Warning: Permanently added '[localhost]:62864' (ECDSA) to the list of known hosts. 2025/01/18 22:38:45 fuzzer started 2025/01/18 22:38:46 dialing manager at localhost:44245 syzkaller login: [ 70.638255] cgroup: Unknown subsys name 'net' [ 70.698074] cgroup: Unknown subsys name 'cpuset' [ 70.708989] cgroup: Unknown subsys name 'rlimit' [ 75.928447] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 86.683664] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/18 22:39:03 syscalls: 2217 2025/01/18 22:39:03 code coverage: enabled 2025/01/18 22:39:03 comparison tracing: enabled 2025/01/18 22:39:03 extra coverage: enabled 2025/01/18 22:39:03 setuid sandbox: enabled 2025/01/18 22:39:03 namespace sandbox: enabled 2025/01/18 22:39:03 Android sandbox: enabled 2025/01/18 22:39:03 fault injection: enabled 2025/01/18 22:39:03 leak checking: enabled 2025/01/18 22:39:03 net packet injection: enabled 2025/01/18 22:39:03 net device setup: enabled 2025/01/18 22:39:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/18 22:39:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/18 22:39:03 USB emulation: enabled 2025/01/18 22:39:03 hci packet injection: enabled 2025/01/18 22:39:03 wifi device emulation: enabled 2025/01/18 22:39:03 802.15.4 emulation: enabled 2025/01/18 22:39:03 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/18 22:39:03 fetching corpus: 50, signal 29208/32110 (executing program) 2025/01/18 22:39:03 fetching corpus: 100, signal 35928/39883 (executing program) 2025/01/18 22:39:03 fetching corpus: 150, signal 42570/47358 (executing program) 2025/01/18 22:39:03 fetching corpus: 200, signal 50051/55398 (executing program) 2025/01/18 22:39:03 fetching corpus: 250, signal 53801/59788 (executing program) 2025/01/18 22:39:04 fetching corpus: 300, signal 57457/64015 (executing program) 2025/01/18 22:39:04 fetching corpus: 350, signal 63444/70049 (executing program) 2025/01/18 22:39:04 fetching corpus: 400, signal 65758/72807 (executing program) 2025/01/18 22:39:04 fetching corpus: 450, signal 69309/76409 (executing program) 2025/01/18 22:39:04 fetching corpus: 500, signal 75848/82347 (executing program) 2025/01/18 22:39:04 fetching corpus: 550, signal 77311/84040 (executing program) 2025/01/18 22:39:05 fetching corpus: 600, signal 80777/87174 (executing program) 2025/01/18 22:39:05 fetching corpus: 650, signal 83941/89962 (executing program) 2025/01/18 22:39:05 fetching corpus: 700, signal 85717/91656 (executing program) 2025/01/18 22:39:05 fetching corpus: 750, signal 88092/93731 (executing program) 2025/01/18 22:39:05 fetching corpus: 800, signal 90186/95473 (executing program) 2025/01/18 22:39:05 fetching corpus: 850, signal 92455/97248 (executing program) 2025/01/18 22:39:06 fetching corpus: 900, signal 94157/98595 (executing program) 2025/01/18 22:39:06 fetching corpus: 950, signal 95724/99838 (executing program) 2025/01/18 22:39:06 fetching corpus: 1000, signal 96974/100813 (executing program) 2025/01/18 22:39:06 fetching corpus: 1050, signal 98657/101986 (executing program) 2025/01/18 22:39:06 fetching corpus: 1100, signal 99705/102712 (executing program) 2025/01/18 22:39:06 fetching corpus: 1150, signal 101249/103725 (executing program) 2025/01/18 22:39:07 fetching corpus: 1200, signal 102899/104687 (executing program) 2025/01/18 22:39:07 fetching corpus: 1250, signal 104216/105474 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/105864 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/105899 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/105932 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/105969 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/105994 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106029 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106059 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106096 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106130 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106165 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106211 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106239 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106277 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106307 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106338 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106381 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106413 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106448 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106490 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106525 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106548 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106581 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106602 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106639 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106678 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106706 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106743 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106753 (executing program) 2025/01/18 22:39:07 fetching corpus: 1269, signal 104942/106753 (executing program) 2025/01/18 22:39:11 starting 8 fuzzer processes 22:39:11 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x48, &(0x7f0000000080)={0x77359400}, 0x10) 22:39:11 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x43, &(0x7f0000000200)={{{@in=@broadcast, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}, {{@in=@local}, 0x0, @in6=@empty}}, 0xe8) 22:39:11 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000180), &(0x7f00000001c0)=0xc) 22:39:11 executing program 2: delete_module(0x0, 0x0) 22:39:11 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) perf_event_open(&(0x7f0000001a40)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 22:39:11 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000200)='\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x5c3b00, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, &(0x7f0000000600)={0x100, {{0xa, 0x4e20, 0x264, @loopback, 0xffff7afb}}, {{0xa, 0x4e24, 0xfff, @empty, 0x3}}}, 0x108) bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r3, r2, 0x0, 0x10000) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) pread64(r0, 0x0, 0x0, 0xffffffffffffb677) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) connect$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x0, 0x4, @dev={0xfe, 0x80, '\x00', 0x44}, 0x9}, 0x1c) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000001c0)={0xffffffffffffffff, 0x3, 0x6, 0x46e456a}) connect$inet6(r4, &(0x7f0000000240)={0xa, 0x4e22, 0x9, @mcast1, 0x4}, 0x1c) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r6, @ANYBLOB="3c7bbfa32a7e49d91efde143fd1a09c7542a582996b69ae06ca6bb404822388bebc3f146ded8583b1782e8659a7d123517544d4817f074564b5c51a2604854e838d509cee78c894d4b9af0d7d6af5281fd8d8371d2a1e39769c0280c4efedc04ef7e1d7875da25b6ade9996c91efb1d88b370e2fc56ab1e619dc3af09eb70ec23f7a0dcd25"]) 22:39:11 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x4) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x3, 0x4) [ 95.917500] audit: type=1400 audit(1737239952.082:7): avc: denied { execmem } for pid=274 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 22:39:12 executing program 7: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x2ca812d2efb49edf) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r1, 0x0) write$P9_RREMOVE(r0, &(0x7f0000000080)={0x6a}, 0x7) [ 97.384878] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.389374] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.391512] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.396930] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.401364] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 97.403427] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 97.513979] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 97.527262] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 97.528404] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 97.531564] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 97.538059] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 97.538553] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 97.544184] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 97.546634] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 97.555078] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 97.560000] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 97.562240] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 97.571216] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 97.571567] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 97.575457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 97.577450] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 97.580387] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 97.593080] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 97.600231] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 97.613969] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 97.660299] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 97.662271] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 97.665617] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 97.667521] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 97.668175] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 97.673249] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 97.677345] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 97.679076] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 97.700482] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 97.703519] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 97.704568] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 97.717943] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 97.724465] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 97.727667] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 97.733586] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 97.745341] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 97.745524] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 97.749481] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 97.753559] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 97.763545] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 97.771581] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 97.773497] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 97.778236] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 99.461621] Bluetooth: hci0: command tx timeout [ 99.653790] Bluetooth: hci2: command tx timeout [ 99.716798] Bluetooth: hci1: command tx timeout [ 99.717127] Bluetooth: hci5: command tx timeout [ 99.717390] Bluetooth: hci3: command tx timeout [ 99.844944] Bluetooth: hci4: command tx timeout [ 99.908848] Bluetooth: hci6: command tx timeout [ 99.909085] Bluetooth: hci7: command tx timeout [ 101.508880] Bluetooth: hci0: command tx timeout [ 101.700944] Bluetooth: hci2: command tx timeout [ 101.765755] Bluetooth: hci3: command tx timeout [ 101.765851] Bluetooth: hci5: command tx timeout [ 101.765939] Bluetooth: hci1: command tx timeout [ 101.892854] Bluetooth: hci4: command tx timeout [ 101.957304] Bluetooth: hci7: command tx timeout [ 101.957944] Bluetooth: hci6: command tx timeout [ 103.557337] Bluetooth: hci0: command tx timeout [ 103.748885] Bluetooth: hci2: command tx timeout [ 103.812809] Bluetooth: hci1: command tx timeout [ 103.812895] Bluetooth: hci5: command tx timeout [ 103.812987] Bluetooth: hci3: command tx timeout [ 103.940777] Bluetooth: hci4: command tx timeout [ 104.004910] Bluetooth: hci6: command tx timeout [ 104.005074] Bluetooth: hci7: command tx timeout [ 105.604945] Bluetooth: hci0: command tx timeout [ 105.796817] Bluetooth: hci2: command tx timeout [ 105.860784] Bluetooth: hci3: command tx timeout [ 105.860882] Bluetooth: hci5: command tx timeout [ 105.860979] Bluetooth: hci1: command tx timeout [ 105.988816] Bluetooth: hci4: command tx timeout [ 106.052977] Bluetooth: hci7: command tx timeout [ 106.053889] Bluetooth: hci6: command tx timeout [ 156.985943] syz-executor.2 (287) used greatest stack depth: 23360 bytes left [ 160.024242] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 160.028842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 160.035255] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 160.040307] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 160.046569] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 160.053158] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 160.080313] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 160.085790] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 160.087393] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 160.093205] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 160.096609] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 160.097451] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 160.113101] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 160.119160] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 160.122897] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 160.136385] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 160.163765] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 160.172796] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 160.177247] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 160.184326] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 160.184998] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 160.189831] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 160.191530] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 160.191973] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 160.192267] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 160.199278] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 160.202100] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 160.213165] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 160.229445] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 160.267805] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 160.292249] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 160.303516] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 160.313211] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 160.314133] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 160.314986] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 160.318066] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 160.319112] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 160.320986] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 160.321193] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 160.322912] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 160.326700] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 160.327955] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 160.333044] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 160.337906] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 160.339175] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 160.376953] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 160.404861] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 160.411158] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 162.116754] Bluetooth: hci0: command tx timeout [ 162.181837] Bluetooth: hci1: command tx timeout [ 162.244981] Bluetooth: hci2: command tx timeout [ 162.372849] Bluetooth: hci3: command tx timeout [ 162.437555] Bluetooth: hci4: command tx timeout [ 162.437751] Bluetooth: hci5: command tx timeout [ 162.500899] Bluetooth: hci7: command tx timeout [ 162.564804] Bluetooth: hci6: command tx timeout [ 164.164956] Bluetooth: hci0: command tx timeout [ 164.229187] Bluetooth: hci1: command tx timeout [ 164.293738] Bluetooth: hci2: command tx timeout [ 164.420762] Bluetooth: hci3: command tx timeout [ 164.485033] Bluetooth: hci5: command tx timeout [ 164.486451] Bluetooth: hci4: command tx timeout [ 164.550891] Bluetooth: hci7: command tx timeout [ 164.612862] Bluetooth: hci6: command tx timeout [ 166.212823] Bluetooth: hci0: command tx timeout [ 166.276823] Bluetooth: hci1: command tx timeout [ 166.341769] Bluetooth: hci2: command tx timeout [ 166.468781] Bluetooth: hci3: command tx timeout [ 166.533006] Bluetooth: hci5: command tx timeout [ 166.533897] Bluetooth: hci4: command tx timeout [ 166.597720] Bluetooth: hci7: command tx timeout [ 166.662035] Bluetooth: hci6: command tx timeout [ 168.260854] Bluetooth: hci0: command tx timeout [ 168.325021] Bluetooth: hci1: command tx timeout [ 168.388960] Bluetooth: hci2: command tx timeout [ 168.516845] Bluetooth: hci3: command tx timeout [ 168.581861] Bluetooth: hci4: command tx timeout [ 168.582026] Bluetooth: hci5: command tx timeout [ 168.646738] Bluetooth: hci7: command tx timeout [ 168.709728] Bluetooth: hci6: command tx timeout [ 222.353996] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 222.360249] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 222.374160] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 222.382990] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 222.386929] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 222.392900] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 222.430101] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 222.431628] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 222.434001] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 222.436296] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 222.444087] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 222.444281] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 222.458833] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 222.459037] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 222.465367] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 222.466742] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 222.469093] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 222.475290] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 222.487998] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 222.521456] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 222.523061] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 222.527614] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 222.528085] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 222.535760] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 222.553414] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 222.559176] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 222.560047] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 222.565083] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 222.566344] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 222.567023] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 222.614487] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 222.647816] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 222.673505] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 222.678238] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 222.694139] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 222.718504] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 222.722954] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 222.725984] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 222.730081] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 222.732777] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 222.742032] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 222.782256] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 222.785980] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 222.798224] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 222.804118] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 222.805179] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 222.812970] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 222.828994] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 224.452887] Bluetooth: hci0: command tx timeout [ 224.580886] Bluetooth: hci1: command tx timeout [ 224.645032] Bluetooth: hci3: command tx timeout [ 224.645124] Bluetooth: hci4: command tx timeout [ 224.645444] Bluetooth: hci2: command tx timeout [ 224.837613] Bluetooth: hci5: command tx timeout [ 224.900835] Bluetooth: hci6: command tx timeout [ 224.901609] Bluetooth: hci7: command tx timeout [ 226.501706] Bluetooth: hci0: command tx timeout [ 226.628837] Bluetooth: hci1: command tx timeout [ 226.692778] Bluetooth: hci4: command tx timeout [ 226.694200] Bluetooth: hci3: command tx timeout [ 226.694271] Bluetooth: hci2: command tx timeout [ 226.884731] Bluetooth: hci5: command tx timeout [ 226.949761] Bluetooth: hci7: command tx timeout [ 226.949844] Bluetooth: hci6: command tx timeout [ 228.549831] Bluetooth: hci0: command tx timeout [ 228.677717] Bluetooth: hci1: command tx timeout [ 228.741763] Bluetooth: hci2: command tx timeout [ 228.742339] Bluetooth: hci3: command tx timeout [ 228.742402] Bluetooth: hci4: command tx timeout [ 228.933747] Bluetooth: hci5: command tx timeout [ 228.997700] Bluetooth: hci6: command tx timeout [ 228.997782] Bluetooth: hci7: command tx timeout [ 230.596917] Bluetooth: hci0: command tx timeout [ 230.724839] Bluetooth: hci1: command tx timeout [ 230.788893] Bluetooth: hci4: command tx timeout [ 230.790013] Bluetooth: hci2: command tx timeout [ 230.790121] Bluetooth: hci3: command tx timeout [ 230.981233] Bluetooth: hci5: command tx timeout [ 231.044932] Bluetooth: hci7: command tx timeout [ 231.044951] Bluetooth: hci6: command tx timeout [ 284.829389] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 284.831102] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 284.832365] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 284.836009] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 284.837846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 284.838332] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 284.841347] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 284.846441] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 284.848521] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 284.853222] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 284.862504] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 284.883902] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 285.149129] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 285.151059] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 285.160337] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 285.169273] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 285.171965] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 285.181090] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 285.251926] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 285.274750] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 285.286257] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 285.287458] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 285.288382] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 285.291961] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 285.292435] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 285.293504] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 285.294217] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 285.299242] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 285.302216] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 285.302959] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 285.304753] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 285.312676] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 285.314001] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 285.320068] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 285.330602] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 285.347393] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 285.355842] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 285.363443] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 285.383070] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 285.393708] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 285.406074] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 285.410547] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 285.415041] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 285.422819] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 285.455458] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 285.493553] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 285.525142] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 285.528319] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 286.917739] Bluetooth: hci1: command tx timeout [ 286.918180] Bluetooth: hci0: command tx timeout [ 287.300797] Bluetooth: hci2: command tx timeout [ 287.365767] Bluetooth: hci6: command tx timeout [ 287.366181] Bluetooth: hci4: command tx timeout [ 287.494695] Bluetooth: hci3: command tx timeout [ 287.813728] Bluetooth: hci5: command tx timeout [ 287.877865] Bluetooth: hci7: command tx timeout [ 288.965926] Bluetooth: hci1: command tx timeout [ 288.966029] Bluetooth: hci0: command tx timeout [ 289.349811] Bluetooth: hci2: command tx timeout [ 289.413688] Bluetooth: hci6: command tx timeout [ 289.413793] Bluetooth: hci4: command tx timeout [ 289.540706] Bluetooth: hci3: command tx timeout [ 289.861705] Bluetooth: hci5: command tx timeout [ 289.924733] Bluetooth: hci7: command tx timeout [ 291.013796] Bluetooth: hci1: command tx timeout [ 291.013973] Bluetooth: hci0: command tx timeout [ 291.397101] Bluetooth: hci2: command tx timeout [ 291.460923] Bluetooth: hci6: command tx timeout [ 291.461120] Bluetooth: hci4: command tx timeout [ 291.589711] Bluetooth: hci3: command tx timeout [ 291.908787] Bluetooth: hci5: command tx timeout [ 291.973090] Bluetooth: hci7: command tx timeout [ 293.062017] Bluetooth: hci1: command tx timeout [ 293.062120] Bluetooth: hci0: command tx timeout [ 293.445458] Bluetooth: hci2: command tx timeout [ 293.508738] Bluetooth: hci6: command tx timeout [ 293.508827] Bluetooth: hci4: command tx timeout [ 293.638343] Bluetooth: hci3: command tx timeout [ 293.958778] Bluetooth: hci5: command tx timeout [ 294.021700] Bluetooth: hci7: command tx timeout [ 343.228794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.228920] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 343.472874] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 343.472949] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 345.289977] [ 345.290469] ====================================================== [ 345.291778] WARNING: possible circular locking dependency detected [ 345.293154] 6.13.0-rc7-next-20250117 #1 Not tainted [ 345.299974] ------------------------------------------------------ [ 345.301526] kworker/u8:1/65 is trying to acquire lock: [ 345.302789] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.305125] [ 345.305125] but task is already holding lock: [ 345.306365] ffff88803a480768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 345.308471] [ 345.308471] which lock already depends on the new lock. [ 345.308471] [ 345.310131] [ 345.310131] the existing dependency chain (in reverse order) is: [ 345.311694] [ 345.311694] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 345.313148] __mutex_lock+0x13d/0xb50 [ 345.314150] wiphy_register+0x1b2e/0x25d0 [ 345.315239] ieee80211_register_hw+0x23a4/0x3d60 [ 345.316424] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 345.317724] init_mac80211_hwsim+0x389/0x870 [ 345.318885] do_one_initcall+0xf9/0x640 [ 345.319946] kernel_init_freeable+0x53d/0x7a0 [ 345.321109] kernel_init+0x1e/0x2d0 [ 345.322041] ret_from_fork+0x48/0x80 [ 345.323007] ret_from_fork_asm+0x1a/0x30 [ 345.324195] [ 345.324195] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 345.325738] __lock_acquire+0x29fd/0x4580 [ 345.326992] lock_acquire+0x19b/0x520 [ 345.328152] __mutex_lock+0x13d/0xb50 [ 345.329323] unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.330719] unregister_netdevice_queue+0x224/0x2e0 [ 345.331943] _cfg80211_unregister_wdev+0x57b/0x700 [ 345.333195] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 345.334439] ieee80211_unregister_hw+0x55/0x3a0 [ 345.335778] hwsim_exit_net+0x3a0/0x730 [ 345.336829] ops_exit_list+0xb3/0x180 [ 345.337822] cleanup_net+0x546/0xad0 [ 345.338826] process_one_work+0x8ee/0x1a10 [ 345.339955] worker_thread+0x674/0xe70 [ 345.341015] kthread+0x3ab/0x720 [ 345.341938] ret_from_fork+0x48/0x80 [ 345.342891] ret_from_fork_asm+0x1a/0x30 [ 345.343981] [ 345.343981] other info that might help us debug this: [ 345.343981] [ 345.345659] Possible unsafe locking scenario: [ 345.345659] [ 345.346987] CPU0 CPU1 [ 345.347772] ---- ---- [ 345.348423] lock(&rdev->wiphy.mtx); [ 345.349016] lock(rtnl_mutex); [ 345.349856] lock(&rdev->wiphy.mtx); [ 345.350756] lock(rtnl_mutex); [ 345.351284] [ 345.351284] *** DEADLOCK *** [ 345.351284] [ 345.351911] 4 locks held by kworker/u8:1/65: [ 345.352415] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 345.353431] #1: ffff888009ee7d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 345.354357] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 345.355215] #3: ffff88803a480768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 345.356195] [ 345.356195] stack backtrace: [ 345.356623] CPU: 1 UID: 0 PID: 65 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 345.357371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 345.358264] Workqueue: netns cleanup_net [ 345.358754] Call Trace: [ 345.359049] [ 345.359309] dump_stack_lvl+0xca/0x120 [ 345.359791] print_circular_bug+0x47b/0x750 [ 345.360292] check_noncircular+0x2e9/0x3c0 [ 345.360780] ? lock_repin_lock+0x207/0x320 [ 345.361209] ? __pfx_check_noncircular+0x10/0x10 [ 345.361655] ? hlock_class+0x4e/0x130 [ 345.362010] ? mark_lock+0xac/0xed0 [ 345.362374] ? __pfx_lock_repin_lock+0x10/0x10 [ 345.362832] ? timerqueue_del+0x83/0x150 [ 345.363247] ? lockdep_lock+0xba/0x1b0 [ 345.363663] ? __pfx_lockdep_lock+0x10/0x10 [ 345.364120] __lock_acquire+0x29fd/0x4580 [ 345.364553] ? __pfx___lock_acquire+0x10/0x10 [ 345.365000] ? lock_release+0x20f/0x6f0 [ 345.365386] ? __pfx_lock_release+0x10/0x10 [ 345.365801] lock_acquire+0x19b/0x520 [ 345.366170] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.366730] ? __pfx_lock_acquire+0x10/0x10 [ 345.367141] ? srso_return_thunk+0x5/0x5f [ 345.367566] ? lock_release+0x20f/0x6f0 [ 345.367974] ? srso_return_thunk+0x5/0x5f [ 345.368415] ? lock_is_held_type+0x9e/0x120 [ 345.368871] ? srso_return_thunk+0x5/0x5f [ 345.369312] __mutex_lock+0x13d/0xb50 [ 345.369716] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.370290] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.370882] ? srso_return_thunk+0x5/0x5f [ 345.371318] ? synchronize_rcu_expedited+0x38a/0x420 [ 345.371821] ? __pfx___mutex_lock+0x10/0x10 [ 345.372272] ? __pfx_autoremove_wake_function+0x10/0x10 [ 345.372822] ? srso_return_thunk+0x5/0x5f [ 345.373259] ? kasan_quarantine_put+0x84/0x1e0 [ 345.373737] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 345.374196] ? srso_return_thunk+0x5/0x5f [ 345.374651] unregister_netdevice_many_notify+0x1612/0x1c80 [ 345.375206] ? __virt_addr_valid+0x2e8/0x5d0 [ 345.375646] ? __pfx_lock_release+0x10/0x10 [ 345.376058] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 345.376616] ? find_held_lock+0x2c/0x110 [ 345.377021] ? srso_return_thunk+0x5/0x5f [ 345.377442] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 345.377956] ? srso_return_thunk+0x5/0x5f [ 345.378403] ? lock_release+0x20f/0x6f0 [ 345.378818] ? __pfx_lock_release+0x10/0x10 [ 345.379257] ? srso_return_thunk+0x5/0x5f [ 345.379697] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 345.380230] ? srso_return_thunk+0x5/0x5f [ 345.380677] unregister_netdevice_queue+0x224/0x2e0 [ 345.381173] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 345.381717] ? up_write+0x195/0x520 [ 345.382110] _cfg80211_unregister_wdev+0x57b/0x700 [ 345.382630] ? srso_return_thunk+0x5/0x5f [ 345.383067] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 345.383561] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 345.384102] ? srso_return_thunk+0x5/0x5f [ 345.384536] ? srso_return_thunk+0x5/0x5f [ 345.384975] ? synchronize_rcu+0x1ff/0x260 [ 345.385407] ieee80211_unregister_hw+0x55/0x3a0 [ 345.385882] hwsim_exit_net+0x3a0/0x730 [ 345.386290] ? __pfx_hwsim_exit_net+0x10/0x10 [ 345.386757] ? srso_return_thunk+0x5/0x5f [ 345.387185] ? netdev_run_todo+0x788/0x1040 [ 345.387598] ? srso_return_thunk+0x5/0x5f [ 345.388030] ? __pfx_hwsim_exit_net+0x10/0x10 [ 345.388493] ops_exit_list+0xb3/0x180 [ 345.388885] cleanup_net+0x546/0xad0 [ 345.389269] ? __pfx_cleanup_net+0x10/0x10 [ 345.389710] process_one_work+0x8ee/0x1a10 [ 345.390168] ? __pfx_lock_acquire+0x10/0x10 [ 345.390612] ? __pfx_process_one_work+0x10/0x10 [ 345.391087] ? srso_return_thunk+0x5/0x5f [ 345.391500] ? move_linked_works+0x172/0x270 [ 345.391951] ? srso_return_thunk+0x5/0x5f [ 345.392387] ? assign_work+0x196/0x240 [ 345.392807] worker_thread+0x674/0xe70 [ 345.393229] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 345.393758] ? srso_return_thunk+0x5/0x5f [ 345.394193] ? __pfx_worker_thread+0x10/0x10 [ 345.394667] kthread+0x3ab/0x720 [ 345.395038] ? __pfx_kthread+0x10/0x10 [ 345.395445] ? srso_return_thunk+0x5/0x5f [ 345.395885] ? finish_task_switch.isra.0+0x206/0x840 [ 345.396400] ? __pfx_kthread+0x10/0x10 [ 345.396798] ret_from_fork+0x48/0x80 [ 345.397149] ? __pfx_kthread+0x10/0x10 [ 345.397537] ret_from_fork_asm+0x1a/0x30 [ 345.397950] [ 347.153058] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 347.155245] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 347.159487] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 347.164121] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 347.166395] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 347.167592] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 347.340317] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 347.342016] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 347.342950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 347.345468] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 347.348773] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 347.349831] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 347.480118] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 347.482864] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 347.487846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 347.492600] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 347.493215] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 347.493933] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 347.494336] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 347.497965] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 347.500583] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 347.501779] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 347.502346] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 347.513396] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 347.513837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 347.537352] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 347.539891] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 347.542185] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 347.547277] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 347.559724] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 347.561404] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 347.562744] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 347.574062] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 347.580822] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 347.601539] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 347.607761] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 347.609538] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 347.611336] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 347.613830] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 347.614870] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 347.615421] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 347.641921] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 347.644938] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 347.648049] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 347.649841] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 347.652123] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 347.679200] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 347.683934] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 349.188795] Bluetooth: hci0: command tx timeout [ 349.381656] Bluetooth: hci1: command tx timeout [ 349.572813] Bluetooth: hci3: command tx timeout [ 349.572937] Bluetooth: hci2: command tx timeout [ 349.636727] Bluetooth: hci4: command tx timeout [ 349.636828] Bluetooth: hci7: command tx timeout [ 349.764813] Bluetooth: hci5: command tx timeout [ 349.830633] Bluetooth: hci6: command tx timeout [ 351.238689] Bluetooth: hci0: command tx timeout [ 351.429721] Bluetooth: hci1: command tx timeout [ 351.620753] Bluetooth: hci3: command tx timeout [ 351.620865] Bluetooth: hci2: command tx timeout [ 351.685844] Bluetooth: hci7: command tx timeout [ 351.686059] Bluetooth: hci4: command tx timeout [ 351.812714] Bluetooth: hci5: command tx timeout [ 351.876678] Bluetooth: hci6: command tx timeout [ 353.286640] Bluetooth: hci0: command tx timeout [ 353.477664] Bluetooth: hci1: command tx timeout [ 353.668674] Bluetooth: hci2: command tx timeout [ 353.668762] Bluetooth: hci3: command tx timeout [ 353.733707] Bluetooth: hci7: command tx timeout [ 353.733796] Bluetooth: hci4: command tx timeout [ 353.860688] Bluetooth: hci5: command tx timeout [ 353.924656] Bluetooth: hci6: command tx timeout VM DIAGNOSIS: 22:43:21 Registers: info registers vcpu 0 RAX=0000000000069455 RBX=0000000000000000 RCX=ffffffff84a8bb27 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff814b1b6a RBP=dffffc0000000000 RSP=ffffffff85a07e10 R8 =0000000000000001 R9 =ffffed100d9c6c4a R10=ffff88806ce36253 R11=0000000000000001 R12=ffffffff864021d0 R13=1ffffffff0b40fc7 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff84a8cace RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055da8e841bd8 CR3=0000000009fe4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=095c7fcc7222ed839d40617be69b2913 XMM02=00000000000fd848a3797342f9eb3dd9 XMM03=000000000013381868a8aee3740b9fad XMM04=911b5298934c599a00000000000ae988 XMM05=7233e3086e2333830000000000150098 XMM06=9f165a4fe6c971ad0000000000137668 XMM07=711fbe8126c5d3440000000000137560 XMM08=68a8aee3740b9fad00000000000fd968 XMM09=00000000000000000000000000000000 XMM10=00200000000000000020000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff888009ee6bb8 R8 =0000000000000001 R9 =ffffed10013dcd67 R10=0000000000000020 R11=0000000033312e36 R12=0000000000000020 R13=0000000000000001 R14=ffff888008fea02f R15=ffff888009ee6eb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f121c686530 CR3=000000001503c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=6576652d7372656b726f772d6c6c696b XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=00000003ffffffff000056374e581330 XMM05=000056374e585740000056374e5cd050 XMM06=00000000000000000000000000000003 XMM07=00000000000000000000000000000000 XMM08=2f74656e2f73666e2f73662f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000