Warning: Permanently added '[localhost]:30249' (ECDSA) to the list of known hosts. 2025/01/18 18:50:32 fuzzer started 2025/01/18 18:50:33 dialing manager at localhost:44245 syzkaller login: [ 69.741795] cgroup: Unknown subsys name 'net' [ 69.822568] cgroup: Unknown subsys name 'cpuset' [ 69.851585] cgroup: Unknown subsys name 'rlimit' [ 76.027125] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 18:50:50 syscalls: 2217 2025/01/18 18:50:50 code coverage: enabled 2025/01/18 18:50:50 comparison tracing: enabled 2025/01/18 18:50:50 extra coverage: enabled 2025/01/18 18:50:50 setuid sandbox: enabled 2025/01/18 18:50:50 namespace sandbox: enabled 2025/01/18 18:50:50 Android sandbox: enabled 2025/01/18 18:50:50 fault injection: enabled 2025/01/18 18:50:50 leak checking: enabled 2025/01/18 18:50:50 net packet injection: enabled 2025/01/18 18:50:50 net device setup: enabled 2025/01/18 18:50:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 18:50:50 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 18:50:50 USB emulation: enabled 2025/01/18 18:50:50 hci packet injection: enabled 2025/01/18 18:50:50 wifi device emulation: enabled 2025/01/18 18:50:50 802.15.4 emulation: enabled 2025/01/18 18:50:50 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 18:50:50 fetching corpus: 50, signal 21228/24405 (executing program) 2025/01/18 18:50:50 fetching corpus: 100, signal 32103/36287 (executing program) 2025/01/18 18:50:50 fetching corpus: 150, signal 42038/46817 (executing program) 2025/01/18 18:50:51 fetching corpus: 200, signal 46565/52114 (executing program) 2025/01/18 18:50:51 fetching corpus: 250, signal 50832/57030 (executing program) 2025/01/18 18:50:51 fetching corpus: 300, signal 58881/65071 (executing program) 2025/01/18 18:50:51 fetching corpus: 350, signal 61920/68538 (executing program) 2025/01/18 18:50:51 fetching corpus: 400, signal 65837/72640 (executing program) 2025/01/18 18:50:51 fetching corpus: 450, signal 72590/78919 (executing program) 2025/01/18 18:50:52 fetching corpus: 500, signal 74276/80904 (executing program) 2025/01/18 18:50:52 fetching corpus: 550, signal 77892/84305 (executing program) 2025/01/18 18:50:52 fetching corpus: 600, signal 81251/87375 (executing program) 2025/01/18 18:50:52 fetching corpus: 650, signal 83073/89233 (executing program) 2025/01/18 18:50:52 fetching corpus: 700, signal 85526/91365 (executing program) 2025/01/18 18:50:52 fetching corpus: 750, signal 87643/93221 (executing program) 2025/01/18 18:50:53 fetching corpus: 800, signal 90389/95432 (executing program) 2025/01/18 18:50:53 fetching corpus: 850, signal 92403/97096 (executing program) 2025/01/18 18:50:53 fetching corpus: 900, signal 93767/98270 (executing program) 2025/01/18 18:50:53 fetching corpus: 950, signal 95087/99342 (executing program) 2025/01/18 18:50:53 fetching corpus: 1000, signal 96876/100656 (executing program) 2025/01/18 18:50:53 fetching corpus: 1050, signal 98083/101558 (executing program) 2025/01/18 18:50:54 fetching corpus: 1100, signal 99732/102693 (executing program) 2025/01/18 18:50:54 fetching corpus: 1150, signal 101235/103680 (executing program) 2025/01/18 18:50:54 fetching corpus: 1200, signal 102678/104534 (executing program) 2025/01/18 18:50:54 fetching corpus: 1250, signal 104443/105523 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105802 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105841 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105883 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105913 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105958 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/105989 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106020 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106054 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106083 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106121 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106166 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106194 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106223 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106245 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106280 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106306 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106331 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106366 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106409 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106446 (executing program) 2025/01/18 18:50:54 fetching corpus: 1266, signal 104934/106482 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106508 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106535 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106560 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106595 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106628 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106658 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106667 (executing program) 2025/01/18 18:50:55 fetching corpus: 1266, signal 104934/106667 (executing program) 2025/01/18 18:50:59 starting 8 fuzzer processes 18:50:59 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) r1 = dup(r0) r2 = dup2(r1, r0) ioctl$EVIOCSMASK(r2, 0x40104593, &(0x7f0000000000)={0x14, 0x0, 0x0}) 18:50:59 executing program 0: syz_emit_ethernet(0xff76, 0x0, 0x0) 18:50:59 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, 0x42, 0x0, 0x101}, 0x14}}, 0x0) 18:50:59 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x29, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='devpts\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x0, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x14}, 0x18) 18:50:59 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2a840, 0x0) io_setup(0x2, &(0x7f0000000000)=0x0) io_submit(r1, 0x2, &(0x7f00000002c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, 0x0}]) 18:50:59 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) setfsuid(0xffffffffffffffff) [ 95.486773] audit: type=1400 audit(1737226259.302:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:50:59 executing program 7: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x1018}, './file0\x00'}) 18:50:59 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10) [ 97.213284] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.215344] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.219180] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.225423] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.229045] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 97.231951] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.455214] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 97.458257] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 97.460598] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 97.464104] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 97.466751] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 97.468327] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 97.472245] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 97.479281] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 97.489750] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 97.511935] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 97.517937] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 97.518596] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 97.521558] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 97.525009] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 97.525368] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 97.546540] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 97.561072] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 97.564975] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 97.598770] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 97.605990] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 97.616364] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 97.617538] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 97.618420] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 97.620387] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 97.630143] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 97.631777] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 97.632216] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 97.633261] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 97.633567] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 97.637012] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 97.641586] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 97.646933] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 97.662463] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 97.667348] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 97.667576] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 97.672038] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 97.672165] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 97.674685] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 97.675623] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 97.679897] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 97.680764] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 97.684947] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 99.289736] Bluetooth: hci0: command tx timeout [ 99.545131] Bluetooth: hci1: command tx timeout [ 99.609113] Bluetooth: hci3: command tx timeout [ 99.609155] Bluetooth: hci2: command tx timeout [ 99.736943] Bluetooth: hci6: command tx timeout [ 99.738899] Bluetooth: hci5: command tx timeout [ 99.801067] Bluetooth: hci7: command tx timeout [ 99.801528] Bluetooth: hci4: command tx timeout [ 101.336928] Bluetooth: hci0: command tx timeout [ 101.592940] Bluetooth: hci1: command tx timeout [ 101.658854] Bluetooth: hci2: command tx timeout [ 101.658915] Bluetooth: hci3: command tx timeout [ 101.785188] Bluetooth: hci6: command tx timeout [ 101.785321] Bluetooth: hci5: command tx timeout [ 101.850877] Bluetooth: hci4: command tx timeout [ 101.850904] Bluetooth: hci7: command tx timeout [ 103.386096] Bluetooth: hci0: command tx timeout [ 103.641452] Bluetooth: hci1: command tx timeout [ 103.705885] Bluetooth: hci2: command tx timeout [ 103.706031] Bluetooth: hci3: command tx timeout [ 103.832942] Bluetooth: hci5: command tx timeout [ 103.833070] Bluetooth: hci6: command tx timeout [ 103.896886] Bluetooth: hci4: command tx timeout [ 103.896913] Bluetooth: hci7: command tx timeout [ 105.434308] Bluetooth: hci0: command tx timeout [ 105.691886] Bluetooth: hci1: command tx timeout [ 105.753967] Bluetooth: hci3: command tx timeout [ 105.754025] Bluetooth: hci2: command tx timeout [ 105.881105] Bluetooth: hci6: command tx timeout [ 105.882353] Bluetooth: hci5: command tx timeout [ 105.945108] Bluetooth: hci4: command tx timeout [ 105.945902] Bluetooth: hci7: command tx timeout [ 158.759062] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 158.766406] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 158.767603] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 158.772308] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 158.777540] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 158.778869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 158.880188] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 158.882230] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 158.883077] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 158.891819] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 158.895005] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 158.896667] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 158.901620] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 158.926260] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 158.931272] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 158.946507] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 158.954443] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 158.957730] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 158.964317] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 158.970913] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 158.983996] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 158.997974] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 159.000571] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 159.002443] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 159.019494] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 159.028677] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 159.030264] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 159.041068] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 159.051660] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 159.057972] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 159.057965] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 159.059506] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 159.060224] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 159.061378] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 159.063359] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 159.064746] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 159.065647] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 159.069710] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 159.070171] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 159.081005] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 159.092387] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 159.098244] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 159.100472] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 159.162351] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 159.168772] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 159.185203] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 159.191157] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 159.206152] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 160.856959] Bluetooth: hci0: command tx timeout [ 160.986914] Bluetooth: hci1: command tx timeout [ 161.049975] Bluetooth: hci2: command tx timeout [ 161.113088] Bluetooth: hci5: command tx timeout [ 161.113112] Bluetooth: hci3: command tx timeout [ 161.177962] Bluetooth: hci7: command tx timeout [ 161.305951] Bluetooth: hci4: command tx timeout [ 161.435877] Bluetooth: hci6: command tx timeout [ 162.904873] Bluetooth: hci0: command tx timeout [ 163.032879] Bluetooth: hci1: command tx timeout [ 163.098037] Bluetooth: hci2: command tx timeout [ 163.161484] Bluetooth: hci3: command tx timeout [ 163.162183] Bluetooth: hci5: command tx timeout [ 163.225082] Bluetooth: hci7: command tx timeout [ 163.353152] Bluetooth: hci4: command tx timeout [ 163.481912] Bluetooth: hci6: command tx timeout [ 164.954869] Bluetooth: hci0: command tx timeout [ 165.081011] Bluetooth: hci1: command tx timeout [ 165.145403] Bluetooth: hci2: command tx timeout [ 165.209002] Bluetooth: hci5: command tx timeout [ 165.209122] Bluetooth: hci3: command tx timeout [ 165.273860] Bluetooth: hci7: command tx timeout [ 165.401868] Bluetooth: hci4: command tx timeout [ 165.529857] Bluetooth: hci6: command tx timeout [ 167.001004] Bluetooth: hci0: command tx timeout [ 167.130139] Bluetooth: hci1: command tx timeout [ 167.194814] Bluetooth: hci2: command tx timeout [ 167.256881] Bluetooth: hci5: command tx timeout [ 167.256971] Bluetooth: hci3: command tx timeout [ 167.322504] Bluetooth: hci7: command tx timeout [ 167.451916] Bluetooth: hci4: command tx timeout [ 167.577928] Bluetooth: hci6: command tx timeout [ 221.035662] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 221.039357] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 221.040340] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 221.046372] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 221.047934] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 221.048610] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 221.164572] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 221.168326] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 221.170553] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 221.180244] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 221.185462] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 221.187406] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 221.350930] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 221.359058] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 221.361118] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 221.373187] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 221.387225] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 221.389236] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 221.492183] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 221.501175] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 221.507591] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 221.520700] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 221.529286] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 221.531092] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 221.531701] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 221.535234] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 221.550138] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 221.557916] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 221.559083] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 221.559954] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 221.562383] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 221.580729] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 221.599114] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 221.608021] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 221.611746] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 221.614217] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 221.618066] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 221.618304] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 221.621986] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 221.627913] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 221.633583] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 221.634297] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 221.636541] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 221.641439] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 221.649989] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 221.673991] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 221.680144] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 221.696487] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 223.131023] Bluetooth: hci0: command tx timeout [ 223.257015] Bluetooth: hci1: command tx timeout [ 223.450887] Bluetooth: hci2: command tx timeout [ 223.642823] Bluetooth: hci3: command tx timeout [ 223.704876] Bluetooth: hci5: command tx timeout [ 223.705286] Bluetooth: hci7: command tx timeout [ 223.768948] Bluetooth: hci4: command tx timeout [ 223.832834] Bluetooth: hci6: command tx timeout [ 225.178014] Bluetooth: hci0: command tx timeout [ 225.306875] Bluetooth: hci1: command tx timeout [ 225.496938] Bluetooth: hci2: command tx timeout [ 225.689113] Bluetooth: hci3: command tx timeout [ 225.753950] Bluetooth: hci7: command tx timeout [ 225.754024] Bluetooth: hci5: command tx timeout [ 225.819172] Bluetooth: hci4: command tx timeout [ 225.880913] Bluetooth: hci6: command tx timeout [ 227.225014] Bluetooth: hci0: command tx timeout [ 227.352910] Bluetooth: hci1: command tx timeout [ 227.546025] Bluetooth: hci2: command tx timeout [ 227.739821] Bluetooth: hci3: command tx timeout [ 227.801190] Bluetooth: hci5: command tx timeout [ 227.801307] Bluetooth: hci7: command tx timeout [ 227.864962] Bluetooth: hci4: command tx timeout [ 227.929121] Bluetooth: hci6: command tx timeout [ 229.272888] Bluetooth: hci0: command tx timeout [ 229.401499] Bluetooth: hci1: command tx timeout [ 229.592895] Bluetooth: hci2: command tx timeout [ 229.784971] Bluetooth: hci3: command tx timeout [ 229.850842] Bluetooth: hci7: command tx timeout [ 229.850940] Bluetooth: hci5: command tx timeout [ 229.914171] Bluetooth: hci4: command tx timeout [ 229.978816] Bluetooth: hci6: command tx timeout [ 283.188669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 283.192686] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 283.195586] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 283.203932] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 283.208186] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 283.210281] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 283.250263] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 283.254113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 283.254950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 283.270053] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 283.271837] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 283.272560] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 283.387023] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 283.389642] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 283.392281] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 283.406722] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 283.418682] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 283.422197] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 283.530512] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 283.546481] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 283.554261] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 283.582388] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 283.587060] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 283.587432] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 283.603204] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 283.608453] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 283.610106] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 283.624993] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 283.635472] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 283.637152] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 283.717065] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 283.728134] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 283.730416] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 283.733541] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 283.734816] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 283.743292] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 283.745581] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 283.759264] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 283.766381] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 283.791098] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 283.801591] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 283.803271] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 283.842242] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 283.846239] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 283.847157] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 283.849910] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 283.855426] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 283.901069] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 285.274737] Bluetooth: hci0: command tx timeout [ 285.336853] Bluetooth: hci1: command tx timeout [ 285.464903] Bluetooth: hci2: command tx timeout [ 285.721071] Bluetooth: hci4: command tx timeout [ 285.722294] Bluetooth: hci3: command tx timeout [ 285.976928] Bluetooth: hci5: command tx timeout [ 285.976994] Bluetooth: hci6: command tx timeout [ 285.977469] Bluetooth: hci7: command tx timeout [ 287.321790] Bluetooth: hci0: command tx timeout [ 287.384917] Bluetooth: hci1: command tx timeout [ 287.512858] Bluetooth: hci2: command tx timeout [ 287.770058] Bluetooth: hci3: command tx timeout [ 287.770165] Bluetooth: hci4: command tx timeout [ 288.025029] Bluetooth: hci5: command tx timeout [ 288.025116] Bluetooth: hci7: command tx timeout [ 288.025202] Bluetooth: hci6: command tx timeout [ 289.369593] Bluetooth: hci0: command tx timeout [ 289.432846] Bluetooth: hci1: command tx timeout [ 289.560876] Bluetooth: hci2: command tx timeout [ 289.816856] Bluetooth: hci4: command tx timeout [ 289.817490] Bluetooth: hci3: command tx timeout [ 290.074806] Bluetooth: hci6: command tx timeout [ 290.074848] Bluetooth: hci7: command tx timeout [ 290.074936] Bluetooth: hci5: command tx timeout [ 291.416896] Bluetooth: hci0: command tx timeout [ 291.480867] Bluetooth: hci1: command tx timeout [ 291.608889] Bluetooth: hci2: command tx timeout [ 291.864896] Bluetooth: hci3: command tx timeout [ 291.864998] Bluetooth: hci4: command tx timeout [ 292.121036] Bluetooth: hci6: command tx timeout [ 292.121060] Bluetooth: hci7: command tx timeout [ 292.122069] Bluetooth: hci5: command tx timeout [ 340.571836] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.571957] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 340.803276] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.803358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.179841] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.179927] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.404174] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.404259] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.537247] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.537334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.649301] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.649386] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.730169] audit: type=1400 audit(1737226505.546:8): avc: denied { open } for pid=13356 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 341.733840] audit: type=1400 audit(1737226505.546:9): avc: denied { kernel } for pid=13356 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 341.742676] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.742832] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 18:55:05 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10) [ 341.853597] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.853723] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.934075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.934194] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 18:55:05 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10) [ 342.018113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.018198] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 18:55:06 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x2a, &(0x7f0000000080)={0x0, 0x0}, 0x10) 18:55:06 executing program 6: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) getitimer(0x0, &(0x7f00000003c0)) [ 342.465396] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 342.465496] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 18:55:06 executing program 6: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) getitimer(0x0, &(0x7f00000003c0)) 18:55:06 executing program 6: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) getitimer(0x0, &(0x7f00000003c0)) [ 342.738829] [ 342.739063] ====================================================== [ 342.739648] WARNING: possible circular locking dependency detected [ 342.740233] 6.13.0-rc7-next-20250117 #1 Not tainted [ 342.740711] ------------------------------------------------------ [ 342.741979] kworker/u8:1/67 is trying to acquire lock: [ 342.743069] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.744880] [ 342.744880] but task is already holding lock: [ 342.746477] ffff88802e558768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 342.748275] [ 342.748275] which lock already depends on the new lock. [ 342.748275] [ 342.749818] [ 342.749818] the existing dependency chain (in reverse order) is: [ 342.750765] [ 342.750765] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 342.751428] __mutex_lock+0x13d/0xb50 [ 342.751885] wiphy_register+0x1b2e/0x25d0 [ 342.752376] ieee80211_register_hw+0x23a4/0x3d60 [ 342.752910] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 342.753474] init_mac80211_hwsim+0x389/0x870 [ 342.753993] do_one_initcall+0xf9/0x640 [ 342.754473] kernel_init_freeable+0x53d/0x7a0 [ 342.755000] kernel_init+0x1e/0x2d0 [ 342.755423] ret_from_fork+0x48/0x80 [ 342.755854] ret_from_fork_asm+0x1a/0x30 [ 342.756342] [ 342.756342] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 342.756960] __lock_acquire+0x29fd/0x4580 [ 342.757446] lock_acquire+0x19b/0x520 [ 342.757893] __mutex_lock+0x13d/0xb50 [ 342.758351] unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.758972] unregister_netdevice_queue+0x224/0x2e0 [ 342.759525] _cfg80211_unregister_wdev+0x57b/0x700 [ 342.760080] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 342.760638] ieee80211_unregister_hw+0x55/0x3a0 [ 342.761163] hwsim_exit_net+0x3a0/0x730 [ 342.761629] ops_exit_list+0xb3/0x180 [ 342.762074] cleanup_net+0x546/0xad0 [ 342.762517] process_one_work+0x8ee/0x1a10 [ 342.763028] worker_thread+0x674/0xe70 [ 342.763509] kthread+0x3ab/0x720 [ 342.763930] ret_from_fork+0x48/0x80 [ 342.764359] ret_from_fork_asm+0x1a/0x30 [ 342.764848] [ 342.764848] other info that might help us debug this: [ 342.764848] [ 342.765599] Possible unsafe locking scenario: [ 342.765599] [ 342.766173] CPU0 CPU1 [ 342.766620] ---- ---- [ 342.767070] lock(&rdev->wiphy.mtx); [ 342.767473] lock(rtnl_mutex); [ 342.768053] lock(&rdev->wiphy.mtx); [ 342.768673] lock(rtnl_mutex); [ 342.769030] [ 342.769030] *** DEADLOCK *** [ 342.769030] [ 342.769600] 4 locks held by kworker/u8:1/67: [ 342.770032] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 342.771057] #1: ffff88800c0d7d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 342.772032] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 342.772944] #3: ffff88802e558768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 342.773963] [ 342.773963] stack backtrace: [ 342.774396] CPU: 0 UID: 0 PID: 67 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 342.775206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 342.775981] Workqueue: netns cleanup_net [ 342.776399] Call Trace: [ 342.776653] [ 342.776882] dump_stack_lvl+0xca/0x120 [ 342.777299] print_circular_bug+0x47b/0x750 [ 342.777740] check_noncircular+0x2e9/0x3c0 [ 342.778170] ? srso_return_thunk+0x5/0x5f [ 342.778605] ? __pfx_check_noncircular+0x10/0x10 [ 342.779088] ? hlock_class+0x4e/0x130 [ 342.779471] ? mark_lock+0xac/0xed0 [ 342.779847] ? srso_return_thunk+0x5/0x5f [ 342.780282] ? lock_release+0x20f/0x6f0 [ 342.780694] ? lockdep_lock+0xba/0x1b0 [ 342.781111] ? __pfx_lockdep_lock+0x10/0x10 [ 342.781566] __lock_acquire+0x29fd/0x4580 [ 342.781999] ? __pfx___lock_acquire+0x10/0x10 [ 342.782455] ? lock_release+0x20f/0x6f0 [ 342.782867] ? __pfx_lock_release+0x10/0x10 [ 342.783313] lock_acquire+0x19b/0x520 [ 342.783708] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.784286] ? __pfx_lock_acquire+0x10/0x10 [ 342.784726] ? srso_return_thunk+0x5/0x5f [ 342.785158] ? lock_release+0x20f/0x6f0 [ 342.785573] ? srso_return_thunk+0x5/0x5f [ 342.786007] ? lock_is_held_type+0x9e/0x120 [ 342.786454] ? srso_return_thunk+0x5/0x5f [ 342.786903] __mutex_lock+0x13d/0xb50 [ 342.787309] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.787886] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.788466] ? srso_return_thunk+0x5/0x5f [ 342.788900] ? synchronize_rcu_expedited+0x38a/0x420 [ 342.789406] ? __pfx___mutex_lock+0x10/0x10 [ 342.789853] ? __pfx_autoremove_wake_function+0x10/0x10 [ 342.790390] ? srso_return_thunk+0x5/0x5f [ 342.790822] ? kasan_quarantine_put+0x84/0x1e0 [ 342.791306] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 342.791756] ? srso_return_thunk+0x5/0x5f [ 342.792195] unregister_netdevice_many_notify+0x1612/0x1c80 [ 342.792755] ? __virt_addr_valid+0x2e8/0x5d0 [ 342.793213] ? __pfx_lock_release+0x10/0x10 [ 342.793654] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 342.794245] ? find_held_lock+0x2c/0x110 [ 342.794673] ? srso_return_thunk+0x5/0x5f [ 342.795134] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 342.795640] ? srso_return_thunk+0x5/0x5f [ 342.796073] ? lock_release+0x20f/0x6f0 [ 342.796476] ? __pfx_lock_release+0x10/0x10 [ 342.796912] ? srso_return_thunk+0x5/0x5f [ 342.797347] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 342.797871] ? srso_return_thunk+0x5/0x5f [ 342.798310] unregister_netdevice_queue+0x224/0x2e0 [ 342.798807] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 342.799354] ? up_write+0x195/0x520 [ 342.799744] _cfg80211_unregister_wdev+0x57b/0x700 [ 342.800242] ? srso_return_thunk+0x5/0x5f [ 342.800680] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 342.801181] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 342.801727] ? srso_return_thunk+0x5/0x5f [ 342.802158] ? srso_return_thunk+0x5/0x5f [ 342.802592] ? synchronize_rcu+0x1ff/0x260 [ 342.803026] ieee80211_unregister_hw+0x55/0x3a0 [ 342.803497] hwsim_exit_net+0x3a0/0x730 [ 342.803906] ? __pfx_hwsim_exit_net+0x10/0x10 [ 342.804357] ? srso_return_thunk+0x5/0x5f [ 342.804788] ? netdev_run_todo+0x788/0x1040 [ 342.805226] ? __pfx_hwsim_exit_net+0x10/0x10 [ 342.805678] ops_exit_list+0xb3/0x180 [ 342.806069] cleanup_net+0x546/0xad0 [ 342.806456] ? __pfx_cleanup_net+0x10/0x10 [ 342.806900] process_one_work+0x8ee/0x1a10 [ 342.807352] ? __pfx_lock_acquire+0x10/0x10 [ 342.807791] ? __pfx_process_one_work+0x10/0x10 [ 342.808274] ? srso_return_thunk+0x5/0x5f [ 342.808706] ? move_linked_works+0x172/0x270 [ 342.809157] ? srso_return_thunk+0x5/0x5f [ 342.809589] ? assign_work+0x196/0x240 [ 342.810003] worker_thread+0x674/0xe70 [ 342.810420] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 342.810955] ? srso_return_thunk+0x5/0x5f [ 342.811388] ? __pfx_worker_thread+0x10/0x10 [ 342.811853] kthread+0x3ab/0x720 [ 342.812215] ? __pfx_kthread+0x10/0x10 [ 342.812624] ? srso_return_thunk+0x5/0x5f [ 342.813058] ? finish_task_switch.isra.0+0x206/0x840 [ 342.813579] ? __pfx_kthread+0x10/0x10 [ 342.813992] ret_from_fork+0x48/0x80 [ 342.814364] ? __pfx_kthread+0x10/0x10 [ 342.814771] ret_from_fork_asm+0x1a/0x30 [ 342.815215] 18:55:06 executing program 6: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000000)) getitimer(0x0, &(0x7f00000003c0)) 18:55:06 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x7a1) [ 344.800789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 344.807167] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 344.810390] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 344.816956] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 344.818966] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 344.820282] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 345.123084] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 345.125076] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 345.126635] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 345.132017] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 345.135043] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 345.135594] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 345.138113] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 345.139653] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 345.140996] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 345.143009] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 345.144920] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 345.157206] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 346.840962] Bluetooth: hci0: command tx timeout [ 347.224992] Bluetooth: hci3: command tx timeout [ 347.225076] Bluetooth: hci1: command tx timeout [ 348.888832] Bluetooth: hci0: command tx timeout [ 349.273004] Bluetooth: hci3: command tx timeout [ 349.273050] Bluetooth: hci1: command tx timeout [ 350.936918] Bluetooth: hci0: command tx timeout [ 351.320953] Bluetooth: hci1: command tx timeout [ 351.321110] Bluetooth: hci3: command tx timeout VM DIAGNOSIS: 18:55:06 Registers: info registers vcpu 0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800c0d6bb8 R8 =0000000000000001 R9 =ffffed100181ad67 R10=0000000000000061 R11=3a6b636f6c206762 R12=0000000000000061 R13=0000000000000001 R14=ffff888008fea030 R15=ffff88800c0d6eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f87b4bf0180 CR3=000000002b58a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=1ffff1100d9e138a RCX=ffffffff81502cd7 RDX=0000000000000001 RSI=0000000000000008 RDI=ffffffff864021d0 RBP=0000000000000001 RSP=ffff88806cf09c38 R8 =0000000000000000 R9 =fffffbfff0c8043a R10=ffffffff864021d7 R11=ffff88806cf09ff8 R12=0000000000000000 R13=0000000000000000 R14=ffff88806cf3b918 R15=0000000000000000 RIP=ffffffff81502cdb RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000001f21870 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd92d6d36f4 CR3=000000000e12e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004124f6a000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000