syzkaller login: [ 62.484263] sshd (232) used greatest stack depth: 24216 bytes left Warning: Permanently added '[localhost]:55453' (ECDSA) to the list of known hosts. 2025/01/18 19:42:22 fuzzer started 2025/01/18 19:42:22 dialing manager at localhost:44245 [ 65.664329] cgroup: Unknown subsys name 'net' [ 65.760903] cgroup: Unknown subsys name 'cpuset' [ 65.792646] cgroup: Unknown subsys name 'rlimit' [ 72.450539] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 83.483614] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 19:42:41 syscalls: 2217 2025/01/18 19:42:41 code coverage: enabled 2025/01/18 19:42:41 comparison tracing: enabled 2025/01/18 19:42:41 extra coverage: enabled 2025/01/18 19:42:41 setuid sandbox: enabled 2025/01/18 19:42:41 namespace sandbox: enabled 2025/01/18 19:42:41 Android sandbox: enabled 2025/01/18 19:42:41 fault injection: enabled 2025/01/18 19:42:41 leak checking: enabled 2025/01/18 19:42:41 net packet injection: enabled 2025/01/18 19:42:41 net device setup: enabled 2025/01/18 19:42:41 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 19:42:41 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 19:42:41 USB emulation: enabled 2025/01/18 19:42:41 hci packet injection: enabled 2025/01/18 19:42:41 wifi device emulation: enabled 2025/01/18 19:42:41 802.15.4 emulation: enabled 2025/01/18 19:42:41 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 19:42:41 fetching corpus: 50, signal 24015/27112 (executing program) 2025/01/18 19:42:41 fetching corpus: 100, signal 37594/41488 (executing program) 2025/01/18 19:42:41 fetching corpus: 150, signal 46303/50825 (executing program) 2025/01/18 19:42:41 fetching corpus: 200, signal 50479/55709 (executing program) 2025/01/18 19:42:42 fetching corpus: 250, signal 55101/60888 (executing program) 2025/01/18 19:42:42 fetching corpus: 300, signal 62244/68064 (executing program) 2025/01/18 19:42:42 fetching corpus: 350, signal 65094/71302 (executing program) 2025/01/18 19:42:42 fetching corpus: 400, signal 69093/75380 (executing program) 2025/01/18 19:42:42 fetching corpus: 450, signal 73168/79380 (executing program) 2025/01/18 19:42:42 fetching corpus: 500, signal 76043/82276 (executing program) 2025/01/18 19:42:43 fetching corpus: 550, signal 78571/84823 (executing program) 2025/01/18 19:42:43 fetching corpus: 600, signal 81751/87769 (executing program) 2025/01/18 19:42:43 fetching corpus: 650, signal 84412/90184 (executing program) 2025/01/18 19:42:43 fetching corpus: 700, signal 86531/92101 (executing program) 2025/01/18 19:42:43 fetching corpus: 750, signal 88411/93830 (executing program) 2025/01/18 19:42:43 fetching corpus: 800, signal 90585/95631 (executing program) 2025/01/18 19:42:44 fetching corpus: 850, signal 92564/97276 (executing program) 2025/01/18 19:42:44 fetching corpus: 900, signal 93852/98371 (executing program) 2025/01/18 19:42:44 fetching corpus: 950, signal 95758/99790 (executing program) 2025/01/18 19:42:44 fetching corpus: 1000, signal 97249/100921 (executing program) 2025/01/18 19:42:44 fetching corpus: 1050, signal 99228/102293 (executing program) 2025/01/18 19:42:44 fetching corpus: 1100, signal 100845/103334 (executing program) 2025/01/18 19:42:45 fetching corpus: 1150, signal 101978/104100 (executing program) 2025/01/18 19:42:45 fetching corpus: 1200, signal 103344/104900 (executing program) 2025/01/18 19:42:45 fetching corpus: 1250, signal 104668/105654 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105836 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105869 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105902 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105937 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105968 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/105998 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106038 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106070 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106096 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106126 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106170 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106205 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106231 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106263 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106305 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106333 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106370 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106393 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106433 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106475 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106497 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106542 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106572 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106603 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106637 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106665 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106695 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106707 (executing program) 2025/01/18 19:42:45 fetching corpus: 1268, signal 104940/106707 (executing program) 2025/01/18 19:42:50 starting 8 fuzzer processes 19:42:50 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002740), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000000)={0x1}) 19:42:50 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000200)=""/182) 19:42:50 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1f, &(0x7f0000000080)=""/176, &(0x7f0000000140)=0xb0) 19:42:50 executing program 3: r0 = syz_open_dev$evdev(&(0x7f00000002c0), 0x0, 0x0) r1 = epoll_create1(0x0) dup2(r0, r1) r2 = epoll_create(0x20000000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000740)) [ 92.940217] audit: type=1400 audit(1737229370.242:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:42:50 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x106, 0x4) setsockopt$inet6_opts(r0, 0x29, 0x35, &(0x7f0000003b80)=@srh, 0x8) sendmmsg$inet(r0, &(0x7f0000002a00)=[{{&(0x7f0000000140)={0x2, 0x4e21, @remote}, 0x10, 0x0}}], 0x1, 0x0) recvmmsg(r0, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0}}], 0x80000, 0x2000, 0x0) 19:42:50 executing program 4: io_setup(0xd2b, &(0x7f0000000780)=0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x41, 0x0) io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, r1, 0x0}]) 19:42:50 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) pread64(r0, &(0x7f00000012c0)=""/4093, 0xffd, 0x1be) 19:42:50 executing program 7: r0 = socket$packet(0x11, 0x2, 0x300) tee(r0, r0, 0x12f, 0x0) [ 94.291278] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.292951] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.295376] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.305650] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.307898] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.309679] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.345185] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.352848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.356245] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.364802] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.374858] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 94.376929] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.403412] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.412462] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.414024] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.415310] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.417372] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.423363] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.427353] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.434451] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 94.437708] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.438240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.442030] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 94.443277] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.502498] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 94.517257] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 94.517720] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 94.530773] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 94.534742] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 94.538409] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 94.543404] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 94.544954] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 94.546626] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 94.569563] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 94.572546] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 94.572734] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 94.585168] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 94.586699] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 94.595311] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 94.621232] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.621659] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 94.626190] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 94.629353] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.654429] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 94.657411] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 94.685906] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 94.697304] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 94.698762] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 96.374439] Bluetooth: hci0: command tx timeout [ 96.439578] Bluetooth: hci1: command tx timeout [ 96.502265] Bluetooth: hci2: command tx timeout [ 96.566176] Bluetooth: hci3: command tx timeout [ 96.694167] Bluetooth: hci5: command tx timeout [ 96.694630] Bluetooth: hci6: command tx timeout [ 96.694814] Bluetooth: hci4: command tx timeout [ 96.759110] Bluetooth: hci7: command tx timeout [ 98.423797] Bluetooth: hci0: command tx timeout [ 98.486143] Bluetooth: hci1: command tx timeout [ 98.550270] Bluetooth: hci2: command tx timeout [ 98.615218] Bluetooth: hci3: command tx timeout [ 98.742332] Bluetooth: hci4: command tx timeout [ 98.742529] Bluetooth: hci6: command tx timeout [ 98.742748] Bluetooth: hci5: command tx timeout [ 98.808465] Bluetooth: hci7: command tx timeout [ 100.471201] Bluetooth: hci0: command tx timeout [ 100.535188] Bluetooth: hci1: command tx timeout [ 100.599116] Bluetooth: hci2: command tx timeout [ 100.663848] Bluetooth: hci3: command tx timeout [ 100.790306] Bluetooth: hci4: command tx timeout [ 100.790374] Bluetooth: hci5: command tx timeout [ 100.790532] Bluetooth: hci6: command tx timeout [ 100.854705] Bluetooth: hci7: command tx timeout [ 102.521129] Bluetooth: hci0: command tx timeout [ 102.582210] Bluetooth: hci1: command tx timeout [ 102.646334] Bluetooth: hci2: command tx timeout [ 102.711093] Bluetooth: hci3: command tx timeout [ 102.838160] Bluetooth: hci5: command tx timeout [ 102.838452] Bluetooth: hci4: command tx timeout [ 102.838537] Bluetooth: hci6: command tx timeout [ 102.902118] Bluetooth: hci7: command tx timeout [ 154.723625] syz-executor.3 (283) used greatest stack depth: 24096 bytes left [ 156.999497] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 157.001583] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 157.003334] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 157.007277] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 157.008895] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 157.012162] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 157.013267] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 157.015364] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 157.019119] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 157.024133] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 157.034616] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 157.035829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 157.058513] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 157.060872] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 157.061981] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 157.064816] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 157.067264] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 157.068300] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 157.124940] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 157.132546] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 157.143347] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 157.173996] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 157.193162] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 157.209931] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 157.211824] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 157.217455] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 157.234283] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 157.235528] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 157.236523] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 157.252331] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 157.261607] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 157.265749] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 157.275873] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 157.282881] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 157.288607] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 157.290362] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 157.296245] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 157.309198] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 157.309462] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 157.313292] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 157.313481] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 157.318158] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 157.350171] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 157.402295] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 157.406672] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 157.410154] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 157.410201] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 157.434273] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 159.094137] Bluetooth: hci2: command tx timeout [ 159.094164] Bluetooth: hci0: command tx timeout [ 159.094459] Bluetooth: hci1: command tx timeout [ 159.287124] Bluetooth: hci3: command tx timeout [ 159.350131] Bluetooth: hci4: command tx timeout [ 159.414140] Bluetooth: hci5: command tx timeout [ 159.479146] Bluetooth: hci6: command tx timeout [ 159.543653] Bluetooth: hci7: command tx timeout [ 161.142215] Bluetooth: hci1: command tx timeout [ 161.143175] Bluetooth: hci2: command tx timeout [ 161.143248] Bluetooth: hci0: command tx timeout [ 161.334213] Bluetooth: hci3: command tx timeout [ 161.399627] Bluetooth: hci4: command tx timeout [ 161.463087] Bluetooth: hci5: command tx timeout [ 161.528102] Bluetooth: hci6: command tx timeout [ 161.590256] Bluetooth: hci7: command tx timeout [ 163.191154] Bluetooth: hci0: command tx timeout [ 163.191219] Bluetooth: hci2: command tx timeout [ 163.191301] Bluetooth: hci1: command tx timeout [ 163.382482] Bluetooth: hci3: command tx timeout [ 163.446341] Bluetooth: hci4: command tx timeout [ 163.510192] Bluetooth: hci5: command tx timeout [ 163.574194] Bluetooth: hci6: command tx timeout [ 163.638420] Bluetooth: hci7: command tx timeout [ 165.239574] Bluetooth: hci0: command tx timeout [ 165.240167] Bluetooth: hci2: command tx timeout [ 165.240333] Bluetooth: hci1: command tx timeout [ 165.430242] Bluetooth: hci3: command tx timeout [ 165.494190] Bluetooth: hci4: command tx timeout [ 165.560057] Bluetooth: hci5: command tx timeout [ 165.622217] Bluetooth: hci6: command tx timeout [ 165.688085] Bluetooth: hci7: command tx timeout [ 215.692384] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.692502] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 217.087549] [ 217.087808] ====================================================== [ 217.088411] WARNING: possible circular locking dependency detected [ 217.089013] 6.13.0-rc7-next-20250117 #1 Not tainted [ 217.089494] ------------------------------------------------------ [ 217.090974] kworker/u8:1/67 is trying to acquire lock: [ 217.092173] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.094501] [ 217.094501] but task is already holding lock: [ 217.095846] ffff888015dd0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 217.097807] [ 217.097807] which lock already depends on the new lock. [ 217.097807] [ 217.099119] [ 217.099119] the existing dependency chain (in reverse order) is: [ 217.099820] [ 217.099820] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 217.100480] __mutex_lock+0x13d/0xb50 [ 217.100954] wiphy_register+0x1b2e/0x25d0 [ 217.101442] ieee80211_register_hw+0x23a4/0x3d60 [ 217.101982] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 217.102544] init_mac80211_hwsim+0x389/0x870 [ 217.103068] do_one_initcall+0xf9/0x640 [ 217.103552] kernel_init_freeable+0x53d/0x7a0 [ 217.104080] kernel_init+0x1e/0x2d0 [ 217.104503] ret_from_fork+0x48/0x80 [ 217.104939] ret_from_fork_asm+0x1a/0x30 [ 217.105424] [ 217.105424] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 217.106039] __lock_acquire+0x29fd/0x4580 [ 217.106519] lock_acquire+0x19b/0x520 [ 217.106971] __mutex_lock+0x13d/0xb50 [ 217.107428] unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.108046] unregister_netdevice_queue+0x224/0x2e0 [ 217.108597] _cfg80211_unregister_wdev+0x57b/0x700 [ 217.109157] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 217.109711] ieee80211_unregister_hw+0x55/0x3a0 [ 217.110239] hwsim_exit_net+0x3a0/0x730 [ 217.110705] ops_exit_list+0xb3/0x180 [ 217.111154] cleanup_net+0x546/0xad0 [ 217.111598] process_one_work+0x8ee/0x1a10 [ 217.112103] worker_thread+0x674/0xe70 [ 217.112580] kthread+0x3ab/0x720 [ 217.113008] ret_from_fork+0x48/0x80 [ 217.113442] ret_from_fork_asm+0x1a/0x30 [ 217.113929] [ 217.113929] other info that might help us debug this: [ 217.113929] [ 217.114681] Possible unsafe locking scenario: [ 217.114681] [ 217.115251] CPU0 CPU1 [ 217.115701] ---- ---- [ 217.116152] lock(&rdev->wiphy.mtx); [ 217.116554] lock(rtnl_mutex); [ 217.117137] lock(&rdev->wiphy.mtx); [ 217.117766] lock(rtnl_mutex); [ 217.118121] [ 217.118121] *** DEADLOCK *** [ 217.118121] [ 217.118690] 4 locks held by kworker/u8:1/67: [ 217.119139] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 217.120167] #1: ffff88800ec97d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 217.121153] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 217.122062] #3: ffff888015dd0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 217.123091] [ 217.123091] stack backtrace: [ 217.123525] CPU: 0 UID: 0 PID: 67 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 217.124332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 217.125114] Workqueue: netns cleanup_net [ 217.125527] Call Trace: [ 217.125779] [ 217.126005] dump_stack_lvl+0xca/0x120 [ 217.126424] print_circular_bug+0x47b/0x750 [ 217.126871] check_noncircular+0x2e9/0x3c0 [ 217.127310] ? __pfx_check_noncircular+0x10/0x10 [ 217.127784] ? hlock_class+0x4e/0x130 [ 217.128159] ? mark_lock+0xac/0xed0 [ 217.128533] ? srso_return_thunk+0x5/0x5f [ 217.128979] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 217.129444] ? lockdep_lock+0xba/0x1b0 [ 217.129863] ? __pfx_lockdep_lock+0x10/0x10 [ 217.130329] __lock_acquire+0x29fd/0x4580 [ 217.130772] ? __pfx___lock_acquire+0x10/0x10 [ 217.131229] ? lock_release+0x20f/0x6f0 [ 217.131640] ? __pfx_lock_release+0x10/0x10 [ 217.132087] lock_acquire+0x19b/0x520 [ 217.132481] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.133060] ? __pfx_lock_acquire+0x10/0x10 [ 217.133504] ? srso_return_thunk+0x5/0x5f [ 217.133943] ? lock_release+0x20f/0x6f0 [ 217.134354] ? srso_return_thunk+0x5/0x5f [ 217.134792] ? lock_is_held_type+0x9e/0x120 [ 217.135246] ? srso_return_thunk+0x5/0x5f [ 217.135682] __mutex_lock+0x13d/0xb50 [ 217.136088] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.136661] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.137245] ? srso_return_thunk+0x5/0x5f [ 217.137680] ? synchronize_rcu_expedited+0x38a/0x420 [ 217.138186] ? __pfx___mutex_lock+0x10/0x10 [ 217.138630] ? __pfx_autoremove_wake_function+0x10/0x10 [ 217.139169] ? srso_return_thunk+0x5/0x5f [ 217.139606] ? kasan_quarantine_put+0x84/0x1e0 [ 217.140089] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 217.140547] ? srso_return_thunk+0x5/0x5f [ 217.140996] unregister_netdevice_many_notify+0x1612/0x1c80 [ 217.141562] ? __virt_addr_valid+0x2e8/0x5d0 [ 217.142024] ? __pfx_lock_release+0x10/0x10 [ 217.142461] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 217.143059] ? find_held_lock+0x2c/0x110 [ 217.143496] ? srso_return_thunk+0x5/0x5f [ 217.143937] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 217.144448] ? srso_return_thunk+0x5/0x5f [ 217.144890] ? lock_release+0x20f/0x6f0 [ 217.145306] ? __pfx_lock_release+0x10/0x10 [ 217.145742] ? srso_return_thunk+0x5/0x5f [ 217.146178] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 217.146707] ? srso_return_thunk+0x5/0x5f [ 217.147160] unregister_netdevice_queue+0x224/0x2e0 [ 217.147662] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 217.148205] ? up_write+0x195/0x520 [ 217.148597] _cfg80211_unregister_wdev+0x57b/0x700 [ 217.149099] ? srso_return_thunk+0x5/0x5f [ 217.149533] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 217.150032] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 217.150575] ? srso_return_thunk+0x5/0x5f [ 217.151011] ? srso_return_thunk+0x5/0x5f [ 217.151449] ? synchronize_rcu+0x1ff/0x260 [ 217.151883] ieee80211_unregister_hw+0x55/0x3a0 [ 217.152351] hwsim_exit_net+0x3a0/0x730 [ 217.152760] ? __pfx_hwsim_exit_net+0x10/0x10 [ 217.153223] ? srso_return_thunk+0x5/0x5f [ 217.153661] ? netdev_run_todo+0x788/0x1040 [ 217.154108] ? __pfx_hwsim_exit_net+0x10/0x10 [ 217.154568] ops_exit_list+0xb3/0x180 [ 217.154957] cleanup_net+0x546/0xad0 [ 217.155343] ? __pfx_cleanup_net+0x10/0x10 [ 217.155780] process_one_work+0x8ee/0x1a10 [ 217.156239] ? __pfx_lock_acquire+0x10/0x10 [ 217.156680] ? __pfx_process_one_work+0x10/0x10 [ 217.157176] ? srso_return_thunk+0x5/0x5f [ 217.157618] ? move_linked_works+0x172/0x270 [ 217.158082] ? srso_return_thunk+0x5/0x5f [ 217.158515] ? assign_work+0x196/0x240 [ 217.158933] worker_thread+0x674/0xe70 [ 217.159356] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 217.159879] ? srso_return_thunk+0x5/0x5f [ 217.160315] ? __pfx_worker_thread+0x10/0x10 [ 217.160783] kthread+0x3ab/0x720 [ 217.161155] ? __pfx_kthread+0x10/0x10 [ 217.161567] ? srso_return_thunk+0x5/0x5f [ 217.162006] ? finish_task_switch.isra.0+0x206/0x840 [ 217.162525] ? __pfx_kthread+0x10/0x10 [ 217.162938] ret_from_fork+0x48/0x80 [ 217.163312] ? __pfx_kthread+0x10/0x10 [ 217.163724] ret_from_fork_asm+0x1a/0x30 [ 217.164165] [ 218.879323] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 218.880375] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 218.884182] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 218.886562] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 218.889740] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 218.890867] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 219.005102] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 219.009398] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 219.010691] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 219.013272] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 219.014951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 219.017826] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 219.136152] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 219.137747] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 219.139177] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 219.139734] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 219.140783] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 219.145351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 219.148563] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 219.150896] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 219.156643] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 219.156972] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 219.158474] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 219.158918] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 219.159766] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 219.178550] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 219.184612] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 219.202625] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 219.209560] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 219.214222] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 219.215832] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 219.218126] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 219.222439] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 219.223708] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 219.229313] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 219.232358] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 219.266361] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 219.269841] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 219.278762] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 219.280322] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 219.280923] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 219.288664] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 219.292481] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 219.300979] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 219.302599] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 219.313246] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 219.362208] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 219.386253] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 220.918081] Bluetooth: hci0: command tx timeout [ 221.046157] Bluetooth: hci1: command tx timeout [ 221.174060] Bluetooth: hci2: command tx timeout [ 221.238090] Bluetooth: hci3: command tx timeout [ 221.302259] Bluetooth: hci6: command tx timeout [ 221.366179] Bluetooth: hci4: command tx timeout [ 221.430081] Bluetooth: hci7: command tx timeout [ 221.430147] Bluetooth: hci5: command tx timeout [ 222.966118] Bluetooth: hci0: command tx timeout [ 223.094235] Bluetooth: hci1: command tx timeout [ 223.223760] Bluetooth: hci2: command tx timeout [ 223.287936] Bluetooth: hci3: command tx timeout [ 223.350136] Bluetooth: hci6: command tx timeout [ 223.415537] Bluetooth: hci4: command tx timeout [ 223.478568] Bluetooth: hci7: command tx timeout [ 223.478656] Bluetooth: hci5: command tx timeout [ 225.016138] Bluetooth: hci0: command tx timeout [ 225.142682] Bluetooth: hci1: command tx timeout [ 225.270073] Bluetooth: hci2: command tx timeout [ 225.335060] Bluetooth: hci3: command tx timeout [ 225.398058] Bluetooth: hci6: command tx timeout [ 225.462334] Bluetooth: hci4: command tx timeout [ 225.526079] Bluetooth: hci7: command tx timeout [ 225.526591] Bluetooth: hci5: command tx timeout [ 227.062198] Bluetooth: hci0: command tx timeout VM DIAGNOSIS: 19:44:54 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff8152cdb5 RDX=ffff88800ebe5340 RSI=ffffffff8152641a RDI=ffff88800ec96e68 RBP=ffff88800ec96e68 RSP=ffff88800ec96db0 R8 =0000000000000000 R9 =fffffbfff0c8043a R10=0000000000000001 R11=6666666666666666 R12=0000000000000000 R13=0000000000000000 R14=dffffc0000000000 R15=0000000000000000 RIP=ffffffff8171a158 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fffb3919ff0 CR3=00000000099ce000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=000000c0007819c0000000c000781800 XMM04=000000c000781c40000000c000781ac0 XMM05=000000c00081a080000000c000781e00 XMM06=000000c00081a2c0000000c00081a180 XMM07=000000c00081abc0000000c00081ab00 XMM08=000000c0007819c0000000c000781800 XMM09=000000c000781c40000000c000781ac0 XMM10=000000c00081a080000000c000781e00 XMM11=000000c00081a2c0000000c00081a180 XMM12=000000c00081abc0000000c00081ab00 XMM13=000000c00081b140000000c00081ae00 XMM14=000000c00081b700000000c00081b500 XMM15=000000c0008631c0000000c00081b940 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=1ffffffff0c805ee RDX=1ffff11001e5913c RSI=0000000000000649 RDI=ffff88800f2c89e0 RBP=ffffffff85781d38 RSP=ffff88800f2d7dc8 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff864021d7 R11=0000000000000532 R12=0000000000000649 R13=ffff88800f2c8000 R14=ffff88800f2c8000 R15=ffff88800b6c2000 RIP=ffffffff8145759b RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f629b576c70 CR3=00000000099ce000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000417683d280000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000