[ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.240' (ECDSA) to the list of known hosts. syzkaller login: [ 359.231996] IPVS: ftp: loaded support on port[0] = 21 [ 359.296475] chnl_net:caif_netlink_parms(): no params data found [ 359.348155] bridge0: port 1(bridge_slave_0) entered blocking state [ 359.355160] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.362878] device bridge_slave_0 entered promiscuous mode [ 359.369583] bridge0: port 2(bridge_slave_1) entered blocking state [ 359.376616] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.383697] device bridge_slave_1 entered promiscuous mode [ 359.399053] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 359.407517] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 359.424859] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 359.432104] team0: Port device team_slave_0 added [ 359.437385] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 359.444567] team0: Port device team_slave_1 added [ 359.458137] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 359.464394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 359.490178] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 359.501376] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 359.507592] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 359.532782] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 359.546184] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 359.553740] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 359.571584] device hsr_slave_0 entered promiscuous mode [ 359.577119] device hsr_slave_1 entered promiscuous mode [ 359.583425] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 359.590726] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 359.644228] bridge0: port 2(bridge_slave_1) entered blocking state [ 359.650630] bridge0: port 2(bridge_slave_1) entered forwarding state [ 359.657275] bridge0: port 1(bridge_slave_0) entered blocking state [ 359.663686] bridge0: port 1(bridge_slave_0) entered forwarding state [ 359.688851] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 359.695440] 8021q: adding VLAN 0 to HW filter on device bond0 [ 359.703681] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 359.712079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 359.719827] bridge0: port 1(bridge_slave_0) entered disabled state [ 359.727219] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.736445] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 359.742558] 8021q: adding VLAN 0 to HW filter on device team0 [ 359.750486] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 359.757988] bridge0: port 1(bridge_slave_0) entered blocking state [ 359.764348] bridge0: port 1(bridge_slave_0) entered forwarding state [ 359.773545] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 359.781492] bridge0: port 2(bridge_slave_1) entered blocking state [ 359.787802] bridge0: port 2(bridge_slave_1) entered forwarding state [ 359.804985] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 359.815010] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 359.825917] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 359.833231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 359.841069] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 359.848460] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 359.856071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 359.863507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 359.870220] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 359.882365] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 359.889299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 359.896664] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 359.906006] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 359.952538] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 359.962087] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 359.991446] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 359.998268] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 360.005496] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 360.013874] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 360.021352] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 360.028083] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 360.036243] device veth0_vlan entered promiscuous mode [ 360.044867] device veth1_vlan entered promiscuous mode [ 360.051109] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 360.058857] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 360.069120] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 360.078274] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 360.085441] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 360.092907] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 360.101821] device veth0_macvtap entered promiscuous mode [ 360.107747] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 360.115559] device veth1_macvtap entered promiscuous mode [ 360.123981] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 360.132717] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 360.142517] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 360.149114] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 360.157490] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 360.166428] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 360.173695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 360.300739] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 361.230906] Bluetooth: hci0 command 0x0409 tx timeout [ 363.300197] Bluetooth: hci0 command 0x041b tx timeout [ 365.380099] Bluetooth: hci0 command 0x040f tx timeout [ 367.459805] Bluetooth: hci0 command 0x0419 tx timeout [ 369.539695] Bluetooth: hci0 command 0x0406 tx timeout [ 484.253198] ------------[ cut here ]------------ [ 484.258076] WARNING: CPU: 0 PID: 7984 at net/bluetooth/hci_conn.c:404 hci_conn_timeout+0x1ef/0x3f0 [ 484.267147] Kernel panic - not syncing: panic_on_warn set ... [ 484.267147] [ 484.274486] CPU: 0 PID: 7984 Comm: kworker/u5:2 Not tainted 4.14.299-syzkaller #0 [ 484.282076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 484.291415] Workqueue: hci0 hci_conn_timeout [ 484.295798] Call Trace: [ 484.298365] dump_stack+0x1b2/0x281 [ 484.301970] panic+0x1f9/0x42d [ 484.305163] ? add_taint.cold+0x16/0x16 [ 484.309119] ? hci_conn_timeout+0x1ef/0x3f0 [ 484.313424] ? hci_conn_timeout+0x1ef/0x3f0 [ 484.317732] __warn.cold+0x20/0x44 [ 484.321253] ? ist_end_non_atomic+0x10/0x10 [ 484.325551] ? hci_conn_timeout+0x1ef/0x3f0 [ 484.329852] report_bug+0x208/0x250 [ 484.333460] do_error_trap+0x195/0x2d0 [ 484.337323] ? math_error+0x2d0/0x2d0 [ 484.341101] ? debug_object_deactivate+0x1da/0x2e0 [ 484.346006] ? trace_hardirqs_on+0x10/0x10 [ 484.350218] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 484.355041] invalid_op+0x1b/0x40 [ 484.358477] ? hci_conn_timeout+0x1ef/0x3f0 [ 484.362775] ? process_one_work+0x793/0x14a0 [ 484.367162] ? work_busy+0x320/0x320 [ 484.370851] ? worker_thread+0x158/0xff0 [ 484.374887] ? _raw_spin_unlock_irq+0x24/0x80 [ 484.379359] ? worker_thread+0x5cc/0xff0 [ 484.383414] ? rescuer_thread+0xc80/0xc80 [ 484.387537] ? kthread+0x30d/0x420 [ 484.391050] ? kthread_create_on_node+0xd0/0xd0 [ 484.395699] ? ret_from_fork+0x24/0x30 [ 484.399860] Kernel Offset: disabled [ 484.403513] Rebooting in 86400 seconds..