, 0x0, 0xfffffffffffffffb) [ 137.362812] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.363756] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:13 executing program 0: keyctl$unlink(0x9, 0x0, 0xfffffffffffffffb) [ 137.447537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.448765] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 137.523384] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.524185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:13 executing program 0: keyctl$unlink(0x9, 0x0, 0xfffffffffffffffb) 16:20:14 executing program 5: io_setup(0x576, &(0x7f0000000140)=0x0) io_destroy(r0) [ 137.627467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.628179] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:14 executing program 5: io_setup(0x576, &(0x7f0000000140)=0x0) io_destroy(r0) 16:20:14 executing program 0: io_setup(0x576, &(0x7f0000000140)=0x0) io_destroy(r0) [ 137.795959] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.796578] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 16:20:14 executing program 0: io_setup(0x576, &(0x7f0000000140)=0x0) io_destroy(r0) [ 137.932665] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 137.933354] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 138.114103] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 138.114743] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 138.186707] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 138.187406] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 138.275439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 138.276112] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 138.904329] [ 138.904530] ====================================================== [ 138.905051] WARNING: possible circular locking dependency detected [ 138.905572] 6.13.0-next-20250128 #1 Not tainted [ 138.905979] ------------------------------------------------------ [ 138.910419] kworker/u8:1/64 is trying to acquire lock: [ 138.910862] ffffffff8621d9a8 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.911748] [ 138.911748] but task is already holding lock: [ 138.912245] ffff88800db68768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 138.913075] [ 138.913075] which lock already depends on the new lock. [ 138.913075] [ 138.913743] [ 138.913743] the existing dependency chain (in reverse order) is: [ 138.914362] [ 138.914362] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 138.914934] __mutex_lock+0x13d/0xb50 [ 138.915348] wiphy_register+0x1b2e/0x25d0 [ 138.915784] ieee80211_register_hw+0x23a4/0x3d60 [ 138.916257] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 138.916756] init_mac80211_hwsim+0x389/0x870 [ 138.917221] do_one_initcall+0xf9/0x640 [ 138.917653] kernel_init_freeable+0x53d/0x7a0 [ 138.918117] kernel_init+0x1e/0x2d0 [ 138.918494] ret_from_fork+0x48/0x80 [ 138.918875] ret_from_fork_asm+0x1a/0x30 [ 138.919310] [ 138.919310] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 138.919845] __lock_acquire+0x29fd/0x4580 [ 138.920274] lock_acquire+0x19b/0x520 [ 138.920674] __mutex_lock+0x13d/0xb50 [ 138.921080] unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.921633] unregister_netdevice_queue+0x224/0x2e0 [ 138.922127] _cfg80211_unregister_wdev+0x57b/0x700 [ 138.922622] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 138.923114] ieee80211_unregister_hw+0x55/0x3a0 [ 138.923580] hwsim_exit_net+0x3a0/0x730 [ 138.923991] ops_exit_list+0xb3/0x180 [ 138.924385] cleanup_net+0x546/0xad0 [ 138.924782] process_one_work+0x8ee/0x1a10 [ 138.925236] worker_thread+0x674/0xe70 [ 138.925660] kthread+0x3ab/0x720 [ 138.926041] ret_from_fork+0x48/0x80 [ 138.926421] ret_from_fork_asm+0x1a/0x30 [ 138.926856] [ 138.926856] other info that might help us debug this: [ 138.926856] [ 138.927508] Possible unsafe locking scenario: [ 138.927508] [ 138.928008] CPU0 CPU1 [ 138.928399] ---- ---- [ 138.928784] lock(&rdev->wiphy.mtx); [ 138.929129] lock(rtnl_mutex); [ 138.929635] lock(&rdev->wiphy.mtx); [ 138.930176] lock(rtnl_mutex); [ 138.930485] [ 138.930485] *** DEADLOCK *** [ 138.930485] [ 138.930981] 4 locks held by kworker/u8:1/64: [ 138.931363] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 138.932236] #1: ffff88800c267d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 138.933078] #2: ffffffff862119d0 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 138.933864] #3: ffff88800db68768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 138.934749] [ 138.934749] stack backtrace: [ 138.935131] CPU: 0 UID: 0 PID: 64 Comm: kworker/u8:1 Not tainted 6.13.0-next-20250128 #1 [ 138.935173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 138.935195] Workqueue: netns cleanup_net [ 138.935236] Call Trace: [ 138.935245] [ 138.935256] dump_stack_lvl+0xca/0x120 [ 138.935314] print_circular_bug+0x47b/0x750 [ 138.935360] check_noncircular+0x2e9/0x3c0 [ 138.935403] ? __pfx_check_noncircular+0x10/0x10 [ 138.935444] ? hlock_class+0x4e/0x130 [ 138.935475] ? mark_lock+0xac/0xed0 [ 138.935515] ? srso_return_thunk+0x5/0x5f [ 138.935571] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 138.935616] ? lockdep_lock+0xba/0x1b0 [ 138.935674] ? __pfx_lockdep_lock+0x10/0x10 [ 138.935736] __lock_acquire+0x29fd/0x4580 [ 138.935790] ? __pfx___lock_acquire+0x10/0x10 [ 138.935833] ? lock_release+0x20f/0x6f0 [ 138.935877] ? __pfx_lock_release+0x10/0x10 [ 138.935925] lock_acquire+0x19b/0x520 [ 138.935969] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.936018] ? __pfx_lock_acquire+0x10/0x10 [ 138.936062] ? srso_return_thunk+0x5/0x5f [ 138.936118] ? lock_release+0x20f/0x6f0 [ 138.936162] ? srso_return_thunk+0x5/0x5f [ 138.936217] ? lock_is_held_type+0x9e/0x120 [ 138.936273] ? srso_return_thunk+0x5/0x5f [ 138.936332] __mutex_lock+0x13d/0xb50 [ 138.936384] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.936430] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.936476] ? srso_return_thunk+0x5/0x5f [ 138.936532] ? synchronize_rcu_expedited+0x38a/0x420 [ 138.936576] ? __pfx___mutex_lock+0x10/0x10 [ 138.936630] ? __pfx_autoremove_wake_function+0x10/0x10 [ 138.936685] ? srso_return_thunk+0x5/0x5f [ 138.936741] ? kasan_quarantine_put+0x84/0x1e0 [ 138.936802] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 138.936837] ? srso_return_thunk+0x5/0x5f [ 138.936897] unregister_netdevice_many_notify+0x1612/0x1c80 [ 138.936946] ? __virt_addr_valid+0x2e8/0x5d0 [ 138.937000] ? __pfx_lock_release+0x10/0x10 [ 138.937045] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 138.937091] ? find_held_lock+0x2c/0x110 [ 138.937150] ? srso_return_thunk+0x5/0x5f [ 138.937207] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 138.937268] ? srso_return_thunk+0x5/0x5f [ 138.937324] ? lock_release+0x20f/0x6f0 [ 138.937368] ? __pfx_lock_release+0x10/0x10 [ 138.937411] ? srso_return_thunk+0x5/0x5f [ 138.937475] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 138.937522] ? srso_return_thunk+0x5/0x5f [ 138.937583] unregister_netdevice_queue+0x224/0x2e0 [ 138.937627] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 138.937671] ? up_write+0x195/0x520 [ 138.937726] _cfg80211_unregister_wdev+0x57b/0x700 [ 138.937779] ? srso_return_thunk+0x5/0x5f [ 138.937838] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 138.937877] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 138.937916] ? srso_return_thunk+0x5/0x5f [ 138.937972] ? srso_return_thunk+0x5/0x5f [ 138.938027] ? synchronize_rcu+0x1ff/0x260 [ 138.938070] ieee80211_unregister_hw+0x55/0x3a0 [ 138.938115] hwsim_exit_net+0x3a0/0x730 [ 138.938160] ? __pfx_hwsim_exit_net+0x10/0x10 [ 138.938203] ? srso_return_thunk+0x5/0x5f [ 138.938258] ? netdev_run_todo+0x788/0x1040 [ 138.938307] ? __pfx_hwsim_exit_net+0x10/0x10 [ 138.938350] ops_exit_list+0xb3/0x180 [ 138.938393] cleanup_net+0x546/0xad0 [ 138.938438] ? __pfx_cleanup_net+0x10/0x10 [ 138.938491] process_one_work+0x8ee/0x1a10 [ 138.938557] ? __pfx_lock_acquire+0x10/0x10 [ 138.938602] ? __pfx_process_one_work+0x10/0x10 [ 138.938660] ? srso_return_thunk+0x5/0x5f [ 138.938716] ? move_linked_works+0x172/0x270 [ 138.938761] ? srso_return_thunk+0x5/0x5f [ 138.938816] ? assign_work+0x196/0x240 [ 138.938874] worker_thread+0x674/0xe70 [ 138.938932] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 138.938984] ? srso_return_thunk+0x5/0x5f [ 138.939040] ? __pfx_worker_thread+0x10/0x10 [ 138.939100] kthread+0x3ab/0x720 [ 138.939151] ? __pfx_kthread+0x10/0x10 [ 138.939203] ? srso_return_thunk+0x5/0x5f [ 138.939260] ? finish_task_switch.isra.0+0x206/0x840 [ 138.939311] ? __pfx_kthread+0x10/0x10 [ 138.939365] ret_from_fork+0x48/0x80 [ 138.939396] ? __pfx_kthread+0x10/0x10 [ 138.939449] ret_from_fork_asm+0x1a/0x30 [ 138.939515] [ 141.443077] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 141.446208] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 141.448467] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 141.456541] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 141.463607] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 141.465761] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 141.504239] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 141.506491] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 141.508629] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 141.513135] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 141.515790] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 141.517730] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 141.653130] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 141.658079] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 141.661067] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 141.667282] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 141.667345] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 141.670096] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 141.674721] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 141.675519] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 141.676475] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 141.699708] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 141.704199] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 141.706837] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 143.482020] Bluetooth: hci0: command tx timeout [ 143.544060] Bluetooth: hci1: command tx timeout [ 143.736024] Bluetooth: hci5: command tx timeout [ 143.737002] Bluetooth: hci6: command tx timeout [ 145.529002] Bluetooth: hci0: command tx timeout [ 145.593096] Bluetooth: hci1: command tx timeout [ 145.784308] Bluetooth: hci6: command tx timeout [ 145.785250] Bluetooth: hci5: command tx timeout [ 147.576861] Bluetooth: hci0: command tx timeout [ 147.640951] Bluetooth: hci1: command tx timeout [ 147.833953] Bluetooth: hci6: command tx timeout [ 147.834482] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 16:20:15 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283f415 RDI=ffffffff886970a0 RBP=ffffffff88697060 RSP=ffff88800c266d20 R8 =0000000000000000 R9 =ffffed1001d60046 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000010 R14=ffffffff88697060 R15=ffffffff8283f400 RIP=ffffffff8283f46d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055feb490e090 CR3=000000000b704000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000003f8cdf36f5b89438 XMM02=000000000000000041248e4000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=00000000fffd8941 RBX=ffff88803bec5580 RCX=1ffff11001b7c729 RDX=1ffff110077d8aca RSI=ffff88803c1867a0 RDI=ffff88803bec5650 RBP=ffff88803c185340 RSP=ffff88806cf09d48 R8 =0000000000000000 R9 =ffffed10031dc868 R10=ffff888018ee4347 R11=00000000fa83b2da R12=00000000fffd88e6 R13=ffff88803c185340 R14=0000000000000001 R15=ffff88806cf3b958 RIP=ffffffff81471caf RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2dff8778c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff6f838a88 CR3=0000000039e1c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000ff0000000000000000000000 XMM02=656565690031316d697377682f6d6973 XMM03=7269762f736563697665642f7379732f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000000300000008000055feb491d9e0 XMM06=000055feb49100800000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000