Warning: Permanently added '[localhost]:62102' (ECDSA) to the list of known hosts. 2025/01/30 20:35:32 fuzzer started 2025/01/30 20:35:33 dialing manager at localhost:46401 syzkaller login: [ 68.841201] cgroup: Unknown subsys name 'net' [ 68.932918] cgroup: Unknown subsys name 'cpuset' [ 68.971671] cgroup: Unknown subsys name 'rlimit' 2025/01/30 20:35:50 syscalls: 2217 2025/01/30 20:35:50 code coverage: enabled 2025/01/30 20:35:50 comparison tracing: enabled 2025/01/30 20:35:50 extra coverage: enabled 2025/01/30 20:35:50 setuid sandbox: enabled 2025/01/30 20:35:50 namespace sandbox: enabled 2025/01/30 20:35:50 Android sandbox: enabled 2025/01/30 20:35:50 fault injection: enabled 2025/01/30 20:35:50 leak checking: enabled 2025/01/30 20:35:50 net packet injection: enabled 2025/01/30 20:35:50 net device setup: enabled 2025/01/30 20:35:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/30 20:35:50 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/30 20:35:50 USB emulation: enabled 2025/01/30 20:35:50 hci packet injection: enabled 2025/01/30 20:35:50 wifi device emulation: enabled 2025/01/30 20:35:50 802.15.4 emulation: enabled 2025/01/30 20:35:50 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/30 20:35:50 fetching corpus: 1, signal 2361/4817 (executing program) 2025/01/30 20:35:50 fetching corpus: 1, signal 2361/6037 (executing program) 2025/01/30 20:35:50 fetching corpus: 1, signal 2361/6106 (executing program) 2025/01/30 20:35:50 fetching corpus: 1, signal 2361/6106 (executing program) 2025/01/30 20:35:54 starting 8 fuzzer processes 20:35:54 executing program 2: inotify_init1(0x0) 20:35:54 executing program 0: io_setup(0x5, &(0x7f0000000140)=0x0) io_submit(r0, 0x0, 0x0) 20:35:54 executing program 1: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000008c0)='permit_directio', 0x0, r1) 20:35:54 executing program 3: syz_usb_connect_ath9k(0x3, 0x0, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) [ 90.243738] audit: type=1400 audit(1738269354.678:7): avc: denied { execmem } for pid=275 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:35:54 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f736617e43c00088020000200000004f80000200040000000000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="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", 0x120, 0x11000}, {&(0x7f0000010800)="2e2020202020202020202010001fe870325132510000e87032510300000000002e2e20202020202020202010001fe870325132510000e870325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202020001fe870325132510000e870325104001a040000", 0x80, 0x51000}, {&(0x7f0000010900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x91000}, {&(0x7f0000010e00)='syzkallers\x00'/32, 0x20, 0xd1000}, {&(0x7f0000010f00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x151000}], 0x0, &(0x7f0000011000)) 20:35:54 executing program 6: mq_getsetattr(0xffffffffffffffff, 0x0, 0x0) 20:35:54 executing program 5: io_setup(0x572, &(0x7f0000000140)=0x0) io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) 20:35:54 executing program 7: openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x28182, 0x0) [ 91.656508] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 91.659613] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 91.662272] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 91.669304] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 91.676418] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 91.680505] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 91.796103] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 91.806122] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 91.809295] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 91.811495] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 91.820281] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 91.822831] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 91.827289] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 91.828772] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 91.830850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 91.843654] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 91.853063] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.864441] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.866687] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.869627] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 91.872652] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 91.888457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.891692] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.894000] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.965314] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 91.967883] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 91.971530] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 91.974107] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 91.975831] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 91.976427] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 91.982379] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 91.985440] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 91.987787] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 91.989554] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.001625] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.008338] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.035528] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.044966] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.064273] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.065851] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.074506] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.076536] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.093344] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.094793] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.102072] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.103511] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.105405] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 92.107149] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 93.742565] Bluetooth: hci0: command tx timeout [ 93.870271] Bluetooth: hci1: command tx timeout [ 93.933180] Bluetooth: hci3: command tx timeout [ 93.935184] Bluetooth: hci2: command tx timeout [ 94.061331] Bluetooth: hci4: command tx timeout [ 94.062752] Bluetooth: hci5: command tx timeout [ 94.189175] Bluetooth: hci6: command tx timeout [ 94.189258] Bluetooth: hci7: command tx timeout [ 95.788997] Bluetooth: hci0: command tx timeout [ 95.919026] Bluetooth: hci1: command tx timeout [ 95.981068] Bluetooth: hci2: command tx timeout [ 95.981547] Bluetooth: hci3: command tx timeout [ 96.109561] Bluetooth: hci4: command tx timeout [ 96.110565] Bluetooth: hci5: command tx timeout [ 96.237218] Bluetooth: hci6: command tx timeout [ 96.239965] Bluetooth: hci7: command tx timeout [ 97.837353] Bluetooth: hci0: command tx timeout [ 97.966142] Bluetooth: hci1: command tx timeout [ 98.029082] Bluetooth: hci3: command tx timeout [ 98.029140] Bluetooth: hci2: command tx timeout [ 98.157209] Bluetooth: hci4: command tx timeout [ 98.158072] Bluetooth: hci5: command tx timeout [ 98.286575] Bluetooth: hci7: command tx timeout [ 98.286624] Bluetooth: hci6: command tx timeout [ 99.886794] Bluetooth: hci0: command tx timeout [ 100.013032] Bluetooth: hci1: command tx timeout [ 100.077130] Bluetooth: hci2: command tx timeout [ 100.078148] Bluetooth: hci3: command tx timeout [ 100.205009] Bluetooth: hci4: command tx timeout [ 100.208127] Bluetooth: hci5: command tx timeout [ 100.333163] Bluetooth: hci7: command tx timeout [ 100.334089] Bluetooth: hci6: command tx timeout [ 151.492646] syz-executor.2 (285) used greatest stack depth: 23248 bytes left [ 154.039049] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.044327] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.050616] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.055832] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.058340] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.059447] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.232579] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.234217] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.235954] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.240199] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.245310] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.246578] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.249440] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.252523] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.256365] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.258420] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 154.263426] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.266235] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.267616] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.267637] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 154.269090] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 154.270528] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 154.282244] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.283438] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.290311] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.297462] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.299821] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.300730] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.301944] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.304040] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.502688] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.507662] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.514230] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.515046] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.521295] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.522151] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.548759] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.551750] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.557140] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.558294] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.559539] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 154.565138] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.659355] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.675737] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.683607] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.688087] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.701014] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.706053] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.077089] Bluetooth: hci0: command tx timeout [ 156.333284] Bluetooth: hci4: command tx timeout [ 156.334190] Bluetooth: hci2: command tx timeout [ 156.334717] Bluetooth: hci3: command tx timeout [ 156.525101] Bluetooth: hci1: command tx timeout [ 156.654124] Bluetooth: hci5: command tx timeout [ 156.717093] Bluetooth: hci6: command tx timeout [ 156.781094] Bluetooth: hci7: command tx timeout [ 158.125212] Bluetooth: hci0: command tx timeout [ 158.381335] Bluetooth: hci3: command tx timeout [ 158.381435] Bluetooth: hci2: command tx timeout [ 158.382374] Bluetooth: hci4: command tx timeout [ 158.574095] Bluetooth: hci1: command tx timeout [ 158.702132] Bluetooth: hci5: command tx timeout [ 158.765861] Bluetooth: hci6: command tx timeout [ 158.829023] Bluetooth: hci7: command tx timeout [ 160.174090] Bluetooth: hci0: command tx timeout [ 160.429260] Bluetooth: hci2: command tx timeout [ 160.429763] Bluetooth: hci4: command tx timeout [ 160.430351] Bluetooth: hci3: command tx timeout [ 160.622250] Bluetooth: hci1: command tx timeout [ 160.750131] Bluetooth: hci5: command tx timeout [ 160.814142] Bluetooth: hci6: command tx timeout [ 160.878098] Bluetooth: hci7: command tx timeout [ 162.221077] Bluetooth: hci0: command tx timeout [ 162.477051] Bluetooth: hci2: command tx timeout [ 162.478076] Bluetooth: hci4: command tx timeout [ 162.478514] Bluetooth: hci3: command tx timeout [ 162.669003] Bluetooth: hci1: command tx timeout [ 162.797016] Bluetooth: hci5: command tx timeout [ 162.861053] Bluetooth: hci6: command tx timeout [ 162.924983] Bluetooth: hci7: command tx timeout [ 216.444355] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.450856] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.452628] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.456687] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.460590] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.462137] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.568531] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.570817] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.572437] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.577129] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.579661] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 216.580713] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 216.786158] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.793459] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 216.795366] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.799470] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 216.802256] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.813749] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 216.815778] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 216.816820] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 216.819299] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 216.828286] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.829207] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 216.831446] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 216.833182] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 216.834407] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.839607] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 216.851860] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 216.856436] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 216.858039] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 216.861075] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 216.863095] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 216.866318] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 216.868475] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 216.910190] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 216.911320] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 216.952436] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 216.955656] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 216.965988] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 216.974100] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 216.978758] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 216.981049] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.039185] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.043563] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.044845] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.048575] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.052071] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.054225] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 218.477049] Bluetooth: hci0: command tx timeout [ 218.606024] Bluetooth: hci1: command tx timeout [ 218.925164] Bluetooth: hci4: command tx timeout [ 218.925974] Bluetooth: hci5: command tx timeout [ 218.926478] Bluetooth: hci2: command tx timeout [ 219.054001] Bluetooth: hci3: command tx timeout [ 219.054629] Bluetooth: hci6: command tx timeout [ 219.565131] Bluetooth: hci7: command tx timeout [ 220.527016] Bluetooth: hci0: command tx timeout [ 220.653190] Bluetooth: hci1: command tx timeout [ 220.973092] Bluetooth: hci4: command tx timeout [ 220.973700] Bluetooth: hci2: command tx timeout [ 220.974335] Bluetooth: hci5: command tx timeout [ 221.101054] Bluetooth: hci3: command tx timeout [ 221.101624] Bluetooth: hci6: command tx timeout [ 221.613023] Bluetooth: hci7: command tx timeout [ 222.573073] Bluetooth: hci0: command tx timeout [ 222.701139] Bluetooth: hci1: command tx timeout [ 223.021130] Bluetooth: hci4: command tx timeout [ 223.021634] Bluetooth: hci2: command tx timeout [ 223.022290] Bluetooth: hci5: command tx timeout [ 223.150937] Bluetooth: hci3: command tx timeout [ 223.151439] Bluetooth: hci6: command tx timeout [ 223.660987] Bluetooth: hci7: command tx timeout [ 224.621074] Bluetooth: hci0: command tx timeout [ 224.748970] Bluetooth: hci1: command tx timeout [ 225.069978] Bluetooth: hci5: command tx timeout [ 225.070505] Bluetooth: hci2: command tx timeout [ 225.071606] Bluetooth: hci4: command tx timeout [ 225.197159] Bluetooth: hci6: command tx timeout [ 225.197672] Bluetooth: hci3: command tx timeout [ 225.709042] Bluetooth: hci7: command tx timeout [ 276.557953] [ 276.558181] ====================================================== [ 276.558684] WARNING: possible circular locking dependency detected [ 276.559195] 6.13.0-next-20250130 #1 Not tainted [ 276.559587] ------------------------------------------------------ [ 276.560405] kworker/u8:1/66 is trying to acquire lock: [ 276.560822] ffffffff86219b68 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.561719] [ 276.561719] but task is already holding lock: [ 276.562296] ffff88802d490768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 276.563233] [ 276.563233] which lock already depends on the new lock. [ 276.563233] [ 276.565054] [ 276.565054] the existing dependency chain (in reverse order) is: [ 276.566674] [ 276.566674] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 276.567232] __mutex_lock+0x13d/0xb50 [ 276.567633] wiphy_register+0x1b2e/0x25d0 [ 276.568061] ieee80211_register_hw+0x23a4/0x3d60 [ 276.568531] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 276.570467] init_mac80211_hwsim+0x389/0x870 [ 276.570933] do_one_initcall+0xf9/0x640 [ 276.571361] kernel_init_freeable+0x53d/0x7a0 [ 276.571803] kernel_init+0x1e/0x2d0 [ 276.572148] ret_from_fork+0x48/0x80 [ 276.572503] ret_from_fork_asm+0x1a/0x30 [ 276.572934] [ 276.572934] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 276.573459] __lock_acquire+0x29fd/0x4580 [ 276.573884] lock_acquire+0x19b/0x520 [ 276.574287] __mutex_lock+0x13d/0xb50 [ 276.574688] unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.575232] unregister_netdevice_queue+0x224/0x2e0 [ 276.575714] _cfg80211_unregister_wdev+0x57b/0x700 [ 276.576207] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 276.576694] ieee80211_unregister_hw+0x55/0x3a0 [ 276.577155] hwsim_exit_net+0x3a0/0x730 [ 276.577567] ops_exit_list+0xb3/0x180 [ 276.577966] cleanup_net+0x546/0xad0 [ 276.578357] process_one_work+0x8ee/0x1a10 [ 276.578811] worker_thread+0x674/0xe70 [ 276.579230] kthread+0x3ab/0x720 [ 276.579607] ret_from_fork+0x48/0x80 [ 276.579985] ret_from_fork_asm+0x1a/0x30 [ 276.580416] [ 276.580416] other info that might help us debug this: [ 276.580416] [ 276.581062] Possible unsafe locking scenario: [ 276.581062] [ 276.581562] CPU0 CPU1 [ 276.581956] ---- ---- [ 276.582342] lock(&rdev->wiphy.mtx); [ 276.582688] lock(rtnl_mutex); [ 276.583191] lock(&rdev->wiphy.mtx); [ 276.583733] lock(rtnl_mutex); [ 276.584045] [ 276.584045] *** DEADLOCK *** [ 276.584045] [ 276.584539] 4 locks held by kworker/u8:1/66: [ 276.584920] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 276.585792] #1: ffff88800bb7fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 276.586641] #2: ffffffff8620db90 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 276.587440] #3: ffff88802d490768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 276.588328] [ 276.588328] stack backtrace: [ 276.588710] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-next-20250130 #1 [ 276.588747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 276.588770] Workqueue: netns cleanup_net [ 276.588812] Call Trace: [ 276.588822] [ 276.588834] dump_stack_lvl+0xca/0x120 [ 276.588893] print_circular_bug+0x47b/0x750 [ 276.588940] check_noncircular+0x2e9/0x3c0 [ 276.588984] ? __pfx_check_noncircular+0x10/0x10 [ 276.589027] ? hlock_class+0x4e/0x130 [ 276.589057] ? mark_lock+0xac/0xed0 [ 276.589100] ? srso_return_thunk+0x5/0x5f [ 276.589160] ? lockdep_lock+0xba/0x1b0 [ 276.589219] ? __pfx_lockdep_lock+0x10/0x10 [ 276.589284] __lock_acquire+0x29fd/0x4580 [ 276.589339] ? __pfx___lock_acquire+0x10/0x10 [ 276.589383] ? lock_release+0x20f/0x6f0 [ 276.589429] ? __pfx_lock_release+0x10/0x10 [ 276.589478] lock_acquire+0x19b/0x520 [ 276.589523] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.589572] ? __pfx_lock_acquire+0x10/0x10 [ 276.589618] ? srso_return_thunk+0x5/0x5f [ 276.589675] ? lock_release+0x20f/0x6f0 [ 276.589723] ? srso_return_thunk+0x5/0x5f [ 276.589779] ? lock_is_held_type+0x9e/0x120 [ 276.589835] ? srso_return_thunk+0x5/0x5f [ 276.589896] __mutex_lock+0x13d/0xb50 [ 276.589959] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.590004] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.590051] ? srso_return_thunk+0x5/0x5f [ 276.590108] ? synchronize_rcu_expedited+0x38a/0x420 [ 276.590153] ? __pfx___mutex_lock+0x10/0x10 [ 276.590208] ? __pfx_autoremove_wake_function+0x10/0x10 [ 276.590264] ? srso_return_thunk+0x5/0x5f [ 276.590320] ? kasan_quarantine_put+0x84/0x1e0 [ 276.590384] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 276.590420] ? srso_return_thunk+0x5/0x5f [ 276.590481] unregister_netdevice_many_notify+0x1612/0x1c80 [ 276.590527] ? __virt_addr_valid+0x2e8/0x5d0 [ 276.590582] ? __pfx_lock_release+0x10/0x10 [ 276.590628] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 276.590674] ? find_held_lock+0x2c/0x110 [ 276.590734] ? srso_return_thunk+0x5/0x5f [ 276.590793] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 276.590855] ? srso_return_thunk+0x5/0x5f [ 276.590911] ? lock_release+0x20f/0x6f0 [ 276.590957] ? __pfx_lock_release+0x10/0x10 [ 276.591001] ? srso_return_thunk+0x5/0x5f [ 276.591058] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 276.591106] ? srso_return_thunk+0x5/0x5f [ 276.591168] unregister_netdevice_queue+0x224/0x2e0 [ 276.591212] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 276.591256] ? up_write+0x195/0x520 [ 276.591313] _cfg80211_unregister_wdev+0x57b/0x700 [ 276.591366] ? srso_return_thunk+0x5/0x5f [ 276.591426] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 276.591465] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 276.591503] ? srso_return_thunk+0x5/0x5f [ 276.591560] ? srso_return_thunk+0x5/0x5f [ 276.591616] ? synchronize_rcu+0x1ff/0x260 [ 276.591660] ieee80211_unregister_hw+0x55/0x3a0 [ 276.591705] hwsim_exit_net+0x3a0/0x730 [ 276.591748] ? __pfx_hwsim_exit_net+0x10/0x10 [ 276.591788] ? srso_return_thunk+0x5/0x5f [ 276.591845] ? netdev_run_todo+0x788/0x1040 [ 276.591894] ? __pfx_hwsim_exit_net+0x10/0x10 [ 276.591937] ops_exit_list+0xb3/0x180 [ 276.591980] cleanup_net+0x546/0xad0 [ 276.592026] ? __pfx_cleanup_net+0x10/0x10 [ 276.592080] process_one_work+0x8ee/0x1a10 [ 276.592148] ? __pfx_lock_acquire+0x10/0x10 [ 276.592194] ? __pfx_process_one_work+0x10/0x10 [ 276.592255] ? srso_return_thunk+0x5/0x5f [ 276.592311] ? move_linked_works+0x172/0x270 [ 276.592357] ? srso_return_thunk+0x5/0x5f [ 276.592413] ? assign_work+0x196/0x240 [ 276.592473] worker_thread+0x674/0xe70 [ 276.592533] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 276.592586] ? srso_return_thunk+0x5/0x5f [ 276.592643] ? __pfx_worker_thread+0x10/0x10 [ 276.592705] kthread+0x3ab/0x720 [ 276.592759] ? __pfx_kthread+0x10/0x10 [ 276.592812] ? srso_return_thunk+0x5/0x5f [ 276.592869] ? finish_task_switch.isra.0+0x206/0x840 [ 276.592922] ? __pfx_kthread+0x10/0x10 [ 276.592978] ret_from_fork+0x48/0x80 [ 276.593009] ? __pfx_kthread+0x10/0x10 [ 276.593064] ret_from_fork_asm+0x1a/0x30 [ 276.593133] [ 278.389398] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 278.394110] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 278.396168] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 278.400446] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 278.404319] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 278.406692] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 278.523358] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 278.531384] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 278.534092] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 278.541853] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 278.544805] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 278.546678] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 278.588133] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 278.591337] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 278.593019] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 278.597666] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 278.600026] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 278.603285] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 278.729734] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 278.747717] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 278.749214] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 278.753649] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 278.755570] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 278.761203] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 278.766462] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 278.775673] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 278.784792] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 278.791507] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 278.824163] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 278.825497] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 278.831948] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 278.840226] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 278.848534] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 278.852186] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 278.869755] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 278.875116] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 278.882930] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 278.886679] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 278.891764] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 278.895774] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 278.911260] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 278.913808] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 278.915741] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 278.924229] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 278.928509] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 278.930367] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 278.946702] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 278.967855] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 280.431953] Bluetooth: hci0: command tx timeout [ 280.558118] Bluetooth: hci1: command tx timeout [ 280.621955] Bluetooth: hci2: command tx timeout [ 280.876955] Bluetooth: hci3: command tx timeout [ 280.941354] Bluetooth: hci6: command tx timeout [ 280.942197] Bluetooth: hci4: command tx timeout [ 281.005592] Bluetooth: hci7: command tx timeout [ 281.069990] Bluetooth: hci5: command tx timeout [ 282.477340] Bluetooth: hci0: command tx timeout [ 282.605062] Bluetooth: hci1: command tx timeout [ 282.668966] Bluetooth: hci2: command tx timeout [ 282.925133] Bluetooth: hci3: command tx timeout [ 282.989355] Bluetooth: hci4: command tx timeout [ 282.989929] Bluetooth: hci6: command tx timeout [ 283.052976] Bluetooth: hci7: command tx timeout [ 283.117913] Bluetooth: hci5: command tx timeout [ 284.525176] Bluetooth: hci0: command tx timeout [ 284.653110] Bluetooth: hci1: command tx timeout [ 284.717920] Bluetooth: hci2: command tx timeout [ 284.972946] Bluetooth: hci3: command tx timeout [ 285.036919] Bluetooth: hci4: command tx timeout [ 285.037978] Bluetooth: hci6: command tx timeout [ 285.100942] Bluetooth: hci7: command tx timeout [ 285.164968] Bluetooth: hci5: command tx timeout VM DIAGNOSIS: 20:39:01 Registers: info registers vcpu 0 RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283d2d5 RDI=ffffffff88693060 RBP=ffffffff88693020 RSP=ffff88800bb7ed20 R8 =0000000000000000 R9 =ffffed100152b046 R10=000000000000005b R11=7369786520656874 R12=000000000000005b R13=0000000000000010 R14=ffffffff88693020 R15=ffffffff8283d2c0 RIP=ffffffff8283d32d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055bb33ed8090 CR3=000000001633c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=0000000000000003000055bb33ef5220 XMM05=000055bb33ee38d0000055bb33ee3930 XMM06=000055bb33ef55500000000000000000 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff88800bf1db90 RCX=ffffffff815092a4 RDX=1ffff11003275271 RSI=0000000000000004 RDI=ffff88800f0a7d40 RBP=ffff8880193a9378 RSP=ffff88800f0a7db0 R8 =0000000000000001 R9 =ffffed1001e14fa8 R10=0000000000000003 R11=0000000000000001 R12=ffff888038198ff9 R13=ffff88800bf1db90 R14=ffff88800eb53780 R15=0000000000000086 RIP=ffffffff81aef574 RFL=00000092 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb4511ca4c0 CR3=00000000165d6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004124298000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000