Warning: Permanently added '[localhost]:56019' (ECDSA) to the list of known hosts. 2025/01/19 02:31:00 fuzzer started 2025/01/19 02:31:00 dialing manager at localhost:44245 syzkaller login: [ 69.037720] cgroup: Unknown subsys name 'net' [ 69.126323] cgroup: Unknown subsys name 'cpuset' [ 69.160126] cgroup: Unknown subsys name 'rlimit' [ 75.422572] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/19 02:31:18 syscalls: 2217 2025/01/19 02:31:18 code coverage: enabled 2025/01/19 02:31:18 comparison tracing: enabled 2025/01/19 02:31:18 extra coverage: enabled 2025/01/19 02:31:18 setuid sandbox: enabled 2025/01/19 02:31:18 namespace sandbox: enabled 2025/01/19 02:31:18 Android sandbox: enabled 2025/01/19 02:31:18 fault injection: enabled 2025/01/19 02:31:18 leak checking: enabled 2025/01/19 02:31:18 net packet injection: enabled 2025/01/19 02:31:18 net device setup: enabled 2025/01/19 02:31:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/19 02:31:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/19 02:31:18 USB emulation: enabled 2025/01/19 02:31:18 hci packet injection: enabled 2025/01/19 02:31:18 wifi device emulation: enabled 2025/01/19 02:31:18 802.15.4 emulation: enabled 2025/01/19 02:31:18 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/19 02:31:18 fetching corpus: 50, signal 27693/30677 (executing program) 2025/01/19 02:31:18 fetching corpus: 100, signal 37001/40961 (executing program) 2025/01/19 02:31:18 fetching corpus: 150, signal 42091/47002 (executing program) 2025/01/19 02:31:18 fetching corpus: 200, signal 51508/56729 (executing program) 2025/01/19 02:31:18 fetching corpus: 250, signal 56710/62367 (executing program) 2025/01/19 02:31:19 fetching corpus: 300, signal 61666/67626 (executing program) 2025/01/19 02:31:19 fetching corpus: 350, signal 64874/71168 (executing program) 2025/01/19 02:31:19 fetching corpus: 400, signal 68272/74787 (executing program) 2025/01/19 02:31:19 fetching corpus: 450, signal 70237/77072 (executing program) 2025/01/19 02:31:19 fetching corpus: 500, signal 72857/79864 (executing program) 2025/01/19 02:31:19 fetching corpus: 550, signal 75396/82469 (executing program) 2025/01/19 02:31:19 fetching corpus: 600, signal 77712/84730 (executing program) 2025/01/19 02:31:20 fetching corpus: 650, signal 81328/87960 (executing program) 2025/01/19 02:31:20 fetching corpus: 700, signal 83341/89950 (executing program) 2025/01/19 02:31:20 fetching corpus: 750, signal 85227/91765 (executing program) 2025/01/19 02:31:20 fetching corpus: 800, signal 89757/95268 (executing program) 2025/01/19 02:31:20 fetching corpus: 850, signal 91527/96712 (executing program) 2025/01/19 02:31:20 fetching corpus: 900, signal 93450/98222 (executing program) 2025/01/19 02:31:20 fetching corpus: 950, signal 95346/99655 (executing program) 2025/01/19 02:31:21 fetching corpus: 1000, signal 96717/100695 (executing program) 2025/01/19 02:31:21 fetching corpus: 1050, signal 98058/101693 (executing program) 2025/01/19 02:31:21 fetching corpus: 1100, signal 99917/102913 (executing program) 2025/01/19 02:31:21 fetching corpus: 1150, signal 101748/104071 (executing program) 2025/01/19 02:31:21 fetching corpus: 1200, signal 103168/104931 (executing program) 2025/01/19 02:31:22 fetching corpus: 1250, signal 104273/105545 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/105946 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/105979 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106021 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106062 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106098 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106134 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106171 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106198 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106223 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106261 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106300 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106333 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106370 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106394 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106439 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106482 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106524 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106559 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106590 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106622 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106651 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106690 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106723 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106765 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106806 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106858 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106893 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106905 (executing program) 2025/01/19 02:31:22 fetching corpus: 1275, signal 104999/106905 (executing program) 2025/01/19 02:31:26 starting 8 fuzzer processes 02:31:26 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCFLSH(r0, 0x540b, 0x1) 02:31:26 executing program 1: mknod(&(0x7f0000008d80)='./file0\x00', 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) umount2(&(0x7f0000000140)='./file0\x00', 0x0) 02:31:26 executing program 2: syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @dev, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "b0e0ee", 0x0, 0x2b, 0x0, @private0, @mcast2}}}}, 0x0) 02:31:26 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x37, &(0x7f00000002c0)={@dev, 0x0, 0x0, 0xff}, 0x20) 02:31:26 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100004) [ 94.304210] audit: type=1400 audit(1737253886.249:7): avc: denied { execmem } for pid=271 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 02:31:26 executing program 5: getrandom(&(0x7f0000000000)=""/132, 0x84, 0x0) 02:31:26 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, 0x0, &(0x7f00000000c0)) 02:31:26 executing program 7: mlock(&(0x7f0000fff000/0x1000)=nil, 0x1000) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x2) [ 95.725778] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 95.730352] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 95.733462] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 95.736030] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 95.739633] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 95.741819] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 95.748210] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 95.756360] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 95.756914] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 95.760472] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.770894] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 95.776557] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 95.801669] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 95.804456] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 95.811177] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 95.814864] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 95.820490] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 95.824736] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 95.840127] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 95.844641] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 95.845324] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 95.846370] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.859856] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 95.860845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.900359] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 95.906106] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 95.911705] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 95.918333] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 95.924383] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 95.926663] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 95.981282] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 95.985049] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 95.987683] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 95.993861] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 96.002348] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 96.004592] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.040792] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 96.056354] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 96.061630] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 96.080205] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 96.085608] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 96.111107] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 96.119069] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 96.123538] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 96.124392] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 96.149338] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 96.168541] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 96.182538] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 97.811196] Bluetooth: hci0: command tx timeout [ 97.871090] Bluetooth: hci2: command tx timeout [ 97.871366] Bluetooth: hci1: command tx timeout [ 97.936464] Bluetooth: hci3: command tx timeout [ 98.003304] Bluetooth: hci4: command tx timeout [ 98.065628] Bluetooth: hci5: command tx timeout [ 98.191111] Bluetooth: hci6: command tx timeout [ 98.256062] Bluetooth: hci7: command tx timeout [ 99.855127] Bluetooth: hci0: command tx timeout [ 99.920149] Bluetooth: hci1: command tx timeout [ 99.920756] Bluetooth: hci2: command tx timeout [ 99.983031] Bluetooth: hci3: command tx timeout [ 100.049101] Bluetooth: hci4: command tx timeout [ 100.112031] Bluetooth: hci5: command tx timeout [ 100.240080] Bluetooth: hci6: command tx timeout [ 100.304203] Bluetooth: hci7: command tx timeout [ 101.903079] Bluetooth: hci0: command tx timeout [ 101.967361] Bluetooth: hci1: command tx timeout [ 101.968152] Bluetooth: hci2: command tx timeout [ 102.031105] Bluetooth: hci3: command tx timeout [ 102.095107] Bluetooth: hci4: command tx timeout [ 102.160986] Bluetooth: hci5: command tx timeout [ 102.287509] Bluetooth: hci6: command tx timeout [ 102.353061] Bluetooth: hci7: command tx timeout [ 103.951117] Bluetooth: hci0: command tx timeout [ 104.015722] Bluetooth: hci1: command tx timeout [ 104.015829] Bluetooth: hci2: command tx timeout [ 104.079079] Bluetooth: hci3: command tx timeout [ 104.143196] Bluetooth: hci4: command tx timeout [ 104.208030] Bluetooth: hci5: command tx timeout [ 104.335174] Bluetooth: hci6: command tx timeout [ 104.401987] Bluetooth: hci7: command tx timeout [ 158.371572] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 158.374375] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 158.376271] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 158.379631] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 158.381855] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 158.383586] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 158.491168] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 158.492890] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 158.495379] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 158.495801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 158.499137] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 158.499412] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 158.504845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 158.508265] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 158.511212] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 158.513596] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 158.519152] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 158.519663] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 158.703441] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 158.710918] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 158.713866] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 158.715524] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 158.719299] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 158.725765] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 158.734545] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 158.739227] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 158.744639] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 158.747586] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 158.753712] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 158.755848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 158.826456] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 158.836463] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 158.872244] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 158.879541] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 158.903409] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 158.909602] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 158.916879] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 158.931413] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 158.935880] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 158.936541] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 158.946454] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 158.979391] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 158.979751] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 158.992260] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 158.992803] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 158.997650] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 158.998394] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 158.998847] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 160.464033] Bluetooth: hci0: command tx timeout [ 160.591083] Bluetooth: hci1: command tx timeout [ 160.592034] Bluetooth: hci2: command tx timeout [ 160.784138] Bluetooth: hci3: command tx timeout [ 160.847087] Bluetooth: hci4: command tx timeout [ 161.039029] Bluetooth: hci5: command tx timeout [ 161.103196] Bluetooth: hci6: command tx timeout [ 161.103596] Bluetooth: hci7: command tx timeout [ 162.511135] Bluetooth: hci0: command tx timeout [ 162.639106] Bluetooth: hci2: command tx timeout [ 162.639277] Bluetooth: hci1: command tx timeout [ 162.831333] Bluetooth: hci3: command tx timeout [ 162.895117] Bluetooth: hci4: command tx timeout [ 163.088030] Bluetooth: hci5: command tx timeout [ 163.151213] Bluetooth: hci7: command tx timeout [ 163.151458] Bluetooth: hci6: command tx timeout [ 164.559090] Bluetooth: hci0: command tx timeout [ 164.687426] Bluetooth: hci1: command tx timeout [ 164.687539] Bluetooth: hci2: command tx timeout [ 164.879102] Bluetooth: hci3: command tx timeout [ 164.943797] Bluetooth: hci4: command tx timeout [ 165.135992] Bluetooth: hci5: command tx timeout [ 165.199129] Bluetooth: hci7: command tx timeout [ 165.200031] Bluetooth: hci6: command tx timeout [ 166.607530] Bluetooth: hci0: command tx timeout [ 166.735122] Bluetooth: hci2: command tx timeout [ 166.735276] Bluetooth: hci1: command tx timeout [ 166.927393] Bluetooth: hci3: command tx timeout [ 166.991250] Bluetooth: hci4: command tx timeout [ 167.183607] Bluetooth: hci5: command tx timeout [ 167.248035] Bluetooth: hci6: command tx timeout [ 167.248127] Bluetooth: hci7: command tx timeout [ 218.674367] [ 218.674833] ====================================================== [ 218.676024] WARNING: possible circular locking dependency detected [ 218.677114] 6.13.0-rc7-next-20250117 #1 Not tainted [ 218.678250] ------------------------------------------------------ [ 218.683205] kworker/u8:1/66 is trying to acquire lock: [ 218.684195] ffffffff8621b968 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.686126] [ 218.686126] but task is already holding lock: [ 218.687224] ffff88803b0e8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 218.689076] [ 218.689076] which lock already depends on the new lock. [ 218.689076] [ 218.690558] [ 218.690558] the existing dependency chain (in reverse order) is: [ 218.691912] [ 218.691912] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 218.693214] __mutex_lock+0x13d/0xb50 [ 218.694242] wiphy_register+0x1b2e/0x25d0 [ 218.695227] ieee80211_register_hw+0x23a4/0x3d60 [ 218.696283] mac80211_hwsim_new_radio+0x2759/0x4d50 [ 218.697387] init_mac80211_hwsim+0x389/0x870 [ 218.698456] do_one_initcall+0xf9/0x640 [ 218.699540] kernel_init_freeable+0x53d/0x7a0 [ 218.700622] kernel_init+0x1e/0x2d0 [ 218.701503] ret_from_fork+0x48/0x80 [ 218.702385] ret_from_fork_asm+0x1a/0x30 [ 218.703433] [ 218.703433] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 218.704706] __lock_acquire+0x29fd/0x4580 [ 218.705729] lock_acquire+0x19b/0x520 [ 218.706661] __mutex_lock+0x13d/0xb50 [ 218.707622] unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.708901] unregister_netdevice_queue+0x224/0x2e0 [ 218.710043] _cfg80211_unregister_wdev+0x57b/0x700 [ 218.711339] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 218.712457] ieee80211_unregister_hw+0x55/0x3a0 [ 218.713492] hwsim_exit_net+0x3a0/0x730 [ 218.714410] ops_exit_list+0xb3/0x180 [ 218.715283] cleanup_net+0x546/0xad0 [ 218.716152] process_one_work+0x8ee/0x1a10 [ 218.717204] worker_thread+0x674/0xe70 [ 218.718162] kthread+0x3ab/0x720 [ 218.718997] ret_from_fork+0x48/0x80 [ 218.719851] ret_from_fork_asm+0x1a/0x30 [ 218.720798] [ 218.720798] other info that might help us debug this: [ 218.720798] [ 218.722250] Possible unsafe locking scenario: [ 218.722250] [ 218.723380] CPU0 CPU1 [ 218.724252] ---- ---- [ 218.725114] lock(&rdev->wiphy.mtx); [ 218.725887] lock(rtnl_mutex); [ 218.727001] lock(&rdev->wiphy.mtx); [ 218.728244] lock(rtnl_mutex); [ 218.728946] [ 218.728946] *** DEADLOCK *** [ 218.728946] [ 218.730041] 4 locks held by kworker/u8:1/66: [ 218.730900] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 218.732921] #1: ffff88800f38fd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 218.734856] #2: ffffffff8620f810 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 218.736617] #3: ffff88803b0e8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 218.738583] [ 218.738583] stack backtrace: [ 218.739441] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:1 Not tainted 6.13.0-rc7-next-20250117 #1 [ 218.741008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 218.742508] Workqueue: netns cleanup_net [ 218.743663] Call Trace: [ 218.744236] [ 218.744742] dump_stack_lvl+0xca/0x120 [ 218.745670] print_circular_bug+0x47b/0x750 [ 218.746678] check_noncircular+0x2e9/0x3c0 [ 218.747650] ? __pfx_check_noncircular+0x10/0x10 [ 218.748705] ? hlock_class+0x4e/0x130 [ 218.749547] ? mark_lock+0xac/0xed0 [ 218.750384] ? srso_return_thunk+0x5/0x5f [ 218.751366] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 218.752396] ? lockdep_lock+0xba/0x1b0 [ 218.753321] ? __pfx_lockdep_lock+0x10/0x10 [ 218.754336] __lock_acquire+0x29fd/0x4580 [ 218.755319] ? __pfx___lock_acquire+0x10/0x10 [ 218.756337] ? lock_release+0x20f/0x6f0 [ 218.757252] ? __pfx_lock_release+0x10/0x10 [ 218.758237] lock_acquire+0x19b/0x520 [ 218.759125] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.760421] ? __pfx_lock_acquire+0x10/0x10 [ 218.761422] ? srso_return_thunk+0x5/0x5f [ 218.762421] ? lock_release+0x20f/0x6f0 [ 218.763369] ? srso_return_thunk+0x5/0x5f [ 218.764373] ? lock_is_held_type+0x9e/0x120 [ 218.765385] ? srso_return_thunk+0x5/0x5f [ 218.766210] __mutex_lock+0x13d/0xb50 [ 218.766970] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.768227] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.769480] ? srso_return_thunk+0x5/0x5f [ 218.770353] ? synchronize_rcu_expedited+0x38a/0x420 [ 218.771336] ? __pfx___mutex_lock+0x10/0x10 [ 218.772185] ? __pfx_autoremove_wake_function+0x10/0x10 [ 218.773215] ? srso_return_thunk+0x5/0x5f [ 218.774048] ? kasan_quarantine_put+0x84/0x1e0 [ 218.774962] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 218.775836] ? srso_return_thunk+0x5/0x5f [ 218.776666] unregister_netdevice_many_notify+0x1612/0x1c80 [ 218.777738] ? __virt_addr_valid+0x2e8/0x5d0 [ 218.778627] ? __pfx_lock_release+0x10/0x10 [ 218.779480] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 218.780625] ? find_held_lock+0x2c/0x110 [ 218.781447] ? srso_return_thunk+0x5/0x5f [ 218.782308] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 218.783290] ? srso_return_thunk+0x5/0x5f [ 218.784117] ? lock_release+0x20f/0x6f0 [ 218.784895] ? __pfx_lock_release+0x10/0x10 [ 218.785732] ? srso_return_thunk+0x5/0x5f [ 218.786564] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 218.787578] ? srso_return_thunk+0x5/0x5f [ 218.788419] unregister_netdevice_queue+0x224/0x2e0 [ 218.789366] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 218.790398] ? up_write+0x195/0x520 [ 218.791161] _cfg80211_unregister_wdev+0x57b/0x700 [ 218.792118] ? srso_return_thunk+0x5/0x5f [ 218.792985] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 218.793932] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 218.794976] ? srso_return_thunk+0x5/0x5f [ 218.795830] ? srso_return_thunk+0x5/0x5f [ 218.796669] ? synchronize_rcu+0x1ff/0x260 [ 218.797490] ieee80211_unregister_hw+0x55/0x3a0 [ 218.798379] hwsim_exit_net+0x3a0/0x730 [ 218.799160] ? __pfx_hwsim_exit_net+0x10/0x10 [ 218.800032] ? srso_return_thunk+0x5/0x5f [ 218.800877] ? netdev_run_todo+0x788/0x1040 [ 218.801725] ? srso_return_thunk+0x5/0x5f [ 218.802577] ? __pfx_hwsim_exit_net+0x10/0x10 [ 218.803479] ops_exit_list+0xb3/0x180 [ 218.804235] cleanup_net+0x546/0xad0 [ 218.804989] ? __pfx_cleanup_net+0x10/0x10 [ 218.805846] process_one_work+0x8ee/0x1a10 [ 218.806736] ? __pfx_lock_acquire+0x10/0x10 [ 218.807595] ? __pfx_process_one_work+0x10/0x10 [ 218.808536] ? srso_return_thunk+0x5/0x5f [ 218.809381] ? move_linked_works+0x172/0x270 [ 218.810255] ? srso_return_thunk+0x5/0x5f [ 218.811104] ? assign_work+0x196/0x240 [ 218.811936] worker_thread+0x674/0xe70 [ 218.812749] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 218.813784] ? srso_return_thunk+0x5/0x5f [ 218.814628] ? __pfx_worker_thread+0x10/0x10 [ 218.815549] kthread+0x3ab/0x720 [ 218.816268] ? __pfx_kthread+0x10/0x10 [ 218.817064] ? srso_return_thunk+0x5/0x5f [ 218.817882] ? finish_task_switch.isra.0+0x206/0x840 [ 218.818844] ? __pfx_kthread+0x10/0x10 [ 218.819639] ret_from_fork+0x48/0x80 [ 218.820347] ? __pfx_kthread+0x10/0x10 [ 218.821123] ret_from_fork_asm+0x1a/0x30 [ 218.821953] [ 220.577111] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 220.579390] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 220.581441] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 220.585864] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 220.590438] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 220.592849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 220.595721] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 220.597726] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 220.598455] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 220.622759] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 220.629891] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 220.631847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 220.701077] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 220.704845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 220.705489] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 220.711198] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 220.716141] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 220.720620] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 220.852439] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 220.859740] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 220.864232] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 220.875298] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 220.880285] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 220.882036] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 220.890236] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 220.891636] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 220.894230] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 220.914681] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 220.921002] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 220.930299] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 220.960266] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 220.962865] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 220.964628] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 220.979348] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 221.008288] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 221.015076] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 221.144511] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 221.149330] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 221.159548] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 221.170505] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 221.197161] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 221.233257] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 221.240872] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 221.255278] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 221.267365] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 221.294273] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 221.314423] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 221.352256] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 222.671056] Bluetooth: hci1: command tx timeout [ 222.671119] Bluetooth: hci0: command tx timeout [ 222.735287] Bluetooth: hci2: command tx timeout [ 222.926970] Bluetooth: hci3: command tx timeout [ 223.120022] Bluetooth: hci5: command tx timeout [ 223.376130] Bluetooth: hci6: command tx timeout [ 223.376161] Bluetooth: hci4: command tx timeout [ 223.438987] Bluetooth: hci7: command tx timeout [ 224.718981] Bluetooth: hci0: command tx timeout [ 224.719008] Bluetooth: hci1: command tx timeout [ 224.782994] Bluetooth: hci2: command tx timeout [ 224.975028] Bluetooth: hci3: command tx timeout [ 225.168964] Bluetooth: hci5: command tx timeout [ 225.423060] Bluetooth: hci6: command tx timeout [ 225.423206] Bluetooth: hci4: command tx timeout [ 225.487129] Bluetooth: hci7: command tx timeout [ 226.767014] Bluetooth: hci0: command tx timeout [ 226.767089] Bluetooth: hci1: command tx timeout [ 226.831995] Bluetooth: hci2: command tx timeout [ 227.023990] Bluetooth: hci3: command tx timeout [ 227.215951] Bluetooth: hci5: command tx timeout [ 227.471145] Bluetooth: hci4: command tx timeout [ 227.472056] Bluetooth: hci6: command tx timeout [ 227.534973] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 02:33:30 Registers: info registers vcpu 0 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283cdc5 RDI=ffffffff886930a0 RBP=ffffffff88693060 RSP=ffff88800f38ebb8 R8 =0000000000000001 R9 =ffffed1001e71d67 R10=000000000000002e R11=2d2d2d2d2d2d2d2d R12=000000000000002e R13=0000000000000001 R14=ffff888008fea007 R15=ffff88800f38eeb8 RIP=ffffffff8283ce1d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a65781b090 CR3=000000000d914000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000002ffffffff000055a657813c40 XMM02=ffffff0f0e0d0c0b0a09080706050403 XMM03=696e656420737365636341002f737973 XMM04=00000000000000000000000000000000 XMM05=00003539323830353835313d44455a49 XMM06=323d4d554e514553006b6e696c3d4550 XMM07=4d4554535953425553003030323a3269 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffff88803ba66700 RBX=ffff88800b72ede0 RCX=ffffffff81429a4a RDX=ffff88803ba666c0 RSI=0000000000000001 RDI=ffff8880ffffffff RBP=ffff8880ffffffff RSP=ffff88800c227da0 R8 =0000000000000000 R9 =ffffed10017cd180 R10=ffff88800be68c07 R11=0000000000000001 R12=ffff8880382af880 R13=ffff88800b72ede0 R14=ffff88800eee5340 R15=0000000000000086 RIP=ffffffff81aeced0 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe6b00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe34d769330 CR3=000000000a366000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=3b827089e2904a82134be0ade22b9f65 XMM02=00000000000fd1605d82995fcda31112 XMM03=00000000001332f8ee7587d5db12e8e3 XMM04=21e70be27bc5e76f00000000000ae988 XMM05=3cc027b654ebc5060000000000140298 XMM06=9f165a4fe6c971ad0000000000137f00 XMM07=711fbe8126c5d3440000000000137df8 XMM08=ee7587d5db12e8e300000000000fd1b8 XMM09=00000000000000000000000000000000 XMM10=00000000000000000020200000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000