[ 48.713806][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.728505][ T8] device veth1_macvtap left promiscuous mode [ 48.735332][ T8] device veth0_macvtap left promiscuous mode [ 48.741463][ T8] device veth1_vlan left promiscuous mode [ 48.747425][ T8] device veth0_vlan left promiscuous mode [ 48.858010][ T8] team0 (unregistering): Port device team_slave_1 removed [ 48.869875][ T8] team0 (unregistering): Port device team_slave_0 removed [ 48.886409][ T8] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 48.899478][ T8] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 48.945191][ T8] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.1.92' (ECDSA) to the list of known hosts. [ 64.797929][ T4072] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.806495][ T4072] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.818405][ T4081] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.828930][ T4081] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.836170][ T4082] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.837093][ T4081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.843857][ T4082] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.851833][ T4081] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.858699][ T4082] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.867248][ T4081] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 64.872730][ T4082] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.879152][ T4081] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.886408][ T4082] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.893712][ T4081] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.902051][ T4084] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.908755][ T4081] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.915069][ T4084] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.929382][ T4084] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.929534][ T4081] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 64.936636][ T4084] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 64.944228][ T4081] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 64.953551][ T4084] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 64.959379][ T4081] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 64.965717][ T4084] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 64.974613][ T4081] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 64.979668][ T4084] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 64.987256][ T4081] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.001150][ T47] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.008681][ T47] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.016138][ T47] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 65.037555][ T47] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.045225][ T47] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.058440][ T47] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 65.065706][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.073709][ T3607] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 65.081047][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.022150][ T2926] Bluetooth: hci3: command 0x0409 tx timeout [ 67.102303][ T141] Bluetooth: hci5: command 0x0409 tx timeout [ 67.110823][ T141] Bluetooth: hci1: command 0x0409 tx timeout [ 67.111644][ T2926] Bluetooth: hci2: command 0x0409 tx timeout [ 67.129681][ T2926] Bluetooth: hci4: command 0x0409 tx timeout [ 67.191586][ T2926] Bluetooth: hci0: command 0x0409 tx timeout [ 69.111681][ T2926] Bluetooth: hci3: command 0x041b tx timeout [ 69.181550][ T141] Bluetooth: hci1: command 0x041b tx timeout [ 69.183446][ T2926] Bluetooth: hci4: command 0x041b tx timeout [ 69.188772][ T141] Bluetooth: hci5: command 0x041b tx timeout [ 69.195669][ T2926] Bluetooth: hci2: command 0x041b tx timeout [ 69.271580][ T2926] Bluetooth: hci0: command 0x041b tx timeout [ 71.191474][ T2926] Bluetooth: hci3: command 0x040f tx timeout [ 71.274413][ T143] cfg80211: failed to load regulatory.db [ 71.281080][ T143] Bluetooth: hci2: command 0x040f tx timeout [ 71.312306][ T143] Bluetooth: hci5: command 0x040f tx timeout [ 71.319914][ T143] Bluetooth: hci4: command 0x040f tx timeout [ 71.334466][ T143] Bluetooth: hci1: command 0x040f tx timeout [ 71.351243][ T143] Bluetooth: hci0: command 0x040f tx timeout [ 73.272318][ T143] Bluetooth: hci3: command 0x0419 tx timeout [ 73.352697][ T143] Bluetooth: hci1: command 0x0419 tx timeout [ 73.360976][ T143] Bluetooth: hci4: command 0x0419 tx timeout [ 73.376369][ T143] Bluetooth: hci5: command 0x0419 tx timeout [ 73.383943][ T143] Bluetooth: hci2: command 0x0419 tx timeout [ 73.421649][ T143] Bluetooth: hci0: command 0x0419 tx timeout [ 75.351510][ T143] Bluetooth: hci3: command 0x0405 tx timeout [ 75.421736][ T143] Bluetooth: hci5: command 0x0405 tx timeout [ 162.491551][ T2925] general protection fault, probably for non-canonical address 0xdffffc000000005a: 0000 [#1] PREEMPT SMP KASAN [ 162.503731][ T2925] KASAN: null-ptr-deref in range [0x00000000000002d0-0x00000000000002d7] [ 162.512238][ T2925] CPU: 1 PID: 2925 Comm: kworker/1:3 Not tainted 5.18.0-rc2-syzkaller #0 [ 162.520634][ T2925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 162.530842][ T2925] Workqueue: events l2cap_chan_timeout [ 162.536409][ T2925] RIP: 0010:__mutex_lock+0xec/0x12f0 [ 162.541759][ T2925] Code: d0 7c 08 84 d2 0f 85 65 0f 00 00 8b 15 5d 17 b0 06 85 d2 75 29 48 8d 7d 60 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 5e 0f 00 00 48 3b 6d 60 0f 85 90 08 00 00 bf 01 [ 162.561975][ T2925] RSP: 0018:ffffc9000b17fb98 EFLAGS: 00010206 [ 162.568016][ T2925] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 162.576043][ T2925] RDX: 000000000000005a RSI: ffffffff88eb8d00 RDI: 00000000000002d0 [ 162.583995][ T2925] RBP: 0000000000000270 R08: ffffffff878a4a2c R09: ffffffff8ca2cbd7 [ 162.591959][ T2925] R10: fffffbfff194597a R11: 0000000000000001 R12: 0000000000000000 [ 162.599998][ T2925] R13: dffffc0000000000 R14: ffff88807cfd4020 R15: 0000000000000001 [ 162.607939][ T2925] FS: 0000000000000000(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 162.616893][ T2925] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 162.623450][ T2925] CR2: 0000000020000140 CR3: 0000000023de6000 CR4: 00000000003506e0 [ 162.631683][ T2925] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 162.639638][ T2925] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 162.647578][ T2925] Call Trace: [ 162.650859][ T2925] [ 162.653766][ T2925] ? l2cap_chan_timeout+0x5c/0x280 [ 162.659025][ T2925] ? mutex_lock_io_nested+0x1150/0x1150 [ 162.664558][ T2925] ? lock_acquire+0x1ab/0x510 [ 162.669306][ T2925] ? lock_release+0x720/0x720 [ 162.673949][ T2925] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 162.680081][ T2925] l2cap_chan_timeout+0x5c/0x280 [ 162.685003][ T2925] process_one_work+0x841/0x13a0 [ 162.689919][ T2925] ? lock_release+0x720/0x720 [ 162.694648][ T2925] ? pwq_dec_nr_in_flight+0x230/0x230 [ 162.700341][ T2925] ? rwlock_bug.part.0+0x90/0x90 [ 162.705251][ T2925] ? _raw_spin_lock_irq+0x41/0x50 [ 162.710420][ T2925] worker_thread+0x598/0xec0 [ 162.714981][ T2925] ? process_one_work+0x13a0/0x13a0 [ 162.720151][ T2925] kthread+0x299/0x340 [ 162.724296][ T2925] ? kthread_complete_and_exit+0x20/0x20 [ 162.729895][ T2925] ret_from_fork+0x1f/0x30 [ 162.734372][ T2925] [ 162.737481][ T2925] Modules linked in: [ 162.749368][ T2925] ---[ end trace 0000000000000000 ]--- [ 162.755211][ T2925] RIP: 0010:__mutex_lock+0xec/0x12f0 [ 162.760580][ T2925] Code: d0 7c 08 84 d2 0f 85 65 0f 00 00 8b 15 5d 17 b0 06 85 d2 75 29 48 8d 7d 60 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 5e 0f 00 00 48 3b 6d 60 0f 85 90 08 00 00 bf 01 [ 162.782281][ T2925] RSP: 0018:ffffc9000b17fb98 EFLAGS: 00010206 [ 162.788608][ T2925] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000001 [ 162.796794][ T2925] RDX: 000000000000005a RSI: ffffffff88eb8d00 RDI: 00000000000002d0 [ 162.810800][ T2925] RBP: 0000000000000270 R08: ffffffff878a4a2c R09: ffffffff8ca2cbd7 [ 162.819010][ T2925] R10: fffffbfff194597a R11: 0000000000000001 R12: 0000000000000000 [ 162.829293][ T2925] R13: dffffc0000000000 R14: ffff88807cfd4020 R15: 0000000000000001 [ 162.839649][ T2925] FS: 0000000000000000(0000) GS:ffff8880b9f00000(0000) knlGS:0000000000000000 [ 162.849080][ T2925] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 162.856891][ T2925] CR2: 0000000020000140 CR3: 00000000193c5000 CR4: 00000000003506e0 [ 162.866822][ T2925] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 162.877735][ T2925] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 162.886687][ T2925] Kernel panic - not syncing: Fatal exception [ 162.893401][ T2925] Kernel Offset: disabled [ 162.897709][ T2925] Rebooting in 86400 seconds..