Warning: Permanently added '[localhost]:54654' (ECDSA) to the list of known hosts. 2025/01/17 18:23:59 fuzzer started 2025/01/17 18:24:00 dialing manager at localhost:44245 syzkaller login: [ 77.736197] cgroup: Unknown subsys name 'net' [ 77.840896] cgroup: Unknown subsys name 'cpuset' [ 77.911172] cgroup: Unknown subsys name 'rlimit' [ 84.423127] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 96.563865] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 18:24:28 syscalls: 2217 2025/01/17 18:24:28 code coverage: enabled 2025/01/17 18:24:28 comparison tracing: enabled 2025/01/17 18:24:28 extra coverage: enabled 2025/01/17 18:24:28 setuid sandbox: enabled 2025/01/17 18:24:28 namespace sandbox: enabled 2025/01/17 18:24:28 Android sandbox: enabled 2025/01/17 18:24:28 fault injection: enabled 2025/01/17 18:24:28 leak checking: enabled 2025/01/17 18:24:28 net packet injection: enabled 2025/01/17 18:24:28 net device setup: enabled 2025/01/17 18:24:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 18:24:28 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 18:24:28 USB emulation: enabled 2025/01/17 18:24:28 hci packet injection: enabled 2025/01/17 18:24:28 wifi device emulation: enabled 2025/01/17 18:24:28 802.15.4 emulation: enabled 2025/01/17 18:24:28 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 18:24:28 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 18:24:30 starting 8 fuzzer processes 18:24:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_buf(r0, 0xe0, 0x29, 0x0, 0x0) 18:24:31 executing program 1: r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x20) stat(&(0x7f0000001480)='./file0\x00', &(0x7f0000000080)) 18:24:31 executing program 2: syz_mount_image$tmpfs(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @val={0x3a, [0x36, 0x2d, 0x36, 0x3a]}}}}]}) 18:24:31 executing program 3: syz_emit_ethernet(0x46, &(0x7f0000000140)={@multicast, @random="c7899dad433e", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @dest_unreach={0xb, 0x4, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @rand_addr, @loopback}, "c68a921f669ec770"}}}}}, 0x0) 18:24:31 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e22, 0x0, @local}}, 0x0, 0x0, 0x0, 0x0, "45e63d49e202a8ca2621ff702aef8112142a883828a712a796568bef94615504727234100d0ecc3abf80f8262609e0554bd7f757ff225ae2e1139e601e8b0541a2d434fbb0f1c8070af93f830d15d486"}, 0xd8) syncfs(0xffffffffffffffff) bind$bt_sco(0xffffffffffffffff, &(0x7f0000000000)={0x1f, @fixed}, 0x8) [ 108.160540] audit: type=1400 audit(1737138271.137:7): avc: denied { execmem } for pid=277 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:24:31 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9) r0 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$read(0xb, r0, &(0x7f00000002c0)=""/102400, 0x19000) 18:24:31 executing program 6: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x44, &(0x7f0000000000)={0x77359400}, 0x10) 18:24:31 executing program 7: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) signalfd(0xffffffffffffffff, &(0x7f00000000c0), 0x8) [ 109.668595] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 109.674926] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 109.680287] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 109.688933] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 109.694632] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 109.698455] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 109.804243] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 109.806382] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 109.808296] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 109.815734] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 109.819277] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 109.821341] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 109.873651] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 109.879549] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 109.886125] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 109.895541] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 109.910474] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 109.915910] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 109.917594] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 109.922461] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 109.927471] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 109.935650] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 109.940782] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 109.943526] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 109.946454] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 109.955757] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 109.955840] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 109.957184] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 109.958407] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 109.961732] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 109.964400] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 109.966689] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 109.972884] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 109.973719] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 109.976741] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 109.979916] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 109.981749] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 109.983993] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 109.984994] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 109.987938] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 109.999567] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 110.001126] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 110.003627] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 110.005437] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 110.006756] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 110.029454] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 110.051451] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 110.054241] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 111.756685] Bluetooth: hci0: command tx timeout [ 111.885064] Bluetooth: hci1: command tx timeout [ 112.011178] Bluetooth: hci2: command tx timeout [ 112.075207] Bluetooth: hci7: command tx timeout [ 112.075987] Bluetooth: hci3: command tx timeout [ 112.076700] Bluetooth: hci4: command tx timeout [ 112.140257] Bluetooth: hci6: command tx timeout [ 112.140874] Bluetooth: hci5: command tx timeout [ 113.803323] Bluetooth: hci0: command tx timeout [ 113.932282] Bluetooth: hci1: command tx timeout [ 114.060474] Bluetooth: hci2: command tx timeout [ 114.124107] Bluetooth: hci7: command tx timeout [ 114.124186] Bluetooth: hci3: command tx timeout [ 114.124270] Bluetooth: hci4: command tx timeout [ 114.188241] Bluetooth: hci6: command tx timeout [ 114.188833] Bluetooth: hci5: command tx timeout [ 115.851159] Bluetooth: hci0: command tx timeout [ 115.980151] Bluetooth: hci1: command tx timeout [ 116.108128] Bluetooth: hci2: command tx timeout [ 116.172120] Bluetooth: hci4: command tx timeout [ 116.172214] Bluetooth: hci3: command tx timeout [ 116.172302] Bluetooth: hci7: command tx timeout [ 116.236253] Bluetooth: hci6: command tx timeout [ 116.236807] Bluetooth: hci5: command tx timeout [ 117.901049] Bluetooth: hci0: command tx timeout [ 118.028099] Bluetooth: hci1: command tx timeout [ 118.156249] Bluetooth: hci2: command tx timeout [ 118.220278] Bluetooth: hci7: command tx timeout [ 118.221586] Bluetooth: hci3: command tx timeout [ 118.221658] Bluetooth: hci4: command tx timeout [ 118.284187] Bluetooth: hci5: command tx timeout [ 118.284307] Bluetooth: hci6: command tx timeout [ 171.624608] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 171.631305] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 171.632916] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 171.637696] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 171.638905] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 171.641188] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 171.642305] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 171.644306] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 171.646277] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 171.659346] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 171.664411] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 171.665200] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 171.745591] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 171.749430] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 171.755508] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 171.770480] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 171.773491] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 171.784458] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 171.836371] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 171.840207] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 171.849186] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 171.867886] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 171.870625] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 171.871673] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 171.918065] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 171.933458] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 171.944293] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 171.947415] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 171.948857] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 171.953556] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 171.956073] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 171.958517] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 171.967396] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 171.975678] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 171.983348] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 171.983744] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 171.991919] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 171.994555] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 172.001825] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 172.003486] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 172.009993] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 172.021801] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 172.021815] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 172.034689] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 172.035804] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 172.041418] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 172.044433] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 172.045818] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 173.707169] Bluetooth: hci1: command tx timeout [ 173.707704] Bluetooth: hci0: command tx timeout [ 173.837095] Bluetooth: hci2: command tx timeout [ 173.899269] Bluetooth: hci3: command tx timeout [ 174.029090] Bluetooth: hci7: command tx timeout [ 174.156509] Bluetooth: hci6: command tx timeout [ 174.157249] Bluetooth: hci4: command tx timeout [ 174.220948] Bluetooth: hci5: command tx timeout [ 175.755630] Bluetooth: hci1: command tx timeout [ 175.755889] Bluetooth: hci0: command tx timeout [ 175.887078] Bluetooth: hci2: command tx timeout [ 175.948238] Bluetooth: hci3: command tx timeout [ 176.075243] Bluetooth: hci7: command tx timeout [ 176.203260] Bluetooth: hci4: command tx timeout [ 176.203436] Bluetooth: hci6: command tx timeout [ 176.267207] Bluetooth: hci5: command tx timeout [ 177.804105] Bluetooth: hci0: command tx timeout [ 177.804199] Bluetooth: hci1: command tx timeout [ 177.932426] Bluetooth: hci2: command tx timeout [ 177.996685] Bluetooth: hci3: command tx timeout [ 178.123215] Bluetooth: hci7: command tx timeout [ 178.251515] Bluetooth: hci6: command tx timeout [ 178.251608] Bluetooth: hci4: command tx timeout [ 178.315133] Bluetooth: hci5: command tx timeout [ 179.852200] Bluetooth: hci1: command tx timeout [ 179.852381] Bluetooth: hci0: command tx timeout [ 179.980188] Bluetooth: hci2: command tx timeout [ 180.043794] Bluetooth: hci3: command tx timeout [ 180.172143] Bluetooth: hci7: command tx timeout [ 180.300116] Bluetooth: hci4: command tx timeout [ 180.300210] Bluetooth: hci6: command tx timeout [ 180.363079] Bluetooth: hci5: command tx timeout [ 233.759689] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 233.761860] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 233.764096] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 233.772734] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 233.776363] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 233.778780] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 233.816419] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 233.820489] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 233.822506] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 233.827571] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 233.830617] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 233.832670] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 233.948425] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 233.956241] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 233.961386] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 233.961883] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 233.967266] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 233.968824] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 233.970166] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 233.972201] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 233.973933] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 233.978374] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 233.983151] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 233.985435] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 233.993455] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 234.001229] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 234.011881] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 234.058459] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 234.065879] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 234.081159] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 234.081672] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 234.092598] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 234.100331] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 234.130214] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 234.135439] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 234.139768] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 234.141608] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 234.148204] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 234.156225] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 234.159644] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 234.160726] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 234.194409] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 234.195353] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 234.198943] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 234.203359] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 234.206748] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 234.228322] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 234.233324] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 235.851224] Bluetooth: hci1: command tx timeout [ 235.851318] Bluetooth: hci0: command tx timeout [ 236.044128] Bluetooth: hci2: command tx timeout [ 236.108069] Bluetooth: hci4: command tx timeout [ 236.171222] Bluetooth: hci3: command tx timeout [ 236.363141] Bluetooth: hci7: command tx timeout [ 236.363791] Bluetooth: hci5: command tx timeout [ 236.427076] Bluetooth: hci6: command tx timeout [ 237.901622] Bluetooth: hci1: command tx timeout [ 237.901647] Bluetooth: hci0: command tx timeout [ 238.091284] Bluetooth: hci2: command tx timeout [ 238.155248] Bluetooth: hci4: command tx timeout [ 238.220021] Bluetooth: hci3: command tx timeout [ 238.411132] Bluetooth: hci5: command tx timeout [ 238.411248] Bluetooth: hci7: command tx timeout [ 238.475080] Bluetooth: hci6: command tx timeout [ 239.947303] Bluetooth: hci1: command tx timeout [ 239.947329] Bluetooth: hci0: command tx timeout [ 240.141140] Bluetooth: hci2: command tx timeout [ 240.205109] Bluetooth: hci4: command tx timeout [ 240.267212] Bluetooth: hci3: command tx timeout [ 240.459076] Bluetooth: hci7: command tx timeout [ 240.459152] Bluetooth: hci5: command tx timeout [ 240.524054] Bluetooth: hci6: command tx timeout [ 241.995202] Bluetooth: hci0: command tx timeout [ 241.995381] Bluetooth: hci1: command tx timeout [ 242.187572] Bluetooth: hci2: command tx timeout [ 242.251126] Bluetooth: hci4: command tx timeout [ 242.315128] Bluetooth: hci3: command tx timeout [ 242.507104] Bluetooth: hci5: command tx timeout [ 242.507129] Bluetooth: hci7: command tx timeout [ 242.571155] Bluetooth: hci6: command tx timeout [ 292.158841] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.159000] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 292.399776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 292.399858] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 294.595309] [ 294.595669] ====================================================== [ 294.596558] WARNING: possible circular locking dependency detected [ 294.597457] 6.13.0-rc7-next-20250117 #1 Not tainted [ 294.598676] ------------------------------------------------------ [ 294.601135] kworker/u8:1/66 is trying to acquire lock: [ 294.603717] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.606716] [ 294.606716] but task is already holding lock: [ 294.607557] ffff88802bf50768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 294.609010] [ 294.609010] which lock already depends on the new lock. [ 294.609010] [ 294.610148] [ 294.610148] the existing dependency chain (in reverse order) is: [ 294.611201] [ 294.611201] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 294.612184] __mutex_lock+0x13d/0xb50 [ 294.612877] wiphy_register+0x1b2e/0x25d0 [ 294.613622] ieee80211_register_hw+0x23a4/0x3d60 [ 294.614429] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 294.615270] init_mac80211_hwsim+0x389/0x870 [ 294.616050] do_one_initcall+0xf9/0x640 [ 294.616773] kernel_init_freeable+0x53d/0x7a0 [ 294.617569] kernel_init+0x1e/0x2d0 [ 294.618198] ret_from_fork+0x48/0x80 [ 294.618839] ret_from_fork_asm+0x1a/0x30 [ 294.619563] [ 294.619563] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 294.620485] __lock_acquire+0x29fd/0x4580 [ 294.621216] lock_acquire+0x19b/0x520 [ 294.621882] __mutex_lock+0x13d/0xb50 [ 294.622561] unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.623469] unregister_netdevice_queue+0x224/0x2e0 [ 294.624293] _cfg80211_unregister_wdev+0x57b/0x700 [ 294.625120] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 294.625942] ieee80211_unregister_hw+0x55/0x3a0 [ 294.626718] hwsim_exit_net+0x3a0/0x730 [ 294.627402] ops_exit_list+0xb3/0x180 [ 294.628062] cleanup_net+0x546/0xad0 [ 294.628719] process_one_work+0x8ee/0x1a10 [ 294.629484] worker_thread+0x674/0xe70 [ 294.630184] kthread+0x3ab/0x720 [ 294.630806] ret_from_fork+0x48/0x80 [ 294.631443] ret_from_fork_asm+0x1a/0x30 [ 294.632165] [ 294.632165] other info that might help us debug this: [ 294.632165] [ 294.633273] Possible unsafe locking scenario: [ 294.633273] [ 294.634116] CPU0 CPU1 [ 294.634776] ---- ---- [ 294.635436] lock(&rdev->wiphy.mtx); [ 294.636029] lock(rtnl_mutex); [ 294.636876] lock(&rdev->wiphy.mtx); [ 294.637803] lock(rtnl_mutex); [ 294.638336] [ 294.638336] *** DEADLOCK *** [ 294.638336] [ 294.639187] 4 locks held by kworker/u8:1/66: [ 294.639828] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 294.641339] #1: ffff88800be87d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 294.642790] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 294.644132] #3: ffff88802bf50768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 294.645636] [ 294.645636] stack backtrace: [ 294.646274] CPU: 1 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 294.647460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 294.648633] Workqueue: netns cleanup_net [ 294.649247] Call Trace: [ 294.649623] [ 294.649957] dump_stack_lvl+0xca/0x120 [ 294.650565] print_circular_bug+0x47b/0x750 [ 294.651205] check_noncircular+0x2e9/0x3c0 [ 294.651835] ? __pfx_check_noncircular+0x10/0x10 [ 294.652533] ? hlock_class+0x4e/0x130 [ 294.653104] ? srso_return_thunk+0x5/0x5f [ 294.653743] ? mark_lock+0xac/0xed0 [ 294.654300] ? lockdep_lock+0xba/0x1b0 [ 294.654911] ? __pfx_lockdep_lock+0x10/0x10 [ 294.655578] __lock_acquire+0x29fd/0x4580 [ 294.656212] ? __pfx___lock_acquire+0x10/0x10 [ 294.656879] ? lock_release+0x20f/0x6f0 [ 294.657488] ? __pfx_lock_release+0x10/0x10 [ 294.658136] ? srso_return_thunk+0x5/0x5f [ 294.658781] lock_acquire+0x19b/0x520 [ 294.659359] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.660219] ? __pfx_lock_acquire+0x10/0x10 [ 294.660873] ? srso_return_thunk+0x5/0x5f [ 294.661538] ? lock_is_held_type+0x9e/0x120 [ 294.662198] ? srso_return_thunk+0x5/0x5f [ 294.662840] __mutex_lock+0x13d/0xb50 [ 294.663430] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.664274] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.665131] ? srso_return_thunk+0x5/0x5f [ 294.665769] ? synchronize_rcu_expedited+0x38a/0x420 [ 294.666514] ? __pfx___mutex_lock+0x10/0x10 [ 294.667171] ? srso_return_thunk+0x5/0x5f [ 294.667871] ? srso_return_thunk+0x5/0x5f [ 294.668634] ? kasan_quarantine_put+0x84/0x1e0 [ 294.669339] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 294.670000] ? srso_return_thunk+0x5/0x5f [ 294.670636] unregister_netdevice_many_notify+0x1612/0x1c80 [ 294.671443] ? __virt_addr_valid+0x2e8/0x5d0 [ 294.672114] ? __pfx_lock_release+0x10/0x10 [ 294.672757] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 294.673622] ? find_held_lock+0x2c/0x110 [ 294.674249] ? srso_return_thunk+0x5/0x5f [ 294.674888] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 294.675627] ? srso_return_thunk+0x5/0x5f [ 294.676256] ? lock_release+0x20f/0x6f0 [ 294.676847] ? __pfx_lock_release+0x10/0x10 [ 294.677495] ? srso_return_thunk+0x5/0x5f [ 294.678126] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 294.678891] ? srso_return_thunk+0x5/0x5f [ 294.679527] unregister_netdevice_queue+0x224/0x2e0 [ 294.680248] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 294.681046] ? up_write+0x195/0x520 [ 294.681613] _cfg80211_unregister_wdev+0x57b/0x700 [ 294.682338] ? srso_return_thunk+0x5/0x5f [ 294.682976] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 294.683713] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 294.684502] ? srso_return_thunk+0x5/0x5f [ 294.685143] ? srso_return_thunk+0x5/0x5f [ 294.685776] ? synchronize_rcu+0x1ff/0x260 [ 294.686404] ieee80211_unregister_hw+0x55/0x3a0 [ 294.687087] hwsim_exit_net+0x3a0/0x730 [ 294.687682] ? __pfx_hwsim_exit_net+0x10/0x10 [ 294.688335] ? srso_return_thunk+0x5/0x5f [ 294.688971] ? netdev_run_todo+0x788/0x1040 [ 294.689614] ? __pfx_hwsim_exit_net+0x10/0x10 [ 294.690278] ops_exit_list+0xb3/0x180 [ 294.690847] cleanup_net+0x546/0xad0 [ 294.691408] ? __pfx_cleanup_net+0x10/0x10 [ 294.692045] process_one_work+0x8ee/0x1a10 [ 294.692699] ? __pfx_lock_acquire+0x10/0x10 [ 294.693336] ? __pfx_process_one_work+0x10/0x10 [ 294.694038] ? srso_return_thunk+0x5/0x5f [ 294.694662] ? move_linked_works+0x172/0x270 [ 294.695310] ? srso_return_thunk+0x5/0x5f [ 294.695934] ? assign_work+0x196/0x240 [ 294.696533] worker_thread+0x674/0xe70 [ 294.697140] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 294.697893] ? srso_return_thunk+0x5/0x5f [ 294.698518] ? __pfx_worker_thread+0x10/0x10 [ 294.699189] kthread+0x3ab/0x720 [ 294.699717] ? __pfx_kthread+0x10/0x10 [ 294.700311] ? srso_return_thunk+0x5/0x5f [ 294.700947] ? finish_task_switch.isra.0+0x206/0x840 [ 294.701688] ? __pfx_kthread+0x10/0x10 [ 294.702284] ret_from_fork+0x48/0x80 [ 294.702826] ? __pfx_kthread+0x10/0x10 [ 294.703416] ret_from_fork_asm+0x1a/0x30 [ 294.704056] [ 296.212630] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 296.214698] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 296.216527] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 296.224385] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 296.228375] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 296.230452] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 296.295433] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 296.302328] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 296.307129] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 296.318679] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 296.323804] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 296.327491] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 296.344183] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 296.346070] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 296.347790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 296.351538] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 296.353947] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 296.355705] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 296.368951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 296.374389] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 296.376206] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 296.392290] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 296.395944] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 296.400523] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 296.487021] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 296.490592] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 296.492373] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 296.501258] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 296.504678] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 296.506451] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 296.553524] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 296.555189] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 296.570519] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 296.588220] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 296.591172] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 296.598500] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 296.634195] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 296.637346] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 296.647563] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 296.648474] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 296.653261] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 296.660256] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 296.661239] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 296.681220] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 296.686432] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 296.743366] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 296.762723] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 296.764837] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 298.252055] Bluetooth: hci0: command tx timeout [ 298.380054] Bluetooth: hci2: command tx timeout [ 298.380844] Bluetooth: hci1: command tx timeout [ 298.507081] Bluetooth: hci3: command tx timeout [ 298.571340] Bluetooth: hci4: command tx timeout [ 298.701026] Bluetooth: hci5: command tx timeout [ 298.764028] Bluetooth: hci6: command tx timeout [ 298.828034] Bluetooth: hci7: command tx timeout [ 300.301041] Bluetooth: hci0: command tx timeout [ 300.427046] Bluetooth: hci2: command tx timeout [ 300.427120] Bluetooth: hci1: command tx timeout [ 300.556010] Bluetooth: hci3: command tx timeout [ 300.620140] Bluetooth: hci4: command tx timeout [ 300.747151] Bluetooth: hci5: command tx timeout [ 300.811109] Bluetooth: hci6: command tx timeout [ 300.876623] Bluetooth: hci7: command tx timeout [ 302.347068] Bluetooth: hci0: command tx timeout [ 302.476035] Bluetooth: hci1: command tx timeout [ 302.476099] Bluetooth: hci2: command tx timeout [ 302.604163] Bluetooth: hci3: command tx timeout [ 302.667012] Bluetooth: hci4: command tx timeout [ 302.796008] Bluetooth: hci5: command tx timeout [ 302.859021] Bluetooth: hci6: command tx timeout [ 302.923989] Bluetooth: hci7: command tx timeout [ 304.396091] Bluetooth: hci0: command tx timeout [ 304.523084] Bluetooth: hci1: command tx timeout [ 304.523615] Bluetooth: hci2: command tx timeout VM DIAGNOSIS: 18:27:37 Registers: info registers vcpu 0 RAX=ffff88806ce00000 RBX=0000000000000000 RCX=ffffffff84a8bb27 RDX=ffffed100d9c6c4b RSI=0000000000000004 RDI=ffffffff814b1b6a RBP=dffffc0000000000 RSP=ffffffff85a07e10 R8 =0000000000000000 R9 =ffffed100d9c6c4a R10=ffff88806ce36253 R11=0000000000000001 R12=ffffffff864021d0 R13=1ffffffff0b40fc7 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff84a8cace RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f73a733a0b8 CR3=000000000ccd0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=000055a3e8857fe0000055a3e8851610 XMM05=00000000000000000000000000000000 XMM06=697665640030006563697665642e3169 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000028 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800be86b28 R8 =0000000000000001 R9 =ffffed10017d0d55 R10=0000000000000028 R11=6666666666666666 R12=0000000000000028 R13=0000000000000001 R14=ffff888008fea021 R15=ffff88800be86e28 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffda99d1c38 CR3=0000000014d2a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=13809306921a6c97444f4439f777e5f0 XMM02=00000000000fd430f61f520134a0d9c2 XMM03=00000000001385c8f9980df3bdc2dbad XMM04=28583c44f8e9e63d00000000000ae988 XMM05=b570c0161c80e22e0000000000148dc8 XMM06=9f165a4fe6c971ad00000000001386d0 XMM07=711fbe8126c5d34400000000001385c8 XMM08=ee7587d5db12e8e300000000000fd430 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000