Warning: Permanently added '[localhost]:9131' (ECDSA) to the list of known hosts. 2025/01/18 17:36:31 fuzzer started 2025/01/18 17:36:31 dialing manager at localhost:44245 syzkaller login: [ 61.238859] cgroup: Unknown subsys name 'net' [ 61.363683] cgroup: Unknown subsys name 'cpuset' [ 61.399716] cgroup: Unknown subsys name 'rlimit' [ 67.000187] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 76.911911] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 17:36:47 syscalls: 2217 2025/01/18 17:36:47 code coverage: enabled 2025/01/18 17:36:47 comparison tracing: enabled 2025/01/18 17:36:47 extra coverage: enabled 2025/01/18 17:36:47 setuid sandbox: enabled 2025/01/18 17:36:47 namespace sandbox: enabled 2025/01/18 17:36:47 Android sandbox: enabled 2025/01/18 17:36:47 fault injection: enabled 2025/01/18 17:36:47 leak checking: enabled 2025/01/18 17:36:47 net packet injection: enabled 2025/01/18 17:36:47 net device setup: enabled 2025/01/18 17:36:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 17:36:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 17:36:47 USB emulation: enabled 2025/01/18 17:36:47 hci packet injection: enabled 2025/01/18 17:36:47 wifi device emulation: enabled 2025/01/18 17:36:47 802.15.4 emulation: enabled 2025/01/18 17:36:47 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 17:36:48 fetching corpus: 50, signal 27522/30484 (executing program) 2025/01/18 17:36:48 fetching corpus: 100, signal 37386/41275 (executing program) 2025/01/18 17:36:48 fetching corpus: 150, signal 44540/49197 (executing program) 2025/01/18 17:36:48 fetching corpus: 200, signal 50134/55397 (executing program) 2025/01/18 17:36:48 fetching corpus: 250, signal 54472/60299 (executing program) 2025/01/18 17:36:48 fetching corpus: 300, signal 58004/64378 (executing program) 2025/01/18 17:36:49 fetching corpus: 350, signal 61389/68191 (executing program) 2025/01/18 17:36:49 fetching corpus: 400, signal 66927/73582 (executing program) 2025/01/18 17:36:49 fetching corpus: 450, signal 69909/76763 (executing program) 2025/01/18 17:36:49 fetching corpus: 500, signal 72438/79479 (executing program) 2025/01/18 17:36:49 fetching corpus: 550, signal 78408/84772 (executing program) 2025/01/18 17:36:49 fetching corpus: 600, signal 80659/87010 (executing program) 2025/01/18 17:36:49 fetching corpus: 650, signal 83237/89392 (executing program) 2025/01/18 17:36:50 fetching corpus: 700, signal 86094/91842 (executing program) 2025/01/18 17:36:50 fetching corpus: 750, signal 88016/93594 (executing program) 2025/01/18 17:36:50 fetching corpus: 800, signal 89875/95254 (executing program) 2025/01/18 17:36:50 fetching corpus: 850, signal 92193/97089 (executing program) 2025/01/18 17:36:50 fetching corpus: 900, signal 94431/98803 (executing program) 2025/01/18 17:36:50 fetching corpus: 950, signal 95970/100015 (executing program) 2025/01/18 17:36:50 fetching corpus: 1000, signal 97380/101083 (executing program) 2025/01/18 17:36:51 fetching corpus: 1050, signal 98596/101930 (executing program) 2025/01/18 17:36:51 fetching corpus: 1100, signal 100244/103019 (executing program) 2025/01/18 17:36:51 fetching corpus: 1150, signal 101268/103723 (executing program) 2025/01/18 17:36:51 fetching corpus: 1200, signal 102959/104709 (executing program) 2025/01/18 17:36:51 fetching corpus: 1250, signal 104217/105404 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105808 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105837 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105867 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105903 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105937 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/105976 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106019 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106049 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106077 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106111 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106137 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106156 (executing program) 2025/01/18 17:36:51 fetching corpus: 1266, signal 104934/106190 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106218 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106250 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106283 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106323 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106361 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106389 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106423 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106444 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106472 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106513 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106555 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106584 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106625 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106660 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106667 (executing program) 2025/01/18 17:36:52 fetching corpus: 1266, signal 104934/106667 (executing program) 2025/01/18 17:36:55 starting 8 fuzzer processes 17:36:55 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0x0, 0x0, 0xffffffffffff036f}) 17:36:55 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x18, 0x0, 0x201, 0x0, 0x0, {0xa}, [@nested={0x14, 0x0, 0x0, 0x1, [@generic="9c92dc1c", @typed={0xc, 0x5, 0x0, 0x0, @u64}]}]}, 0x28}}, 0x0) 17:36:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2284, &(0x7f0000000100)=ANY=[@ANYBLOB="0101"]) 17:36:55 executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX, @ANYBLOB="2c7766646e6f3d010f29ef99ad8b2ee6ab88d3dd04f74fb3263bd7d202acf75f589857406d2c998b30632677d021a1c106fd052c3c04b81097631bf95c5dd1712d72e7568948f80c"]) r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x5a) mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c706f73697861636c2c667363616368652c6163636573733d636c69656e742c616669643d3078303030303030303030303030643432392c636f6e746578743d73746166665f752c646f6e745f6d6561737572652c736d61636b66736465663d5e28297d5d2a2ce12c736d61636b66737472616e736d7574653d2e5b2e24e05e2d5c2d7d8a5e7d2c657569643d", @ANYRESDEC, @ANYBLOB]) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r2, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000007c0)={0x1c, 0x24, 0x101, 0x0, 0x0, "", [@typed={0xc, 0x39, 0x0, 0x0, @u64=0xfff}]}, 0x1c}], 0x1}, 0x810) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000480)=ANY=[@ANYBLOB="010000006c4378ef4a07f3a1", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x280c00, 0x0) mount(&(0x7f00000004c0)=@sg0, &(0x7f0000000500)='./file1\x00', &(0x7f0000000680)='logfs\x00', 0x31016, &(0x7f00000006c0)='/proc/self\x00') fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000180)='9p\x00', &(0x7f0000000200)='?}!(\xde^.\'\\\x00', 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000700)='./file1\x00', &(0x7f0000000740)={0x400000, 0x42}, 0x18) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x6, 0x0, 0x0, 0x0) fsmount(r3, 0x0, 0x0) [ 84.686589] audit: type=1400 audit(1737221815.413:7): avc: denied { execmem } for pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:36:55 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x11, &(0x7f00000001c0)={0x0, 0x0, 0x5}) 17:36:55 executing program 5: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000001400)='./file0\x00', 0x0) 17:36:55 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x0) getresuid(0x0, 0x0, 0x0) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 17:36:55 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="340000001300df080000000000000000100000800400000008000000", @ANYRES32=0x0, @ANYBLOB], 0x34}], 0x1}, 0x0) [ 85.988554] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.992518] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.996560] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 86.001728] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.006568] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 86.011033] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 86.119873] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 86.122885] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 86.124930] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 86.131836] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 86.139558] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 86.141995] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 86.177512] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 86.181687] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 86.186562] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 86.200900] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 86.203779] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 86.210087] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 86.210536] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 86.212777] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 86.223587] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 86.225119] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 86.229580] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 86.230515] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 86.230846] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 86.238912] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 86.251356] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 86.265212] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 86.265599] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 86.275964] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.313703] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 86.321383] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.321409] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 86.341395] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 86.350652] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 86.392413] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.403645] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 86.424653] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.425317] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 86.435752] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 86.436395] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 86.442120] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 86.445896] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 86.453691] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 86.455539] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.521144] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 86.524630] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 86.530594] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 88.076891] Bluetooth: hci0: command tx timeout [ 88.204279] Bluetooth: hci2: command tx timeout [ 88.332391] Bluetooth: hci1: command tx timeout [ 88.396450] Bluetooth: hci3: command tx timeout [ 88.460278] Bluetooth: hci4: command tx timeout [ 88.588268] Bluetooth: hci7: command tx timeout [ 88.588309] Bluetooth: hci6: command tx timeout [ 88.588692] Bluetooth: hci5: command tx timeout [ 90.124385] Bluetooth: hci0: command tx timeout [ 90.253283] Bluetooth: hci2: command tx timeout [ 90.380449] Bluetooth: hci1: command tx timeout [ 90.446449] Bluetooth: hci3: command tx timeout [ 90.509190] Bluetooth: hci4: command tx timeout [ 90.636269] Bluetooth: hci7: command tx timeout [ 90.636318] Bluetooth: hci5: command tx timeout [ 90.636401] Bluetooth: hci6: command tx timeout [ 92.172238] Bluetooth: hci0: command tx timeout [ 92.300217] Bluetooth: hci2: command tx timeout [ 92.430284] Bluetooth: hci1: command tx timeout [ 92.494408] Bluetooth: hci3: command tx timeout [ 92.556320] Bluetooth: hci4: command tx timeout [ 92.684283] Bluetooth: hci6: command tx timeout [ 92.684327] Bluetooth: hci7: command tx timeout [ 92.684416] Bluetooth: hci5: command tx timeout [ 94.221197] Bluetooth: hci0: command tx timeout [ 94.348257] Bluetooth: hci2: command tx timeout [ 94.476246] Bluetooth: hci1: command tx timeout [ 94.541187] Bluetooth: hci3: command tx timeout [ 94.604238] Bluetooth: hci4: command tx timeout [ 94.733358] Bluetooth: hci5: command tx timeout [ 94.733402] Bluetooth: hci7: command tx timeout [ 94.733468] Bluetooth: hci6: command tx timeout [ 143.687060] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.687676] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 143.914640] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 143.914736] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 144.863710] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 144.863846] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 145.057853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 145.057935] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 145.645405] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht' [ 145.645565] [ 145.647023] ====================================================== [ 145.648025] WARNING: possible circular locking dependency detected [ 145.649082] 6.13.0-rc7-next-20250117 #1 Not tainted [ 145.650638] ------------------------------------------------------ [ 145.655254] kworker/u8:2/3848 is trying to acquire lock: [ 145.657209] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.658906] [ 145.658906] but task is already holding lock: [ 145.659846] ffff88800d8c8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 145.661493] [ 145.661493] which lock already depends on the new lock. [ 145.661493] [ 145.662765] [ 145.662765] the existing dependency chain (in reverse order) is: [ 145.663943] [ 145.663943] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 145.665071] __mutex_lock+0x13d/0xb50 [ 145.665848] wiphy_register+0x1b2e/0x25d0 [ 145.666671] ieee80211_register_hw+0x23a4/0x3d60 [ 145.667569] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 145.668508] init_mac80211_hwsim+0x389/0x870 [ 145.669401] do_one_initcall+0xf9/0x640 [ 145.670213] kernel_init_freeable+0x53d/0x7a0 [ 145.671087] kernel_init+0x1e/0x2d0 [ 145.671794] ret_from_fork+0x48/0x80 [ 145.672521] ret_from_fork_asm+0x1a/0x30 [ 145.673369] [ 145.673369] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 145.674403] __lock_acquire+0x29fd/0x4580 [ 145.675214] lock_acquire+0x19b/0x520 [ 145.675973] __mutex_lock+0x13d/0xb50 [ 145.676739] unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.677786] unregister_netdevice_queue+0x224/0x2e0 [ 145.678707] _cfg80211_unregister_wdev+0x57b/0x700 [ 145.679621] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 145.680417] ieee80211_unregister_hw+0x55/0x3a0 [ 145.681209] hwsim_exit_net+0x3a0/0x730 [ 145.681906] ops_exit_list+0xb3/0x180 [ 145.682550] cleanup_net+0x546/0xad0 [ 145.683186] process_one_work+0x8ee/0x1a10 [ 145.683914] worker_thread+0x674/0xe70 [ 145.684601] kthread+0x3ab/0x720 [ 145.685235] ret_from_fork+0x48/0x80 [ 145.685859] ret_from_fork_asm+0x1a/0x30 [ 145.686564] [ 145.686564] other info that might help us debug this: [ 145.686564] [ 145.687638] Possible unsafe locking scenario: [ 145.687638] [ 145.688455] CPU0 CPU1 [ 145.689135] ---- ---- [ 145.689785] lock(&rdev->wiphy.mtx); [ 145.690362] lock(rtnl_mutex); [ 145.691193] lock(&rdev->wiphy.mtx); [ 145.692089] lock(rtnl_mutex); [ 145.692605] [ 145.692605] *** DEADLOCK *** [ 145.692605] [ 145.693449] 4 locks held by kworker/u8:2/3848: [ 145.694107] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 145.695602] #1: ffff88803c5a7d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 145.697093] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 145.698458] #3: ffff88800d8c8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 145.699999] [ 145.699999] stack backtrace: [ 145.700652] CPU: 0 UID: 0 PID: 3848 Comm: kworker/u8:2 Not tainted 6.13.0-rc7-next-20250117 #1 [ 145.701895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 145.703059] Workqueue: netns cleanup_net [ 145.703685] Call Trace: [ 145.704065] [ 145.704403] dump_stack_lvl+0xca/0x120 [ 145.705046] print_circular_bug+0x47b/0x750 [ 145.705709] check_noncircular+0x2e9/0x3c0 [ 145.706352] ? __pfx_check_noncircular+0x10/0x10 [ 145.707066] ? hlock_class+0x4e/0x130 [ 145.707644] ? mark_lock+0xac/0xed0 [ 145.708207] ? srso_return_thunk+0x5/0x5f [ 145.708858] ? sched_clock+0x37/0x60 [ 145.709492] ? lockdep_lock+0x183/0x1b0 [ 145.710125] ? __pfx_lockdep_lock+0x10/0x10 [ 145.710806] __lock_acquire+0x29fd/0x4580 [ 145.711454] ? __pfx___lock_acquire+0x10/0x10 [ 145.712134] ? lock_release+0x20f/0x6f0 [ 145.712749] ? __pfx_lock_release+0x10/0x10 [ 145.713447] lock_acquire+0x19b/0x520 [ 145.714037] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.714905] ? __pfx_lock_acquire+0x10/0x10 [ 145.715554] ? srso_return_thunk+0x5/0x5f [ 145.716188] ? lock_release+0x20f/0x6f0 [ 145.716776] ? srso_return_thunk+0x5/0x5f [ 145.717419] ? lock_is_held_type+0x9e/0x120 [ 145.718071] ? srso_return_thunk+0x5/0x5f [ 145.718703] __mutex_lock+0x13d/0xb50 [ 145.719286] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.720118] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.720975] ? srso_return_thunk+0x5/0x5f [ 145.721601] ? synchronize_rcu_expedited+0x38a/0x420 [ 145.722332] ? __pfx___mutex_lock+0x10/0x10 [ 145.722978] ? __pfx_autoremove_wake_function+0x10/0x10 [ 145.723781] ? srso_return_thunk+0x5/0x5f [ 145.724407] ? kasan_quarantine_put+0x84/0x1e0 [ 145.725119] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 145.725775] ? srso_return_thunk+0x5/0x5f [ 145.726409] unregister_netdevice_many_notify+0x1612/0x1c80 [ 145.727218] ? __virt_addr_valid+0x2e8/0x5d0 [ 145.727879] ? __pfx_lock_release+0x10/0x10 [ 145.728514] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 145.729398] ? find_held_lock+0x2c/0x110 [ 145.730023] ? srso_return_thunk+0x5/0x5f [ 145.730658] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 145.731392] ? srso_return_thunk+0x5/0x5f [ 145.732023] ? lock_release+0x20f/0x6f0 [ 145.732615] ? __pfx_lock_release+0x10/0x10 [ 145.733264] ? srso_return_thunk+0x5/0x5f [ 145.733894] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 145.734649] ? srso_return_thunk+0x5/0x5f [ 145.735282] unregister_netdevice_queue+0x224/0x2e0 [ 145.736026] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 145.736837] ? up_write+0x195/0x520 [ 145.737452] _cfg80211_unregister_wdev+0x57b/0x700 [ 145.738202] ? srso_return_thunk+0x5/0x5f [ 145.738862] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 145.739611] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 145.740424] ? srso_return_thunk+0x5/0x5f [ 145.741088] ? srso_return_thunk+0x5/0x5f [ 145.741720] ? synchronize_rcu+0x1ff/0x260 [ 145.742337] ieee80211_unregister_hw+0x55/0x3a0 [ 145.743022] hwsim_exit_net+0x3a0/0x730 [ 145.743632] ? __pfx_hwsim_exit_net+0x10/0x10 [ 145.744308] ? srso_return_thunk+0x5/0x5f [ 145.744976] ? netdev_run_todo+0x788/0x1040 [ 145.745636] ? __pfx_hwsim_exit_net+0x10/0x10 [ 145.746315] ops_exit_list+0xb3/0x180 [ 145.746887] cleanup_net+0x546/0xad0 [ 145.747445] ? __pfx_cleanup_net+0x10/0x10 [ 145.748078] process_one_work+0x8ee/0x1a10 [ 145.748736] ? __pfx_lock_acquire+0x10/0x10 [ 145.749406] ? __pfx_process_one_work+0x10/0x10 [ 145.750134] ? srso_return_thunk+0x5/0x5f [ 145.750780] ? move_linked_works+0x172/0x270 [ 145.751455] ? srso_return_thunk+0x5/0x5f [ 145.752104] ? assign_work+0x196/0x240 [ 145.752723] worker_thread+0x674/0xe70 [ 145.753343] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 145.754134] ? srso_return_thunk+0x5/0x5f [ 145.754763] ? __pfx_worker_thread+0x10/0x10 [ 145.755458] kthread+0x3ab/0x720 [ 145.756004] ? __pfx_kthread+0x10/0x10 [ 145.756596] ? srso_return_thunk+0x5/0x5f [ 145.757253] ? finish_task_switch.isra.0+0x206/0x840 [ 145.758019] ? __pfx_kthread+0x10/0x10 [ 145.758635] ret_from_fork+0x48/0x80 [ 145.759195] ? __pfx_kthread+0x10/0x10 [ 145.759815] ret_from_fork_asm+0x1a/0x30 [ 145.760453] [ 148.049682] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 148.053589] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 148.055033] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 148.056279] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 148.058453] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 148.060994] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 148.061795] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 148.064217] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 148.065323] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 148.066072] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 148.073621] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 148.074672] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.092265] Bluetooth: hci0: command tx timeout [ 150.156282] Bluetooth: hci2: command tx timeout [ 152.140269] Bluetooth: hci0: command tx timeout [ 152.204232] Bluetooth: hci2: command tx timeout [ 154.188389] Bluetooth: hci0: command tx timeout [ 154.252328] Bluetooth: hci2: command tx timeout VM DIAGNOSIS: 17:37:56 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88803c5a6bb8 R8 =0000000000000001 R9 =ffffed10078b4d67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea02c R15=ffff88803c5a6eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007faf4c2dc700 CR3=0000000018d0c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000003f8300ae145eb21e XMM04=000000c000148090000000c000148060 XMM05=000000c0001480f0000000c0001480c0 XMM06=000000c000148150000000c000148120 XMM07=000000c000147760000000c00008f4d0 XMM08=000000c0001484b0000000c000148480 XMM09=000000c000148510000000c0001484e0 XMM10=000000c000148540000000c00008f530 XMM11=000000c0001485a0000000c000148570 XMM12=000000c000148600000000c0001485d0 XMM13=000000c000148660000000c000148630 XMM14=000000c0001486c0000000c000148690 XMM15=000000c0000e9080000000c0001486f0 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffffffff882a2a80 RCX=0000000000000000 RDX=1ffff11000e43228 RSI=ffffffff85781d8d RDI=ffffffff882c54e0 RBP=ffff888007219140 RSP=ffff88801624f8d0 R8 =0000000000000002 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000003 R12=ffffffff882c54e0 R13=0000000000000000 R14=0000000000000000 R15=0000000000000cc0 RIP=ffffffff815047f8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb9d3a6e8c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055b4c6682b00 CR3=0000000009dc0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004183a16000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000