Debian GNU/Linux 11 syzkaller ttyS0 syzkaller login: [ 57.456517] sshd (236) used greatest stack depth: 24216 bytes left Warning: Permanently added '[localhost]:52674' (ECDSA) to the list of known hosts. 2025/01/30 18:51:34 fuzzer started 2025/01/30 18:51:34 dialing manager at localhost:46401 [ 63.174652] cgroup: Unknown subsys name 'net' [ 63.269308] cgroup: Unknown subsys name 'cpuset' [ 63.302189] cgroup: Unknown subsys name 'rlimit' 2025/01/30 18:51:53 syscalls: 2217 2025/01/30 18:51:53 code coverage: enabled 2025/01/30 18:51:53 comparison tracing: enabled 2025/01/30 18:51:53 extra coverage: enabled 2025/01/30 18:51:53 setuid sandbox: enabled 2025/01/30 18:51:53 namespace sandbox: enabled 2025/01/30 18:51:53 Android sandbox: enabled 2025/01/30 18:51:53 fault injection: enabled 2025/01/30 18:51:53 leak checking: enabled 2025/01/30 18:51:53 net packet injection: enabled 2025/01/30 18:51:53 net device setup: enabled 2025/01/30 18:51:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/30 18:51:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/30 18:51:53 USB emulation: enabled 2025/01/30 18:51:53 hci packet injection: enabled 2025/01/30 18:51:53 wifi device emulation: enabled 2025/01/30 18:51:53 802.15.4 emulation: enabled 2025/01/30 18:51:53 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/30 18:51:53 fetching corpus: 1, signal 2361/4825 (executing program) 2025/01/30 18:51:53 fetching corpus: 1, signal 2361/6044 (executing program) 2025/01/30 18:51:53 fetching corpus: 1, signal 2361/6106 (executing program) 2025/01/30 18:51:53 fetching corpus: 1, signal 2361/6106 (executing program) 2025/01/30 18:51:55 starting 8 fuzzer processes 18:51:55 executing program 0: msgsnd(0xffffffffffffffff, &(0x7f0000000180), 0x8, 0x0) 18:51:55 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x0, 0x0, 0x0) 18:51:55 executing program 2: dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x20f805e889f9eaaf) 18:51:55 executing program 3: io_setup(0x80572, &(0x7f0000000040)) 18:51:55 executing program 4: lchown(0x0, 0xffffffffffffffff, 0xffffffffffffffff) [ 83.750824] audit: type=1400 audit(1738263115.711:7): avc: denied { execmem } for pid=273 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:51:55 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x2b, 0x0, &(0x7f0000000140)=0x47) 18:51:55 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, 0x0) 18:51:55 executing program 5: perf_event_open$cgroup(&(0x7f0000001840)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 85.442663] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.449711] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.452143] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.461795] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.464940] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.465720] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.469108] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.473618] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.478772] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.481508] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.483588] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.486055] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.495011] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.503845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.509186] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.521291] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.533606] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 85.538886] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 85.539015] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.549621] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 85.551695] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.554250] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 85.555709] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.558701] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.560493] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 85.565458] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.570982] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 85.572716] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 85.577705] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.580775] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 85.584413] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.588089] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 85.590024] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 85.592705] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 85.594776] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 85.600034] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 85.606243] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.607719] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 85.609624] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 85.611667] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 85.618198] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 85.627718] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 85.629790] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 85.632508] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 85.637064] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 85.642755] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 85.645268] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 85.646985] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 87.584449] Bluetooth: hci1: command tx timeout [ 87.585090] Bluetooth: hci0: command tx timeout [ 87.647464] Bluetooth: hci3: command tx timeout [ 87.711516] Bluetooth: hci6: command tx timeout [ 87.712524] Bluetooth: hci7: command tx timeout [ 87.712616] Bluetooth: hci4: command tx timeout [ 87.713156] Bluetooth: hci2: command tx timeout [ 87.775490] Bluetooth: hci5: command tx timeout [ 89.633426] Bluetooth: hci0: command tx timeout [ 89.634028] Bluetooth: hci1: command tx timeout [ 89.696511] Bluetooth: hci3: command tx timeout [ 89.759525] Bluetooth: hci4: command tx timeout [ 89.760138] Bluetooth: hci7: command tx timeout [ 89.760932] Bluetooth: hci2: command tx timeout [ 89.761542] Bluetooth: hci6: command tx timeout [ 89.824435] Bluetooth: hci5: command tx timeout [ 91.681472] Bluetooth: hci0: command tx timeout [ 91.682331] Bluetooth: hci1: command tx timeout [ 91.743511] Bluetooth: hci3: command tx timeout [ 91.807728] Bluetooth: hci7: command tx timeout [ 91.808856] Bluetooth: hci6: command tx timeout [ 91.808900] Bluetooth: hci2: command tx timeout [ 91.809817] Bluetooth: hci4: command tx timeout [ 91.871574] Bluetooth: hci5: command tx timeout [ 93.728492] Bluetooth: hci1: command tx timeout [ 93.728993] Bluetooth: hci0: command tx timeout [ 93.792444] Bluetooth: hci3: command tx timeout [ 93.855503] Bluetooth: hci2: command tx timeout [ 93.856058] Bluetooth: hci6: command tx timeout [ 93.856668] Bluetooth: hci7: command tx timeout [ 93.857090] Bluetooth: hci4: command tx timeout [ 93.919688] Bluetooth: hci5: command tx timeout [ 145.056081] syz-executor.0 (284) used greatest stack depth: 23536 bytes left [ 147.562436] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 147.566807] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 147.577121] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 147.582965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 147.587088] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 147.589942] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 147.715830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 147.719930] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 147.722122] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 147.727795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 147.733165] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 147.736299] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 147.762480] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 147.770955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 147.773244] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 147.788245] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 147.792157] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 147.795047] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 147.908282] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 147.911755] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 147.914841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 147.923034] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 147.943686] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 147.948816] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 147.974554] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 147.984802] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 147.999920] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 148.049383] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 148.056466] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 148.068060] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 148.096325] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 148.098971] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 148.181385] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 148.221089] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 148.243065] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 148.243926] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 148.261610] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 148.269627] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 148.275612] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 148.304319] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 148.323944] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 148.332662] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 148.334621] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 148.338077] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 148.339622] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 148.340547] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 148.379769] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 148.393698] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 149.663708] Bluetooth: hci0: command tx timeout [ 149.792903] Bluetooth: hci1: command tx timeout [ 149.855538] Bluetooth: hci2: command tx timeout [ 149.983689] Bluetooth: hci3: command tx timeout [ 150.239594] Bluetooth: hci4: command tx timeout [ 150.303525] Bluetooth: hci6: command tx timeout [ 150.367538] Bluetooth: hci5: command tx timeout [ 150.687596] Bluetooth: hci7: command tx timeout [ 151.711515] Bluetooth: hci0: command tx timeout [ 151.839492] Bluetooth: hci1: command tx timeout [ 151.904556] Bluetooth: hci2: command tx timeout [ 152.031926] Bluetooth: hci3: command tx timeout [ 152.288528] Bluetooth: hci4: command tx timeout [ 152.352152] Bluetooth: hci6: command tx timeout [ 152.415575] Bluetooth: hci5: command tx timeout [ 152.736401] Bluetooth: hci7: command tx timeout [ 153.759563] Bluetooth: hci0: command tx timeout [ 153.887436] Bluetooth: hci1: command tx timeout [ 153.953546] Bluetooth: hci2: command tx timeout [ 154.079503] Bluetooth: hci3: command tx timeout [ 154.335452] Bluetooth: hci4: command tx timeout [ 154.399431] Bluetooth: hci6: command tx timeout [ 154.463448] Bluetooth: hci5: command tx timeout [ 154.783617] Bluetooth: hci7: command tx timeout [ 155.807465] Bluetooth: hci0: command tx timeout [ 155.935532] Bluetooth: hci1: command tx timeout [ 155.999577] Bluetooth: hci2: command tx timeout [ 156.127432] Bluetooth: hci3: command tx timeout [ 156.384406] Bluetooth: hci4: command tx timeout [ 156.447525] Bluetooth: hci6: command tx timeout [ 156.512430] Bluetooth: hci5: command tx timeout [ 156.831597] Bluetooth: hci7: command tx timeout [ 210.282299] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 210.284625] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 210.286650] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 210.293263] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 210.295770] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 210.297447] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 210.409881] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 210.411948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 210.419677] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 210.429859] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 210.432133] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 210.435988] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 210.468163] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 210.470576] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 210.491224] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 210.499840] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 210.505273] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 210.509801] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 210.581206] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 210.586687] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 210.596659] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 210.604183] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 210.605869] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 210.607883] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 210.612750] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 210.615883] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 210.621906] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 210.622872] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 210.624977] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 210.625823] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 210.628899] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 210.634164] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 210.639589] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 210.640301] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 210.649956] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 210.671797] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 210.684578] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 210.690583] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 210.694624] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 210.714676] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 210.753106] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 210.756908] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 210.854030] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 210.869615] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 210.870990] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 210.874817] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 210.878565] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 210.879876] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 212.320438] Bluetooth: hci0: command tx timeout [ 212.511427] Bluetooth: hci1: command tx timeout [ 212.577401] Bluetooth: hci2: command tx timeout [ 212.767474] Bluetooth: hci5: command tx timeout [ 212.768466] Bluetooth: hci3: command tx timeout [ 212.769024] Bluetooth: hci4: command tx timeout [ 212.831441] Bluetooth: hci6: command tx timeout [ 212.959515] Bluetooth: hci7: command tx timeout [ 214.367488] Bluetooth: hci0: command tx timeout [ 214.560429] Bluetooth: hci1: command tx timeout [ 214.623487] Bluetooth: hci2: command tx timeout [ 214.815875] Bluetooth: hci3: command tx timeout [ 214.816692] Bluetooth: hci4: command tx timeout [ 214.817443] Bluetooth: hci5: command tx timeout [ 214.880676] Bluetooth: hci6: command tx timeout [ 215.007448] Bluetooth: hci7: command tx timeout [ 216.417363] Bluetooth: hci0: command tx timeout [ 216.608416] Bluetooth: hci1: command tx timeout [ 216.671437] Bluetooth: hci2: command tx timeout [ 216.863472] Bluetooth: hci5: command tx timeout [ 216.864437] Bluetooth: hci4: command tx timeout [ 216.864490] Bluetooth: hci3: command tx timeout [ 216.927402] Bluetooth: hci6: command tx timeout [ 217.055500] Bluetooth: hci7: command tx timeout [ 218.463390] Bluetooth: hci0: command tx timeout [ 218.657382] Bluetooth: hci1: command tx timeout [ 218.719393] Bluetooth: hci2: command tx timeout [ 218.911403] Bluetooth: hci4: command tx timeout [ 218.911493] Bluetooth: hci5: command tx timeout [ 218.912400] Bluetooth: hci3: command tx timeout [ 218.975744] Bluetooth: hci6: command tx timeout [ 219.103778] Bluetooth: hci7: command tx timeout [ 268.048677] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 268.049556] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 268.370777] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 268.371485] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 268.722929] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 268.724183] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 269.089963] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 269.090761] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 270.236474] [ 270.236809] ====================================================== [ 270.237662] WARNING: possible circular locking dependency detected [ 270.238521] 6.13.0-next-20250130 #1 Not tainted [ 270.239611] ------------------------------------------------------ [ 270.240785] kworker/u8:0/11 is trying to acquire lock: [ 270.241884] ffffffff86219b68 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.243755] [ 270.243755] but task is already holding lock: [ 270.244902] ffff888034280768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 270.246803] [ 270.246803] which lock already depends on the new lock. [ 270.246803] [ 270.248327] [ 270.248327] the existing dependency chain (in reverse order) is: [ 270.250199] [ 270.250199] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 270.251603] __mutex_lock+0x13d/0xb50 [ 270.252542] wiphy_register+0x1b2e/0x25d0 [ 270.253544] ieee80211_register_hw+0x23a4/0x3d60 [ 270.254758] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 270.256201] init_mac80211_hwsim+0x389/0x870 [ 270.256955] do_one_initcall+0xf9/0x640 [ 270.257647] kernel_init_freeable+0x53d/0x7a0 [ 270.258412] kernel_init+0x1e/0x2d0 [ 270.259011] ret_from_fork+0x48/0x80 [ 270.259628] ret_from_fork_asm+0x1a/0x30 [ 270.260331] [ 270.260331] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 270.261197] __lock_acquire+0x29fd/0x4580 [ 270.261889] lock_acquire+0x19b/0x520 [ 270.262543] __mutex_lock+0x13d/0xb50 [ 270.263199] unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.264072] unregister_netdevice_queue+0x224/0x2e0 [ 270.264861] _cfg80211_unregister_wdev+0x57b/0x700 [ 270.265662] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 270.266460] ieee80211_unregister_hw+0x55/0x3a0 [ 270.267204] hwsim_exit_net+0x3a0/0x730 [ 270.267870] ops_exit_list+0xb3/0x180 [ 270.268514] cleanup_net+0x546/0xad0 [ 270.269172] process_one_work+0x8ee/0x1a10 [ 270.269908] worker_thread+0x674/0xe70 [ 270.270607] kthread+0x3ab/0x720 [ 270.271216] ret_from_fork+0x48/0x80 [ 270.271832] ret_from_fork_asm+0x1a/0x30 [ 270.272563] [ 270.272563] other info that might help us debug this: [ 270.272563] [ 270.273626] Possible unsafe locking scenario: [ 270.273626] [ 270.274439] CPU0 CPU1 [ 270.275076] ---- ---- [ 270.275728] lock(&rdev->wiphy.mtx); [ 270.276299] lock(rtnl_mutex); [ 270.277123] lock(&rdev->wiphy.mtx); [ 270.278017] lock(rtnl_mutex); [ 270.278528] [ 270.278528] *** DEADLOCK *** [ 270.278528] [ 270.279341] 4 locks held by kworker/u8:0/11: [ 270.279981] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 270.281429] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 270.282824] #2: ffffffff8620db90 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 270.284110] #3: ffff888034280768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 270.285526] [ 270.285526] stack backtrace: [ 270.286146] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-next-20250130 #1 [ 270.286208] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 270.286244] Workqueue: netns cleanup_net [ 270.286313] Call Trace: [ 270.286331] [ 270.286351] dump_stack_lvl+0xca/0x120 [ 270.286447] print_circular_bug+0x47b/0x750 [ 270.286526] check_noncircular+0x2e9/0x3c0 [ 270.286597] ? __pfx_check_noncircular+0x10/0x10 [ 270.286668] ? hlock_class+0x4e/0x130 [ 270.286719] ? mark_lock+0xac/0xed0 [ 270.286788] ? srso_return_thunk+0x5/0x5f [ 270.286882] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 270.286958] ? lockdep_lock+0xba/0x1b0 [ 270.287057] ? __pfx_lockdep_lock+0x10/0x10 [ 270.287164] __lock_acquire+0x29fd/0x4580 [ 270.287256] ? __pfx___lock_acquire+0x10/0x10 [ 270.287329] ? lock_release+0x20f/0x6f0 [ 270.287404] ? __pfx_lock_release+0x10/0x10 [ 270.287486] lock_acquire+0x19b/0x520 [ 270.287560] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.287641] ? __pfx_lock_acquire+0x10/0x10 [ 270.287718] ? srso_return_thunk+0x5/0x5f [ 270.287811] ? lock_release+0x20f/0x6f0 [ 270.287886] ? srso_return_thunk+0x5/0x5f [ 270.287979] ? lock_is_held_type+0x9e/0x120 [ 270.288077] ? srso_return_thunk+0x5/0x5f [ 270.288176] __mutex_lock+0x13d/0xb50 [ 270.288265] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.288340] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.288417] ? srso_return_thunk+0x5/0x5f [ 270.288511] ? synchronize_rcu_expedited+0x38a/0x420 [ 270.288584] ? __pfx___mutex_lock+0x10/0x10 [ 270.288676] ? __pfx_autoremove_wake_function+0x10/0x10 [ 270.288767] ? srso_return_thunk+0x5/0x5f [ 270.288861] ? kasan_quarantine_put+0x84/0x1e0 [ 270.288964] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 270.289023] ? srso_return_thunk+0x5/0x5f [ 270.289124] unregister_netdevice_many_notify+0x1612/0x1c80 [ 270.289201] ? __virt_addr_valid+0x2e8/0x5d0 [ 270.289290] ? __pfx_lock_release+0x10/0x10 [ 270.289366] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 270.289443] ? find_held_lock+0x2c/0x110 [ 270.289543] ? srso_return_thunk+0x5/0x5f [ 270.289640] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 270.289740] ? srso_return_thunk+0x5/0x5f [ 270.289834] ? lock_release+0x20f/0x6f0 [ 270.289909] ? __pfx_lock_release+0x10/0x10 [ 270.289998] ? srso_return_thunk+0x5/0x5f [ 270.290092] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 270.290172] ? srso_return_thunk+0x5/0x5f [ 270.290275] unregister_netdevice_queue+0x224/0x2e0 [ 270.290348] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 270.290421] ? up_write+0x195/0x520 [ 270.290514] _cfg80211_unregister_wdev+0x57b/0x700 [ 270.290603] ? srso_return_thunk+0x5/0x5f [ 270.290702] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 270.290766] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 270.290830] ? srso_return_thunk+0x5/0x5f [ 270.290923] ? srso_return_thunk+0x5/0x5f [ 270.291017] ? synchronize_rcu+0x1ff/0x260 [ 270.291089] ieee80211_unregister_hw+0x55/0x3a0 [ 270.291164] hwsim_exit_net+0x3a0/0x730 [ 270.291234] ? __pfx_hwsim_exit_net+0x10/0x10 [ 270.291302] ? srso_return_thunk+0x5/0x5f [ 270.291395] ? netdev_run_todo+0x788/0x1040 [ 270.291477] ? __pfx_hwsim_exit_net+0x10/0x10 [ 270.291548] ops_exit_list+0xb3/0x180 [ 270.291619] cleanup_net+0x546/0xad0 [ 270.291694] ? __pfx_cleanup_net+0x10/0x10 [ 270.291784] process_one_work+0x8ee/0x1a10 [ 270.291896] ? __pfx_lock_acquire+0x10/0x10 [ 270.291972] ? __pfx_process_one_work+0x10/0x10 [ 270.292073] ? srso_return_thunk+0x5/0x5f [ 270.292166] ? move_linked_works+0x172/0x270 [ 270.292241] ? srso_return_thunk+0x5/0x5f [ 270.292335] ? assign_work+0x196/0x240 [ 270.292433] worker_thread+0x674/0xe70 [ 270.292533] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 270.292622] ? __pfx_worker_thread+0x10/0x10 [ 270.292725] kthread+0x3ab/0x720 [ 270.292814] ? __pfx_kthread+0x10/0x10 [ 270.292903] ? srso_return_thunk+0x5/0x5f [ 270.292997] ? finish_task_switch.isra.0+0x206/0x840 [ 270.293083] ? __pfx_kthread+0x10/0x10 [ 270.293175] ret_from_fork+0x48/0x80 [ 270.293228] ? __pfx_kthread+0x10/0x10 [ 270.293324] ret_from_fork_asm+0x1a/0x30 [ 270.293438] [ 272.363290] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 272.366720] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 272.370810] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 272.374377] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 272.376993] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 272.380602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 272.686464] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 272.689854] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 272.694966] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 272.708490] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 272.713141] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 272.714890] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 272.816500] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 272.820893] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 272.825460] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 272.830017] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 272.833692] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 272.839965] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 272.939762] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 272.941505] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 272.944566] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 272.962569] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 272.970184] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 272.978472] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 273.079532] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 273.082876] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 273.088760] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 273.094272] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 273.108641] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 273.111626] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 273.116737] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 273.118066] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 273.120972] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 273.123246] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 273.125246] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 273.131057] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 273.135584] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 273.137994] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 273.146001] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 273.150805] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 273.159078] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 273.164153] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 273.167595] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 273.170947] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 273.172607] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 273.204635] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 273.259797] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 273.273282] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 274.399423] Bluetooth: hci0: command tx timeout [ 274.784406] Bluetooth: hci1: command tx timeout [ 274.911406] Bluetooth: hci2: command tx timeout [ 275.039480] Bluetooth: hci3: command tx timeout [ 275.231500] Bluetooth: hci7: command tx timeout [ 275.359427] Bluetooth: hci4: command tx timeout [ 275.360397] Bluetooth: hci6: command tx timeout [ 275.426526] Bluetooth: hci5: command tx timeout [ 276.447726] Bluetooth: hci0: command tx timeout [ 276.831438] Bluetooth: hci1: command tx timeout [ 276.959408] Bluetooth: hci2: command tx timeout [ 277.087387] Bluetooth: hci3: command tx timeout [ 277.279408] Bluetooth: hci7: command tx timeout [ 277.407580] Bluetooth: hci4: command tx timeout [ 277.408182] Bluetooth: hci6: command tx timeout [ 277.472447] Bluetooth: hci5: command tx timeout [ 278.495459] Bluetooth: hci0: command tx timeout [ 278.879442] Bluetooth: hci1: command tx timeout [ 279.007349] Bluetooth: hci2: command tx timeout [ 279.135411] Bluetooth: hci3: command tx timeout [ 279.327355] Bluetooth: hci7: command tx timeout [ 279.455385] Bluetooth: hci6: command tx timeout [ 279.455873] Bluetooth: hci4: command tx timeout [ 279.519436] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 18:55:02 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf412c0 RCX=ffffffff816649c2 RDX=ffff888009c75340 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880300ef7c8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000003 R12=ffffed100d9e8259 R13=ffff88806cf412c8 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff816649c5 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a7bd428ea8 CR3=000000000c16e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=7269762f736563697665642f7379732f XMM01=006c6175747269762f73656369766564 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=000055a7bd45e5a000000000ffffffff XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000200000000000000020000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283d2d5 RDI=ffffffff88693060 RBP=ffffffff88693020 RSP=ffff8880095deca0 R8 =0000000000000000 R9 =ffffed10016bf046 R10=0000000000000020 R11=6d20202020202020 R12=0000000000000020 R13=0000000000000010 R14=ffffffff88693020 R15=ffffffff8283d2c0 RIP=ffffffff8283d32d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fba7b1cd040 CR3=00000000343f6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffff00ffffffffffffffff XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=00000000000000000000000000000000 XMM05=000055a7bd3fbca0000055a7bd425880 XMM06=000055a7bd425b800000000200000000 XMM07=00000001ffffffff000055a7bd437bd0 XMM08=7269762f736563697665642f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000200000000000000020000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000