Warning: Permanently added '[localhost]:11535' (ECDSA) to the list of known hosts. 2025/01/19 01:57:50 fuzzer started 2025/01/19 01:57:50 dialing manager at localhost:44245 syzkaller login: [ 69.087564] cgroup: Unknown subsys name 'net' [ 69.212312] cgroup: Unknown subsys name 'cpuset' [ 69.246614] cgroup: Unknown subsys name 'rlimit' [ 75.431028] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 84.715584] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/19 01:58:06 syscalls: 2217 2025/01/19 01:58:06 code coverage: enabled 2025/01/19 01:58:06 comparison tracing: enabled 2025/01/19 01:58:06 extra coverage: enabled 2025/01/19 01:58:06 setuid sandbox: enabled 2025/01/19 01:58:06 namespace sandbox: enabled 2025/01/19 01:58:06 Android sandbox: enabled 2025/01/19 01:58:06 fault injection: enabled 2025/01/19 01:58:06 leak checking: enabled 2025/01/19 01:58:06 net packet injection: enabled 2025/01/19 01:58:06 net device setup: enabled 2025/01/19 01:58:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/19 01:58:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/19 01:58:06 USB emulation: enabled 2025/01/19 01:58:06 hci packet injection: enabled 2025/01/19 01:58:06 wifi device emulation: enabled 2025/01/19 01:58:06 802.15.4 emulation: enabled 2025/01/19 01:58:06 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/19 01:58:07 fetching corpus: 50, signal 29288/32156 (executing program) 2025/01/19 01:58:07 fetching corpus: 100, signal 39289/43053 (executing program) 2025/01/19 01:58:07 fetching corpus: 150, signal 44695/49308 (executing program) 2025/01/19 01:58:07 fetching corpus: 200, signal 49617/54958 (executing program) 2025/01/19 01:58:07 fetching corpus: 250, signal 55384/61158 (executing program) 2025/01/19 01:58:07 fetching corpus: 300, signal 58681/65000 (executing program) 2025/01/19 01:58:08 fetching corpus: 350, signal 61899/68640 (executing program) 2025/01/19 01:58:08 fetching corpus: 400, signal 66922/73687 (executing program) 2025/01/19 01:58:08 fetching corpus: 450, signal 69151/76245 (executing program) 2025/01/19 01:58:08 fetching corpus: 500, signal 72278/79414 (executing program) 2025/01/19 01:58:08 fetching corpus: 550, signal 78432/84896 (executing program) 2025/01/19 01:58:08 fetching corpus: 600, signal 79827/86478 (executing program) 2025/01/19 01:58:08 fetching corpus: 650, signal 82781/89157 (executing program) 2025/01/19 01:58:08 fetching corpus: 700, signal 85922/91859 (executing program) 2025/01/19 01:58:09 fetching corpus: 750, signal 87636/93450 (executing program) 2025/01/19 01:58:09 fetching corpus: 800, signal 89903/95355 (executing program) 2025/01/19 01:58:09 fetching corpus: 850, signal 91916/96974 (executing program) 2025/01/19 01:58:09 fetching corpus: 900, signal 94374/98839 (executing program) 2025/01/19 01:58:09 fetching corpus: 950, signal 96093/100127 (executing program) 2025/01/19 01:58:09 fetching corpus: 1000, signal 97347/101098 (executing program) 2025/01/19 01:58:09 fetching corpus: 1050, signal 98622/102018 (executing program) 2025/01/19 01:58:10 fetching corpus: 1100, signal 100228/103105 (executing program) 2025/01/19 01:58:10 fetching corpus: 1150, signal 101175/103732 (executing program) 2025/01/19 01:58:10 fetching corpus: 1200, signal 102883/104747 (executing program) 2025/01/19 01:58:10 fetching corpus: 1250, signal 104271/105535 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/105948 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/105986 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106030 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106077 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106106 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106141 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106179 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106212 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106248 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106281 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106318 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106343 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106387 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106426 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106457 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106493 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106526 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106565 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106594 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106633 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106661 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106694 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106738 (executing program) 2025/01/19 01:58:10 fetching corpus: 1275, signal 104999/106775 (executing program) 2025/01/19 01:58:11 fetching corpus: 1275, signal 104999/106808 (executing program) 2025/01/19 01:58:11 fetching corpus: 1275, signal 104999/106847 (executing program) 2025/01/19 01:58:11 fetching corpus: 1275, signal 104999/106885 (executing program) 2025/01/19 01:58:11 fetching corpus: 1275, signal 104999/106905 (executing program) 2025/01/19 01:58:11 fetching corpus: 1275, signal 104999/106905 (executing program) 2025/01/19 01:58:14 starting 8 fuzzer processes 01:58:14 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getresgid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)) 01:58:14 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000000280)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@tclass={{0x14}}], 0x18}}], 0x1, 0x24000000) 01:58:14 executing program 2: write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000140)={{}, "15"}, 0x21) r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_FILES(r0, 0x16, &(0x7f0000000140)=[0xffffffffffffffff], 0x1) [ 92.897070] audit: type=1400 audit(1737251894.796:7): avc: denied { execmem } for pid=273 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 01:58:14 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x10, 0x0, &(0x7f00000000c0)) 01:58:14 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create1(0x0) dup2(r1, r0) 01:58:14 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) fcntl$addseals(r0, 0x409, 0x0) 01:58:14 executing program 7: r0 = socket$nl_audit(0x10, 0x3, 0x9) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000440)=0x3, 0x4) r1 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_SET(r1, &(0x7f0000001080)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000a80)={0x38}, 0x38}}, 0x0) 01:58:14 executing program 6: r0 = socket$inet6(0xa, 0x3, 0x42) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000300)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@dontfrag={{0x14}}, @flowinfo={{0x14, 0x29, 0xb, 0x5b14}}], 0x30}}], 0x1, 0x0) [ 94.203041] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.205521] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.210123] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.219525] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.222966] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.225072] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 94.338146] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 94.340434] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 94.345327] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 94.357058] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 94.359233] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 94.360089] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 94.368680] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 94.377669] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 94.378342] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 94.382309] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 94.384040] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 94.385231] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 94.386381] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 94.390291] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 94.393425] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 94.397994] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 94.418467] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 94.424210] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 94.444368] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 94.450751] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 94.459634] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 94.460032] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 94.467039] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 94.470322] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 94.477558] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 94.482246] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 94.484274] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 94.492484] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 94.501600] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 94.507011] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 94.525404] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 94.542118] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 94.544689] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 94.546598] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 94.550450] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 94.552383] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 94.591438] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 94.594159] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 94.598109] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 94.606911] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 94.609540] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 94.614131] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 96.289750] Bluetooth: hci0: command tx timeout [ 96.417060] Bluetooth: hci4: command tx timeout [ 96.480924] Bluetooth: hci1: command tx timeout [ 96.545013] Bluetooth: hci3: command tx timeout [ 96.545019] Bluetooth: hci2: command tx timeout [ 96.609921] Bluetooth: hci6: command tx timeout [ 96.610220] Bluetooth: hci5: command tx timeout [ 96.673024] Bluetooth: hci7: command tx timeout [ 98.336961] Bluetooth: hci0: command tx timeout [ 98.466229] Bluetooth: hci4: command tx timeout [ 98.529853] Bluetooth: hci1: command tx timeout [ 98.593847] Bluetooth: hci3: command tx timeout [ 98.593967] Bluetooth: hci2: command tx timeout [ 98.656966] Bluetooth: hci5: command tx timeout [ 98.657837] Bluetooth: hci6: command tx timeout [ 98.723101] Bluetooth: hci7: command tx timeout [ 100.384909] Bluetooth: hci0: command tx timeout [ 100.513105] Bluetooth: hci4: command tx timeout [ 100.579032] Bluetooth: hci1: command tx timeout [ 100.641886] Bluetooth: hci2: command tx timeout [ 100.641918] Bluetooth: hci3: command tx timeout [ 100.704877] Bluetooth: hci5: command tx timeout [ 100.704961] Bluetooth: hci6: command tx timeout [ 100.768969] Bluetooth: hci7: command tx timeout [ 102.432908] Bluetooth: hci0: command tx timeout [ 102.561130] Bluetooth: hci4: command tx timeout [ 102.625857] Bluetooth: hci1: command tx timeout [ 102.688894] Bluetooth: hci3: command tx timeout [ 102.688989] Bluetooth: hci2: command tx timeout [ 102.753114] Bluetooth: hci6: command tx timeout [ 102.753245] Bluetooth: hci5: command tx timeout [ 102.816879] Bluetooth: hci7: command tx timeout [ 153.218690] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 153.219040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 154.338701] [ 154.338981] ====================================================== [ 154.339585] WARNING: possible circular locking dependency detected [ 154.340194] 6.13.0-rc7-next-20250117 #1 Not tainted [ 154.340678] ------------------------------------------------------ [ 154.342318] kworker/u8:2/3673 is trying to acquire lock: [ 154.343461] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.345557] [ 154.345557] but task is already holding lock: [ 154.347148] ffff888018bb8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 154.349194] [ 154.349194] which lock already depends on the new lock. [ 154.349194] [ 154.350411] [ 154.350411] the existing dependency chain (in reverse order) is: [ 154.351112] [ 154.351112] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 154.351746] __mutex_lock+0x13d/0xb50 [ 154.352188] wiphy_register+0x1b2e/0x25d0 [ 154.352650] ieee80211_register_hw+0x23a4/0x3d60 [ 154.353182] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 154.353730] init_mac80211_hwsim+0x389/0x870 [ 154.354231] do_one_initcall+0xf9/0x640 [ 154.354690] kernel_init_freeable+0x53d/0x7a0 [ 154.355197] kernel_init+0x1e/0x2d0 [ 154.355602] ret_from_fork+0x48/0x80 [ 154.356026] ret_from_fork_asm+0x1a/0x30 [ 154.356485] [ 154.356485] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 154.357088] __lock_acquire+0x29fd/0x4580 [ 154.357562] lock_acquire+0x19b/0x520 [ 154.358023] __mutex_lock+0x13d/0xb50 [ 154.358483] unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.359100] unregister_netdevice_queue+0x224/0x2e0 [ 154.359646] _cfg80211_unregister_wdev+0x57b/0x700 [ 154.360200] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 154.360757] ieee80211_unregister_hw+0x55/0x3a0 [ 154.361291] hwsim_exit_net+0x3a0/0x730 [ 154.361756] ops_exit_list+0xb3/0x180 [ 154.362197] cleanup_net+0x546/0xad0 [ 154.362630] process_one_work+0x8ee/0x1a10 [ 154.363143] worker_thread+0x674/0xe70 [ 154.363616] kthread+0x3ab/0x720 [ 154.364046] ret_from_fork+0x48/0x80 [ 154.364475] ret_from_fork_asm+0x1a/0x30 [ 154.364977] [ 154.364977] other info that might help us debug this: [ 154.364977] [ 154.365738] Possible unsafe locking scenario: [ 154.365738] [ 154.366325] CPU0 CPU1 [ 154.366781] ---- ---- [ 154.367236] lock(&rdev->wiphy.mtx); [ 154.367647] lock(rtnl_mutex); [ 154.368238] lock(&rdev->wiphy.mtx); [ 154.368869] lock(rtnl_mutex); [ 154.369244] [ 154.369244] *** DEADLOCK *** [ 154.369244] [ 154.369810] 4 locks held by kworker/u8:2/3673: [ 154.370272] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 154.371294] #1: ffff888013757d30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 154.372301] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 154.373228] #3: ffff888018bb8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 154.374258] [ 154.374258] stack backtrace: [ 154.374698] CPU: 1 UID: 0 PID: 3673 Comm: kworker/u8:2 Not tainted 6.13.0-rc7-next-20250117 #1 [ 154.375534] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 154.376326] Workqueue: netns cleanup_net [ 154.376718] Call Trace: [ 154.376963] [ 154.377177] dump_stack_lvl+0xca/0x120 [ 154.377570] print_circular_bug+0x47b/0x750 [ 154.377997] check_noncircular+0x2e9/0x3c0 [ 154.378411] ? srso_return_thunk+0x5/0x5f [ 154.378850] ? __pfx_check_noncircular+0x10/0x10 [ 154.379331] ? hlock_class+0x4e/0x130 [ 154.379719] ? mark_lock+0xac/0xed0 [ 154.380110] ? srso_return_thunk+0x5/0x5f [ 154.380551] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 154.380996] ? lockdep_lock+0xba/0x1b0 [ 154.381410] ? __pfx_lockdep_lock+0x10/0x10 [ 154.381869] __lock_acquire+0x29fd/0x4580 [ 154.382319] ? __pfx___lock_acquire+0x10/0x10 [ 154.382779] ? lock_release+0x20f/0x6f0 [ 154.383174] ? __pfx_lock_release+0x10/0x10 [ 154.383604] lock_acquire+0x19b/0x520 [ 154.383979] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.384519] ? __pfx_lock_acquire+0x10/0x10 [ 154.384955] ? srso_return_thunk+0x5/0x5f [ 154.385391] ? lock_release+0x20f/0x6f0 [ 154.385805] ? srso_return_thunk+0x5/0x5f [ 154.386246] ? lock_is_held_type+0x9e/0x120 [ 154.386696] ? srso_return_thunk+0x5/0x5f [ 154.387148] __mutex_lock+0x13d/0xb50 [ 154.387562] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.388146] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.388724] ? srso_return_thunk+0x5/0x5f [ 154.389168] ? synchronize_rcu_expedited+0x38a/0x420 [ 154.389661] ? __pfx___mutex_lock+0x10/0x10 [ 154.390097] ? __pfx_autoremove_wake_function+0x10/0x10 [ 154.390640] ? srso_return_thunk+0x5/0x5f [ 154.391084] ? kasan_quarantine_put+0x84/0x1e0 [ 154.391578] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 154.392048] ? srso_return_thunk+0x5/0x5f [ 154.392485] unregister_netdevice_many_notify+0x1612/0x1c80 [ 154.393051] ? __virt_addr_valid+0x2e8/0x5d0 [ 154.393515] ? __pfx_lock_release+0x10/0x10 [ 154.393965] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 154.394538] ? find_held_lock+0x2c/0x110 [ 154.394948] ? srso_return_thunk+0x5/0x5f [ 154.395368] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 154.395853] ? srso_return_thunk+0x5/0x5f [ 154.396277] ? lock_release+0x20f/0x6f0 [ 154.396659] ? __pfx_lock_release+0x10/0x10 [ 154.397102] ? srso_return_thunk+0x5/0x5f [ 154.397541] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 154.398077] ? srso_return_thunk+0x5/0x5f [ 154.398522] unregister_netdevice_queue+0x224/0x2e0 [ 154.399028] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 154.399565] ? up_write+0x195/0x520 [ 154.399973] _cfg80211_unregister_wdev+0x57b/0x700 [ 154.400475] ? srso_return_thunk+0x5/0x5f [ 154.400925] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 154.401430] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 154.401983] ? srso_return_thunk+0x5/0x5f [ 154.402408] ? srso_return_thunk+0x5/0x5f [ 154.402822] ? synchronize_rcu+0x1ff/0x260 [ 154.403229] ieee80211_unregister_hw+0x55/0x3a0 [ 154.403678] hwsim_exit_net+0x3a0/0x730 [ 154.404077] ? __pfx_hwsim_exit_net+0x10/0x10 [ 154.404554] ? srso_return_thunk+0x5/0x5f [ 154.404994] ? netdev_run_todo+0x788/0x1040 [ 154.405427] ? srso_return_thunk+0x5/0x5f [ 154.405856] ? __pfx_hwsim_exit_net+0x10/0x10 [ 154.406319] ops_exit_list+0xb3/0x180 [ 154.406706] cleanup_net+0x546/0xad0 [ 154.407093] ? __pfx_cleanup_net+0x10/0x10 [ 154.407535] process_one_work+0x8ee/0x1a10 [ 154.407993] ? __pfx_lock_acquire+0x10/0x10 [ 154.408420] ? __pfx_process_one_work+0x10/0x10 [ 154.408908] ? srso_return_thunk+0x5/0x5f [ 154.409337] ? move_linked_works+0x172/0x270 [ 154.409759] ? srso_return_thunk+0x5/0x5f [ 154.410172] ? assign_work+0x196/0x240 [ 154.410563] worker_thread+0x674/0xe70 [ 154.410965] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 154.411461] ? srso_return_thunk+0x5/0x5f [ 154.411909] ? __pfx_worker_thread+0x10/0x10 [ 154.412384] kthread+0x3ab/0x720 [ 154.412750] ? __pfx_kthread+0x10/0x10 [ 154.413169] ? srso_return_thunk+0x5/0x5f [ 154.413607] ? finish_task_switch.isra.0+0x206/0x840 [ 154.414126] ? __pfx_kthread+0x10/0x10 [ 154.414538] ret_from_fork+0x48/0x80 [ 154.414920] ? __pfx_kthread+0x10/0x10 [ 154.415338] ret_from_fork_asm+0x1a/0x30 [ 154.415786] [ 156.701664] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 156.706953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 156.718486] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 156.719679] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 156.720691] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 156.721608] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 156.723214] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 156.724382] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 156.725651] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 156.727455] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 156.728444] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 156.728733] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 156.739689] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 156.740139] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 156.741745] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 156.744609] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 156.745894] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 156.746749] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 156.747647] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 156.776086] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 156.780977] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 156.784349] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 156.784707] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 156.785050] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 156.788309] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 156.789852] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 156.791278] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 156.794179] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 156.803329] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 156.806399] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 156.807013] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 156.814295] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 156.815637] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 156.817192] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 156.818439] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 156.818596] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 156.822074] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 156.823558] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 156.824603] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 156.829460] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 156.831229] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 156.838389] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 156.840095] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 156.842111] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 156.843261] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 156.853972] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 156.863608] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 156.864925] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 158.816872] Bluetooth: hci3: command tx timeout [ 158.816953] Bluetooth: hci0: command tx timeout [ 158.816993] Bluetooth: hci4: command tx timeout [ 158.880866] Bluetooth: hci6: command tx timeout [ 158.880944] Bluetooth: hci1: command tx timeout [ 158.880985] Bluetooth: hci2: command tx timeout [ 158.881024] Bluetooth: hci5: command tx timeout [ 158.945179] Bluetooth: hci7: command tx timeout [ 160.864967] Bluetooth: hci4: command tx timeout [ 160.865133] Bluetooth: hci0: command tx timeout [ 160.865225] Bluetooth: hci3: command tx timeout [ 160.928954] Bluetooth: hci5: command tx timeout [ 160.929094] Bluetooth: hci2: command tx timeout [ 160.929209] Bluetooth: hci1: command tx timeout [ 160.929304] Bluetooth: hci6: command tx timeout [ 160.994211] Bluetooth: hci7: command tx timeout [ 162.913833] Bluetooth: hci3: command tx timeout [ 162.913915] Bluetooth: hci0: command tx timeout [ 162.913977] Bluetooth: hci4: command tx timeout [ 162.977861] Bluetooth: hci6: command tx timeout [ 162.977941] Bluetooth: hci1: command tx timeout [ 162.977982] Bluetooth: hci2: command tx timeout [ 162.978019] Bluetooth: hci5: command tx timeout [ 163.041889] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 01:59:16 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffff88800ef23c00 RCX=ffffffff81429a4a RDX=ffffed1001de4781 RSI=0000000000000008 RDI=ffff88800ef23c00 RBP=0000000000200000 RSP=ffff88800f1f7db8 R8 =0000000000000000 R9 =ffffed1001de4780 R10=ffff88800ef23c07 R11=ffff88800ef5d7f8 R12=ffff88807bd1aff9 R13=ffffffff8864e3a0 R14=ffff88800ef5d340 R15=0000000000000086 RIP=ffffffff81429a4a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd3d8df000 CR3=0000000015236000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004183a5a280000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff888013756b98 R8 =0000000000000001 R9 =ffffed10026ead67 R10=0000000000000000 R11=6f6c206863696877 R12=0000000000000000 R13=ffff888013756eb8 R14=ffffffff88693320 R15=0000000000000000 RIP=ffffffff8283ce1d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff235dafc18 CR3=0000000015236000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000c000ed4420000000c000062000 XMM02=000000c0000ef800000000c0000ef7d0 XMM03=000000c0000fd1e0000000c00008e720 XMM04=000000c0000ef980000000c0000ef950 XMM05=000000c0000ef9e0000000c0000ef9b0 XMM06=000000c00008e750000000c00008e240 XMM07=000000c0000fe160000000c0000efa10 XMM08=000000c0000ef470000000c00008e6c0 XMM09=000000c0000ef4d0000000c0000ef4a0 XMM10=000000c0000ef530000000c0000ef500 XMM11=000000c0000ef590000000c0000ef560 XMM12=000000c0000fc160000000c0000ef5c0 XMM13=000000c000548940000000c0005487c0 XMM14=000000c000548cc0000000c000548b00 XMM15=000000c000549080000000c000548f00