Warning: Permanently added '10.128.0.209' (ED25519) to the list of known hosts. [ 34.534242][ T6462] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 34.537752][ T6462] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.539794][ T6462] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 34.541554][ T6462] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 34.543291][ T6462] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 34.545138][ T6462] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 34.546717][ T6464] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 34.547470][ T6464] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 34.549136][ T6462] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.551119][ T6464] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 34.551898][ T6462] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.553521][ T6464] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 34.555035][ T6462] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.558220][ T6464] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 34.558300][ T6462] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 34.560448][ T6464] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 34.561391][ T6462] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 34.563320][ T6463] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 34.564711][ T6462] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 34.566711][ T6463] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 34.567796][ T6462] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.571282][ T6462] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 34.574435][ T6451] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 34.576918][ T6451] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 34.579487][ T6451] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 34.583597][ T6451] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 34.585542][ T6451] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 34.587290][ T6451] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 34.596301][ T6461] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 34.598413][ T6460] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 34.724958][ T6446] chnl_net:caif_netlink_parms(): no params data found [ 34.837846][ T6445] chnl_net:caif_netlink_parms(): no params data found [ 34.842343][ T6447] chnl_net:caif_netlink_parms(): no params data found [ 34.853391][ T6446] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.855153][ T6446] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.858208][ T6446] bridge_slave_0: entered allmulticast mode [ 34.861123][ T6446] bridge_slave_0: entered promiscuous mode [ 34.867943][ T6449] chnl_net:caif_netlink_parms(): no params data found [ 34.884684][ T6446] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.888787][ T6446] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.890624][ T6446] bridge_slave_1: entered allmulticast mode [ 34.892585][ T6446] bridge_slave_1: entered promiscuous mode [ 34.951479][ T6446] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.954080][ T6445] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.956277][ T6445] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.958119][ T6445] bridge_slave_0: entered allmulticast mode [ 34.960062][ T6445] bridge_slave_0: entered promiscuous mode [ 34.983687][ T6446] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.990704][ T6445] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.992458][ T6445] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.994302][ T6445] bridge_slave_1: entered allmulticast mode [ 34.998780][ T6445] bridge_slave_1: entered promiscuous mode [ 35.032970][ T6449] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.034827][ T6449] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.036822][ T6449] bridge_slave_0: entered allmulticast mode [ 35.038823][ T6449] bridge_slave_0: entered promiscuous mode [ 35.050200][ T6448] chnl_net:caif_netlink_parms(): no params data found [ 35.059928][ T6446] team0: Port device team_slave_0 added [ 35.071141][ T6447] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.073099][ T6447] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.074989][ T6447] bridge_slave_0: entered allmulticast mode [ 35.077257][ T6447] bridge_slave_0: entered promiscuous mode [ 35.079712][ T6449] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.081525][ T6449] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.083472][ T6449] bridge_slave_1: entered allmulticast mode [ 35.089978][ T6449] bridge_slave_1: entered promiscuous mode [ 35.097891][ T6446] team0: Port device team_slave_1 added [ 35.103348][ T6445] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.107435][ T6445] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.114157][ T6447] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.116145][ T6447] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.118170][ T6447] bridge_slave_1: entered allmulticast mode [ 35.120218][ T6447] bridge_slave_1: entered promiscuous mode [ 35.145585][ T6445] team0: Port device team_slave_0 added [ 35.161262][ T6446] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.163104][ T6446] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.169662][ T6446] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.178323][ T6445] team0: Port device team_slave_1 added [ 35.190147][ T6449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.192521][ T6446] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.194279][ T6446] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.201045][ T6446] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.222773][ T6447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.225810][ T6445] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.227648][ T6445] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.234320][ T6445] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.239311][ T6449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.245257][ T6448] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.247577][ T6448] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.249408][ T6448] bridge_slave_0: entered allmulticast mode [ 35.251480][ T6448] bridge_slave_0: entered promiscuous mode [ 35.254216][ T6448] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.256601][ T6448] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.258408][ T6448] bridge_slave_1: entered allmulticast mode [ 35.260405][ T6448] bridge_slave_1: entered promiscuous mode [ 35.264439][ T6447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.271477][ T6445] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.273298][ T6445] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.280181][ T6445] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.293684][ T6449] team0: Port device team_slave_0 added [ 35.307249][ T6449] team0: Port device team_slave_1 added [ 35.322554][ T6447] team0: Port device team_slave_0 added [ 35.334946][ T6445] hsr_slave_0: entered promiscuous mode [ 35.337556][ T6445] hsr_slave_1: entered promiscuous mode [ 35.345614][ T6448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.348978][ T6447] team0: Port device team_slave_1 added [ 35.351966][ T6448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.377707][ T6449] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.379507][ T6449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.386751][ T6449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.392317][ T6446] hsr_slave_0: entered promiscuous mode [ 35.394312][ T6446] hsr_slave_1: entered promiscuous mode [ 35.396499][ T6446] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.398602][ T6446] Cannot create hsr debugfs directory [ 35.400413][ T6447] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.402377][ T6447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.409340][ T6447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.417361][ T6449] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.419160][ T6449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.425882][ T6449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.437291][ T6447] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.439031][ T6447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.449758][ T6447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.455242][ T6448] team0: Port device team_slave_0 added [ 35.473346][ T6448] team0: Port device team_slave_1 added [ 35.500023][ T6447] hsr_slave_0: entered promiscuous mode [ 35.502101][ T6447] hsr_slave_1: entered promiscuous mode [ 35.503861][ T6447] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.506032][ T6447] Cannot create hsr debugfs directory [ 35.534836][ T6449] hsr_slave_0: entered promiscuous mode [ 35.537166][ T6449] hsr_slave_1: entered promiscuous mode [ 35.538973][ T6449] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.540837][ T6449] Cannot create hsr debugfs directory [ 35.544688][ T6448] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.546943][ T6448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.553479][ T6448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.569618][ T6448] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.571369][ T6448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 35.578303][ T6448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.686257][ T6448] hsr_slave_0: entered promiscuous mode [ 35.688141][ T6448] hsr_slave_1: entered promiscuous mode [ 35.689924][ T6448] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 35.691872][ T6448] Cannot create hsr debugfs directory [ 35.759948][ T6446] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 35.763746][ T6446] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 35.790214][ T6446] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 35.807461][ T6446] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 35.842991][ T6445] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.858067][ T6445] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.861624][ T6445] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.872914][ T6445] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.901065][ T6446] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.909792][ T6446] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.914153][ T202] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.916142][ T202] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.939729][ T202] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.941595][ T202] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.954081][ T6449] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 35.959167][ T6449] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 35.962965][ T6449] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 35.976616][ T6449] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 36.011797][ T6448] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 36.020082][ T6448] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 36.023673][ T6448] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 36.028297][ T6448] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 36.033938][ T6445] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.044735][ T6446] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 36.048352][ T6446] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 36.084179][ T6445] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.105069][ T287] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.106954][ T287] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.110542][ T287] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.112310][ T287] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.115087][ T6447] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 36.119297][ T6447] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 36.128224][ T6446] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.131884][ T6447] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 36.136463][ T6447] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 36.183115][ T6449] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.221498][ T6449] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.234064][ T6446] veth0_vlan: entered promiscuous mode [ 36.242664][ T6446] veth1_vlan: entered promiscuous mode [ 36.253146][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.254893][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.269574][ T6445] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.276384][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.278362][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.310489][ T6446] veth0_macvtap: entered promiscuous mode [ 36.329072][ T6446] veth1_macvtap: entered promiscuous mode [ 36.340026][ T6447] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.344120][ T6448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 36.366326][ T6448] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.370604][ T6446] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.373692][ T6445] veth0_vlan: entered promiscuous mode [ 36.382928][ T6446] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.391961][ T6446] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.394228][ T6446] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.396744][ T6446] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.398906][ T6446] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.406602][ T287] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.408514][ T287] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.419018][ T6447] 8021q: adding VLAN 0 to HW filter on device team0 [ 36.430871][ T6449] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.446405][ T287] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.448314][ T287] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.454910][ T4417] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.456846][ T4417] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.477371][ T6445] veth1_vlan: entered promiscuous mode [ 36.496268][ T4417] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.498032][ T4417] bridge0: port 2(bridge_slave_1) entered forwarding state executing program executing program [ 36.527520][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.538560][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.557875][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.561693][ T6447] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network executing program [ 36.569561][ T6445] veth0_macvtap: entered promiscuous mode [ 36.571835][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.572931][ T6445] veth1_macvtap: entered promiscuous mode executing program [ 36.581210][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.596293][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.603247][ T6449] veth0_vlan: entered promiscuous mode executing program [ 36.609039][ T6448] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.611677][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.627598][ T6445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 36.630389][ T6445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.633443][ T6445] batman_adv: batadv0: Interface activated: batadv_slave_0 executing program [ 36.639463][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.648387][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.652025][ T6445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 36.654685][ T6445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.658762][ T6461] Bluetooth: hci4: command tx timeout executing program [ 36.660372][ T6461] Bluetooth: hci2: command tx timeout [ 36.662026][ T6461] Bluetooth: hci1: command tx timeout [ 36.663517][ T6460] Bluetooth: hci0: command tx timeout [ 36.665122][ T6460] Bluetooth: hci3: command tx timeout [ 36.666934][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.675254][ T6445] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.678968][ T6445] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.681224][ T6445] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 36.683736][ T6445] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.686355][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.688793][ T6445] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.692984][ T6449] veth1_vlan: entered promiscuous mode executing program [ 36.703476][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.720138][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.731768][ T6449] veth0_macvtap: entered promiscuous mode [ 36.733050][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.738586][ T6447] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 36.756968][ T6449] veth1_macvtap: entered promiscuous mode [ 36.763230][ T6449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 executing program [ 36.769988][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.770860][ T6449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.774945][ T6449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 36.778492][ T6449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.782593][ T6449] batman_adv: batadv0: Interface activated: batadv_slave_0 executing program [ 36.796612][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.814742][ T6449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 36.819043][ T6449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.821528][ T6449] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 36.824144][ T6449] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 36.828017][ T6449] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.838448][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 36.843653][ T6449] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.847431][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.850311][ T6449] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 36.854184][ T6449] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 36.856970][ T6449] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.860499][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.862205][ T6447] veth0_vlan: entered promiscuous mode [ 36.866529][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 36.886904][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.890987][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.909681][ T6447] veth1_vlan: entered promiscuous mode [ 36.910637][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.927241][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.933604][ T6448] veth0_vlan: entered promiscuous mode [ 36.939211][ T6448] veth1_vlan: entered promiscuous mode executing program executing program [ 36.957570][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 36.960066][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.970666][ T6447] veth0_macvtap: entered promiscuous mode executing program executing program executing program [ 36.975815][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.978515][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.981185][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.983436][ T6447] veth1_macvtap: entered promiscuous mode executing program executing program [ 36.994638][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 36.998048][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 37.005563][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.009423][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.009661][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.012049][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.012064][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.012076][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.012086][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.024352][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program executing program [ 37.030513][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.033410][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.035115][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program executing program executing program [ 37.043032][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.049057][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.051494][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.054519][ T6447] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 37.056679][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 37.061662][ T6448] veth0_macvtap: entered promiscuous mode [ 37.063344][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.063369][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 37.077910][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.083762][ T6448] veth1_macvtap: entered promiscuous mode executing program [ 37.086814][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 37.089212][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.091462][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.091468][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.093851][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 37.098162][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.100654][ T6447] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 37.101735][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.103139][ T6447] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.109287][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.111900][ T6447] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 37.121044][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.123729][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program executing program executing program [ 37.132713][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.134693][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.136394][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.138157][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.141414][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.149477][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.153162][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.154530][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.159328][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.160053][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.166167][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.169531][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 37.172311][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.172976][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program executing program [ 37.177851][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.179499][ T6448] batman_adv: batadv0: Interface activated: batadv_slave_0 executing program [ 37.182865][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.185254][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.190971][ T6447] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.193526][ T6447] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 executing program executing program [ 37.198083][ T6447] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.201112][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.201351][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.205167][ T6447] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program executing program [ 37.222626][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.226379][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.228045][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 executing program [ 37.240497][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.243023][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.243243][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.248202][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 37.249583][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.253710][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.254571][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.262795][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.263542][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 executing program [ 37.268426][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! executing program [ 37.270314][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.273750][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.277575][ T6448] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 37.280271][ T6448] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 37.280620][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.283650][ T6448] batman_adv: batadv0: Interface activated: batadv_slave_1 executing program executing program executing program [ 37.297283][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.298302][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.302788][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.309457][ T6448] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.311652][ T6448] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 37.313911][ T6448] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 executing program [ 37.319198][ T6448] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 executing program executing program [ 37.323963][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.329324][ T6460] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.330572][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.340752][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.349122][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.353605][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.361042][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.376267][ T6461] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.392743][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.405055][ T6461] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program [ 37.411626][ T6461] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.419707][ T6461] BUG: sleeping function called from invalid context at net/core/sock.c:3647 [ 37.422035][ T6461] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6461, name: kworker/u9:4 [ 37.424383][ T6461] preempt_count: 1, expected: 0 [ 37.425899][ T6461] RCU nest depth: 0, expected: 0 [ 37.427092][ T6461] 5 locks held by kworker/u9:4/6461: [ 37.428626][ T6461] #0: ffff0000d6695948 ((wq_completion)hci3#2){+.+.}-{0:0}, at: process_one_work+0x674/0x1638 [ 37.431372][ T6461] #1: ffff80009c087ba0 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x708/0x1638 [ 37.434328][ T6461] #2: ffff0000d9a20078 (&hdev->lock){+.+.}-{4:4}, at: hci_sync_conn_complete_evt+0xe4/0x90c [ 37.437239][ T6461] #3: ffff0000cf289c20 (&conn->lock#3){+.+.}-{3:3}, at: sco_connect_cfm+0x24c/0x8f4 [ 37.439584][ T6461] #4: ffff0000da143258 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_connect_cfm+0x3d8/0x8f4 [ 37.440947][ T6460] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.442546][ T6461] Preemption disabled at: [ 37.444848][ T6461] [] sco_connect_cfm+0x24c/0x8f4 executing program [ 37.447980][ T6461] CPU: 1 UID: 0 PID: 6461 Comm: kworker/u9:4 Not tainted 6.14.0-rc4-syzkaller-ge056da87c780 #0 [ 37.447994][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.448001][ T6461] Workqueue: hci3 hci_rx_work [ 37.448017][ T6461] Call trace: [ 37.448020][ T6461] show_stack+0x2c/0x3c (C) [ 37.448036][ T6461] dump_stack_lvl+0xe4/0x150 [ 37.448049][ T6461] dump_stack+0x1c/0x28 executing program executing program [ 37.448061][ T6461] __might_resched+0x374/0x4d0 [ 37.448071][ T6461] __might_sleep+0x90/0xe4 [ 37.448081][ T6461] lock_sock_nested+0x6c/0x11c [ 37.448092][ T6461] sco_connect_cfm+0x3d8/0x8f4 [ 37.448104][ T6461] hci_sync_conn_complete_evt+0x4cc/0x90c [ 37.448115][ T6461] hci_event_packet+0x8d0/0x1060 [ 37.448125][ T6461] hci_rx_work+0x31c/0xb04 [ 37.448136][ T6461] process_one_work+0x810/0x1638 [ 37.448147][ T6461] worker_thread+0x97c/0xeec [ 37.448158][ T6461] kthread+0x65c/0x7b0 [ 37.448168][ T6461] ret_from_fork+0x10/0x20 [ 37.452037][ T6601] [ 37.463654][ T6460] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.464487][ T6601] ====================================================== [ 37.464496][ T6601] WARNING: possible circular locking dependency detected [ 37.464503][ T6601] 6.14.0-rc4-syzkaller-ge056da87c780 #0 Tainted: G W [ 37.464510][ T6601] ------------------------------------------------------ [ 37.464514][ T6601] syz-executor274/6601 is trying to acquire lock: [ 37.464521][ T6601] ffff0000cf289c20 (&conn->lock#3){+.+.}-{3:3}, at: __sco_sock_close+0x218/0x41c [ 37.464554][ T6601] [ 37.464554][ T6601] but task is already holding lock: executing program [ 37.464558][ T6601] ffff0000da144258 (sk_lock-AF_BLUETOOTH){+.+.}-{0:0} [ 37.465834][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.466953][ T6601] , at: __sco_sock_close+0xec/0x41c executing program [ 37.468678][ T6461] BUG: scheduling while atomic: kworker/u9:4/6461/0x00000002 [ 37.469552][ T6601] [ 37.469552][ T6601] which lock already depends on the new lock. [ 37.469552][ T6601] [ 37.470655][ T6461] INFO: lockdep is turned off. [ 37.471864][ T6601] executing program [ 37.471864][ T6601] the existing dependency chain (in reverse order) is: [ 37.473062][ T6461] Modules linked in: [ 37.474109][ T6601] [ 37.474109][ T6601] -> #2 [ 37.475233][ T6461] [ 37.475765][ T6601] (sk_lock-AF_BLUETOOTH){+.+.}-{0:0}: [ 37.475784][ T6601] lock_sock_nested+0x5c/0x11c [ 37.475798][ T6601] bt_accept_dequeue+0xe8/0x530 [ 37.478216][ T6461] Preemption disabled at: [ 37.480030][ T6601] __sco_sock_close+0xc8/0x41c [ 37.481818][ T6461] [] sco_connect_cfm+0x24c/0x8f4 [ 37.483767][ T6601] sco_sock_release+0xb4/0x2c0 [ 37.485656][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: kworker/u9:4 Tainted: G W 6.14.0-rc4-syzkaller-ge056da87c780 #0 [ 37.485679][ T6461] Tainted: [W]=WARN [ 37.485683][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.485690][ T6461] Workqueue: hci2 hci_rx_work [ 37.485705][ T6461] Call trace: [ 37.485709][ T6461] show_stack+0x2c/0x3c (C) [ 37.485724][ T6461] dump_stack_lvl+0xe4/0x150 [ 37.485738][ T6461] dump_stack+0x1c/0x28 [ 37.485749][ T6461] __schedule_bug+0x10c/0x19c [ 37.485761][ T6461] __schedule+0x1604/0x257c [ 37.485774][ T6461] schedule+0xbc/0x238 [ 37.485785][ T6461] __lock_sock+0x168/0x2d4 [ 37.485795][ T6461] lock_sock_nested+0xa4/0x11c [ 37.485805][ T6461] sco_connect_cfm+0x3d8/0x8f4 [ 37.485817][ T6461] hci_sync_conn_complete_evt+0x4cc/0x90c [ 37.485828][ T6461] hci_event_packet+0x8d0/0x1060 [ 37.485837][ T6461] hci_rx_work+0x31c/0xb04 [ 37.485848][ T6461] process_one_work+0x810/0x1638 [ 37.485860][ T6461] worker_thread+0x97c/0xeec [ 37.485871][ T6461] kthread+0x65c/0x7b0 [ 37.485881][ T6461] ret_from_fork+0x10/0x20 [ 37.492244][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.493271][ T6601] sock_close+0xa4/0x1e8 [ 37.500019][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.501504][ T6601] __fput+0x340/0x760 [ 37.501525][ T6601] __fput_sync+0xc8/0x118 [ 37.552537][ T6601] __arm64_sys_close+0x80/0xd8 [ 37.553967][ T6601] invoke_syscall+0x98/0x2b8 [ 37.555272][ T6601] el0_svc_common+0x130/0x23c [ 37.556552][ T6601] do_el0_svc+0x48/0x58 [ 37.557773][ T6601] el0_svc+0x54/0x168 [ 37.558933][ T6601] el0t_64_sync_handler+0x84/0x108 [ 37.560449][ T6601] el0t_64_sync+0x198/0x19c [ 37.561770][ T6601] [ 37.561770][ T6601] -> #1 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}: [ 37.564087][ T6601] lock_sock_nested+0x5c/0x11c [ 37.565397][ T6601] sco_connect_cfm+0x3d8/0x8f4 [ 37.566704][ T6601] hci_sync_conn_complete_evt+0x4cc/0x90c [ 37.568243][ T6601] hci_event_packet+0x8d0/0x1060 [ 37.569568][ T6601] hci_rx_work+0x31c/0xb04 [ 37.570853][ T6601] process_one_work+0x810/0x1638 [ 37.572259][ T6601] worker_thread+0x97c/0xeec [ 37.573547][ T6601] kthread+0x65c/0x7b0 [ 37.574718][ T6601] ret_from_fork+0x10/0x20 [ 37.575911][ T6601] [ 37.575911][ T6601] -> #0 (&conn->lock#3){+.+.}-{3:3}: [ 37.577685][ T6601] __lock_acquire+0x34f0/0x7904 [ 37.578985][ T6601] lock_acquire+0x23c/0x724 [ 37.580312][ T6601] _raw_spin_lock+0x48/0x60 [ 37.581665][ T6601] __sco_sock_close+0x218/0x41c [ 37.583023][ T6601] __sco_sock_close+0x140/0x41c [ 37.584461][ T6601] sco_sock_release+0xb4/0x2c0 [ 37.585827][ T6601] sock_close+0xa4/0x1e8 [ 37.587037][ T6601] __fput+0x340/0x760 [ 37.588226][ T6601] __fput_sync+0xc8/0x118 [ 37.589472][ T6601] __arm64_sys_close+0x80/0xd8 [ 37.590880][ T6601] invoke_syscall+0x98/0x2b8 [ 37.592233][ T6601] el0_svc_common+0x130/0x23c [ 37.593641][ T6601] do_el0_svc+0x48/0x58 [ 37.594831][ T6601] el0_svc+0x54/0x168 [ 37.595995][ T6601] el0t_64_sync_handler+0x84/0x108 [ 37.597448][ T6601] el0t_64_sync+0x198/0x19c [ 37.598720][ T6601] [ 37.598720][ T6601] other info that might help us debug this: [ 37.598720][ T6601] [ 37.601421][ T6601] Chain exists of: [ 37.601421][ T6601] &conn->lock#3 --> sk_lock-AF_BLUETOOTH-BTPROTO_SCO --> sk_lock-AF_BLUETOOTH [ 37.601421][ T6601] [ 37.605382][ T6601] Possible unsafe locking scenario: [ 37.605382][ T6601] [ 37.607239][ T6601] CPU0 CPU1 [ 37.608605][ T6601] ---- ---- [ 37.609966][ T6601] lock(sk_lock-AF_BLUETOOTH); [ 37.611280][ T6601] lock(sk_lock-AF_BLUETOOTH-BTPROTO_SCO); [ 37.613492][ T6601] lock(sk_lock-AF_BLUETOOTH); [ 37.615386][ T6601] lock(&conn->lock#3); [ 37.616464][ T6601] [ 37.616464][ T6601] *** DEADLOCK *** [ 37.616464][ T6601] [ 37.618557][ T6601] 3 locks held by syz-executor274/6601: [ 37.619935][ T6601] #0: ffff0000e2f28808 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x80/0x1e8 [ 37.622516][ T6601] #1: ffff0000da143258 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_sock_release+0x60/0x2c0 [ 37.625426][ T6601] #2: ffff0000da144258 (sk_lock-AF_BLUETOOTH){+.+.}-{0:0}, at: __sco_sock_close+0xec/0x41c [ 37.628090][ T6601] [ 37.628090][ T6601] stack backtrace: [ 37.629600][ T6601] CPU: 1 UID: 0 PID: 6601 Comm: syz-executor274 Tainted: G W 6.14.0-rc4-syzkaller-ge056da87c780 #0 [ 37.629616][ T6601] Tainted: [W]=WARN [ 37.629619][ T6601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.629626][ T6601] Call trace: [ 37.629630][ T6601] show_stack+0x2c/0x3c (C) [ 37.629647][ T6601] dump_stack_lvl+0xe4/0x150 [ 37.629661][ T6601] dump_stack+0x1c/0x28 [ 37.629672][ T6601] print_circular_bug+0x154/0x1c0 [ 37.629685][ T6601] check_noncircular+0x310/0x404 [ 37.629696][ T6601] __lock_acquire+0x34f0/0x7904 [ 37.629707][ T6601] lock_acquire+0x23c/0x724 [ 37.629717][ T6601] _raw_spin_lock+0x48/0x60 [ 37.629727][ T6601] __sco_sock_close+0x218/0x41c [ 37.629740][ T6601] __sco_sock_close+0x140/0x41c [ 37.629751][ T6601] sco_sock_release+0xb4/0x2c0 [ 37.629764][ T6601] sock_close+0xa4/0x1e8 [ 37.629776][ T6601] __fput+0x340/0x760 [ 37.629788][ T6601] __fput_sync+0xc8/0x118 [ 37.629800][ T6601] __arm64_sys_close+0x80/0xd8 [ 37.629810][ T6601] invoke_syscall+0x98/0x2b8 [ 37.629823][ T6601] el0_svc_common+0x130/0x23c [ 37.629835][ T6601] do_el0_svc+0x48/0x58 [ 37.629846][ T6601] el0_svc+0x54/0x168 [ 37.629855][ T6601] el0t_64_sync_handler+0x84/0x108 [ 37.629865][ T6601] el0t_64_sync+0x198/0x19c [ 37.668738][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program executing program executing program [ 37.676263][ T53] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.678670][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.681032][ T6461] ================================================================== [ 37.682549][ T6014] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.683013][ T6461] BUG: KASAN: slab-use-after-free in do_raw_spin_lock+0x21c/0x334 [ 37.687393][ T6461] Read of size 4 at addr ffff0000da1431c4 by task kworker/u9:4/6461 [ 37.689524][ T6461] [ 37.690113][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: kworker/u9:4 Tainted: G W 6.14.0-rc4-syzkaller-ge056da87c780 #0 [ 37.690129][ T6461] Tainted: [W]=WARN executing program executing program executing program [ 37.690133][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.690140][ T6461] Workqueue: hci2 hci_rx_work [ 37.690156][ T6461] Call trace: [ 37.690159][ T6461] show_stack+0x2c/0x3c (C) [ 37.690176][ T6461] dump_stack_lvl+0xe4/0x150 [ 37.690198][ T6461] print_report+0x198/0x550 [ 37.690211][ T6461] kasan_report+0xd8/0x138 [ 37.690222][ T6461] __asan_report_load4_noabort+0x20/0x2c [ 37.690248][ T6461] do_raw_spin_lock+0x21c/0x334 [ 37.690262][ T6461] _raw_spin_lock_bh+0x50/0x60 [ 37.690273][ T6461] __lock_sock+0x170/0x2d4 [ 37.690283][ T6461] lock_sock_nested+0xa4/0x11c [ 37.690294][ T6461] sco_connect_cfm+0x3d8/0x8f4 [ 37.690307][ T6461] hci_sync_conn_complete_evt+0x4cc/0x90c [ 37.690317][ T6461] hci_event_packet+0x8d0/0x1060 executing program executing program executing program executing program executing program [ 37.690327][ T6461] hci_rx_work+0x31c/0xb04 [ 37.690338][ T6461] process_one_work+0x810/0x1638 [ 37.690350][ T6461] worker_thread+0x97c/0xeec [ 37.690362][ T6461] kthread+0x65c/0x7b0 [ 37.690372][ T6461] ret_from_fork+0x10/0x20 [ 37.690383][ T6461] [ 37.695182][ T6014] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.696971][ T6461] Allocated by task 6601: [ 37.696982][ T6461] kasan_save_track+0x40/0x78 [ 37.696996][ T6461] kasan_save_alloc_info+0x40/0x50 [ 37.697006][ T6461] __kasan_kmalloc+0xac/0xc4 [ 37.697015][ T6461] __kmalloc_noprof+0x32c/0x54c [ 37.697026][ T6461] sk_prot_alloc+0xc4/0x1f0 [ 37.697039][ T6461] sk_alloc+0x44/0x3f0 [ 37.698972][ T6014] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.699048][ T6461] bt_sock_alloc+0x4c/0x304 [ 37.703854][ T6014] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.705084][ T6461] sco_sock_create+0xbc/0x31c [ 37.710022][ T6014] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.710108][ T6461] bt_sock_create+0x14c/0x248 [ 37.716451][ T6014] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.717516][ T6461] __sock_create+0x448/0x908 [ 37.719581][ T6014] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.719661][ T6461] __sys_socket+0x134/0x340 [ 37.719678][ T6461] __arm64_sys_socket+0x7c/0x94 [ 37.719688][ T6461] invoke_syscall+0x98/0x2b8 [ 37.722783][ T6014] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.729911][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.730066][ T6461] el0_svc_common+0x130/0x23c [ 37.734252][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.734610][ T6461] do_el0_svc+0x48/0x58 [ 37.741057][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.741715][ T6461] el0_svc+0x54/0x168 [ 37.747767][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.748849][ T6461] el0t_64_sync_handler+0x84/0x108 [ 37.748866][ T6461] el0t_64_sync+0x198/0x19c [ 37.752409][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.753676][ T6461] [ 37.757973][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.759725][ T6461] Freed by task 6601: [ 37.765072][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.766683][ T6461] kasan_save_track+0x40/0x78 [ 37.766704][ T6461] kasan_save_free_info+0x54/0x6c [ 37.766714][ T6461] __kasan_slab_free+0x64/0x8c [ 37.766723][ T6461] kfree+0x180/0x478 [ 37.766734][ T6461] __sk_destruct+0x4b8/0x74c [ 37.766747][ T6461] __sk_free+0x388/0x4f4 [ 37.766754][ T6461] sk_free+0x60/0xc8 [ 37.766761][ T6461] sco_sock_kill+0xfc/0x1b4 [ 37.766773][ T6461] sco_sock_release+0x1fc/0x2c0 [ 37.766783][ T6461] sock_close+0xa4/0x1e8 [ 37.766793][ T6461] __fput+0x340/0x760 [ 37.766803][ T6461] __fput_sync+0xc8/0x118 [ 37.766813][ T6461] __arm64_sys_close+0x80/0xd8 [ 37.766823][ T6461] invoke_syscall+0x98/0x2b8 [ 37.766834][ T6461] el0_svc_common+0x130/0x23c [ 37.766845][ T6461] do_el0_svc+0x48/0x58 [ 37.766854][ T6461] el0_svc+0x54/0x168 [ 37.766863][ T6461] el0t_64_sync_handler+0x84/0x108 [ 37.766871][ T6461] el0t_64_sync+0x198/0x19c [ 37.766880][ T6461] [ 37.766884][ T6461] The buggy address belongs to the object at ffff0000da143000 [ 37.766884][ T6461] which belongs to the cache kmalloc-2k of size 2048 [ 37.782391][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.782910][ T6461] The buggy address is located 452 bytes inside of [ 37.782910][ T6461] freed 2048-byte region [ffff0000da143000, ffff0000da143800) [ 37.784524][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.785273][ T6461] [ 37.785280][ T6461] The buggy address belongs to the physical page: [ 37.788310][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.788638][ T6461] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11a140 [ 37.796452][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.796786][ T6461] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 37.799967][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.800545][ T6461] flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff) [ 37.802215][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.804951][ T6461] page_type: f5(slab) [ 37.804969][ T6461] raw: 05ffc00000000040 ffff0000c0002000 dead000000000122 0000000000000000 [ 37.804979][ T6461] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 37.815089][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.815501][ T6461] head: 05ffc00000000040 ffff0000c0002000 dead000000000122 0000000000000000 [ 37.815516][ T6461] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000 [ 37.815526][ T6461] head: 05ffc00000000003 fffffdffc3685001 ffffffffffffffff 0000000000000000 [ 37.815535][ T6461] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 37.815541][ T6461] page dumped because: kasan: bad access detected executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 37.815546][ T6461] [ 37.815548][ T6461] Memory state around the buggy address: [ 37.815555][ T6461] ffff0000da143080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.815562][ T6461] ffff0000da143100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.819488][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.820235][ T6461] >ffff0000da143180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.827870][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.829124][ T6461] ^ [ 37.831605][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.832586][ T6461] ffff0000da143200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb executing program executing program [ 37.839839][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.841853][ T6461] ffff0000da143280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 37.848985][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.850293][ T6461] ================================================================== [ 37.851902][ T6461] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 [ 37.873451][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.876050][ T6461] Mem abort info: executing program [ 37.879162][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.880830][ T6461] ESR = 0x0000000096000004 [ 37.880842][ T6461] EC = 0x25: DABT (current EL), IL = 32 bits [ 37.890574][ T6461] SET = 0, FnV = 0 [ 37.891563][ T6461] EA = 0, S1PTW = 0 [ 37.892578][ T6461] FSC = 0x04: level 0 translation fault [ 37.894095][ T6461] Data abort info: [ 37.894987][ T6461] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [ 37.896718][ T6461] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 37.898183][ T6461] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 executing program [ 37.899712][ T6461] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000111f4e000 [ 37.901684][ T6461] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000 [ 37.901991][ T53] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection executing program [ 37.903563][ T6461] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP [ 37.907031][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.907673][ T6461] Modules linked in: [ 37.911021][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: kworker/u9:4 Tainted: G B W 6.14.0-rc4-syzkaller-ge056da87c780 #0 [ 37.914156][ T6461] Tainted: [B]=BAD_PAGE, [W]=WARN executing program executing program [ 37.915530][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.918135][ T6461] Workqueue: hci2 hci_rx_work [ 37.919324][ T6461] pstate: 20400005 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.920540][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.921341][ T6461] pc : __pi_memcpy_generic+0x24/0x22c [ 37.924411][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.925084][ T6461] lr : __asan_memcpy+0x68/0x84 [ 37.925104][ T6461] sp : ffff80009c087600 [ 37.925109][ T6461] x29: ffff80009c087600 x28: 1ffff00013810ed4 x27: dfff800000000000 [ 37.931776][ T6461] x26: 1fffe0001b4286ad x25: ffff0000e39483c4 x24: ffff0000da143568 [ 37.933808][ T6461] x23: ffff0000e3948000 x22: ffff800082e7d3c0 x21: ffff0000cf291880 [ 37.935882][ T6461] x20: 0000000000000000 x19: 0000000000000020 x18: 1fffe000366f1886 [ 37.937124][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.937959][ T6461] x17: ffff80008fbbd000 x16: ffff80008b727f5c x15: 0000000000000004 [ 37.941856][ T53] Bluetooth: hci4: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.942499][ T6461] x14: 1fffe00019e52310 x13: 0000000000000000 x12: 0000000000000000 [ 37.947068][ T6461] x11: ffff600019e52314 x10: 1fffe00019e52313 x9 : dfff800000000000 [ 37.949186][ T6461] x8 : 0000000000000001 x7 : 0000000000000000 x6 : ffff80008a8a9b68 [ 37.951398][ T6461] x5 : ffff0000cf2918a0 x4 : 0000000000000020 x3 : ffff800082e7d3c0 [ 37.952078][ T53] Bluetooth: hci1: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.953511][ T6461] x2 : 0000000000000020 x1 : 0000000000000000 x0 : ffff0000cf291880 [ 37.958014][ T6461] Call trace: [ 37.958906][ T6461] __pi_memcpy_generic+0x24/0x22c (P) [ 37.958974][ T53] Bluetooth: hci0: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.960338][ T6461] smack_sk_clone_security+0x7c/0x90 [ 37.964134][ T6461] security_sk_clone+0x90/0x194 [ 37.965335][ T6461] sco_connect_cfm+0x56c/0x8f4 [ 37.965484][ T53] Bluetooth: hci3: Ignoring HCI_Sync_Conn_Complete event for existing connection [ 37.966570][ T6461] hci_sync_conn_complete_evt+0x4cc/0x90c [ 37.970244][ T6461] hci_event_packet+0x8d0/0x1060 [ 37.971491][ T6461] hci_rx_work+0x31c/0xb04 [ 37.972697][ T6461] process_one_work+0x810/0x1638 [ 37.973984][ T6461] worker_thread+0x97c/0xeec executing program executing program executing program executing program executing program executing program executing program [ 37.975136][ T6461] kthread+0x65c/0x7b0 [ 37.976197][ T6461] ret_from_fork+0x10/0x20 [ 37.977330][ T6461] Code: f100805f 540003c8 f100405f 540000c3 (a9401c26) [ 37.979185][ T6461] ---[ end trace 0000000000000000 ]--- [ 38.386187][ T6461] Kernel panic - not syncing: Oops: Fatal exception [ 38.388011][ T6461] SMP: stopping secondary CPUs [ 38.389354][ T6461] Kernel Offset: disabled [ 38.390473][ T6461] CPU features: 0x200,00002070,00800250,82017203 [ 38.392096][ T6461] Memory Limit: none [ 38.772179][ T6461] Rebooting in 86400 seconds..