Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:31818' (ECDSA) to the list of known hosts. 2025/01/17 19:18:03 fuzzer started 2025/01/17 19:18:04 dialing manager at localhost:44245 syzkaller login: [ 70.664167] cgroup: Unknown subsys name 'net' [ 70.760001] cgroup: Unknown subsys name 'cpuset' [ 70.791098] cgroup: Unknown subsys name 'rlimit' [ 76.590172] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 86.321353] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 19:18:20 syscalls: 2217 2025/01/17 19:18:20 code coverage: enabled 2025/01/17 19:18:20 comparison tracing: enabled 2025/01/17 19:18:20 extra coverage: enabled 2025/01/17 19:18:20 setuid sandbox: enabled 2025/01/17 19:18:20 namespace sandbox: enabled 2025/01/17 19:18:20 Android sandbox: enabled 2025/01/17 19:18:20 fault injection: enabled 2025/01/17 19:18:20 leak checking: enabled 2025/01/17 19:18:20 net packet injection: enabled 2025/01/17 19:18:20 net device setup: enabled 2025/01/17 19:18:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 19:18:20 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 19:18:20 USB emulation: enabled 2025/01/17 19:18:20 hci packet injection: enabled 2025/01/17 19:18:20 wifi device emulation: enabled 2025/01/17 19:18:20 802.15.4 emulation: enabled 2025/01/17 19:18:20 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/17 19:18:20 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 19:18:20 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 19:18:24 starting 8 fuzzer processes 19:18:24 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f0000000100)={'syztnl2\x00', 0x0}) io_setup(0xfdd, &(0x7f0000000380)) 19:18:24 executing program 1: add_key$fscrypt_provisioning(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff) setresuid(0xee00, 0x0, 0x0) faccessat(0xffffffffffffffff, 0x0, 0x0) 19:18:24 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = dup(r0) ioctl$sock_bt_hci(r1, 0x400448cc, 0x0) [ 90.759382] audit: type=1400 audit(1737141504.679:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:18:24 executing program 3: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) exit(0x0) 19:18:24 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, 0x0) 19:18:24 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000e80)={0x20, 0x6a, 0x101, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x8, 0x0, 0x0, 0x0, @ipv4}]}, 0x20}], 0x1}, 0x0) 19:18:24 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) io_setup(0x1f, &(0x7f0000000100)=0x0) io_submit(r1, 0x1, &(0x7f0000000780)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x8, 0x0, r0, 0x0}]) 19:18:24 executing program 7: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGUNIQ(r0, 0x80404508, 0x0) [ 92.189768] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.191349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.192464] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.201991] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.203251] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 92.208736] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 92.256701] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.260153] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.269044] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.273203] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.274476] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.275438] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.308826] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 92.314052] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 92.316261] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 92.323218] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 92.327951] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 92.331209] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 92.339144] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.343198] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.353513] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.378515] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.380229] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.382353] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 92.405226] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 92.433894] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.441232] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 92.447913] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.452526] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 92.455047] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 92.461354] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.464852] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 92.470108] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 92.476090] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 92.477279] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 92.481624] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 92.497878] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 92.499477] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.504183] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 92.505826] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 92.506439] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 92.507260] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 92.511780] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 92.512081] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.512253] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 92.514309] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 92.517249] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.517517] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 94.274402] Bluetooth: hci0: command tx timeout [ 94.336736] Bluetooth: hci1: command tx timeout [ 94.401631] Bluetooth: hci3: command tx timeout [ 94.465005] Bluetooth: hci2: command tx timeout [ 94.592785] Bluetooth: hci5: command tx timeout [ 94.593111] Bluetooth: hci6: command tx timeout [ 94.593313] Bluetooth: hci4: command tx timeout [ 94.656893] Bluetooth: hci7: command tx timeout [ 96.322473] Bluetooth: hci0: command tx timeout [ 96.384714] Bluetooth: hci1: command tx timeout [ 96.450621] Bluetooth: hci3: command tx timeout [ 96.512824] Bluetooth: hci2: command tx timeout [ 96.641683] Bluetooth: hci4: command tx timeout [ 96.641800] Bluetooth: hci6: command tx timeout [ 96.641846] Bluetooth: hci5: command tx timeout [ 96.704691] Bluetooth: hci7: command tx timeout [ 98.368760] Bluetooth: hci0: command tx timeout [ 98.432854] Bluetooth: hci1: command tx timeout [ 98.497691] Bluetooth: hci3: command tx timeout [ 98.560995] Bluetooth: hci2: command tx timeout [ 98.688756] Bluetooth: hci6: command tx timeout [ 98.689787] Bluetooth: hci5: command tx timeout [ 98.689874] Bluetooth: hci4: command tx timeout [ 98.753687] Bluetooth: hci7: command tx timeout [ 100.416735] Bluetooth: hci0: command tx timeout [ 100.480784] Bluetooth: hci1: command tx timeout [ 100.544755] Bluetooth: hci3: command tx timeout [ 100.608859] Bluetooth: hci2: command tx timeout [ 100.736771] Bluetooth: hci4: command tx timeout [ 100.736930] Bluetooth: hci5: command tx timeout [ 100.737080] Bluetooth: hci6: command tx timeout [ 100.800799] Bluetooth: hci7: command tx timeout [ 154.638880] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 154.642278] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 154.642738] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 154.644470] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 154.644716] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 154.646416] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 154.647612] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 154.651019] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 154.652269] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 154.653589] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 154.654864] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 154.655036] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 154.656980] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 154.670866] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 154.672130] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 154.673699] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 154.674501] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 154.678155] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 154.679882] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 154.680230] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 154.681814] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 154.685845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 154.693779] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 154.706948] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 154.768329] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.778323] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.778959] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.782003] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.792126] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.793498] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.795109] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.797844] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.799898] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.800246] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.802260] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 154.802913] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.843453] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.857826] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.882117] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.892506] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.896663] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.898219] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.899074] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.907770] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.910128] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.913448] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.916243] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.917514] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 156.736707] Bluetooth: hci0: command tx timeout [ 156.736997] Bluetooth: hci3: command tx timeout [ 156.737002] Bluetooth: hci2: command tx timeout [ 156.737430] Bluetooth: hci1: command tx timeout [ 156.864695] Bluetooth: hci5: command tx timeout [ 156.864983] Bluetooth: hci4: command tx timeout [ 156.992711] Bluetooth: hci6: command tx timeout [ 156.993128] Bluetooth: hci7: command tx timeout [ 158.784704] Bluetooth: hci2: command tx timeout [ 158.784815] Bluetooth: hci1: command tx timeout [ 158.784868] Bluetooth: hci3: command tx timeout [ 158.784956] Bluetooth: hci0: command tx timeout [ 158.913697] Bluetooth: hci4: command tx timeout [ 158.913804] Bluetooth: hci5: command tx timeout [ 159.040663] Bluetooth: hci7: command tx timeout [ 159.040774] Bluetooth: hci6: command tx timeout [ 160.833832] Bluetooth: hci0: command tx timeout [ 160.833993] Bluetooth: hci3: command tx timeout [ 160.834055] Bluetooth: hci1: command tx timeout [ 160.834116] Bluetooth: hci2: command tx timeout [ 160.962900] Bluetooth: hci5: command tx timeout [ 160.963982] Bluetooth: hci4: command tx timeout [ 161.088727] Bluetooth: hci6: command tx timeout [ 161.088903] Bluetooth: hci7: command tx timeout [ 162.881698] Bluetooth: hci2: command tx timeout [ 162.881807] Bluetooth: hci1: command tx timeout [ 162.881908] Bluetooth: hci3: command tx timeout [ 162.881982] Bluetooth: hci0: command tx timeout [ 163.009630] Bluetooth: hci4: command tx timeout [ 163.009735] Bluetooth: hci5: command tx timeout [ 163.137675] Bluetooth: hci7: command tx timeout [ 163.137774] Bluetooth: hci6: command tx timeout [ 214.971349] [ 214.971586] ====================================================== [ 214.972159] WARNING: possible circular locking dependency detected [ 214.972734] 6.13.0-rc7-next-20250117 #1 Not tainted [ 214.973377] ------------------------------------------------------ [ 214.974664] kworker/u8:0/11 is trying to acquire lock: [ 214.975616] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 214.977435] [ 214.977435] but task is already holding lock: [ 214.978841] ffff88803c9e8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 214.980728] [ 214.980728] which lock already depends on the new lock. [ 214.980728] [ 214.981837] [ 214.981837] the existing dependency chain (in reverse order) is: [ 214.982532] [ 214.982532] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 214.983184] __mutex_lock+0x13d/0xb50 [ 214.983635] wiphy_register+0x1b2e/0x25d0 [ 214.984116] ieee80211_register_hw+0x23a4/0x3d60 [ 214.984639] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 214.985187] init_mac80211_hwsim+0x389/0x870 [ 214.985690] do_one_initcall+0xf9/0x640 [ 214.986162] kernel_init_freeable+0x53d/0x7a0 [ 214.986673] kernel_init+0x1e/0x2d0 [ 214.987087] ret_from_fork+0x48/0x80 [ 214.987508] ret_from_fork_asm+0x1a/0x30 [ 214.987987] [ 214.987987] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 214.988582] __lock_acquire+0x29fd/0x4580 [ 214.989054] lock_acquire+0x19b/0x520 [ 214.989499] __mutex_lock+0x13d/0xb50 [ 214.989945] unregister_netdevice_many_notify+0x1612/0x1c80 [ 214.990547] unregister_netdevice_queue+0x224/0x2e0 [ 214.991086] _cfg80211_unregister_wdev+0x57b/0x700 [ 214.991630] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 214.992163] ieee80211_unregister_hw+0x55/0x3a0 [ 214.992676] hwsim_exit_net+0x3a0/0x730 [ 214.993132] ops_exit_list+0xb3/0x180 [ 214.993568] cleanup_net+0x546/0xad0 [ 214.993989] process_one_work+0x8ee/0x1a10 [ 214.994480] worker_thread+0x674/0xe70 [ 214.994937] kthread+0x3ab/0x720 [ 214.995343] ret_from_fork+0x48/0x80 [ 214.995761] ret_from_fork_asm+0x1a/0x30 [ 214.996233] [ 214.996233] other info that might help us debug this: [ 214.996233] [ 214.996943] Possible unsafe locking scenario: [ 214.996943] [ 214.997509] CPU0 CPU1 [ 214.997954] ---- ---- [ 214.998402] lock(&rdev->wiphy.mtx); [ 214.998798] lock(rtnl_mutex); [ 214.999370] lock(&rdev->wiphy.mtx); [ 214.999994] lock(rtnl_mutex); [ 215.000348] [ 215.000348] *** DEADLOCK *** [ 215.000348] [ 215.000921] 4 locks held by kworker/u8:0/11: [ 215.001363] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 215.002364] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 215.003336] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 215.004249] #3: ffff88803c9e8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 215.005280] [ 215.005280] stack backtrace: [ 215.005711] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 215.006519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 215.007302] Workqueue: netns cleanup_net [ 215.007719] Call Trace: [ 215.007978] [ 215.008206] dump_stack_lvl+0xca/0x120 [ 215.008628] print_circular_bug+0x47b/0x750 [ 215.009067] check_noncircular+0x2e9/0x3c0 [ 215.009497] ? srso_return_thunk+0x5/0x5f [ 215.009935] ? __pfx_check_noncircular+0x10/0x10 [ 215.010421] ? hlock_class+0x4e/0x130 [ 215.010812] ? mark_lock+0xac/0xed0 [ 215.011191] ? srso_return_thunk+0x5/0x5f [ 215.011640] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 215.012114] ? lockdep_lock+0xba/0x1b0 [ 215.012535] ? __pfx_lockdep_lock+0x10/0x10 [ 215.012995] __lock_acquire+0x29fd/0x4580 [ 215.013436] ? __pfx___lock_acquire+0x10/0x10 [ 215.013871] ? lock_release+0x20f/0x6f0 [ 215.014262] ? __pfx_lock_release+0x10/0x10 [ 215.014678] lock_acquire+0x19b/0x520 [ 215.015062] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.015647] ? __pfx_lock_acquire+0x10/0x10 [ 215.016086] ? srso_return_thunk+0x5/0x5f [ 215.016501] ? lock_release+0x20f/0x6f0 [ 215.016885] ? srso_return_thunk+0x5/0x5f [ 215.017293] ? lock_is_held_type+0x9e/0x120 [ 215.017743] ? srso_return_thunk+0x5/0x5f [ 215.018186] __mutex_lock+0x13d/0xb50 [ 215.018589] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.019175] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.019758] ? srso_return_thunk+0x5/0x5f [ 215.020165] ? synchronize_rcu_expedited+0x38a/0x420 [ 215.020641] ? __pfx___mutex_lock+0x10/0x10 [ 215.021061] ? __pfx_autoremove_wake_function+0x10/0x10 [ 215.021565] ? srso_return_thunk+0x5/0x5f [ 215.021974] ? kasan_quarantine_put+0x84/0x1e0 [ 215.022430] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 215.022865] ? srso_return_thunk+0x5/0x5f [ 215.023282] unregister_netdevice_many_notify+0x1612/0x1c80 [ 215.023814] ? __virt_addr_valid+0x2e8/0x5d0 [ 215.024274] ? __pfx_lock_release+0x10/0x10 [ 215.024707] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 215.025303] ? find_held_lock+0x2c/0x110 [ 215.025737] ? srso_return_thunk+0x5/0x5f [ 215.026177] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 215.026692] ? srso_return_thunk+0x5/0x5f [ 215.027129] ? lock_release+0x20f/0x6f0 [ 215.027538] ? __pfx_lock_release+0x10/0x10 [ 215.027985] ? srso_return_thunk+0x5/0x5f [ 215.028421] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.028954] ? srso_return_thunk+0x5/0x5f [ 215.029397] unregister_netdevice_queue+0x224/0x2e0 [ 215.029870] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 215.030382] ? up_write+0x195/0x520 [ 215.030752] _cfg80211_unregister_wdev+0x57b/0x700 [ 215.031223] ? srso_return_thunk+0x5/0x5f [ 215.031636] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 215.032105] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 215.032616] ? srso_return_thunk+0x5/0x5f [ 215.033043] ? srso_return_thunk+0x5/0x5f [ 215.033480] ? synchronize_rcu+0x1ff/0x260 [ 215.033909] ieee80211_unregister_hw+0x55/0x3a0 [ 215.034388] hwsim_exit_net+0x3a0/0x730 [ 215.034797] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.035221] ? srso_return_thunk+0x5/0x5f [ 215.035630] ? netdev_run_todo+0x788/0x1040 [ 215.036064] ? __pfx_hwsim_exit_net+0x10/0x10 [ 215.036520] ops_exit_list+0xb3/0x180 [ 215.036917] cleanup_net+0x546/0xad0 [ 215.037284] ? __pfx_cleanup_net+0x10/0x10 [ 215.037695] process_one_work+0x8ee/0x1a10 [ 215.038154] ? __pfx_lock_acquire+0x10/0x10 [ 215.038597] ? __pfx_process_one_work+0x10/0x10 [ 215.039097] ? srso_return_thunk+0x5/0x5f [ 215.039531] ? move_linked_works+0x172/0x270 [ 215.039985] ? srso_return_thunk+0x5/0x5f [ 215.040418] ? assign_work+0x196/0x240 [ 215.040835] worker_thread+0x674/0xe70 [ 215.041258] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 215.041790] ? __pfx_worker_thread+0x10/0x10 [ 215.042267] kthread+0x3ab/0x720 [ 215.042634] ? __pfx_kthread+0x10/0x10 [ 215.043045] ? srso_return_thunk+0x5/0x5f [ 215.043480] ? finish_task_switch.isra.0+0x206/0x840 [ 215.044001] ? __pfx_kthread+0x10/0x10 [ 215.044420] ret_from_fork+0x48/0x80 [ 215.044798] ? __pfx_kthread+0x10/0x10 [ 215.045210] ret_from_fork_asm+0x1a/0x30 [ 215.045652] [ 216.521913] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 216.522779] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 216.523403] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 216.526423] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 216.527811] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 216.528484] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 216.656890] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 216.662944] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 216.663884] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 216.668814] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 216.671349] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 216.672826] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 216.719908] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 216.721525] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 216.729093] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 216.736787] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 216.741679] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 216.745920] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 216.781902] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 216.784182] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 216.788647] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 216.806979] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 216.815483] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 216.817500] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 216.966504] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 216.967252] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 216.967918] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 216.969996] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 216.971231] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 216.972168] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 217.004756] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 217.023290] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 217.026864] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 217.027425] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 217.039074] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 217.041637] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 217.046962] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 217.048489] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 217.050110] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 217.055315] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 217.071759] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 217.080890] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 217.087870] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 217.089602] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 217.090240] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 217.122900] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 217.227014] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 217.231480] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 218.560924] Bluetooth: hci0: command tx timeout [ 218.688951] Bluetooth: hci1: command tx timeout [ 218.816804] Bluetooth: hci2: command tx timeout [ 218.882632] Bluetooth: hci3: command tx timeout [ 219.072790] Bluetooth: hci4: command tx timeout [ 219.136725] Bluetooth: hci5: command tx timeout [ 219.264866] Bluetooth: hci6: command tx timeout [ 219.328641] Bluetooth: hci7: command tx timeout [ 220.608795] Bluetooth: hci0: command tx timeout [ 220.738662] Bluetooth: hci1: command tx timeout [ 220.864825] Bluetooth: hci2: command tx timeout [ 220.928603] Bluetooth: hci3: command tx timeout [ 221.121694] Bluetooth: hci4: command tx timeout [ 221.186353] Bluetooth: hci5: command tx timeout [ 221.312689] Bluetooth: hci6: command tx timeout [ 221.377668] Bluetooth: hci7: command tx timeout [ 222.659687] Bluetooth: hci0: command tx timeout [ 222.785799] Bluetooth: hci1: command tx timeout [ 222.912603] Bluetooth: hci2: command tx timeout [ 222.976593] Bluetooth: hci3: command tx timeout [ 223.169608] Bluetooth: hci4: command tx timeout [ 223.233600] Bluetooth: hci5: command tx timeout [ 223.360673] Bluetooth: hci6: command tx timeout [ 223.425585] Bluetooth: hci7: command tx timeout [ 224.705677] Bluetooth: hci0: command tx timeout [ 224.833598] Bluetooth: hci1: command tx timeout [ 224.960735] Bluetooth: hci2: command tx timeout VM DIAGNOSIS: 19:20:29 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88800c101bc0 RCX=ffffffff81429a0f RDX=ffff88800c101bc0 RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000200000 RSP=ffff88800c12fdb8 R8 =0000000000000000 R9 =ffffed1001e58980 R10=0000000000200000 R11=ffff88800c102078 R12=ffff888013ee8469 R13=ffff88800b567000 R14=ffff88800c101bc0 R15=0000000000000086 RIP=ffffffff81429a11 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fffb78c1cd8 CR3=0000000016246000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004126b91000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095deb98 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000000 R11=6f6c206863696877 R12=0000000000000000 R13=ffff8880095deeb8 R14=ffffffff88693320 R15=0000000000000000 RIP=ffffffff8283ce1d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe2600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005653c96ce008 CR3=0000000030dca000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffff0000ff000000 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055c5f14b5d00000055c5f14b94d0 XMM06=000055c5f14b8a100000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000310000000000000020 XMM09=00000000000000000000000000000000 XMM10=00000020000000000000002000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000