[   47.978365][ T7475] Bluetooth: hci3: command 0x0419 tx timeout
[   47.993180][ T7475] Bluetooth: hci5: command 0x0419 tx timeout
[   48.000823][ T7475] Bluetooth: hci2: command 0x0419 tx timeout
[   48.034087][    C0] hrtimer: interrupt took 35382 ns
[  164.514951][   T17] Bluetooth: hci0: command 0x0406 tx timeout
[  164.515002][    T5] Bluetooth: hci5: command 0x0406 tx timeout
[  164.522934][   T17] Bluetooth: hci1: command 0x0406 tx timeout
[  164.542231][    T5] Bluetooth: hci3: command 0x0406 tx timeout
[  164.556808][   T17] Bluetooth: hci4: command 0x0406 tx timeout
[  164.573756][    T5] Bluetooth: hci2: command 0x0406 tx timeout
[  461.988060][ T6168] syz-executor.2 (6168) used greatest stack depth: 11584 bytes left
[  462.248443][   T26] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.361057][   T26] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.456738][   T26] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.546284][   T26] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.182132][   T26] device hsr_slave_0 left promiscuous mode
[  464.220256][   T26] device hsr_slave_1 left promiscuous mode
[  464.300776][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  464.308202][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  464.316417][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  464.323851][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  464.333102][   T26] device bridge_slave_1 left promiscuous mode
[  464.339808][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.392543][   T26] device bridge_slave_0 left promiscuous mode
[  464.398656][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.455367][   T26] device veth1_macvtap left promiscuous mode
[  464.461693][   T26] device veth0_macvtap left promiscuous mode
[  464.467725][   T26] device veth1_vlan left promiscuous mode
[  464.473855][   T26] device veth0_vlan left promiscuous mode
[  466.719218][   T26] team0 (unregistering): Port device team_slave_1 removed
[  466.729631][   T26] team0 (unregistering): Port device team_slave_0 removed
[  466.739702][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  466.794040][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  466.914637][   T26] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.15.214' (ECDSA) to the list of known hosts.
[  467.133534][   T28] audit: type=1400 audit(1606963707.591:11): avc:  denied  { execmem } for  pid=24336 comm="syz-executor934" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  469.423102][   T26] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.532916][   T26] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.656665][   T26] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.759334][   T26] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.971076][   T26] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.141466][   T26] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.246912][   T26] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.354018][   T26] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.578338][   T26] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.722158][   T26] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.840743][   T26] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.952632][   T26] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.125619][   T26] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.294002][   T26] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.419426][   T26] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.540913][   T26] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.726740][   T26] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.887215][   T26] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.989000][   T26] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  472.105782][   T26] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.663925][   T26] device hsr_slave_0 left promiscuous mode
[  477.690084][   T26] device hsr_slave_1 left promiscuous mode
[  477.729992][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.737465][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.746407][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.754453][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.763454][   T26] device bridge_slave_1 left promiscuous mode
[  477.770820][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  477.810171][   T26] device bridge_slave_0 left promiscuous mode
[  477.816776][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.861924][   T26] device hsr_slave_0 left promiscuous mode
[  477.889564][   T26] device hsr_slave_1 left promiscuous mode
[  477.939759][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  477.947272][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.955559][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  477.963491][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.974910][   T26] device bridge_slave_1 left promiscuous mode
[  477.981413][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.010420][   T26] device bridge_slave_0 left promiscuous mode
[  478.016638][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.064540][   T26] device hsr_slave_0 left promiscuous mode
[  478.090056][   T26] device hsr_slave_1 left promiscuous mode
[  478.160643][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  478.168052][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  478.176361][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  478.183971][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  478.192493][   T26] device bridge_slave_1 left promiscuous mode
[  478.198592][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.229980][   T26] device bridge_slave_0 left promiscuous mode
[  478.236100][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.284625][   T26] device hsr_slave_0 left promiscuous mode
[  478.339700][   T26] device hsr_slave_1 left promiscuous mode
[  478.390693][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  478.398159][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  478.408715][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  478.416719][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  478.425615][   T26] device bridge_slave_1 left promiscuous mode
[  478.431945][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.470225][   T26] device bridge_slave_0 left promiscuous mode
[  478.476356][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.531753][   T26] device hsr_slave_0 left promiscuous mode
[  478.569874][   T26] device hsr_slave_1 left promiscuous mode
[  478.639746][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  478.647158][   T26] batman_adv: batadv0: Removing interface: batadv_slave_0
[  478.659664][   T26] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  478.667062][   T26] batman_adv: batadv0: Removing interface: batadv_slave_1
[  478.678675][   T26] device bridge_slave_1 left promiscuous mode
[  478.685058][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.733619][   T26] device bridge_slave_0 left promiscuous mode
[  478.740099][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  478.777822][   T26] device veth1_macvtap left promiscuous mode
[  478.784174][   T26] device veth0_macvtap left promiscuous mode
[  478.790777][   T26] device veth1_vlan left promiscuous mode
[  478.797490][   T26] device veth0_vlan left promiscuous mode
[  478.920028][   T26] device veth1_macvtap left promiscuous mode
[  478.926116][   T26] device veth0_macvtap left promiscuous mode
[  478.932930][   T26] device veth1_vlan left promiscuous mode
[  478.939137][   T26] device veth0_vlan left promiscuous mode
[  479.039748][   T26] device veth1_macvtap left promiscuous mode
[  479.045775][   T26] device veth0_macvtap left promiscuous mode
[  479.051883][   T26] device veth1_vlan left promiscuous mode
[  479.057740][   T26] device veth0_vlan left promiscuous mode
[  479.130040][   T26] device veth1_macvtap left promiscuous mode
[  479.136089][   T26] device veth0_macvtap left promiscuous mode
[  479.142356][   T26] device veth1_vlan left promiscuous mode
[  479.148160][   T26] device veth0_vlan left promiscuous mode
[  479.240136][   T26] device veth1_macvtap left promiscuous mode
[  479.246164][   T26] device veth0_macvtap left promiscuous mode
[  479.252403][   T26] device veth1_vlan left promiscuous mode
[  479.258134][   T26] device veth0_vlan left promiscuous mode
[  492.230421][   T26] team0 (unregistering): Port device team_slave_1 removed
[  492.241160][   T26] team0 (unregistering): Port device team_slave_0 removed
[  492.251133][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.301683][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  492.381396][   T26] bond0 (unregistering): Released all slaves
[  492.532455][   T26] team0 (unregistering): Port device team_slave_1 removed
[  492.542935][   T26] team0 (unregistering): Port device team_slave_0 removed
[  492.552515][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.601847][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  492.710890][   T26] bond0 (unregistering): Released all slaves
[  492.864000][   T26] team0 (unregistering): Port device team_slave_1 removed
[  492.875371][   T26] team0 (unregistering): Port device team_slave_0 removed
[  492.885481][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  492.941584][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  493.041687][   T26] bond0 (unregistering): Released all slaves
[  493.160438][   T26] team0 (unregistering): Port device team_slave_1 removed
[  493.171335][   T26] team0 (unregistering): Port device team_slave_0 removed
[  493.181349][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  493.251938][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  493.351774][   T26] bond0 (unregistering): Released all slaves
[  493.500571][   T26] team0 (unregistering): Port device team_slave_1 removed
[  493.511197][   T26] team0 (unregistering): Port device team_slave_0 removed
[  493.521128][   T26] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  493.575014][   T26] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  493.714695][   T26] bond0 (unregistering): Released all slaves
[  514.476281][T19750] ------------[ cut here ]------------
[  514.481974][T19750] WARNING: CPU: 1 PID: 19750 at kernel/time/posix-timers.c:849 timer_wait_running+0x10f/0x120
[  514.492928][T19750] Modules linked in:
[  514.497080][T19750] CPU: 0 PID: 19750 Comm: syz-executor934 Not tainted 5.10.0-rc6-syzkaller #0
[  514.505946][T19750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  514.516076][T19750] RIP: 0010:timer_wait_running+0x10f/0x120
[  514.522005][T19750] Code: 0f 85 6a ff ff ff 48 c7 c2 68 c2 e8 83 be 83 02 00 00 48 c7 c7 98 bf e8 83 c6 05 6a 4b 46 03 01 e8 42 9d d6 01 e9 46 ff ff ff <0f> 0b e9 5d ff ff ff 66 2e 0f 1f 84 00 00 00 00 00 41 54 55 53 48
[  514.541789][T19750] RSP: 0018:ffffc90002213e58 EFLAGS: 00010246
[  514.547938][T19750] RAX: 0000000000000000 RBX: ffff888116aab618 RCX: 0000000000000001
[  514.555882][T19750] RDX: 0000000080000001 RSI: ffffffff83f30fbb RDI: 00000000ffffffff
[  514.564453][T19750] RBP: ffffc90002213e78 R08: 0000000000000001 R09: 0000000000000001
[  514.572657][T19750] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  514.580669][T19750] R13: ffffffff8362e540 R14: ffffc90002213e90 R15: 0000000000000000
[  514.588820][T19750] FS:  00007fa92300a700(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[  514.597875][T19750] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  514.604448][T19750] CR2: 00007f0127bf9000 CR3: 000000011637a005 CR4: 00000000001706e0
[  514.612439][T19750] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  514.621512][T19750] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  514.629507][T19750] Call Trace:
[  514.632778][T19750]  do_timer_settime+0xc1/0x120
[  514.637559][T19750]  __x64_sys_timer_settime+0x6b/0xd0
[  514.642872][T19750]  ? syscall_enter_from_user_mode+0x1c/0x60
[  514.648823][T19750]  do_syscall_64+0x2d/0x70
[  514.653237][T19750]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  514.659139][T19750] RIP: 0033:0x4468e9
[  514.663007][T19750] Code: e8 5c b3 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  514.682622][T19750] RSP: 002b:00007fa923009db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[  514.691044][T19750] RAX: ffffffffffffffda RBX: 00000000006dbc38 RCX: 00000000004468e9
[  514.699029][T19750] RDX: 0000000020000300 RSI: 0000000000000000 RDI: 0000000000000000
[  514.707011][T19750] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000
[  514.714957][T19750] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c
[  514.723364][T19750] R13: 00007ffc3eb28eff R14: 00007fa92300a9c0 R15: 20c49ba5e353f7cf
[  514.731403][T19750] Kernel panic - not syncing: panic_on_warn set ...
[  514.737986][T19750] CPU: 1 PID: 19750 Comm: syz-executor934 Not tainted 5.10.0-rc6-syzkaller #0
[  514.746795][T19750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  514.756818][T19750] Call Trace:
[  514.760074][T19750]  dump_stack+0xa3/0xc8
[  514.764207][T19750]  panic+0x135/0x31a
[  514.768093][T19750]  ? timer_wait_running+0x10f/0x120
[  514.773450][T19750]  __warn.cold.13+0x16/0x20
[  514.777934][T19750]  ? timer_wait_running+0x10f/0x120
[  514.783101][T19750]  report_bug+0xc0/0xf0
[  514.787228][T19750]  handle_bug+0x35/0x90
[  514.791363][T19750]  exc_invalid_op+0x13/0x60
[  514.795837][T19750]  asm_exc_invalid_op+0x12/0x20
[  514.800655][T19750] RIP: 0010:timer_wait_running+0x10f/0x120
[  514.806425][T19750] Code: 0f 85 6a ff ff ff 48 c7 c2 68 c2 e8 83 be 83 02 00 00 48 c7 c7 98 bf e8 83 c6 05 6a 4b 46 03 01 e8 42 9d d6 01 e9 46 ff ff ff <0f> 0b e9 5d ff ff ff 66 2e 0f 1f 84 00 00 00 00 00 41 54 55 53 48
[  514.826009][T19750] RSP: 0018:ffffc90002213e58 EFLAGS: 00010246
[  514.832041][T19750] RAX: 0000000000000000 RBX: ffff888116aab618 RCX: 0000000000000001
[  514.839981][T19750] RDX: 0000000080000001 RSI: ffffffff83f30fbb RDI: 00000000ffffffff
[  514.847935][T19750] RBP: ffffc90002213e78 R08: 0000000000000001 R09: 0000000000000001
[  514.855878][T19750] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000
[  514.863922][T19750] R13: ffffffff8362e540 R14: ffffc90002213e90 R15: 0000000000000000
[  514.871873][T19750]  ? timer_wait_running+0x61/0x120
[  514.876950][T19750]  do_timer_settime+0xc1/0x120
[  514.881685][T19750]  __x64_sys_timer_settime+0x6b/0xd0
[  514.886960][T19750]  ? syscall_enter_from_user_mode+0x1c/0x60
[  514.892829][T19750]  do_syscall_64+0x2d/0x70
[  514.897350][T19750]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  514.903214][T19750] RIP: 0033:0x4468e9
[  514.907076][T19750] Code: e8 5c b3 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 8b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00
[  514.926658][T19750] RSP: 002b:00007fa923009db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000df
[  514.935034][T19750] RAX: ffffffffffffffda RBX: 00000000006dbc38 RCX: 00000000004468e9
[  514.943060][T19750] RDX: 0000000020000300 RSI: 0000000000000000 RDI: 0000000000000000
[  514.951061][T19750] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000
[  514.959008][T19750] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c
[  514.966948][T19750] R13: 00007ffc3eb28eff R14: 00007fa92300a9c0 R15: 20c49ba5e353f7cf
[  514.976497][T19750] Kernel Offset: disabled
[  514.980983][T19750] Rebooting in 86400 seconds..