Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:38129' (ECDSA) to the list of known hosts. 2025/01/17 18:27:34 fuzzer started 2025/01/17 18:27:34 dialing manager at localhost:44245 syzkaller login: [ 69.841218] cgroup: Unknown subsys name 'net' [ 69.963221] cgroup: Unknown subsys name 'cpuset' [ 70.008267] cgroup: Unknown subsys name 'rlimit' [ 76.259062] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 18:27:53 syscalls: 2217 2025/01/17 18:27:53 code coverage: enabled 2025/01/17 18:27:53 comparison tracing: enabled 2025/01/17 18:27:53 extra coverage: enabled 2025/01/17 18:27:53 setuid sandbox: enabled 2025/01/17 18:27:53 namespace sandbox: enabled 2025/01/17 18:27:53 Android sandbox: enabled 2025/01/17 18:27:53 fault injection: enabled 2025/01/17 18:27:53 leak checking: enabled 2025/01/17 18:27:53 net packet injection: enabled 2025/01/17 18:27:53 net device setup: enabled 2025/01/17 18:27:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 18:27:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 18:27:53 USB emulation: enabled 2025/01/17 18:27:53 hci packet injection: enabled 2025/01/17 18:27:53 wifi device emulation: enabled 2025/01/17 18:27:53 802.15.4 emulation: enabled 2025/01/17 18:27:53 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 18:27:53 fetching corpus: 0, signal 0/0 (executing program) 2025/01/17 18:27:57 starting 8 fuzzer processes 18:27:57 executing program 0: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffd000/0x2000)=nil) r1 = shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x4000) shmdt(r1) 18:27:57 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[]) fcntl$notify(r0, 0x402, 0x4) fcntl$notify(r0, 0x402, 0x8000003c) 18:27:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}) fcntl$lock(r0, 0x7, &(0x7f0000000180)={0x1, 0x0, 0x800}) fcntl$lock(r0, 0x6, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}) 18:27:57 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) removexattr(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)=@known='system.posix_acl_access\x00') [ 92.194428] audit: type=1400 audit(1737138477.339:7): avc: denied { execmem } for pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:27:57 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/pid\x00') 18:27:57 executing program 5: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) r1 = dup(r0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000040)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x5423, 0x0) 18:27:57 executing program 6: io_setup(0x6, &(0x7f0000000040)=0x0) r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) io_submit(r0, 0x1, &(0x7f0000000300)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) 18:27:57 executing program 7: futex(0x0, 0x9, 0x0, &(0x7f0000000080), 0x0, 0x0) [ 93.698231] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 93.701420] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 93.705136] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 93.714017] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 93.720163] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 93.722535] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 93.774917] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 93.783634] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 93.784210] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 93.790974] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 93.800628] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 93.811546] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 93.818913] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 93.824381] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 93.830340] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 93.833078] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 93.841128] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 93.845367] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 93.867790] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 93.874200] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 93.879497] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 93.916612] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 93.922654] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 93.935087] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 93.936020] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 93.945694] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 93.961258] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 93.995664] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 94.014088] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 94.014852] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 94.016491] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 94.024237] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 94.027306] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 94.027623] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 94.033093] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 94.038979] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 94.041492] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 94.045393] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 94.053468] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 94.060531] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 94.064823] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 94.068144] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 94.069799] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.102123] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 94.111290] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 94.143088] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 94.149510] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 94.152005] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 95.781404] Bluetooth: hci0: command tx timeout [ 95.909146] Bluetooth: hci2: command tx timeout [ 95.974858] Bluetooth: hci1: command tx timeout [ 96.037039] Bluetooth: hci3: command tx timeout [ 96.102091] Bluetooth: hci5: command tx timeout [ 96.166080] Bluetooth: hci7: command tx timeout [ 96.166280] Bluetooth: hci4: command tx timeout [ 96.228860] Bluetooth: hci6: command tx timeout [ 97.828841] Bluetooth: hci0: command tx timeout [ 97.957011] Bluetooth: hci2: command tx timeout [ 98.020927] Bluetooth: hci1: command tx timeout [ 98.085880] Bluetooth: hci3: command tx timeout [ 98.148877] Bluetooth: hci5: command tx timeout [ 98.212885] Bluetooth: hci7: command tx timeout [ 98.214085] Bluetooth: hci4: command tx timeout [ 98.276823] Bluetooth: hci6: command tx timeout [ 99.877835] Bluetooth: hci0: command tx timeout [ 100.006031] Bluetooth: hci2: command tx timeout [ 100.069887] Bluetooth: hci1: command tx timeout [ 100.134210] Bluetooth: hci3: command tx timeout [ 100.197965] Bluetooth: hci5: command tx timeout [ 100.261050] Bluetooth: hci4: command tx timeout [ 100.261082] Bluetooth: hci7: command tx timeout [ 100.324885] Bluetooth: hci6: command tx timeout [ 101.925325] Bluetooth: hci0: command tx timeout [ 102.052790] Bluetooth: hci2: command tx timeout [ 102.117369] Bluetooth: hci1: command tx timeout [ 102.180868] Bluetooth: hci3: command tx timeout [ 102.244828] Bluetooth: hci5: command tx timeout [ 102.309824] Bluetooth: hci4: command tx timeout [ 102.309918] Bluetooth: hci7: command tx timeout [ 102.373915] Bluetooth: hci6: command tx timeout [ 153.473890] syz-executor.4 (288) used greatest stack depth: 23968 bytes left [ 153.602194] syz-executor.2 (283) used greatest stack depth: 23680 bytes left [ 155.884443] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 155.890542] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 155.893137] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 155.901132] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 155.904399] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 155.907242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 156.013563] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 156.016843] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 156.021290] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 156.026170] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 156.031572] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 156.034330] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 156.080340] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 156.086944] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 156.088903] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 156.094539] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 156.098636] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 156.101165] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 156.222600] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 156.232209] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 156.240083] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 156.251105] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 156.256016] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 156.258016] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 156.281614] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 156.289523] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 156.297111] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 156.338067] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 156.344676] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 156.347057] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 156.412520] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 156.419163] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.439298] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.451529] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 156.455868] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 156.458899] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.497284] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.512350] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.517231] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.529027] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.537307] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.576284] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.580460] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.602888] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.603174] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.609242] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.611088] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.614240] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 157.990409] Bluetooth: hci0: command tx timeout [ 158.117775] Bluetooth: hci1: command tx timeout [ 158.180773] Bluetooth: hci2: command tx timeout [ 158.310746] Bluetooth: hci3: command tx timeout [ 158.373793] Bluetooth: hci4: command tx timeout [ 158.500845] Bluetooth: hci5: command tx timeout [ 158.693802] Bluetooth: hci7: command tx timeout [ 158.694738] Bluetooth: hci6: command tx timeout [ 160.036980] Bluetooth: hci0: command tx timeout [ 160.166577] Bluetooth: hci1: command tx timeout [ 160.229753] Bluetooth: hci2: command tx timeout [ 160.358748] Bluetooth: hci3: command tx timeout [ 160.421003] Bluetooth: hci4: command tx timeout [ 160.549045] Bluetooth: hci5: command tx timeout [ 160.740850] Bluetooth: hci7: command tx timeout [ 160.741584] Bluetooth: hci6: command tx timeout [ 162.085720] Bluetooth: hci0: command tx timeout [ 162.212742] Bluetooth: hci1: command tx timeout [ 162.276761] Bluetooth: hci2: command tx timeout [ 162.404840] Bluetooth: hci3: command tx timeout [ 162.469776] Bluetooth: hci4: command tx timeout [ 162.596758] Bluetooth: hci5: command tx timeout [ 162.788887] Bluetooth: hci7: command tx timeout [ 162.789667] Bluetooth: hci6: command tx timeout [ 164.134761] Bluetooth: hci0: command tx timeout [ 164.260833] Bluetooth: hci1: command tx timeout [ 164.325897] Bluetooth: hci2: command tx timeout [ 164.454153] Bluetooth: hci3: command tx timeout [ 164.517979] Bluetooth: hci4: command tx timeout [ 164.646161] Bluetooth: hci5: command tx timeout [ 164.836833] Bluetooth: hci6: command tx timeout [ 164.836928] Bluetooth: hci7: command tx timeout [ 214.964401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.964522] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.142487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.142566] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.288818] [ 216.289080] ====================================================== [ 216.289674] WARNING: possible circular locking dependency detected [ 216.290273] 6.13.0-rc7-next-20250117 #1 Not tainted [ 216.290770] ------------------------------------------------------ [ 216.292156] kworker/u8:1/67 is trying to acquire lock: [ 216.293269] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.295156] [ 216.295156] but task is already holding lock: [ 216.296691] ffff888015700768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 216.298527] [ 216.298527] which lock already depends on the new lock. [ 216.298527] [ 216.300386] [ 216.300386] the existing dependency chain (in reverse order) is: [ 216.301090] [ 216.301090] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 216.301757] __mutex_lock+0x13d/0xb50 [ 216.302218] wiphy_register+0x1b2e/0x25d0 [ 216.302724] ieee80211_register_hw+0x23a4/0x3d60 [ 216.303268] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 216.303834] init_mac80211_hwsim+0x389/0x870 [ 216.304355] do_one_initcall+0xf9/0x640 [ 216.304846] kernel_init_freeable+0x53d/0x7a0 [ 216.305376] kernel_init+0x1e/0x2d0 [ 216.305803] ret_from_fork+0x48/0x80 [ 216.306240] ret_from_fork_asm+0x1a/0x30 [ 216.306735] [ 216.306735] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 216.307362] __lock_acquire+0x29fd/0x4580 [ 216.307851] lock_acquire+0x19b/0x520 [ 216.308303] __mutex_lock+0x13d/0xb50 [ 216.308768] unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.309390] unregister_netdevice_queue+0x224/0x2e0 [ 216.309952] _cfg80211_unregister_wdev+0x57b/0x700 [ 216.310517] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 216.311076] ieee80211_unregister_hw+0x55/0x3a0 [ 216.311606] hwsim_exit_net+0x3a0/0x730 [ 216.312074] ops_exit_list+0xb3/0x180 [ 216.312522] cleanup_net+0x546/0xad0 [ 216.312967] process_one_work+0x8ee/0x1a10 [ 216.313475] worker_thread+0x674/0xe70 [ 216.313951] kthread+0x3ab/0x720 [ 216.314381] ret_from_fork+0x48/0x80 [ 216.314817] ret_from_fork_asm+0x1a/0x30 [ 216.315307] [ 216.315307] other info that might help us debug this: [ 216.315307] [ 216.316059] Possible unsafe locking scenario: [ 216.316059] [ 216.316630] CPU0 CPU1 [ 216.317083] ---- ---- [ 216.317535] lock(&rdev->wiphy.mtx); [ 216.317938] lock(rtnl_mutex); [ 216.318527] lock(&rdev->wiphy.mtx); [ 216.319159] lock(rtnl_mutex); [ 216.319518] [ 216.319518] *** DEADLOCK *** [ 216.319518] [ 216.320097] 4 locks held by kworker/u8:1/67: [ 216.320533] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 216.321548] #1: ffff88800f48fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 216.322536] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 216.323448] #3: ffff888015700768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 216.324484] [ 216.324484] stack backtrace: [ 216.324929] CPU: 1 UID: 0 PID: 67 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 216.325737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 216.326527] Workqueue: netns cleanup_net [ 216.326946] Call Trace: [ 216.327201] [ 216.327429] dump_stack_lvl+0xca/0x120 [ 216.327849] print_circular_bug+0x47b/0x750 [ 216.328295] check_noncircular+0x2e9/0x3c0 [ 216.328719] ? lock_repin_lock+0x207/0x320 [ 216.329173] ? __pfx_check_noncircular+0x10/0x10 [ 216.329646] ? hlock_class+0x4e/0x130 [ 216.330027] ? mark_lock+0xac/0xed0 [ 216.330440] ? __pfx_lock_repin_lock+0x10/0x10 [ 216.330929] ? lockdep_lock+0xba/0x1b0 [ 216.331342] ? __pfx_lockdep_lock+0x10/0x10 [ 216.331806] __lock_acquire+0x29fd/0x4580 [ 216.332244] ? __pfx___lock_acquire+0x10/0x10 [ 216.332706] ? lock_release+0x20f/0x6f0 [ 216.333114] ? __pfx_lock_release+0x10/0x10 [ 216.333558] lock_acquire+0x19b/0x520 [ 216.333953] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.334572] ? __pfx_lock_acquire+0x10/0x10 [ 216.335013] ? srso_return_thunk+0x5/0x5f [ 216.335445] ? lock_release+0x20f/0x6f0 [ 216.335858] ? srso_return_thunk+0x5/0x5f [ 216.336294] ? lock_is_held_type+0x9e/0x120 [ 216.336749] ? srso_return_thunk+0x5/0x5f [ 216.337184] __mutex_lock+0x13d/0xb50 [ 216.337585] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.338164] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.338751] ? srso_return_thunk+0x5/0x5f [ 216.339191] ? synchronize_rcu_expedited+0x38a/0x420 [ 216.339704] ? __pfx___mutex_lock+0x10/0x10 [ 216.340153] ? __pfx_autoremove_wake_function+0x10/0x10 [ 216.340698] ? srso_return_thunk+0x5/0x5f [ 216.341129] ? kasan_quarantine_put+0x84/0x1e0 [ 216.341611] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 216.342068] ? srso_return_thunk+0x5/0x5f [ 216.342515] unregister_netdevice_many_notify+0x1612/0x1c80 [ 216.343075] ? __virt_addr_valid+0x2e8/0x5d0 [ 216.343538] ? __pfx_lock_release+0x10/0x10 [ 216.343979] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 216.344573] ? find_held_lock+0x2c/0x110 [ 216.345008] ? srso_return_thunk+0x5/0x5f [ 216.345446] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 216.345953] ? srso_return_thunk+0x5/0x5f [ 216.346399] ? lock_release+0x20f/0x6f0 [ 216.346813] ? __pfx_lock_release+0x10/0x10 [ 216.347251] ? srso_return_thunk+0x5/0x5f [ 216.347687] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 216.348221] ? srso_return_thunk+0x5/0x5f [ 216.348662] unregister_netdevice_queue+0x224/0x2e0 [ 216.349161] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 216.349708] ? up_write+0x195/0x520 [ 216.350099] _cfg80211_unregister_wdev+0x57b/0x700 [ 216.350603] ? srso_return_thunk+0x5/0x5f [ 216.351042] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 216.351550] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 216.352095] ? srso_return_thunk+0x5/0x5f [ 216.352524] ? srso_return_thunk+0x5/0x5f [ 216.352956] ? synchronize_rcu+0x1ff/0x260 [ 216.353379] ieee80211_unregister_hw+0x55/0x3a0 [ 216.353851] hwsim_exit_net+0x3a0/0x730 [ 216.354258] ? __pfx_hwsim_exit_net+0x10/0x10 [ 216.354714] ? srso_return_thunk+0x5/0x5f [ 216.355148] ? netdev_run_todo+0x788/0x1040 [ 216.355584] ? __pfx_hwsim_exit_net+0x10/0x10 [ 216.356040] ops_exit_list+0xb3/0x180 [ 216.356431] cleanup_net+0x546/0xad0 [ 216.356820] ? __pfx_cleanup_net+0x10/0x10 [ 216.357259] process_one_work+0x8ee/0x1a10 [ 216.357712] ? __pfx_lock_acquire+0x10/0x10 [ 216.358150] ? __pfx_process_one_work+0x10/0x10 [ 216.358643] ? srso_return_thunk+0x5/0x5f [ 216.359078] ? move_linked_works+0x172/0x270 [ 216.359524] ? srso_return_thunk+0x5/0x5f [ 216.359962] ? assign_work+0x196/0x240 [ 216.360385] worker_thread+0x674/0xe70 [ 216.360803] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 216.361334] ? srso_return_thunk+0x5/0x5f [ 216.361769] ? __pfx_worker_thread+0x10/0x10 [ 216.362234] kthread+0x3ab/0x720 [ 216.362611] ? __pfx_kthread+0x10/0x10 [ 216.363026] ? srso_return_thunk+0x5/0x5f [ 216.363463] ? finish_task_switch.isra.0+0x206/0x840 [ 216.363980] ? __pfx_kthread+0x10/0x10 [ 216.364395] ret_from_fork+0x48/0x80 [ 216.364770] ? __pfx_kthread+0x10/0x10 [ 216.365176] ret_from_fork_asm+0x1a/0x30 [ 216.365616] [ 218.072383] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 218.073247] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 218.079919] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 218.080086] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 218.082875] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 218.083010] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 218.085413] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 218.087782] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 218.088560] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 218.093602] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 218.103998] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 218.106318] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 218.355808] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 218.360990] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 218.363031] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 218.370109] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 218.373800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 218.378083] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 218.383443] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 218.390043] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 218.391978] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 218.394000] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 218.395787] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 218.397975] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 218.441106] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 218.449996] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 218.458197] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 218.464271] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 218.468219] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 218.474017] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 218.476411] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 218.486076] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 218.491828] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 218.513442] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 218.523143] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 218.523642] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 218.526977] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 218.530937] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 218.532254] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 218.542730] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 218.561330] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 218.595459] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 218.603819] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 218.614875] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 218.631122] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 218.659336] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 218.691954] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 218.718442] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 220.132781] Bluetooth: hci0: command tx timeout [ 220.133821] Bluetooth: hci1: command tx timeout [ 220.452922] Bluetooth: hci2: command tx timeout [ 220.453779] Bluetooth: hci3: command tx timeout [ 220.580908] Bluetooth: hci5: command tx timeout [ 220.773956] Bluetooth: hci6: command tx timeout [ 220.774060] Bluetooth: hci4: command tx timeout [ 220.774100] Bluetooth: hci7: command tx timeout [ 222.181964] Bluetooth: hci1: command tx timeout [ 222.182104] Bluetooth: hci0: command tx timeout [ 222.501791] Bluetooth: hci2: command tx timeout [ 222.501866] Bluetooth: hci3: command tx timeout [ 222.629891] Bluetooth: hci5: command tx timeout [ 222.822465] Bluetooth: hci7: command tx timeout [ 222.822577] Bluetooth: hci6: command tx timeout [ 222.822753] Bluetooth: hci4: command tx timeout [ 224.228818] Bluetooth: hci0: command tx timeout [ 224.228893] Bluetooth: hci1: command tx timeout [ 224.548808] Bluetooth: hci3: command tx timeout [ 224.550251] Bluetooth: hci2: command tx timeout [ 224.676846] Bluetooth: hci5: command tx timeout [ 224.868868] Bluetooth: hci4: command tx timeout [ 224.869589] Bluetooth: hci6: command tx timeout [ 224.869981] Bluetooth: hci7: command tx timeout [ 226.277771] Bluetooth: hci1: command tx timeout [ 226.278328] Bluetooth: hci0: command tx timeout VM DIAGNOSIS: 18:30:01 Registers: info registers vcpu 0 RAX=ffff88800f8f8000 RBX=ffffffff86253db8 RCX=ffffffff81429a4a RDX=1ffff11001e75980 RSI=0000000000000008 RDI=ffff88800f3acc00 RBP=0000000000000000 RSP=ffff88800f917dd0 R8 =0000000000000000 R9 =ffffed1001e75980 R10=ffff88800f3acc07 R11=ffff88800f8f84b8 R12=ffffffff86253ff9 R13=ffff888008c50378 R14=ffff88800f8f8000 R15=0000000000000086 RIP=ffffffff81aedda6 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7c5adaad70 CR3=000000000a3a4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=e883d9d01d90ffacb84e3e0223207148 XMM02=f61f520134a0d9c200000000000fca28 XMM03=f9980df3bdc2dbad0000000000134dd0 XMM04=e1bd8009c6ebbad700000000000ae988 XMM05=3cc027b654ebc5060000000000142130 XMM06=9f165a4fe6c971ad0000000000138c20 XMM07=711fbe8126c5d3440000000000138b18 XMM08=ee7587d5db12e8e300000000000fca80 XMM09=00000000000000000000000000000000 XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800f48ebb8 R8 =0000000000000001 R9 =ffffed1001e91d67 R10=0000000000000037 R11=6f6c206863696877 R12=0000000000000037 R13=0000000000000001 R14=ffff888008fea058 R15=ffff88800f48eeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005639669296a8 CR3=000000000b9a8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000416e8a9800000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000