Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:7437' (ECDSA) to the list of known hosts. 2025/01/20 20:10:58 fuzzer started 2025/01/20 20:10:58 dialing manager at localhost:44833 syzkaller login: [ 70.264694] cgroup: Unknown subsys name 'net' [ 70.362343] cgroup: Unknown subsys name 'cpuset' [ 70.384199] cgroup: Unknown subsys name 'rlimit' [ 77.097951] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) 2025/01/20 20:11:18 syscalls: 2217 2025/01/20 20:11:18 code coverage: enabled 2025/01/20 20:11:18 comparison tracing: enabled 2025/01/20 20:11:18 extra coverage: enabled 2025/01/20 20:11:18 setuid sandbox: enabled 2025/01/20 20:11:18 namespace sandbox: enabled 2025/01/20 20:11:18 Android sandbox: enabled 2025/01/20 20:11:18 fault injection: enabled 2025/01/20 20:11:18 leak checking: enabled 2025/01/20 20:11:18 net packet injection: enabled 2025/01/20 20:11:18 net device setup: enabled 2025/01/20 20:11:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2025/01/20 20:11:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2025/01/20 20:11:18 USB emulation: enabled 2025/01/20 20:11:18 hci packet injection: enabled 2025/01/20 20:11:18 wifi device emulation: enabled 2025/01/20 20:11:18 802.15.4 emulation: enabled 2025/01/20 20:11:18 fetching corpus: 0, signal 0/2000 (executing program) 2025/01/20 20:11:18 fetching corpus: 1, signal 584/4198 (executing program) 2025/01/20 20:11:18 fetching corpus: 1, signal 584/5903 (executing program) 2025/01/20 20:11:18 fetching corpus: 1, signal 584/5903 (executing program) 2025/01/20 20:11:23 starting 8 fuzzer processes 20:11:23 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmmsg$inet(r1, &(0x7f00000069c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000b00)={0x2, 0x4e23, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_retopts={{0x10}}], 0x10}}], 0x2, 0x0) 20:11:23 executing program 3: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000040)) r0 = socket$nl_route(0x10, 0x3, 0x0) fstat(r0, &(0x7f0000000180)) 20:11:23 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x49, &(0x7f0000000180)=0x8000, 0x4) setsockopt$sock_int(r0, 0x1, 0x49, &(0x7f0000000180)=0x7, 0x4) 20:11:23 executing program 2: syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000700)=[{&(0x7f0000000180)="df4b339228aba07e9435784c237ee057", 0x10, 0x1}, {0x0, 0x0, 0x77f}], 0x0, &(0x7f00000007c0)) 20:11:23 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000200)={{0x4}}, 0x24, 0x0) 20:11:23 executing program 6: prlimit64(0x0, 0x7, &(0x7f0000000100), 0x0) epoll_create1(0x0) 20:11:23 executing program 5: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/188, 0xbc}], 0x1, 0x0, 0x0) [ 94.226530] audit: type=1400 audit(1737403883.113:7): avc: denied { execmem } for pid=273 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:11:23 executing program 7: execve(0x0, 0x0, 0x0) [ 95.445756] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 95.450001] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 95.453721] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 95.460550] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 95.466450] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 95.470217] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 95.699610] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 95.705186] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 95.725990] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 95.740679] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 95.750571] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 95.762930] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 95.802148] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 95.827551] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 95.832955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 95.858215] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 95.862121] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 95.864561] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 95.901939] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 95.902751] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 95.907276] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 95.933308] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 95.934299] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 95.946014] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 95.946163] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 95.961005] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 95.970905] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 95.974061] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 95.974842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 95.979201] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 95.979376] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 95.996825] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 96.003187] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 96.010964] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 96.024999] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 96.048940] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 96.053169] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 96.057197] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 96.059434] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 96.065483] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 96.067351] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 96.068076] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 96.078418] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 96.085001] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 96.089089] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 96.095759] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 96.130198] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 96.133097] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 97.521559] Bluetooth: hci0: command tx timeout [ 97.904749] Bluetooth: hci1: command tx timeout [ 98.032077] Bluetooth: hci2: command tx timeout [ 98.096726] Bluetooth: hci3: command tx timeout [ 98.159769] Bluetooth: hci4: command tx timeout [ 98.160746] Bluetooth: hci5: command tx timeout [ 98.225182] Bluetooth: hci6: command tx timeout [ 98.225204] Bluetooth: hci7: command tx timeout [ 99.573786] Bluetooth: hci0: command tx timeout [ 99.951764] Bluetooth: hci1: command tx timeout [ 100.079847] Bluetooth: hci2: command tx timeout [ 100.144568] Bluetooth: hci3: command tx timeout [ 100.208038] Bluetooth: hci5: command tx timeout [ 100.208196] Bluetooth: hci4: command tx timeout [ 100.271801] Bluetooth: hci6: command tx timeout [ 100.271904] Bluetooth: hci7: command tx timeout [ 101.616887] Bluetooth: hci0: command tx timeout [ 102.000850] Bluetooth: hci1: command tx timeout [ 102.128712] Bluetooth: hci2: command tx timeout [ 102.192881] Bluetooth: hci3: command tx timeout [ 102.256852] Bluetooth: hci4: command tx timeout [ 102.257070] Bluetooth: hci5: command tx timeout [ 102.319977] Bluetooth: hci6: command tx timeout [ 102.320774] Bluetooth: hci7: command tx timeout [ 103.665743] Bluetooth: hci0: command tx timeout [ 104.050773] Bluetooth: hci1: command tx timeout [ 104.176700] Bluetooth: hci2: command tx timeout [ 104.240796] Bluetooth: hci3: command tx timeout [ 104.303892] Bluetooth: hci5: command tx timeout [ 104.304009] Bluetooth: hci4: command tx timeout [ 104.367935] Bluetooth: hci7: command tx timeout [ 104.368225] Bluetooth: hci6: command tx timeout [ 156.662843] syz-executor.6 (283) used greatest stack depth: 23568 bytes left [ 159.300224] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 159.304094] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 159.305424] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 159.309508] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 159.312174] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 159.314768] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 159.371534] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 159.377244] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 159.389039] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 159.395467] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 159.401933] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 159.406196] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 159.446138] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 159.460782] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 159.486562] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 159.490459] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 159.491163] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 159.503119] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 159.505597] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 159.507690] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 159.507702] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 159.523121] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 159.537389] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 159.539872] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 159.539959] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 159.542955] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 159.545937] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 159.545945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 159.554600] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 159.556326] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 159.557194] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 159.559027] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 159.562213] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 159.563851] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 159.564588] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 159.577987] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 159.579520] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 159.583174] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 159.603050] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 159.603783] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 159.609193] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 159.615286] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 159.616235] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 159.620796] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 159.623120] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 159.649217] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 159.670308] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 159.670802] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 161.391946] Bluetooth: hci0: command tx timeout [ 161.519744] Bluetooth: hci1: command tx timeout [ 161.650393] Bluetooth: hci6: command tx timeout [ 161.650545] Bluetooth: hci2: command tx timeout [ 161.712729] Bluetooth: hci5: command tx timeout [ 161.775913] Bluetooth: hci4: command tx timeout [ 161.775929] Bluetooth: hci7: command tx timeout [ 161.776788] Bluetooth: hci3: command tx timeout [ 163.439888] Bluetooth: hci0: command tx timeout [ 163.568768] Bluetooth: hci1: command tx timeout [ 163.696372] Bluetooth: hci6: command tx timeout [ 163.696401] Bluetooth: hci2: command tx timeout [ 163.759796] Bluetooth: hci5: command tx timeout [ 163.824770] Bluetooth: hci7: command tx timeout [ 163.825660] Bluetooth: hci3: command tx timeout [ 163.825744] Bluetooth: hci4: command tx timeout [ 165.487906] Bluetooth: hci0: command tx timeout [ 165.615738] Bluetooth: hci1: command tx timeout [ 165.744481] Bluetooth: hci6: command tx timeout [ 165.744728] Bluetooth: hci2: command tx timeout [ 165.807730] Bluetooth: hci5: command tx timeout [ 165.871940] Bluetooth: hci7: command tx timeout [ 165.872674] Bluetooth: hci4: command tx timeout [ 165.872739] Bluetooth: hci3: command tx timeout [ 167.535849] Bluetooth: hci0: command tx timeout [ 167.663824] Bluetooth: hci1: command tx timeout [ 167.791836] Bluetooth: hci6: command tx timeout [ 167.793246] Bluetooth: hci2: command tx timeout [ 167.856013] Bluetooth: hci5: command tx timeout [ 167.920390] Bluetooth: hci3: command tx timeout [ 167.920451] Bluetooth: hci4: command tx timeout [ 167.920779] Bluetooth: hci7: command tx timeout [ 222.146953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 222.151397] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 222.153948] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 222.159212] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 222.163299] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 222.165932] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 222.262958] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 222.266211] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 222.268538] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 222.273092] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 222.280165] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 222.283880] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 222.331567] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 222.339835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 222.346122] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 222.352837] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 222.357340] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 222.359882] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 222.362051] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 222.370017] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 222.374220] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 222.389160] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 222.393625] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 222.398833] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 222.463148] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 222.465222] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 222.467177] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 222.472328] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 222.476510] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 222.479941] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 222.535946] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 222.548077] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 222.548640] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 222.556975] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 222.557555] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 222.589139] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 222.595436] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 222.596468] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 222.603221] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 222.609292] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 222.615518] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 222.616521] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 222.620458] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 222.622504] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 222.623076] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 222.656116] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 222.661266] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 222.669180] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 224.240742] Bluetooth: hci0: command tx timeout [ 224.368098] Bluetooth: hci1: command tx timeout [ 224.432012] Bluetooth: hci3: command tx timeout [ 224.432497] Bluetooth: hci2: command tx timeout [ 224.559791] Bluetooth: hci4: command tx timeout [ 224.687806] Bluetooth: hci7: command tx timeout [ 224.688276] Bluetooth: hci5: command tx timeout [ 224.752687] Bluetooth: hci6: command tx timeout [ 226.287730] Bluetooth: hci0: command tx timeout [ 226.416663] Bluetooth: hci1: command tx timeout [ 226.479800] Bluetooth: hci2: command tx timeout [ 226.480820] Bluetooth: hci3: command tx timeout [ 226.607720] Bluetooth: hci4: command tx timeout [ 226.736716] Bluetooth: hci7: command tx timeout [ 226.736842] Bluetooth: hci5: command tx timeout [ 226.799841] Bluetooth: hci6: command tx timeout [ 228.335776] Bluetooth: hci0: command tx timeout [ 228.463714] Bluetooth: hci1: command tx timeout [ 228.527730] Bluetooth: hci3: command tx timeout [ 228.527866] Bluetooth: hci2: command tx timeout [ 228.655910] Bluetooth: hci4: command tx timeout [ 228.783793] Bluetooth: hci5: command tx timeout [ 228.784687] Bluetooth: hci7: command tx timeout [ 228.848665] Bluetooth: hci6: command tx timeout [ 230.384829] Bluetooth: hci0: command tx timeout [ 230.512870] Bluetooth: hci1: command tx timeout [ 230.577628] Bluetooth: hci3: command tx timeout [ 230.577711] Bluetooth: hci2: command tx timeout [ 230.704662] Bluetooth: hci4: command tx timeout [ 230.834649] Bluetooth: hci5: command tx timeout [ 230.834741] Bluetooth: hci7: command tx timeout [ 230.895651] Bluetooth: hci6: command tx timeout [ 280.998193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.998322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.290027] [ 282.290284] ====================================================== [ 282.290902] WARNING: possible circular locking dependency detected [ 282.291482] 6.13.0-rc7-next-20250120 #1 Not tainted [ 282.291983] ------------------------------------------------------ [ 282.293130] kworker/u8:0/11 is trying to acquire lock: [ 282.294142] ffffffff8621eb28 (rtnl_mutex){+.+.}-{4:4}, at: unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.298162] [ 282.298162] but task is already holding lock: [ 282.298750] ffff88800bcf0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 282.299723] [ 282.299723] which lock already depends on the new lock. [ 282.299723] [ 282.300491] [ 282.300491] the existing dependency chain (in reverse order) is: [ 282.301173] [ 282.301173] -> #1 (&rdev->wiphy.mtx){+.+.}-{4:4}: [ 282.301806] __mutex_lock+0x13d/0xb50 [ 282.302243] wiphy_register+0x1b2e/0x25d0 [ 282.302751] ieee80211_register_hw+0x23a4/0x3d60 [ 282.303288] mac80211_hwsim_new_radio+0x2759/0x4d60 [ 282.303856] init_mac80211_hwsim+0x389/0x870 [ 282.304376] do_one_initcall+0xf9/0x640 [ 282.304870] kernel_init_freeable+0x53d/0x7a0 [ 282.305400] kernel_init+0x1e/0x2d0 [ 282.305809] ret_from_fork+0x48/0x80 [ 282.306211] ret_from_fork_asm+0x1a/0x30 [ 282.306692] [ 282.306692] -> #0 (rtnl_mutex){+.+.}-{4:4}: [ 282.307278] __lock_acquire+0x29fd/0x4580 [ 282.307766] lock_acquire+0x19b/0x520 [ 282.308217] __mutex_lock+0x13d/0xb50 [ 282.308674] unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.309283] unregister_netdevice_queue+0x224/0x2e0 [ 282.309842] _cfg80211_unregister_wdev+0x57b/0x700 [ 282.310402] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 282.310917] ieee80211_unregister_hw+0x55/0x3a0 [ 282.311407] hwsim_exit_net+0x3a0/0x730 [ 282.311839] ops_exit_list+0xb3/0x180 [ 282.312279] cleanup_net+0x546/0xad0 [ 282.312713] process_one_work+0x8ee/0x1a10 [ 282.313188] worker_thread+0x674/0xe70 [ 282.313663] kthread+0x3ab/0x720 [ 282.314084] ret_from_fork+0x48/0x80 [ 282.314518] ret_from_fork_asm+0x1a/0x30 [ 282.315001] [ 282.315001] other info that might help us debug this: [ 282.315001] [ 282.315746] Possible unsafe locking scenario: [ 282.315746] [ 282.316309] CPU0 CPU1 [ 282.316725] ---- ---- [ 282.317148] lock(&rdev->wiphy.mtx); [ 282.317553] lock(rtnl_mutex); [ 282.318128] lock(&rdev->wiphy.mtx); [ 282.318734] lock(rtnl_mutex); [ 282.319068] [ 282.319068] *** DEADLOCK *** [ 282.319068] [ 282.319617] 4 locks held by kworker/u8:0/11: [ 282.320053] #0: ffff888008fdb948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x12b6/0x1a10 [ 282.321031] #1: ffff8880095dfd30 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x861/0x1a10 [ 282.321947] #2: ffffffff86212b50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xad0 [ 282.322812] #3: ffff88800bcf0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: ieee80211_remove_interfaces+0xf2/0x6b0 [ 282.323769] [ 282.323769] stack backtrace: [ 282.324183] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.13.0-rc7-next-20250120 #1 [ 282.324985] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 282.325733] Workqueue: netns cleanup_net [ 282.326124] Call Trace: [ 282.326373] [ 282.326585] dump_stack_lvl+0xca/0x120 [ 282.326976] print_circular_bug+0x47b/0x750 [ 282.327386] check_noncircular+0x2e9/0x3c0 [ 282.327792] ? __pfx_check_noncircular+0x10/0x10 [ 282.328233] ? hlock_class+0x4e/0x130 [ 282.328586] ? mark_lock+0xac/0xed0 [ 282.328940] ? srso_return_thunk+0x5/0x5f [ 282.329375] ? dl_scaled_delta_exec+0xd4/0x2c0 [ 282.329840] ? lockdep_lock+0xba/0x1b0 [ 282.330251] ? __pfx_lockdep_lock+0x10/0x10 [ 282.330717] __lock_acquire+0x29fd/0x4580 [ 282.331143] ? __pfx___lock_acquire+0x10/0x10 [ 282.331598] ? lock_release+0x20f/0x6f0 [ 282.332007] ? __pfx_lock_release+0x10/0x10 [ 282.332446] lock_acquire+0x19b/0x520 [ 282.332839] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.333421] ? __pfx_lock_acquire+0x10/0x10 [ 282.333858] ? srso_return_thunk+0x5/0x5f [ 282.334306] ? lock_release+0x20f/0x6f0 [ 282.334714] ? srso_return_thunk+0x5/0x5f [ 282.335144] ? lock_is_held_type+0x9e/0x120 [ 282.335584] ? srso_return_thunk+0x5/0x5f [ 282.336019] __mutex_lock+0x13d/0xb50 [ 282.336415] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.336984] ? unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.337552] ? srso_return_thunk+0x5/0x5f [ 282.337981] ? synchronize_rcu_expedited+0x38a/0x420 [ 282.338490] ? __pfx___mutex_lock+0x10/0x10 [ 282.338933] ? __pfx_autoremove_wake_function+0x10/0x10 [ 282.339462] ? srso_return_thunk+0x5/0x5f [ 282.339892] ? kasan_quarantine_put+0x84/0x1e0 [ 282.340367] ? __pfx_wait_rcu_exp_gp+0x10/0x10 [ 282.340815] ? srso_return_thunk+0x5/0x5f [ 282.341249] unregister_netdevice_many_notify+0x1612/0x1c80 [ 282.341802] ? __virt_addr_valid+0x2e8/0x5d0 [ 282.342254] ? __pfx_lock_release+0x10/0x10 [ 282.342695] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 282.343283] ? find_held_lock+0x2c/0x110 [ 282.343717] ? srso_return_thunk+0x5/0x5f [ 282.344166] ? kernfs_remove_by_name_ns+0xc7/0x130 [ 282.344677] ? srso_return_thunk+0x5/0x5f [ 282.345105] ? lock_release+0x20f/0x6f0 [ 282.345507] ? __pfx_lock_release+0x10/0x10 [ 282.345937] ? srso_return_thunk+0x5/0x5f [ 282.346377] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 282.346894] ? srso_return_thunk+0x5/0x5f [ 282.347328] unregister_netdevice_queue+0x224/0x2e0 [ 282.347821] ? __pfx_unregister_netdevice_queue+0x10/0x10 [ 282.348355] ? up_write+0x195/0x520 [ 282.348745] _cfg80211_unregister_wdev+0x57b/0x700 [ 282.349239] ? srso_return_thunk+0x5/0x5f [ 282.349675] ieee80211_remove_interfaces+0x2f2/0x6b0 [ 282.350167] ? __pfx_ieee80211_remove_interfaces+0x10/0x10 [ 282.350729] ? srso_return_thunk+0x5/0x5f [ 282.351163] ? srso_return_thunk+0x5/0x5f [ 282.351592] ? synchronize_rcu+0x1ff/0x260 [ 282.352022] ieee80211_unregister_hw+0x55/0x3a0 [ 282.352495] hwsim_exit_net+0x3a0/0x730 [ 282.352897] ? __pfx_hwsim_exit_net+0x10/0x10 [ 282.353346] ? srso_return_thunk+0x5/0x5f [ 282.353775] ? netdev_run_todo+0x788/0x1040 [ 282.354212] ? srso_return_thunk+0x5/0x5f [ 282.354652] ? __pfx_hwsim_exit_net+0x10/0x10 [ 282.355110] ops_exit_list+0xb3/0x180 [ 282.355499] cleanup_net+0x546/0xad0 [ 282.355881] ? __pfx_cleanup_net+0x10/0x10 [ 282.356320] process_one_work+0x8ee/0x1a10 [ 282.356767] ? __pfx_lock_acquire+0x10/0x10 [ 282.357197] ? __pfx_process_one_work+0x10/0x10 [ 282.357675] ? srso_return_thunk+0x5/0x5f [ 282.358103] ? move_linked_works+0x172/0x270 [ 282.358556] ? srso_return_thunk+0x5/0x5f [ 282.358994] ? assign_work+0x196/0x240 [ 282.359417] worker_thread+0x674/0xe70 [ 282.359830] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 282.360352] ? __pfx_worker_thread+0x10/0x10 [ 282.360819] kthread+0x3ab/0x720 [ 282.361178] ? __pfx_kthread+0x10/0x10 [ 282.361580] ? srso_return_thunk+0x5/0x5f [ 282.362017] ? finish_task_switch.isra.0+0x206/0x840 [ 282.362536] ? __pfx_kthread+0x10/0x10 [ 282.362947] ret_from_fork+0x48/0x80 [ 282.363324] ? __pfx_kthread+0x10/0x10 [ 282.363732] ret_from_fork_asm+0x1a/0x30 [ 282.364168] [ 284.152147] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 284.153626] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 284.154271] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 284.156507] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 284.158100] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 284.158780] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 284.236871] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 284.241948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 284.246557] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 284.248957] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 284.250862] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 284.251427] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 284.286498] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 284.287995] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 284.288999] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 284.293507] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 284.303711] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 284.305374] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 284.351535] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 284.358868] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 284.361380] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 284.365897] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 284.370957] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 284.372112] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 284.422004] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 284.430725] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 284.434537] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 284.437036] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 284.438544] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 284.443438] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 284.453257] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 284.457856] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 284.461774] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 284.462207] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 284.473900] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 284.476704] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 284.563008] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 284.568034] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 284.569938] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 284.570522] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 284.576856] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 284.578801] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 284.580122] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 284.584112] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 284.597160] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 284.604429] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 284.605490] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 284.606144] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 286.191832] Bluetooth: hci0: command tx timeout [ 286.321655] Bluetooth: hci2: command tx timeout [ 286.321809] Bluetooth: hci1: command tx timeout [ 286.447731] Bluetooth: hci3: command tx timeout [ 286.576643] Bluetooth: hci4: command tx timeout [ 286.576711] Bluetooth: hci5: command tx timeout [ 286.640658] Bluetooth: hci6: command tx timeout [ 286.703698] Bluetooth: hci7: command tx timeout [ 288.240713] Bluetooth: hci0: command tx timeout [ 288.369602] Bluetooth: hci2: command tx timeout [ 288.369685] Bluetooth: hci1: command tx timeout [ 288.495661] Bluetooth: hci3: command tx timeout [ 288.623712] Bluetooth: hci4: command tx timeout [ 288.623912] Bluetooth: hci5: command tx timeout [ 288.687662] Bluetooth: hci6: command tx timeout [ 288.752736] Bluetooth: hci7: command tx timeout [ 290.287647] Bluetooth: hci0: command tx timeout [ 290.417696] Bluetooth: hci2: command tx timeout [ 290.419382] Bluetooth: hci1: command tx timeout [ 290.543686] Bluetooth: hci3: command tx timeout [ 290.671652] Bluetooth: hci4: command tx timeout [ 290.671736] Bluetooth: hci5: command tx timeout [ 290.736615] Bluetooth: hci6: command tx timeout [ 290.799701] Bluetooth: hci7: command tx timeout VM DIAGNOSIS: 20:14:31 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8283e2e5 RDI=ffffffff886990a0 RBP=ffffffff88699060 RSP=ffff8880095deb28 R8 =0000000000000001 R9 =ffffed10012bbd55 R10=0000000000000020 R11=6666666666666666 R12=0000000000000020 R13=0000000000000001 R14=ffff888008fea003 R15=ffff8880095dee28 RIP=ffffffff8283e33d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6c6ffbbad8 CR3=00000000094ba000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=7465677261742e79636e656772656d65 XMM02=73732f6563696c732e6d65747379732f XMM03=00656369767265732e6873732f656369 XMM04=000055d97db3f080000055d97db40970 XMM05=0000000800000005000055d97da55e20 XMM06=000055d97db1006563697665642e3669 XMM07=00000000000000000000000000000000 XMM08=7368746150796c6e4f64616552646e69 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffff8880107b0500 RBX=ffff8880111285c8 RCX=ffffffff81429a4a RDX=0000000000000018 RSI=0000000000000001 RDI=ffff8880107b0528 RBP=ffff8880107b0528 RSP=ffff88800f117da0 R8 =0000000000000000 R9 =ffffed1001ddf500 R10=ffff88800eefa807 R11=0000000000000001 R12=ffff8880107b2880 R13=ffff8880111285c8 R14=ffff88800ef19bc0 R15=0000000000000086 RIP=ffffffff81aeea8e RFL=00000097 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000560d6b7146b0 CR3=0000000018f02000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=0000000000000000410d0b8000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000