Warning: Permanently added '[localhost]:20053' (ECDSA) to the list of known hosts. 2025/01/17 19:29:14 fuzzer started 2025/01/17 19:29:15 dialing manager at localhost:44245 syzkaller login: [ 62.091205] cgroup: Unknown subsys name 'net' [ 62.202717] cgroup: Unknown subsys name 'cpuset' [ 62.236010] cgroup: Unknown subsys name 'rlimit' [ 68.354108] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/17 19:29:32 syscalls: 2217 2025/01/17 19:29:32 code coverage: enabled 2025/01/17 19:29:32 comparison tracing: enabled 2025/01/17 19:29:32 extra coverage: enabled 2025/01/17 19:29:32 setuid sandbox: enabled 2025/01/17 19:29:32 namespace sandbox: enabled 2025/01/17 19:29:32 Android sandbox: enabled 2025/01/17 19:29:32 fault injection: enabled 2025/01/17 19:29:32 leak checking: enabled 2025/01/17 19:29:32 net packet injection: enabled 2025/01/17 19:29:32 net device setup: enabled 2025/01/17 19:29:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/17 19:29:32 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/17 19:29:32 USB emulation: enabled 2025/01/17 19:29:32 hci packet injection: enabled 2025/01/17 19:29:32 wifi device emulation: enabled 2025/01/17 19:29:32 802.15.4 emulation: enabled 2025/01/17 19:29:32 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/17 19:29:32 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 19:29:32 fetching corpus: 1, signal 573/2047 (executing program) 2025/01/17 19:29:35 starting 8 fuzzer processes 19:29:35 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000002c0)={@dev, 0x0, 0x0, 0xff, 0x9}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@loopback, 0x0, 0x1}, 0x20) 19:29:35 executing program 1: r0 = memfd_secret(0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 19:29:35 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() clone3(&(0x7f0000000500)={0x200100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[r0], 0x1}, 0x58) 19:29:35 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x43, &(0x7f0000000340)=0x7e, 0x4) [ 82.429361] audit: type=1400 audit(1737142175.732:7): avc: denied { execmem } for pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:29:35 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2279, 0x0) 19:29:35 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBMETA(r0, 0x4b66, &(0x7f0000000040)) 19:29:35 executing program 6: syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) 19:29:35 executing program 7: mremap(&(0x7f0000ff3000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil) pkey_mprotect(&(0x7f0000ff3000/0xb000)=nil, 0xb000, 0x5, 0xffffffffffffffff) mremap(&(0x7f0000ff3000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ff8000/0x2000)=nil) [ 83.926855] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 83.930307] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 83.935849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.941185] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.944407] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 83.953150] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.991022] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 83.998091] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.000659] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.008918] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.012993] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 84.016162] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.019705] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.033673] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.040034] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.060104] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.061331] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.063997] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.068011] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.069367] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 84.075201] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.078304] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 84.080387] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.080933] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 84.083890] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.085779] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 84.098884] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 84.100047] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 84.116899] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 84.124928] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 84.131061] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 84.132829] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 84.145988] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 84.171979] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 84.180882] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 84.184996] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 84.185761] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 84.187325] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 84.190877] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 84.202062] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 84.208279] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 84.214124] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 84.222986] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 84.226683] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.242767] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 84.256719] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 84.265896] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 84.267044] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 86.013619] Bluetooth: hci0: command tx timeout [ 86.077601] Bluetooth: hci1: command tx timeout [ 86.140814] Bluetooth: hci2: command tx timeout [ 86.141634] Bluetooth: hci3: command tx timeout [ 86.205607] Bluetooth: hci5: command tx timeout [ 86.268630] Bluetooth: hci4: command tx timeout [ 86.332776] Bluetooth: hci7: command tx timeout [ 86.332933] Bluetooth: hci6: command tx timeout [ 88.060707] Bluetooth: hci0: command tx timeout [ 88.124673] Bluetooth: hci1: command tx timeout [ 88.189315] Bluetooth: hci3: command tx timeout [ 88.189349] Bluetooth: hci2: command tx timeout [ 88.253587] Bluetooth: hci5: command tx timeout [ 88.317580] Bluetooth: hci4: command tx timeout [ 88.380888] Bluetooth: hci6: command tx timeout [ 88.381021] Bluetooth: hci7: command tx timeout [ 90.108600] Bluetooth: hci0: command tx timeout [ 90.173594] Bluetooth: hci1: command tx timeout [ 90.236850] Bluetooth: hci2: command tx timeout [ 90.237902] Bluetooth: hci3: command tx timeout [ 90.301551] Bluetooth: hci5: command tx timeout [ 90.364640] Bluetooth: hci4: command tx timeout [ 90.428741] Bluetooth: hci7: command tx timeout [ 90.428998] Bluetooth: hci6: command tx timeout [ 92.157607] Bluetooth: hci0: command tx timeout [ 92.220616] Bluetooth: hci1: command tx timeout [ 92.284622] Bluetooth: hci3: command tx timeout [ 92.284719] Bluetooth: hci2: command tx timeout [ 92.349037] Bluetooth: hci5: command tx timeout [ 92.413136] Bluetooth: hci4: command tx timeout [ 92.476903] Bluetooth: hci6: command tx timeout [ 92.476933] Bluetooth: hci7: command tx timeout [ 143.416185] syz-executor.0 (282) used greatest stack depth: 23248 bytes left [ 146.251581] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 146.253593] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 146.256200] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 146.258952] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 146.262704] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 146.266321] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 146.266610] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 146.278752] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 146.282763] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 146.287143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 146.294134] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 146.303730] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 146.326686] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 146.330843] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 146.331163] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 146.339168] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 146.340964] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 146.352768] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 146.358726] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 146.359076] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 146.360444] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 146.362688] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 146.363738] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 146.365151] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 146.380478] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 146.381372] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 146.386838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 146.394837] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 146.396850] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 146.397918] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 146.406966] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 146.407321] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 146.417275] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 146.419283] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 146.421683] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 146.424005] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 146.424709] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 146.426960] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 146.433348] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 146.435023] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 146.437720] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 146.442651] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 146.446709] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 146.463062] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 146.463302] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 146.466454] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 146.475787] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 146.481921] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 148.348618] Bluetooth: hci1: command tx timeout [ 148.349011] Bluetooth: hci0: command tx timeout [ 148.476776] Bluetooth: hci3: command tx timeout [ 148.477855] Bluetooth: hci2: command tx timeout [ 148.478049] Bluetooth: hci4: command tx timeout [ 148.542663] Bluetooth: hci7: command tx timeout [ 148.543157] Bluetooth: hci6: command tx timeout [ 148.543323] Bluetooth: hci5: command tx timeout [ 150.396691] Bluetooth: hci1: command tx timeout [ 150.397527] Bluetooth: hci0: command tx timeout [ 150.526541] Bluetooth: hci2: command tx timeout [ 150.526626] Bluetooth: hci4: command tx timeout [ 150.526708] Bluetooth: hci3: command tx timeout [ 150.588667] Bluetooth: hci5: command tx timeout [ 150.588780] Bluetooth: hci6: command tx timeout [ 150.588872] Bluetooth: hci7: command tx timeout [ 152.444595] Bluetooth: hci0: command tx timeout [ 152.444630] Bluetooth: hci1: command tx timeout [ 152.572575] Bluetooth: hci3: command tx timeout [ 152.572607] Bluetooth: hci4: command tx timeout [ 152.572678] Bluetooth: hci2: command tx timeout [ 152.636660] Bluetooth: hci5: command tx timeout [ 152.636800] Bluetooth: hci7: command tx timeout [ 152.638335] Bluetooth: hci6: command tx timeout [ 154.492621] Bluetooth: hci1: command tx timeout [ 154.492692] Bluetooth: hci0: command tx timeout [ 154.620604] Bluetooth: hci4: command tx timeout [ 154.620639] Bluetooth: hci2: command tx timeout [ 154.620726] Bluetooth: hci3: command tx timeout [ 154.684672] Bluetooth: hci6: command tx timeout [ 154.685394] Bluetooth: hci7: command tx timeout [ 154.686025] Bluetooth: hci5: command tx timeout [ 205.099112] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 205.099231] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 206.339974] [ 206.340197] ====================================================== [ 206.340783] WARNING: possible circular locking dependency detected [ 206.341369] 6.13.0-rc7-next-20250117 #1 Not tainted [ 206.341846] ------------------------------------------------------ [ 206.343435] kworker/u8:0/11 is trying to acquire lock: [ 206.344487] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.346576] [ 206.346576] but task is already holding lock: [ 206.347675] ffff88803af50768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 206.350025] [ 206.350025] which lock already depends on the new lock. [ 206.350025] [ 206.351722] [ 206.351722] the existing dependency chain (in reverse order) is: [ 206.353242] [ 206.353242] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 206.354630] __mutex_lock+0x13d/0xb50 [ 206.355563] wiphy_register+0x1b2e/0x25d0 [ 206.356746] ieee80211_register_hw+0x23a4/0x3d60 [ 206.357476] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 206.358252] init_mac80211_hwsim+0x389/0x870 [ 206.358959] do_one_initcall+0xf9/0x640 [ 206.359608] kernel_init_freeable+0x53d/0x7a0 [ 206.360322] kernel_init+0x1e/0x2d0 [ 206.360896] ret_from_fork+0x48/0x80 [ 206.361484] ret_from_fork_asm+0x1a/0x30 [ 206.362166] [ 206.362166] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 206.363007] __lock_acquire+0x29fd/0x4580 [ 206.363668] lock_acquire+0x19b/0x520 [ 206.364286] __mutex_lock+0x13d/0xb50 [ 206.364908] unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.365751] unregister_netdevice_queue+0x224/0x2e0 [ 206.366514] _cfg80211_unregister_wdev+0x57b/0x700 [ 206.367270] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 206.368025] ieee80211_unregister_hw+0x55/0x3a0 [ 206.368735] hwsim_exit_net+0x3a0/0x730 [ 206.369362] ops_exit_list+0xb3/0x180 [ 206.369970] cleanup_net+0x546/0xad0 [ 206.370576] process_one_work+0x8ee/0x1a10 [ 206.371266] worker_thread+0x674/0xe70 [ 206.371909] kthread+0x3ab/0x720 [ 206.372479] ret_from_fork+0x48/0x80 [ 206.373057] ret_from_fork_asm+0x1a/0x30 [ 206.373716] [ 206.373716] other info that might help us debug this: [ 206.373716] [ 206.374741] Possible unsafe locking scenario: [ 206.374741] [ 206.375514] CPU0 CPU1 [ 206.376123] ---- ---- [ 206.376736] lock(&rdev->wiphy.mtx); [ 206.377280] lock(rtnl_mutex); [ 206.378065] lock(&rdev->wiphy.mtx); [ 206.378875] lock(rtnl_mutex); [ 206.379227] [ 206.379227] *** DEADLOCK *** [ 206.379227] [ 206.379806] 4 locks held by kworker/u8:0/11: [ 206.380227] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 206.381231] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 206.382207] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 206.383108] #3: ffff88803af50768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 206.384120] [ 206.384120] stack backtrace: [ 206.384548] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250117 #1 [ 206.385323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 206.386073] Workqueue: netns cleanup_net [ 206.386485] Call Trace: [ 206.386732] [ 206.386954] dump_stack_lvl+0xca/0x120 [ 206.387360] print_circular_bug+0x47b/0x750 [ 206.387783] check_noncircular+0x2e9/0x3c0 [ 206.388203] ? __pfx_check_noncircular+0x10/0x10 [ 206.388682] ? hlock_class+0x4e/0x130 [ 206.389058] ? mark_lock+0xac/0xed0 [ 206.389427] ? srso_return_thunk+0x5/0x5f [ 206.389861] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 206.390338] ? lockdep_lock+0xba/0x1b0 [ 206.390756] ? __pfx_lockdep_lock+0x10/0x10 [ 206.391208] __lock_acquire+0x29fd/0x4580 [ 206.391639] ? __pfx___lock_acquire+0x10/0x10 [ 206.392094] ? lock_release+0x20f/0x6f0 [ 206.392503] ? __pfx_lock_release+0x10/0x10 [ 206.392947] lock_acquire+0x19b/0x520 [ 206.393335] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.393909] ? __pfx_lock_acquire+0x10/0x10 [ 206.394354] ? srso_return_thunk+0x5/0x5f [ 206.394790] ? lock_release+0x20f/0x6f0 [ 206.395193] ? srso_return_thunk+0x5/0x5f [ 206.395625] ? lock_is_held_type+0x9e/0x120 [ 206.396076] ? srso_return_thunk+0x5/0x5f [ 206.396513] __mutex_lock+0x13d/0xb50 [ 206.396914] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.397488] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.398067] ? srso_return_thunk+0x5/0x5f [ 206.398505] ? synchronize_rcu_expedited+0x38a/0x420 [ 206.399009] ? __pfx___mutex_lock+0x10/0x10 [ 206.399456] ? __pfx_autoremove_wake_function+0x10/0x10 [ 206.399998] ? srso_return_thunk+0x5/0x5f [ 206.400430] ? kasan_quarantine_put+0x84/0x1e0 [ 206.400904] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 206.401356] ? srso_return_thunk+0x5/0x5f [ 206.401794] unregister_netdevice_many_notify+0x1612/0x1c80 [ 206.402355] ? __virt_addr_valid+0x2e8/0x5d0 [ 206.402817] ? __pfx_lock_release+0x10/0x10 [ 206.403256] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 206.403848] ? find_held_lock+0x2c/0x110 [ 206.404283] ? srso_return_thunk+0x5/0x5f [ 206.404723] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 206.405229] ? srso_return_thunk+0x5/0x5f [ 206.405662] ? lock_release+0x20f/0x6f0 [ 206.406067] ? __pfx_lock_release+0x10/0x10 [ 206.406510] ? srso_return_thunk+0x5/0x5f [ 206.406950] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 206.407474] ? srso_return_thunk+0x5/0x5f [ 206.407912] unregister_netdevice_queue+0x224/0x2e0 [ 206.408408] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 206.408953] ? up_write+0x195/0x520 [ 206.409342] _cfg80211_unregister_wdev+0x57b/0x700 [ 206.409846] ? srso_return_thunk+0x5/0x5f [ 206.410296] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 206.410795] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 206.411342] ? srso_return_thunk+0x5/0x5f [ 206.411776] ? srso_return_thunk+0x5/0x5f [ 206.412206] ? synchronize_rcu+0x1ff/0x260 [ 206.412634] ieee80211_unregister_hw+0x55/0x3a0 [ 206.413107] hwsim_exit_net+0x3a0/0x730 [ 206.413507] ? __pfx_hwsim_exit_net+0x10/0x10 [ 206.413949] ? srso_return_thunk+0x5/0x5f [ 206.414380] ? netdev_run_todo+0x788/0x1040 [ 206.414808] ? __pfx_hwsim_exit_net+0x10/0x10 [ 206.415249] ops_exit_list+0xb3/0x180 [ 206.415630] cleanup_net+0x546/0xad0 [ 206.416013] ? __pfx_cleanup_net+0x10/0x10 [ 206.416441] process_one_work+0x8ee/0x1a10 [ 206.416880] ? __pfx_lock_acquire+0x10/0x10 [ 206.417307] ? __pfx_process_one_work+0x10/0x10 [ 206.417781] ? srso_return_thunk+0x5/0x5f [ 206.418213] ? move_linked_works+0x172/0x270 [ 206.418651] ? srso_return_thunk+0x5/0x5f [ 206.419081] ? assign_work+0x196/0x240 [ 206.419486] worker_thread+0x674/0xe70 [ 206.419897] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 206.420413] ? __pfx_worker_thread+0x10/0x10 [ 206.420865] kthread+0x3ab/0x720 [ 206.421220] ? __pfx_kthread+0x10/0x10 [ 206.421626] ? srso_return_thunk+0x5/0x5f [ 206.422055] ? finish_task_switch.isra.0+0x206/0x840 [ 206.422565] ? __pfx_kthread+0x10/0x10 [ 206.422966] ret_from_fork+0x48/0x80 [ 206.423330] ? __pfx_kthread+0x10/0x10 [ 206.423730] ret_from_fork_asm+0x1a/0x30 [ 206.424158] [ 208.025849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 208.029204] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 208.031355] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 208.036828] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 208.040578] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 208.042806] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 208.137456] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 208.141763] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 208.143360] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 208.149322] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 208.151708] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 208.153160] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 208.266848] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 208.268002] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 208.269118] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 208.276002] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 208.278266] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 208.280091] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 208.337183] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 208.338287] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 208.344721] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 208.364022] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 208.378577] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 208.385755] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 208.410689] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 208.421305] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 208.430805] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 208.433947] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 208.436722] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 208.439884] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 208.459742] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 208.466099] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 208.468505] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 208.473630] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 208.477286] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 208.478578] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 208.502334] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 208.503743] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 208.506628] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 208.507778] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 208.529649] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 208.532939] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 208.549618] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 208.577446] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 208.580879] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 208.591059] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 208.634781] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 208.636946] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 210.109571] Bluetooth: hci0: command tx timeout [ 210.172581] Bluetooth: hci1: command tx timeout [ 210.300555] Bluetooth: hci2: command tx timeout [ 210.429493] Bluetooth: hci3: command tx timeout [ 210.492518] Bluetooth: hci5: command tx timeout [ 210.556527] Bluetooth: hci4: command tx timeout [ 210.685521] Bluetooth: hci6: command tx timeout [ 210.748566] Bluetooth: hci7: command tx timeout [ 212.157564] Bluetooth: hci0: command tx timeout [ 212.221561] Bluetooth: hci1: command tx timeout [ 212.350497] Bluetooth: hci2: command tx timeout [ 212.476524] Bluetooth: hci3: command tx timeout [ 212.540690] Bluetooth: hci5: command tx timeout [ 212.604505] Bluetooth: hci4: command tx timeout [ 212.732647] Bluetooth: hci6: command tx timeout [ 212.796792] Bluetooth: hci7: command tx timeout [ 214.205524] Bluetooth: hci0: command tx timeout [ 214.269668] Bluetooth: hci1: command tx timeout [ 214.396798] Bluetooth: hci2: command tx timeout [ 214.526522] Bluetooth: hci3: command tx timeout [ 214.590221] Bluetooth: hci5: command tx timeout [ 214.653004] Bluetooth: hci4: command tx timeout [ 214.780522] Bluetooth: hci6: command tx timeout [ 214.845729] Bluetooth: hci7: command tx timeout [ 216.253545] Bluetooth: hci0: command tx timeout [ 216.316526] Bluetooth: hci1: command tx timeout VM DIAGNOSIS: 19:31:39 Registers: info registers vcpu 0 RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff815092f3 RDX=ffff88800ed61bc0 RSI=00000030054777c0 RDI=7fffffffffffffff RBP=00000030054777c0 RSP=ffff88806ce09f08 R8 =0000000000000000 R9 =ffffed100d9c5958 R10=ffff88806ce2cac3 R11=00000000fa83b2da R12=ffff88806ce28300 R13=ffff88806ce2cb0c R14=0000000000000000 R15=ffff88806ce2cac0 RIP=ffffffff8163c449 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1c611486a0 CR3=00000000164fa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=0000000000000001000055de0c066b90 XMM05=00000000000000000000000000000000 XMM06=000055de0c066bb000000004ffffffff XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff8880095deb38 R8 =0000000000000001 R9 =ffffed10012bbd57 R10=0000000000000033 R11=3064353278302020 R12=0000000000000033 R13=0000000000000001 R14=ffff888008fea00d R15=ffff8880095dee38 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055ddff000de8 CR3=0000000039bd0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000005ffffffff000055de0c047960 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055de0c055550000055de0c028030 XMM06=000055de0c032b900000000200000003 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000