Warning: Permanently added '[localhost]:61228' (ECDSA) to the list of known hosts. 2025/01/18 22:39:57 fuzzer started 2025/01/18 22:39:58 dialing manager at localhost:44245 syzkaller login: [ 62.526496] cgroup: Unknown subsys name 'net' [ 62.619591] cgroup: Unknown subsys name 'cpuset' [ 62.654473] cgroup: Unknown subsys name 'rlimit' [ 69.685191] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 22:40:16 syscalls: 2217 2025/01/18 22:40:16 code coverage: enabled 2025/01/18 22:40:16 comparison tracing: enabled 2025/01/18 22:40:16 extra coverage: enabled 2025/01/18 22:40:16 setuid sandbox: enabled 2025/01/18 22:40:16 namespace sandbox: enabled 2025/01/18 22:40:16 Android sandbox: enabled 2025/01/18 22:40:16 fault injection: enabled 2025/01/18 22:40:16 leak checking: enabled 2025/01/18 22:40:16 net packet injection: enabled 2025/01/18 22:40:16 net device setup: enabled 2025/01/18 22:40:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 22:40:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 22:40:16 USB emulation: enabled 2025/01/18 22:40:16 hci packet injection: enabled 2025/01/18 22:40:16 wifi device emulation: enabled 2025/01/18 22:40:16 802.15.4 emulation: enabled 2025/01/18 22:40:16 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 22:40:17 fetching corpus: 50, signal 28066/30994 (executing program) 2025/01/18 22:40:17 fetching corpus: 100, signal 40650/44373 (executing program) 2025/01/18 22:40:17 fetching corpus: 150, signal 48184/52589 (executing program) 2025/01/18 22:40:17 fetching corpus: 200, signal 54479/59380 (executing program) 2025/01/18 22:40:17 fetching corpus: 250, signal 58044/63536 (executing program) 2025/01/18 22:40:17 fetching corpus: 300, signal 61580/67544 (executing program) 2025/01/18 22:40:18 fetching corpus: 350, signal 65420/71649 (executing program) 2025/01/18 22:40:18 fetching corpus: 400, signal 68073/74623 (executing program) 2025/01/18 22:40:18 fetching corpus: 450, signal 70979/77699 (executing program) 2025/01/18 22:40:18 fetching corpus: 500, signal 75039/81567 (executing program) 2025/01/18 22:40:18 fetching corpus: 550, signal 76775/83495 (executing program) 2025/01/18 22:40:18 fetching corpus: 600, signal 79422/86008 (executing program) 2025/01/18 22:40:19 fetching corpus: 650, signal 82464/88719 (executing program) 2025/01/18 22:40:19 fetching corpus: 700, signal 86057/91774 (executing program) 2025/01/18 22:40:19 fetching corpus: 750, signal 88678/94021 (executing program) 2025/01/18 22:40:19 fetching corpus: 800, signal 91043/95963 (executing program) 2025/01/18 22:40:19 fetching corpus: 850, signal 92517/97253 (executing program) 2025/01/18 22:40:19 fetching corpus: 900, signal 94265/98640 (executing program) 2025/01/18 22:40:20 fetching corpus: 950, signal 96136/100081 (executing program) 2025/01/18 22:40:20 fetching corpus: 1000, signal 98065/101451 (executing program) 2025/01/18 22:40:20 fetching corpus: 1050, signal 99823/102659 (executing program) 2025/01/18 22:40:20 fetching corpus: 1100, signal 101123/103532 (executing program) 2025/01/18 22:40:20 fetching corpus: 1150, signal 102292/104316 (executing program) 2025/01/18 22:40:20 fetching corpus: 1200, signal 103374/104968 (executing program) 2025/01/18 22:40:20 fetching corpus: 1250, signal 104513/105631 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/105885 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/105926 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/105955 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/105986 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106024 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106054 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106077 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106110 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106147 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106189 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106222 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106266 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106308 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106344 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106370 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106402 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106429 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106460 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106486 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106513 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106548 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106583 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106613 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106636 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106673 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106705 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106739 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106753 (executing program) 2025/01/18 22:40:21 fetching corpus: 1269, signal 104942/106753 (executing program) 2025/01/18 22:40:24 starting 8 fuzzer processes 22:40:24 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x40, 0x0, 0x2, 0x301, 0x0, 0x0, {}, [@CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_MASTER={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @local}}}]}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'syz1\x00'}]}, 0x40}}, 0x0) ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0) 22:40:24 executing program 2: clock_settime(0xa112d859a0fd71ef, &(0x7f0000000200)) 22:40:24 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newsa={0x104, 0x10, 0x1, 0x0, 0x0, {{@in=@private, @in6=@ipv4={'\x00', '\xff\xff', @local}, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in6=@mcast2, 0x0, 0x3c}, @in6=@rand_addr=' \x01\x00', {}, {}, {}, 0x0, 0x0, 0x2}, [@coaddr={0x14, 0xe, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x104}}, 0x0) 22:40:24 executing program 3: capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000580)) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 22:40:25 executing program 4: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x2a01, 0x0) ioctl$CDROM_SEND_PACKET(r0, 0x125d, &(0x7f00000009c0)={"0181c48679aa74f4e1761828", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 89.321454] audit: type=1400 audit(1737240025.036:7): avc: denied { execmem } for pid=275 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 22:40:25 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000080)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) mknodat$null(r1, &(0x7f0000000000)='./file0\x00', 0x2002, 0x103) 22:40:25 executing program 6: clone3(&(0x7f0000000540)={0x0, &(0x7f0000000640), &(0x7f0000000380), &(0x7f00000003c0), {}, &(0x7f0000000400)=""/136, 0xc986d6944b6436ea, &(0x7f0000000240)=""/28, &(0x7f0000000500)=[0xffffffffffffffff, 0x0], 0x2}, 0x58) 22:40:25 executing program 7: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000340)) [ 90.677751] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 90.680249] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 90.681907] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 90.684553] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 90.685331] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 90.689603] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 90.696748] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 90.698591] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 90.701388] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 90.701876] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 90.705519] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 90.710300] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 90.796808] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 90.801368] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 90.802749] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 90.809538] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 90.820870] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 90.822404] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 90.861565] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 90.864980] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 90.865830] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 90.868615] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 90.869824] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 90.875269] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 90.881204] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 90.883665] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 90.885297] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 90.887105] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 90.888523] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 90.890618] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 90.895519] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 90.896827] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.947371] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 90.963444] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 90.983915] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 90.985112] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 90.991164] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 90.995286] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 90.997555] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 90.997612] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 91.003783] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 91.005245] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 91.014632] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 91.016589] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 91.018378] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 91.026786] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 91.041268] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 91.049243] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.759707] Bluetooth: hci1: command tx timeout [ 92.761606] Bluetooth: hci0: command tx timeout [ 92.887174] Bluetooth: hci2: command tx timeout [ 92.951122] Bluetooth: hci3: command tx timeout [ 93.015151] Bluetooth: hci4: command tx timeout [ 93.079466] Bluetooth: hci5: command tx timeout [ 93.080412] Bluetooth: hci6: command tx timeout [ 93.143302] Bluetooth: hci7: command tx timeout [ 94.807077] Bluetooth: hci1: command tx timeout [ 94.808256] Bluetooth: hci0: command tx timeout [ 94.936770] Bluetooth: hci2: command tx timeout [ 95.000072] Bluetooth: hci3: command tx timeout [ 95.063392] Bluetooth: hci4: command tx timeout [ 95.127089] Bluetooth: hci5: command tx timeout [ 95.127140] Bluetooth: hci6: command tx timeout [ 95.192274] Bluetooth: hci7: command tx timeout [ 96.855337] Bluetooth: hci0: command tx timeout [ 96.855476] Bluetooth: hci1: command tx timeout [ 96.983618] Bluetooth: hci2: command tx timeout [ 97.047229] Bluetooth: hci3: command tx timeout [ 97.112134] Bluetooth: hci4: command tx timeout [ 97.175331] Bluetooth: hci6: command tx timeout [ 97.175391] Bluetooth: hci5: command tx timeout [ 97.240288] Bluetooth: hci7: command tx timeout [ 98.903422] Bluetooth: hci0: command tx timeout [ 98.903526] Bluetooth: hci1: command tx timeout [ 99.031364] Bluetooth: hci2: command tx timeout [ 99.095147] Bluetooth: hci3: command tx timeout [ 99.159284] Bluetooth: hci4: command tx timeout [ 99.223238] Bluetooth: hci5: command tx timeout [ 99.223662] Bluetooth: hci6: command tx timeout [ 99.287137] Bluetooth: hci7: command tx timeout [ 153.609197] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 153.617274] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 153.619450] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 153.623703] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 153.628232] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 153.634672] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 153.635869] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 153.640240] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 153.643279] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 153.644181] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 153.646014] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 153.646725] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 153.647554] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 153.665183] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 153.668055] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 153.671149] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 153.678203] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 153.679604] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 153.796058] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 153.798216] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 153.799590] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 153.802243] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 153.806255] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 153.808068] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 153.988450] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.003343] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.005576] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.009292] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 154.011256] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.011484] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 154.012764] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 154.013531] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.019028] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.022796] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 154.022798] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 154.026692] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 154.027248] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 154.028886] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 154.029065] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 154.035575] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 154.052921] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 154.054233] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 154.055607] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.060121] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.062062] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.063923] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.067825] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 154.073445] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 155.671542] Bluetooth: hci0: command tx timeout [ 155.671575] Bluetooth: hci1: command tx timeout [ 155.800168] Bluetooth: hci2: command tx timeout [ 155.991179] Bluetooth: hci3: command tx timeout [ 156.119498] Bluetooth: hci7: command tx timeout [ 156.120344] Bluetooth: hci5: command tx timeout [ 156.185041] Bluetooth: hci4: command tx timeout [ 156.185051] Bluetooth: hci6: command tx timeout [ 157.719422] Bluetooth: hci1: command tx timeout [ 157.719512] Bluetooth: hci0: command tx timeout [ 157.847061] Bluetooth: hci2: command tx timeout [ 158.040188] Bluetooth: hci3: command tx timeout [ 158.167309] Bluetooth: hci7: command tx timeout [ 158.167407] Bluetooth: hci5: command tx timeout [ 158.231158] Bluetooth: hci4: command tx timeout [ 158.231257] Bluetooth: hci6: command tx timeout [ 159.767579] Bluetooth: hci1: command tx timeout [ 159.768215] Bluetooth: hci0: command tx timeout [ 159.895050] Bluetooth: hci2: command tx timeout [ 160.087038] Bluetooth: hci3: command tx timeout [ 160.215209] Bluetooth: hci5: command tx timeout [ 160.216703] Bluetooth: hci7: command tx timeout [ 160.279078] Bluetooth: hci4: command tx timeout [ 160.280232] Bluetooth: hci6: command tx timeout [ 161.815056] Bluetooth: hci0: command tx timeout [ 161.816211] Bluetooth: hci1: command tx timeout [ 161.943050] Bluetooth: hci2: command tx timeout [ 162.135221] Bluetooth: hci3: command tx timeout [ 162.263123] Bluetooth: hci7: command tx timeout [ 162.266042] Bluetooth: hci5: command tx timeout [ 162.327156] Bluetooth: hci6: command tx timeout [ 162.327479] Bluetooth: hci4: command tx timeout [ 213.931779] [ 213.932042] ====================================================== [ 213.932641] WARNING: possible circular locking dependency detected [ 213.933243] 6.13.0-rc7-next-20250117 #1 Not tainted [ 213.933723] ------------------------------------------------------ [ 213.937603] kworker/u8:1/66 is trying to acquire lock: [ 213.938305] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.939339] [ 213.939339] but task is already holding lock: [ 213.939888] ffff88803cab0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 213.940826] [ 213.940826] which lock already depends on the new lock. [ 213.940826] [ 213.941577] [ 213.941577] the existing dependency chain (in reverse order) is: [ 213.942258] [ 213.942258] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 213.942918] __mutex_lock+0x13d/0xb50 [ 213.943377] wiphy_register+0x1b2e/0x25d0 [ 213.943862] ieee80211_register_hw+0x23a4/0x3d60 [ 213.944398] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 213.944957] init_mac80211_hwsim+0x389/0x870 [ 213.945477] do_one_initcall+0xf9/0x640 [ 213.945954] kernel_init_freeable+0x53d/0x7a0 [ 213.946464] kernel_init+0x1e/0x2d0 [ 213.946883] ret_from_fork+0x48/0x80 [ 213.947301] ret_from_fork_asm+0x1a/0x30 [ 213.947778] [ 213.947778] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 213.948379] __lock_acquire+0x29fd/0x4580 [ 213.948853] lock_acquire+0x19b/0x520 [ 213.949289] __mutex_lock+0x13d/0xb50 [ 213.949736] unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.950334] unregister_netdevice_queue+0x224/0x2e0 [ 213.950858] _cfg80211_unregister_wdev+0x57b/0x700 [ 213.951432] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 213.952096] ieee80211_unregister_hw+0x55/0x3a0 [ 213.952750] hwsim_exit_net+0x3a0/0x730 [ 213.953266] ops_exit_list+0xb3/0x180 [ 213.953758] cleanup_net+0x546/0xad0 [ 213.954212] process_one_work+0x8ee/0x1a10 [ 213.954759] worker_thread+0x674/0xe70 [ 213.955251] kthread+0x3ab/0x720 [ 213.955684] ret_from_fork+0x48/0x80 [ 213.956159] ret_from_fork_asm+0x1a/0x30 [ 213.956636] [ 213.956636] other info that might help us debug this: [ 213.956636] [ 213.957366] Possible unsafe locking scenario: [ 213.957366] [ 213.957982] CPU0 CPU1 [ 213.958454] ---- ---- [ 213.958952] lock(&rdev->wiphy.mtx); [ 213.959399] lock(rtnl_mutex); [ 213.960036] lock(&rdev->wiphy.mtx); [ 213.960713] lock(rtnl_mutex); [ 213.961105] [ 213.961105] *** DEADLOCK *** [ 213.961105] [ 213.961744] 4 locks held by kworker/u8:1/66: [ 213.962198] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 213.963222] #1: ffff88800eb2fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 213.964138] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 213.965055] #3: ffff88803cab0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 213.966062] [ 213.966062] stack backtrace: [ 213.966491] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 213.967282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 213.968055] Workqueue: netns cleanup_net [ 213.968481] Call Trace: [ 213.968732] [ 213.968957] dump_stack_lvl+0xca/0x120 [ 213.969372] print_circular_bug+0x47b/0x750 [ 213.969807] check_noncircular+0x2e9/0x3c0 [ 213.970240] ? srso_return_thunk+0x5/0x5f [ 213.970677] ? __pfx_check_noncircular+0x10/0x10 [ 213.971139] ? hlock_class+0x4e/0x130 [ 213.971512] ? mark_lock+0xac/0xed0 [ 213.971880] ? srso_return_thunk+0x5/0x5f [ 213.972322] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 213.972776] ? lockdep_lock+0xba/0x1b0 [ 213.973188] ? __pfx_lockdep_lock+0x10/0x10 [ 213.973641] __lock_acquire+0x29fd/0x4580 [ 213.974074] ? __pfx___lock_acquire+0x10/0x10 [ 213.974525] ? lock_release+0x20f/0x6f0 [ 213.974942] ? __pfx_lock_release+0x10/0x10 [ 213.975371] lock_acquire+0x19b/0x520 [ 213.975764] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.976333] ? __pfx_lock_acquire+0x10/0x10 [ 213.976764] ? srso_return_thunk+0x5/0x5f [ 213.977191] ? lock_release+0x20f/0x6f0 [ 213.977585] ? srso_return_thunk+0x5/0x5f [ 213.978010] ? lock_is_held_type+0x9e/0x120 [ 213.978464] ? srso_return_thunk+0x5/0x5f [ 213.978908] __mutex_lock+0x13d/0xb50 [ 213.979310] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.979867] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.980429] ? srso_return_thunk+0x5/0x5f [ 213.980864] ? synchronize_rcu_expedited+0x38a/0x420 [ 213.981364] ? __pfx___mutex_lock+0x10/0x10 [ 213.981800] ? __pfx_autoremove_wake_function+0x10/0x10 [ 213.982340] ? srso_return_thunk+0x5/0x5f [ 213.982769] ? kasan_quarantine_put+0x84/0x1e0 [ 213.983250] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 213.983701] ? srso_return_thunk+0x5/0x5f [ 213.984135] unregister_netdevice_many_notify+0x1612/0x1c80 [ 213.984690] ? __virt_addr_valid+0x2e8/0x5d0 [ 213.985140] ? __pfx_lock_release+0x10/0x10 [ 213.985566] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 213.986146] ? find_held_lock+0x2c/0x110 [ 213.986574] ? srso_return_thunk+0x5/0x5f [ 213.987017] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 213.987508] ? srso_return_thunk+0x5/0x5f [ 213.987924] ? lock_release+0x20f/0x6f0 [ 213.988317] ? __pfx_lock_release+0x10/0x10 [ 213.988747] ? srso_return_thunk+0x5/0x5f [ 213.989172] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 213.989685] ? srso_return_thunk+0x5/0x5f [ 213.990120] unregister_netdevice_queue+0x224/0x2e0 [ 213.990615] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 213.991150] ? up_write+0x195/0x520 [ 213.991528] _cfg80211_unregister_wdev+0x57b/0x700 [ 213.992016] ? srso_return_thunk+0x5/0x5f [ 213.992459] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 213.992955] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 213.993490] ? srso_return_thunk+0x5/0x5f [ 213.993914] ? srso_return_thunk+0x5/0x5f [ 213.994339] ? synchronize_rcu+0x1ff/0x260 [ 213.994767] ieee80211_unregister_hw+0x55/0x3a0 [ 213.995228] hwsim_exit_net+0x3a0/0x730 [ 213.995633] ? __pfx_hwsim_exit_net+0x10/0x10 [ 213.996077] ? srso_return_thunk+0x5/0x5f [ 213.996504] ? netdev_run_todo+0x788/0x1040 [ 213.996942] ? __pfx_hwsim_exit_net+0x10/0x10 [ 213.997387] ops_exit_list+0xb3/0x180 [ 213.997768] cleanup_net+0x546/0xad0 [ 213.998145] ? __pfx_cleanup_net+0x10/0x10 [ 213.998580] process_one_work+0x8ee/0x1a10 [ 213.999031] ? __pfx_lock_acquire+0x10/0x10 [ 213.999469] ? __pfx_process_one_work+0x10/0x10 [ 213.999930] ? srso_return_thunk+0x5/0x5f [ 214.000355] ? move_linked_works+0x172/0x270 [ 214.000793] ? srso_return_thunk+0x5/0x5f [ 214.001222] ? assign_work+0x196/0x240 [ 214.001631] worker_thread+0x674/0xe70 [ 214.002042] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 214.002551] ? srso_return_thunk+0x5/0x5f [ 214.002987] ? __pfx_worker_thread+0x10/0x10 [ 214.003442] kthread+0x3ab/0x720 [ 214.003788] ? __pfx_kthread+0x10/0x10 [ 214.004175] ? finish_task_switch.isra.0+0x206/0x840 [ 214.004657] ? __pfx_kthread+0x10/0x10 [ 214.005054] ret_from_fork+0x48/0x80 [ 214.005429] ? __pfx_kthread+0x10/0x10 [ 214.005836] ret_from_fork_asm+0x1a/0x30 [ 214.006271] [ 215.648473] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 215.651673] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 215.654565] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 215.659226] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 215.664560] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 215.667459] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 215.717416] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 215.719508] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 215.721550] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 215.726833] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 215.731648] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 215.735238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 215.839368] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 215.839689] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 215.842259] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 215.842483] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 215.845827] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 215.846757] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 215.857665] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 215.860384] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 215.860772] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 215.879652] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 215.886156] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 215.887738] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 215.909052] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 215.914272] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 215.915788] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 215.917402] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 215.920258] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 215.921901] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 215.944782] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 215.947563] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 215.948604] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 215.948909] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 215.958681] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 215.961829] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 216.052745] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 216.057325] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 216.059403] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 216.063518] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 216.068628] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 216.070228] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 216.072081] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 216.074289] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 216.076438] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 216.128275] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 216.150305] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 216.158786] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 217.689111] Bluetooth: hci0: command tx timeout [ 217.752018] Bluetooth: hci1: command tx timeout [ 217.943034] Bluetooth: hci3: command tx timeout [ 217.943086] Bluetooth: hci2: command tx timeout [ 218.007175] Bluetooth: hci4: command tx timeout [ 218.007209] Bluetooth: hci5: command tx timeout [ 218.134997] Bluetooth: hci6: command tx timeout [ 218.263002] Bluetooth: hci7: command tx timeout [ 219.736014] Bluetooth: hci0: command tx timeout [ 219.799127] Bluetooth: hci1: command tx timeout [ 219.991810] Bluetooth: hci3: command tx timeout [ 219.991941] Bluetooth: hci2: command tx timeout [ 220.056039] Bluetooth: hci5: command tx timeout [ 220.056063] Bluetooth: hci4: command tx timeout [ 220.183019] Bluetooth: hci6: command tx timeout [ 220.311026] Bluetooth: hci7: command tx timeout [ 221.783007] Bluetooth: hci0: command tx timeout [ 221.847047] Bluetooth: hci1: command tx timeout [ 222.039597] Bluetooth: hci3: command tx timeout [ 222.039653] Bluetooth: hci2: command tx timeout [ 222.105021] Bluetooth: hci4: command tx timeout [ 222.105095] Bluetooth: hci5: command tx timeout [ 222.232060] Bluetooth: hci6: command tx timeout [ 222.360095] Bluetooth: hci7: command tx timeout [ 223.833982] Bluetooth: hci0: command tx timeout [ 223.895002] Bluetooth: hci1: command tx timeout VM DIAGNOSIS: 22:42:29 Registers: info registers vcpu 0 RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800eb2ebb8 R8 =0000000000000001 R9 =ffffed1001d65d67 R10=000000000000002d R11=2d2d2d2d2d2d2d2d R12=000000000000002d R13=0000000000000001 R14=ffff888008fea033 R15=ffff88800eb2eeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005587cc07c540 CR3=000000000deac000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=000000c000084240000000c000084230 XMM04=000000c000084760000000c000084a20 XMM05=000000c0000847b0000000c000294720 XMM06=000000c0000847c0000000c0000847a0 XMM07=000000c000084780000000c000084790 XMM08=000000c0000846d0000000c000084690 XMM09=000000c00001c470000000c00001c490 XMM10=000000c00001c480000000c00001c460 XMM11=000000c0000842a0000000c0002f7770 XMM12=000000c0000841e0000000c0000841d0 XMM13=000000c0000841c0000000c0000841f0 XMM14=000000c0000844a0000000c0000841b0 XMM15=000000c000084710000000c00009c040 info registers vcpu 1 RAX=ffffed10019e38b9 RBX=ffffed10019e38ba RCX=ffffffff815092f3 RDX=ffffed10019e38ba RSI=0000000000000004 RDI=ffff88800cf1c5c8 RBP=ffffed10019e38b9 RSP=ffff88800eb3fd60 R8 =0000000000000000 R9 =ffffed10019e38b9 R10=ffff88800cf1c5cb R11=0000000000000532 R12=0000000000000000 R13=ffff88800d7ae4a0 R14=ffff88800e9bd340 R15=0000000000000086 RIP=ffffffff81aba9f1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe2700000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f797a80d600 CR3=000000000deac000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004183a71a40000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000