Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:3534' (ECDSA) to the list of known hosts. 2025/01/20 17:17:06 fuzzer started 2025/01/20 17:17:07 dialing manager at localhost:44833 syzkaller login: [ 63.627214] cgroup: Unknown subsys name 'net' [ 63.734023] cgroup: Unknown subsys name 'cpuset' [ 63.763379] cgroup: Unknown subsys name 'rlimit' [ 71.618836] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 83.704064] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 17:17:27 syscalls: 2217 2025/01/20 17:17:27 code coverage: enabled 2025/01/20 17:17:27 comparison tracing: enabled 2025/01/20 17:17:27 extra coverage: enabled 2025/01/20 17:17:27 setuid sandbox: enabled 2025/01/20 17:17:27 namespace sandbox: enabled 2025/01/20 17:17:27 Android sandbox: enabled 2025/01/20 17:17:27 fault injection: enabled 2025/01/20 17:17:27 leak checking: enabled 2025/01/20 17:17:27 net packet injection: enabled 2025/01/20 17:17:27 net device setup: enabled 2025/01/20 17:17:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 17:17:27 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 17:17:27 USB emulation: enabled 2025/01/20 17:17:27 hci packet injection: enabled 2025/01/20 17:17:27 wifi device emulation: enabled 2025/01/20 17:17:27 802.15.4 emulation: enabled 2025/01/20 17:17:27 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:17:27 fetching corpus: 0, signal 0/0 (executing program) 2025/01/20 17:17:30 starting 8 fuzzer processes 17:17:30 executing program 0: waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x8000000a, 0x0) 17:17:30 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = syz_mount_image$tmpfs(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=ANY=[]) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1) renameat2(r0, &(0x7f0000000080)='./file0\x00', r0, &(0x7f00000000c0)='./file1\x00', 0x0) 17:17:30 executing program 2: set_mempolicy(0x3, &(0x7f0000000180)=0x1, 0x2) set_mempolicy(0x0, &(0x7f0000000000)=0x4, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r0, &(0x7f0000000080)="01", 0x292e9) 17:17:30 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @remote, @broadcast}}}], 0x20}, 0x0) 17:17:30 executing program 4: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x0, 0x2}}) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000000c0)={{0x0, 0x1}}) [ 86.595432] audit: type=1400 audit(1737393450.213:7): avc: denied { execmem } for pid=277 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:17:30 executing program 5: syz_mount_image$tmpfs(0x0, &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x81) inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0xc00004d0) 17:17:30 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2={0xff, 0x3}}, 0x1c) sendmmsg$inet6(r1, &(0x7f00000056c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=[@tclass={{0x14}}], 0x18}}, {{&(0x7f0000000780)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c, 0x0, 0x0, &(0x7f0000004dc0)=[@pktinfo={{0x24, 0x29, 0x32, {@private2}}}], 0x28}}], 0x2, 0x0) 17:17:30 executing program 7: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x80000392}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)) ioctl$TUNSETTXFILTER(r0, 0x400454cd, 0x0) [ 87.918857] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.925281] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.930874] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.936428] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.941296] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.947993] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.991911] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.999112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 88.010021] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 88.026972] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 88.029990] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 88.031971] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 88.112728] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 88.114344] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 88.118070] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 88.175823] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 88.177275] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 88.192672] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 88.193177] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 88.196016] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 88.196251] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 88.207702] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 88.209906] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 88.213029] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.215832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 88.219871] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 88.221718] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 88.227931] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 88.236264] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 88.264120] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.273833] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 88.282008] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.282428] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 88.293143] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.294957] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.310323] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.321336] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 88.325235] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.327395] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.332384] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.335805] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 88.337619] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.341112] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.362969] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.364410] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 88.365776] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 88.416084] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 88.418643] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.006475] Bluetooth: hci0: command tx timeout [ 90.070682] Bluetooth: hci1: command tx timeout [ 90.261835] Bluetooth: hci3: command tx timeout [ 90.326787] Bluetooth: hci2: command tx timeout [ 90.389673] Bluetooth: hci6: command tx timeout [ 90.455039] Bluetooth: hci5: command tx timeout [ 90.455071] Bluetooth: hci7: command tx timeout [ 90.518610] Bluetooth: hci4: command tx timeout [ 92.053678] Bluetooth: hci0: command tx timeout [ 92.117642] Bluetooth: hci1: command tx timeout [ 92.310611] Bluetooth: hci3: command tx timeout [ 92.373742] Bluetooth: hci2: command tx timeout [ 92.437598] Bluetooth: hci6: command tx timeout [ 92.501970] Bluetooth: hci5: command tx timeout [ 92.502073] Bluetooth: hci7: command tx timeout [ 92.566594] Bluetooth: hci4: command tx timeout [ 94.103577] Bluetooth: hci0: command tx timeout [ 94.165635] Bluetooth: hci1: command tx timeout [ 94.359010] Bluetooth: hci3: command tx timeout [ 94.421644] Bluetooth: hci2: command tx timeout [ 94.485770] Bluetooth: hci6: command tx timeout [ 94.549700] Bluetooth: hci7: command tx timeout [ 94.549846] Bluetooth: hci5: command tx timeout [ 94.613955] Bluetooth: hci4: command tx timeout [ 96.149772] Bluetooth: hci0: command tx timeout [ 96.215583] Bluetooth: hci1: command tx timeout [ 96.405648] Bluetooth: hci3: command tx timeout [ 96.469712] Bluetooth: hci2: command tx timeout [ 96.533658] Bluetooth: hci6: command tx timeout [ 96.599627] Bluetooth: hci5: command tx timeout [ 96.599783] Bluetooth: hci7: command tx timeout [ 96.661872] Bluetooth: hci4: command tx timeout [ 150.630975] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.637800] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.640711] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.643749] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.649856] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.653823] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.656314] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.687776] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.690366] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.698984] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.699580] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.700777] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.702282] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.703538] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.706951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.709184] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.711682] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.716974] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.717224] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.718690] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.723994] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.726426] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.734002] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.737933] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.740256] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.744232] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.746956] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 150.776042] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.780058] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.788260] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.825678] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.848988] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 150.856866] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 150.857182] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.858565] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 150.860479] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.865850] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.867034] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.875335] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.877805] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.882101] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.887211] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 150.894640] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 150.899048] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 150.900215] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.901129] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 150.907314] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.909682] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 152.725778] Bluetooth: hci0: command tx timeout [ 152.790953] Bluetooth: hci4: command tx timeout [ 152.853732] Bluetooth: hci1: command tx timeout [ 152.854116] Bluetooth: hci3: command tx timeout [ 152.917666] Bluetooth: hci2: command tx timeout [ 152.982609] Bluetooth: hci6: command tx timeout [ 152.983066] Bluetooth: hci5: command tx timeout [ 152.983384] Bluetooth: hci7: command tx timeout [ 154.774677] Bluetooth: hci0: command tx timeout [ 154.838733] Bluetooth: hci4: command tx timeout [ 154.901656] Bluetooth: hci1: command tx timeout [ 154.901776] Bluetooth: hci3: command tx timeout [ 154.966666] Bluetooth: hci2: command tx timeout [ 155.030753] Bluetooth: hci7: command tx timeout [ 155.031290] Bluetooth: hci5: command tx timeout [ 155.031391] Bluetooth: hci6: command tx timeout [ 156.823246] Bluetooth: hci0: command tx timeout [ 156.887558] Bluetooth: hci4: command tx timeout [ 156.950830] Bluetooth: hci3: command tx timeout [ 156.951344] Bluetooth: hci1: command tx timeout [ 157.013689] Bluetooth: hci2: command tx timeout [ 157.077615] Bluetooth: hci6: command tx timeout [ 157.078225] Bluetooth: hci5: command tx timeout [ 157.078322] Bluetooth: hci7: command tx timeout [ 158.870149] Bluetooth: hci0: command tx timeout [ 158.934715] Bluetooth: hci4: command tx timeout [ 158.997824] Bluetooth: hci1: command tx timeout [ 158.998380] Bluetooth: hci3: command tx timeout [ 159.061780] Bluetooth: hci2: command tx timeout [ 159.125693] Bluetooth: hci7: command tx timeout [ 159.126780] Bluetooth: hci6: command tx timeout [ 159.126874] Bluetooth: hci5: command tx timeout [ 212.838246] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.841859] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.844110] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.856895] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.864125] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.866422] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.899437] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.903868] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.905820] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.914841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.918128] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.921845] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.970308] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 212.977729] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.977974] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 212.980741] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 212.980895] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.986027] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 212.986202] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.988623] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 212.991584] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 212.998975] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 213.001874] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 213.002458] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 213.100806] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 213.104659] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 213.107011] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 213.110987] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 213.114576] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 213.116107] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 213.116676] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 213.139425] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 213.143927] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 213.152170] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 213.158293] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 213.162870] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 213.285381] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 213.304451] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 213.305855] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 213.312117] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 213.324589] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 213.329572] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 213.331599] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 213.334966] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 213.395097] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 213.400529] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 213.401246] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 213.401656] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 214.934590] Bluetooth: hci0: command tx timeout [ 214.998814] Bluetooth: hci1: command tx timeout [ 215.062324] Bluetooth: hci2: command tx timeout [ 215.062351] Bluetooth: hci3: command tx timeout [ 215.189571] Bluetooth: hci4: command tx timeout [ 215.191541] Bluetooth: hci5: command tx timeout [ 215.445590] Bluetooth: hci6: command tx timeout [ 215.510658] Bluetooth: hci7: command tx timeout [ 216.981630] Bluetooth: hci0: command tx timeout [ 217.045781] Bluetooth: hci1: command tx timeout [ 217.111571] Bluetooth: hci2: command tx timeout [ 217.111664] Bluetooth: hci3: command tx timeout [ 217.237794] Bluetooth: hci5: command tx timeout [ 217.238384] Bluetooth: hci4: command tx timeout [ 217.493601] Bluetooth: hci6: command tx timeout [ 217.559538] Bluetooth: hci7: command tx timeout [ 219.029714] Bluetooth: hci0: command tx timeout [ 219.093665] Bluetooth: hci1: command tx timeout [ 219.158319] Bluetooth: hci2: command tx timeout [ 219.158555] Bluetooth: hci3: command tx timeout [ 219.285756] Bluetooth: hci4: command tx timeout [ 219.286398] Bluetooth: hci5: command tx timeout [ 219.541701] Bluetooth: hci6: command tx timeout [ 219.605607] Bluetooth: hci7: command tx timeout [ 221.078550] Bluetooth: hci0: command tx timeout [ 221.142810] Bluetooth: hci1: command tx timeout [ 221.205690] Bluetooth: hci3: command tx timeout [ 221.205792] Bluetooth: hci2: command tx timeout [ 221.335573] Bluetooth: hci5: command tx timeout [ 221.335602] Bluetooth: hci4: command tx timeout [ 221.589750] Bluetooth: hci6: command tx timeout [ 221.653939] Bluetooth: hci7: command tx timeout [ 273.773807] [ 273.774216] ====================================================== [ 273.775286] WARNING: possible circular locking dependency detected [ 273.776377] 6.13.0-rc7-next-20250120 #1 Not tainted [ 273.779398] ------------------------------------------------------ [ 273.781794] kworker/u8:0/11 is trying to acquire lock: [ 273.782704] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.784567] [ 273.784567] but task is already holding lock: [ 273.785572] ffff88801b770768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 273.787310] [ 273.787310] which lock already depends on the new lock. [ 273.787310] [ 273.788702] [ 273.788702] the existing dependency chain (in reverse order) is: [ 273.789960] [ 273.789960] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 273.791150] __mutex_lock+0x13d/0xb50 [ 273.791994] wiphy_register+0x1b2e/0x25d0 [ 273.792900] ieee80211_register_hw+0x23a4/0x3d60 [ 273.793874] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 273.794882] init_mac80211_hwsim+0x389/0x870 [ 273.795835] do_one_initcall+0xf9/0x640 [ 273.796724] kernel_init_freeable+0x53d/0x7a0 [ 273.797681] kernel_init+0x1e/0x2d0 [ 273.798431] ret_from_fork+0x48/0x80 [ 273.799213] ret_from_fork_asm+0x1a/0x30 [ 273.800107] [ 273.800107] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 273.801221] __lock_acquire+0x29fd/0x4580 [ 273.802078] lock_acquire+0x19b/0x520 [ 273.802875] __mutex_lock+0x13d/0xb50 [ 273.803688] unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.804798] unregister_netdevice_queue+0x224/0x2e0 [ 273.805786] _cfg80211_unregister_wdev+0x57b/0x700 [ 273.806778] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 273.807779] ieee80211_unregister_hw+0x55/0x3a0 [ 273.808723] hwsim_exit_net+0x3a0/0x730 [ 273.809571] ops_exit_list+0xb3/0x180 [ 273.810384] cleanup_net+0x546/0xad0 [ 273.811192] process_one_work+0x8ee/0x1a10 [ 273.812114] worker_thread+0x674/0xe70 [ 273.812964] kthread+0x3ab/0x720 [ 273.813733] ret_from_fork+0x48/0x80 [ 273.814520] ret_from_fork_asm+0x1a/0x30 [ 273.815415] [ 273.815415] other info that might help us debug this: [ 273.815415] [ 273.816794] Possible unsafe locking scenario: [ 273.816794] [ 273.817805] CPU0 CPU1 [ 273.818613] ---- ---- [ 273.819410] lock(&rdev->wiphy.mtx); [ 273.820140] lock(rtnl_mutex); [ 273.821183] lock(&rdev->wiphy.mtx); [ 273.822285] lock(rtnl_mutex); [ 273.822926] [ 273.822926] *** DEADLOCK *** [ 273.822926] [ 273.823936] 4 locks held by kworker/u8:0/11: [ 273.824721] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 273.826572] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 273.828389] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 273.830043] #3: ffff88801b770768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 273.831878] [ 273.831878] stack backtrace: [ 273.832668] CPU: 1 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250120 #1 [ 273.834115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 273.835502] Workqueue: netns cleanup_net [ 273.836312] Call Trace: [ 273.836773] [ 273.837188] dump_stack_lvl+0xca/0x120 [ 273.837953] print_circular_bug+0x47b/0x750 [ 273.838749] check_noncircular+0x2e9/0x3c0 [ 273.839506] ? lock_repin_lock+0x207/0x320 [ 273.840309] ? __pfx_check_noncircular+0x10/0x10 [ 273.841177] ? hlock_class+0x4e/0x130 [ 273.841856] ? mark_lock+0xac/0xed0 [ 273.842527] ? __pfx_lock_repin_lock+0x10/0x10 [ 273.843412] ? lockdep_lock+0xba/0x1b0 [ 273.844166] ? __pfx_lockdep_lock+0x10/0x10 [ 273.844989] __lock_acquire+0x29fd/0x4580 [ 273.845786] ? __pfx___lock_acquire+0x10/0x10 [ 273.846617] ? lock_release+0x20f/0x6f0 [ 273.847356] ? __pfx_lock_release+0x10/0x10 [ 273.848156] lock_acquire+0x19b/0x520 [ 273.848868] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.849905] ? __pfx_lock_acquire+0x10/0x10 [ 273.850694] ? srso_return_thunk+0x5/0x5f [ 273.851501] ? lock_release+0x20f/0x6f0 [ 273.852231] ? srso_return_thunk+0x5/0x5f [ 273.853008] ? lock_is_held_type+0x9e/0x120 [ 273.853811] ? srso_return_thunk+0x5/0x5f [ 273.854603] __mutex_lock+0x13d/0xb50 [ 273.855317] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.856355] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.857413] ? srso_return_thunk+0x5/0x5f [ 273.858211] ? synchronize_rcu_expedited+0x38a/0x420 [ 273.859138] ? __pfx___mutex_lock+0x10/0x10 [ 273.859959] ? __pfx_autoremove_wake_function+0x10/0x10 [ 273.860958] ? srso_return_thunk+0x5/0x5f [ 273.861735] ? kasan_quarantine_put+0x84/0x1e0 [ 273.862602] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 273.863433] ? srso_return_thunk+0x5/0x5f [ 273.864224] unregister_netdevice_many_notify+0x1612/0x1c80 [ 273.865240] ? __virt_addr_valid+0x2e8/0x5d0 [ 273.866072] ? __pfx_lock_release+0x10/0x10 [ 273.866851] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 273.867913] ? find_held_lock+0x2c/0x110 [ 273.868703] ? srso_return_thunk+0x5/0x5f [ 273.869500] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 273.870419] ? srso_return_thunk+0x5/0x5f [ 273.871217] ? lock_release+0x20f/0x6f0 [ 273.871965] ? __pfx_lock_release+0x10/0x10 [ 273.872764] ? srso_return_thunk+0x5/0x5f [ 273.873541] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 273.874488] ? srso_return_thunk+0x5/0x5f [ 273.875280] unregister_netdevice_queue+0x224/0x2e0 [ 273.876182] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 273.877144] ? up_write+0x195/0x520 [ 273.877839] _cfg80211_unregister_wdev+0x57b/0x700 [ 273.878734] ? srso_return_thunk+0x5/0x5f [ 273.879517] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 273.880419] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 273.881409] ? srso_return_thunk+0x5/0x5f [ 273.882185] ? srso_return_thunk+0x5/0x5f [ 273.882981] ? synchronize_rcu+0x1ff/0x260 [ 273.883750] ieee80211_unregister_hw+0x55/0x3a0 [ 273.884614] hwsim_exit_net+0x3a0/0x730 [ 273.885346] ? __pfx_hwsim_exit_net+0x10/0x10 [ 273.886171] ? srso_return_thunk+0x5/0x5f [ 273.886974] ? netdev_run_todo+0x788/0x1040 [ 273.887766] ? __pfx_hwsim_exit_net+0x10/0x10 [ 273.888601] ops_exit_list+0xb3/0x180 [ 273.889308] cleanup_net+0x546/0xad0 [ 273.889997] ? __pfx_cleanup_net+0x10/0x10 [ 273.890797] process_one_work+0x8ee/0x1a10 [ 273.891623] ? __pfx_lock_acquire+0x10/0x10 [ 273.892421] ? __pfx_process_one_work+0x10/0x10 [ 273.893305] ? srso_return_thunk+0x5/0x5f [ 273.894078] ? move_linked_works+0x172/0x270 [ 273.894883] ? srso_return_thunk+0x5/0x5f [ 273.895659] ? assign_work+0x196/0x240 [ 273.896405] worker_thread+0x674/0xe70 [ 273.897168] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 273.898141] ? __pfx_worker_thread+0x10/0x10 [ 273.898978] kthread+0x3ab/0x720 [ 273.899637] ? __pfx_kthread+0x10/0x10 [ 273.900380] ? srso_return_thunk+0x5/0x5f [ 273.901173] ? finish_task_switch.isra.0+0x206/0x840 [ 273.902108] ? __pfx_kthread+0x10/0x10 [ 273.902854] ret_from_fork+0x48/0x80 [ 273.903527] ? __pfx_kthread+0x10/0x10 [ 273.904279] ret_from_fork_asm+0x1a/0x30 [ 273.905078] [ 275.295233] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 275.297088] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 275.304042] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 275.308989] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 275.312149] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 275.317872] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 275.378119] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 275.382257] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 275.386153] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 275.398823] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 275.399098] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 275.403111] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 275.405320] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 275.408030] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 275.410155] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 275.411904] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 275.416064] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 275.417883] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 275.430082] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 275.439796] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 275.444313] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 275.452868] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 275.455353] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 275.457382] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 275.560031] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 275.565830] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 275.569134] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 275.601345] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 275.605195] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 275.606887] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 275.697933] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 275.700011] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 275.701728] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 275.705348] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 275.707754] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 275.709777] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 275.766184] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 275.773902] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 275.776142] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 275.780403] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 275.786779] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 275.790520] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 275.795218] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 275.795926] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 275.815888] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 275.823671] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 275.828605] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 275.830264] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 277.334666] Bluetooth: hci0: command tx timeout [ 277.461564] Bluetooth: hci1: command tx timeout [ 277.462137] Bluetooth: hci2: command tx timeout [ 277.525520] Bluetooth: hci3: command tx timeout [ 277.654670] Bluetooth: hci4: command tx timeout [ 277.782512] Bluetooth: hci5: command tx timeout [ 277.845631] Bluetooth: hci7: command tx timeout [ 277.909562] Bluetooth: hci6: command tx timeout [ 279.381776] Bluetooth: hci0: command tx timeout [ 279.509585] Bluetooth: hci1: command tx timeout [ 279.510116] Bluetooth: hci2: command tx timeout [ 279.573739] Bluetooth: hci3: command tx timeout [ 279.701566] Bluetooth: hci4: command tx timeout [ 279.830562] Bluetooth: hci5: command tx timeout [ 279.893699] Bluetooth: hci7: command tx timeout [ 279.957590] Bluetooth: hci6: command tx timeout [ 281.430568] Bluetooth: hci0: command tx timeout [ 281.557550] Bluetooth: hci1: command tx timeout [ 281.558112] Bluetooth: hci2: command tx timeout [ 281.621541] Bluetooth: hci3: command tx timeout [ 281.749539] Bluetooth: hci4: command tx timeout [ 281.878059] Bluetooth: hci5: command tx timeout [ 281.941541] Bluetooth: hci7: command tx timeout [ 282.005650] Bluetooth: hci6: command tx timeout [ 283.477583] Bluetooth: hci0: command tx timeout [ 283.605611] Bluetooth: hci2: command tx timeout [ 283.605684] Bluetooth: hci1: command tx timeout [ 283.669595] Bluetooth: hci3: command tx timeout VM DIAGNOSIS: 17:20:37 Registers: info registers vcpu 0 RAX=ffff88800eef5340 RBX=ffffc9000298e700 RCX=ffffffff81429a4a RDX=1ffff11001dd9480 RSI=0000000000000008 RDI=ffff88800eeca400 RBP=0000000000000000 RSP=ffff88800f397dc8 R8 =0000000000000000 R9 =ffffed1001dd9480 R10=ffff88800eeca407 R11=ffff88800eef57f8 R12=ffffc9000298eff9 R13=ffff88800a9f2818 R14=ffff88800eef5340 R15=0000000000000086 RIP=ffffffff81ab937c RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1e03599eb0 CR3=000000000e248000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=b0e7501eebb42d9350455c6004e42c4a XMM02=d12871896912de2d00000000000fd918 XMM03=f9980df3bdc2dbad0000000000134de8 XMM04=9a00b68ccea5696100000000000ae988 XMM05=b570c0161c80e22e00000000001488f0 XMM06=9f165a4fe6c971ad0000000000138a78 XMM07=711fbe8126c5d3440000000000138970 XMM08=68a8aee3740b9fad00000000000fda38 XMM09=00000000000000000000000000000000 XMM10=20000000000000002000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff8880095deb98 R8 =0000000000000001 R9 =ffffed10012bbd67 R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=ffff8880095deeb8 R14=ffffffff88699320 R15=0000000000000000 RIP=ffffffff8283e33d RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000563bbdc46930 CR3=0000000016414000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=2037333a30323a3731203032206e614a XMM01=617420646570706f7453203a5d315b64 XMM02=6c6c694b20465220657661532f64616f XMM03=65747379732072656c6c616b7a797320 XMM04=2030333a37313a3731203032206e614a XMM05=65636f72703d7373616c63742030733a XMM06=733a755f6d65747379733d747865746e XMM07=725f6d65747379733a755f6d65747379 XMM08=7475636578652d7a7973223d6d6d6f63 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000