Warning: Permanently added '10.128.10.30' (ED25519) to the list of known hosts. 1970/01/01 00:00:56 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:56 parsed 1 programs [ 56.841494][ T6443] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:00:56 executed programs: 0 [ 56.878667][ T5663] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 56.880802][ T5663] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 56.883134][ T5663] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 56.885649][ T5663] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 56.887696][ T5663] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 56.889497][ T5663] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 56.956846][ T6451] chnl_net:caif_netlink_parms(): no params data found [ 56.984105][ T6451] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.985726][ T6451] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.987374][ T6451] bridge_slave_0: entered allmulticast mode [ 56.989756][ T6451] bridge_slave_0: entered promiscuous mode [ 56.993107][ T6451] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.994752][ T6451] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.996348][ T6451] bridge_slave_1: entered allmulticast mode [ 56.998047][ T6451] bridge_slave_1: entered promiscuous mode [ 57.009929][ T6451] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.013398][ T6451] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.026148][ T6451] team0: Port device team_slave_0 added [ 57.028634][ T6451] team0: Port device team_slave_1 added [ 57.038717][ T6451] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.040228][ T6451] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.045994][ T6451] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.049565][ T6451] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.051123][ T6451] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.056756][ T6451] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.132873][ T6451] hsr_slave_0: entered promiscuous mode [ 57.171685][ T6451] hsr_slave_1: entered promiscuous mode [ 58.013262][ T6451] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.056575][ T6451] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.084204][ T6451] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.153615][ T6451] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.247233][ T6451] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.257470][ T6451] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.263735][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.265285][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.271965][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.273555][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.286395][ T6451] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.288733][ T6451] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.367361][ T6451] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.390027][ T6451] veth0_vlan: entered promiscuous mode [ 58.395060][ T6451] veth1_vlan: entered promiscuous mode [ 58.412327][ T6451] veth0_macvtap: entered promiscuous mode [ 58.415264][ T6451] veth1_macvtap: entered promiscuous mode [ 58.426667][ T6451] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.434404][ T6451] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.438673][ T6451] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.440714][ T6451] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.444640][ T6451] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.446504][ T6451] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.484379][ T1920] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.486133][ T1920] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.500537][ T1920] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.504241][ T1920] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.982100][ T5663] Bluetooth: hci0: command 0x0409 tx timeout [ 60.260275][ T6612] ------------[ cut here ]------------ [ 60.261755][ T6612] ODEBUG: free active (active state 0) object: 000000004ad6f07b object type: work_struct hint: hci_conn_timeout+0x0/0x1e8 [ 60.264755][ T6612] WARNING: CPU: 1 PID: 6612 at lib/debugobjects.c:517 debug_check_no_obj_freed+0x41c/0x534 [ 60.266901][ T6612] Modules linked in: [ 60.267710][ T6612] CPU: 1 PID: 6612 Comm: syz-executor.0 Not tainted 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c-dirty #0 [ 60.269950][ T6612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 60.272239][ T6612] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.273984][ T6612] pc : debug_check_no_obj_freed+0x41c/0x534 [ 60.275228][ T6612] lr : debug_check_no_obj_freed+0x41c/0x534 [ 60.276643][ T6612] sp : ffff800097057960 [ 60.277504][ T6612] x29: ffff8000970579b0 x28: ffff80008a8710a0 x27: dfff800000000000 [ 60.279349][ T6612] x26: ffff0000c6644348 x25: 0000000000000000 x24: ffff800092a17c98 [ 60.281221][ T6612] x23: ffff80008a8710a0 x22: ffff0000c6644348 x21: ffff800092a17c90 [ 60.283094][ T6612] x20: ffff80008ad65078 x19: ffff0000c6644000 x18: ffff800097056e60 [ 60.284915][ T6612] x17: 626f206237306636 x16: ffff80008a71b27c x15: 0000000000000001 [ 60.286734][ T6612] x14: 1fffe00036833432 x13: 0000000000000000 x12: 0000000000000000 [ 60.288493][ T6612] x11: 0000000000000001 x10: 0000000000000000 x9 : e8b2fd3c26f6bd00 [ 60.290392][ T6612] x8 : e8b2fd3c26f6bd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 60.292258][ T6612] x5 : ffff800097057258 x4 : ffff80008e4210a0 x3 : ffff8000805a359c [ 60.294019][ T6612] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000 [ 60.295811][ T6612] Call trace: [ 60.296555][ T6612] debug_check_no_obj_freed+0x41c/0x534 [ 60.297808][ T6612] __kmem_cache_free+0x250/0x480 [ 60.298990][ T6612] kfree+0xb8/0x19c [ 60.299793][ T6612] bt_link_release+0x20/0x30 [ 60.300824][ T6612] device_release+0x8c/0x1ac [ 60.301879][ T6612] kobject_put+0x1c4/0x3c4 [ 60.302944][ T6612] put_device+0x28/0x40 [ 60.303865][ T6612] __sco_sock_close+0x3dc/0x7e4 [ 60.304908][ T6612] sco_sock_release+0xb4/0x2c0 [ 60.305975][ T6612] sock_close+0xa4/0x1e8 [ 60.306931][ T6612] __fput+0x324/0x7f8 [ 60.307819][ T6612] __fput_sync+0x60/0x9c [ 60.308738][ T6612] __arm64_sys_close+0x150/0x1e0 [ 60.309877][ T6612] invoke_syscall+0x98/0x2b8 [ 60.310878][ T6612] el0_svc_common+0x130/0x23c [ 60.311973][ T6612] do_el0_svc+0x48/0x58 [ 60.312945][ T6612] el0_svc+0x54/0x158 [ 60.313812][ T6612] el0t_64_sync_handler+0x84/0xfc [ 60.314981][ T6612] el0t_64_sync+0x190/0x194 [ 60.315978][ T6612] irq event stamp: 15314 [ 60.316899][ T6612] hardirqs last enabled at (15313): [] console_unlock+0x17c/0x3d4 [ 60.318956][ T6612] hardirqs last disabled at (15314): [] el1_dbg+0x24/0x80 [ 60.320913][ T6612] softirqs last enabled at (15298): [] __do_softirq+0xac0/0xd54 [ 60.323087][ T6612] softirqs last disabled at (15287): [] ____do_softirq+0x14/0x20 [ 60.325188][ T6612] ---[ end trace 0000000000000000 ]--- [ 60.326785][ T6612] BUG: sleeping function called from invalid context at kernel/workqueue.c:3344 [ 60.328912][ T6612] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6612, name: syz-executor.0 [ 60.331062][ T6612] preempt_count: 1, expected: 0 [ 60.332471][ T6612] RCU nest depth: 0, expected: 0 [ 60.333516][ T6612] 3 locks held by syz-executor.0/6612: [ 60.334742][ T6612] #0: ffff0000df81c410 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x80/0x1e8 [ 60.337031][ T6612] #1: ffff0000c8dca130 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_sock_release+0x60/0x2c0 [ 60.339562][ T6612] #2: ffff0000c6413620 (&conn->lock#2){+.+.}-{2:2}, at: __sco_sock_close+0x378/0x7e4 [ 60.341773][ T6612] Preemption disabled at: [ 60.341783][ T6612] [] __sco_sock_close+0x378/0x7e4 [ 60.344273][ T6612] CPU: 1 PID: 6612 Comm: syz-executor.0 Tainted: G W 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c-dirty #0 [ 60.347042][ T6612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 60.349341][ T6612] Call trace: [ 60.350062][ T6612] dump_backtrace+0x1b8/0x1e4 [ 60.351141][ T6612] show_stack+0x2c/0x44 [ 60.352094][ T6612] dump_stack_lvl+0xd0/0x124 [ 60.353262][ T6612] dump_stack+0x1c/0x28 [ 60.354200][ T6612] __might_resched+0x374/0x4d0 [ 60.355298][ T6612] __might_sleep+0x90/0xe4 [ 60.356321][ T6612] start_flush_work+0x44/0x7bc [ 60.357518][ T6612] __flush_work+0x11c/0x1c0 [ 60.358636][ T6612] __cancel_work_timer+0x3e4/0x540 [ 60.359777][ T6612] work_fixup_free+0x40/0x70 [ 60.360848][ T6612] debug_check_no_obj_freed+0x464/0x534 [ 60.362192][ T6612] __kmem_cache_free+0x250/0x480 [ 60.363375][ T6612] kfree+0xb8/0x19c [ 60.364195][ T6612] bt_link_release+0x20/0x30 [ 60.365221][ T6612] device_release+0x8c/0x1ac [ 60.366280][ T6612] kobject_put+0x1c4/0x3c4 [ 60.367308][ T6612] put_device+0x28/0x40 [ 60.368247][ T6612] __sco_sock_close+0x3dc/0x7e4 [ 60.369376][ T6612] sco_sock_release+0xb4/0x2c0 [ 60.370439][ T6612] sock_close+0xa4/0x1e8 [ 60.371473][ T6612] __fput+0x324/0x7f8 [ 60.372454][ T6612] __fput_sync+0x60/0x9c [ 60.373414][ T6612] __arm64_sys_close+0x150/0x1e0 [ 60.374503][ T6612] invoke_syscall+0x98/0x2b8 [ 60.375590][ T6612] el0_svc_common+0x130/0x23c [ 60.376658][ T6612] do_el0_svc+0x48/0x58 [ 60.377607][ T6612] el0_svc+0x54/0x158 [ 60.378595][ T6612] el0t_64_sync_handler+0x84/0xfc [ 60.379719][ T6612] el0t_64_sync+0x190/0x194 [ 61.062086][ T5663] Bluetooth: hci0: command 0x041b tx timeout 1970/01/01 00:01:02 executed programs: 2 [ 63.141309][ T5663] Bluetooth: hci0: command 0x040f tx timeout [ 64.038595][ T6811] ------------[ cut here ]------------ [ 64.039825][ T6811] ODEBUG: free active (active state 0) object: 000000006ea10e7e object type: work_struct hint: hci_conn_timeout+0x0/0x1e8 [ 64.043057][ T6811] WARNING: CPU: 0 PID: 6811 at lib/debugobjects.c:517 debug_check_no_obj_freed+0x41c/0x534 [ 64.045105][ T6811] Modules linked in: [ 64.045918][ T6811] CPU: 0 PID: 6811 Comm: syz-executor.0 Tainted: G W 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c-dirty #0 [ 64.048622][ T6811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 64.050821][ T6811] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.052453][ T6811] pc : debug_check_no_obj_freed+0x41c/0x534 [ 64.053810][ T6811] lr : debug_check_no_obj_freed+0x41c/0x534 [ 64.055072][ T6811] sp : ffff800096c07960 [ 64.055985][ T6811] x29: ffff800096c079b0 x28: ffff80008a8710a0 x27: dfff800000000000 [ 64.057748][ T6811] x26: ffff0001ffa68348 x25: 0000000000000000 x24: ffff8000929b17b8 [ 64.059500][ T6811] x23: ffff80008a8710a0 x22: ffff0001ffa68348 x21: ffff8000929b17b0 [ 64.061269][ T6811] x20: ffff80008ad65078 x19: ffff0001ffa68000 x18: 0000000000000000 [ 64.063066][ T6811] x17: 626f206537653031 x16: ffff80008a668940 x15: 0000000000000001 [ 64.064915][ T6811] x14: 1ffff00012d80e48 x13: 0000000000000000 x12: 0000000000000000 [ 64.066672][ T6811] x11: 0000000000000001 x10: 0000000000000000 x9 : bc76548353a42500 [ 64.068366][ T6811] x8 : bc76548353a42500 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.070247][ T6811] x5 : ffff800096c07258 x4 : ffff80008e4210a0 x3 : ffff8000803639bc [ 64.071934][ T6811] x2 : 0000000000000001 x1 : 0000000100000001 x0 : 0000000000000000 [ 64.073701][ T6811] Call trace: [ 64.074459][ T6811] debug_check_no_obj_freed+0x41c/0x534 [ 64.075776][ T6811] __kmem_cache_free+0x1d4/0x480 [ 64.076923][ T6811] kfree+0xb8/0x19c [ 64.077791][ T6811] bt_link_release+0x20/0x30 [ 64.078789][ T6811] device_release+0x8c/0x1ac [ 64.079858][ T6811] kobject_put+0x1c4/0x3c4 [ 64.080893][ T6811] put_device+0x28/0x40 [ 64.081786][ T6811] __sco_sock_close+0x3dc/0x7e4 [ 64.082861][ T6811] sco_sock_release+0xb4/0x2c0 [ 64.083918][ T6811] sock_close+0xa4/0x1e8 [ 64.084972][ T6811] __fput+0x324/0x7f8 [ 64.085848][ T6811] __fput_sync+0x60/0x9c [ 64.086825][ T6811] __arm64_sys_close+0x150/0x1e0 [ 64.087932][ T6811] invoke_syscall+0x98/0x2b8 [ 64.088948][ T6811] el0_svc_common+0x130/0x23c [ 64.089958][ T6811] do_el0_svc+0x48/0x58 [ 64.090911][ T6811] el0_svc+0x54/0x158 [ 64.091825][ T6811] el0t_64_sync_handler+0x84/0xfc [ 64.093063][ T6811] el0t_64_sync+0x190/0x194 [ 64.094177][ T6811] irq event stamp: 14540 [ 64.095099][ T6811] hardirqs last enabled at (14539): [] console_unlock+0x17c/0x3d4 [ 64.097152][ T6811] hardirqs last disabled at (14540): [] el1_dbg+0x24/0x80 [ 64.099210][ T6811] softirqs last enabled at (14534): [] __do_softirq+0xac0/0xd54 [ 64.101324][ T6811] softirqs last disabled at (14509): [] ____do_softirq+0x14/0x20 [ 64.103400][ T6811] ---[ end trace 0000000000000000 ]--- [ 64.104709][ T6811] BUG: sleeping function called from invalid context at kernel/workqueue.c:3344 [ 64.106695][ T6811] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6811, name: syz-executor.0 [ 64.108713][ T6811] preempt_count: 1, expected: 0 [ 64.109824][ T6811] RCU nest depth: 0, expected: 0 [ 64.110876][ T6811] 3 locks held by syz-executor.0/6811: [ 64.112149][ T6811] #0: ffff0000df91b810 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x80/0x1e8 [ 64.114446][ T6811] #1: ffff0000d45b6130 (sk_lock-AF_BLUETOOTH-BTPROTO_SCO){+.+.}-{0:0}, at: sco_sock_release+0x60/0x2c0 [ 64.116956][ T6811] #2: ffff0000d15d8e20 (&conn->lock#2){+.+.}-{2:2}, at: __sco_sock_close+0x378/0x7e4 [ 64.118973][ T6811] Preemption disabled at: [ 64.118982][ T6811] [] __sco_sock_close+0x378/0x7e4 [ 64.121377][ T6811] CPU: 0 PID: 6811 Comm: syz-executor.0 Tainted: G W 6.6.0-rc7-syzkaller-00089-g8de1e7afcc1c-dirty #0 [ 64.124004][ T6811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 64.126161][ T6811] Call trace: [ 64.126878][ T6811] dump_backtrace+0x1b8/0x1e4 [ 64.127893][ T6811] show_stack+0x2c/0x44 [ 64.128842][ T6811] dump_stack_lvl+0xd0/0x124 [ 64.129852][ T6811] dump_stack+0x1c/0x28 [ 64.130785][ T6811] __might_resched+0x374/0x4d0 [ 64.131841][ T6811] __might_sleep+0x90/0xe4 [ 64.132848][ T6811] start_flush_work+0x44/0x7bc [ 64.133866][ T6811] __flush_work+0x11c/0x1c0 [ 64.134866][ T6811] __cancel_work_timer+0x3e4/0x540 [ 64.136005][ T6811] work_fixup_free+0x40/0x70 [ 64.136970][ T6811] debug_check_no_obj_freed+0x464/0x534 [ 64.138211][ T6811] __kmem_cache_free+0x1d4/0x480 [ 64.139323][ T6811] kfree+0xb8/0x19c [ 64.140167][ T6811] bt_link_release+0x20/0x30 [ 64.141205][ T6811] device_release+0x8c/0x1ac [ 64.142244][ T6811] kobject_put+0x1c4/0x3c4 [ 64.143274][ T6811] put_device+0x28/0x40 [ 64.144242][ T6811] __sco_sock_close+0x3dc/0x7e4 [ 64.145303][ T6811] sco_sock_release+0xb4/0x2c0 [ 64.146343][ T6811] sock_close+0xa4/0x1e8 [ 64.147279][ T6811] __fput+0x324/0x7f8 [ 64.148188][ T6811] __fput_sync+0x60/0x9c [ 64.149147][ T6811] __arm64_sys_close+0x150/0x1e0 [ 64.150261][ T6811] invoke_syscall+0x98/0x2b8 [ 64.151313][ T6811] el0_svc_common+0x130/0x23c [ 64.152299][ T6811] do_el0_svc+0x48/0x58 [ 64.153296][ T6811] el0_svc+0x54/0x158 [ 64.154191][ T6811] el0t_64_sync_handler+0x84/0xfc [ 64.155348][ T6811] el0t_64_sync+0x190/0x194 [ 64.572785][ T2214] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.574360][ T2214] ieee802154 phy1 wpan1: encryption failed: -22 [ 65.211369][ T5663] Bluetooth: hci0: command 0x0419 tx timeout [ 67.301300][ T5663] Bluetooth: hci0: command 0x0407 tx timeout 1970/01/01 00:01:07 executed programs: 6 [ 69.371336][ T5663] Bluetooth: hci0: command 0x0405 tx timeout [ 69.692380][ T25] cfg80211: failed to load regulatory.db