[ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.4' (ECDSA) to the list of known hosts. syzkaller login: [ 64.797895][ T6840] IPVS: ftp: loaded support on port[0] = 21 [ 64.826524][ T6842] IPVS: ftp: loaded support on port[0] = 21 [ 64.826982][ T6844] IPVS: ftp: loaded support on port[0] = 21 executing program [ 64.860652][ T6845] IPVS: ftp: loaded support on port[0] = 21 [ 64.870953][ T6837] IPVS: ftp: loaded support on port[0] = 21 [ 64.899382][ T6843] IPVS: ftp: loaded support on port[0] = 21 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 66.839086][ T48] Bluetooth: hci4: command 0x0409 tx timeout [ 66.839329][ T6851] Bluetooth: hci1: command 0x0409 tx timeout [ 66.845511][ T48] Bluetooth: hci0: command 0x0409 tx timeout [ 66.859772][ T6851] Bluetooth: hci5: command 0x0409 tx timeout [ 66.866046][ T6851] Bluetooth: hci3: command 0x0409 tx timeout [ 66.918348][ T48] Bluetooth: hci2: command 0x0409 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 68.918758][ T6851] Bluetooth: hci3: command 0x041b tx timeout [ 68.949519][ T6851] Bluetooth: hci5: command 0x041b tx timeout [ 68.957619][ T6851] Bluetooth: hci1: command 0x041b tx timeout [ 68.964122][ T6851] Bluetooth: hci4: command 0x041b tx timeout [ 68.997238][ T6851] Bluetooth: hci2: command 0x041b tx timeout [ 69.003899][ T6851] Bluetooth: hci0: command 0x041b tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 71.000235][ T6851] Bluetooth: hci4: command 0x040f tx timeout [ 71.022121][ T6851] Bluetooth: hci1: command 0x040f tx timeout [ 71.029269][ T6851] Bluetooth: hci5: command 0x040f tx timeout [ 71.035578][ T6851] Bluetooth: hci3: command 0x040f tx timeout executing program executing program executing program executing program executing program [ 71.077050][ T6851] Bluetooth: hci0: command 0x040f tx timeout [ 71.097574][ T6851] Bluetooth: hci2: command 0x040f tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 73.078021][ T6851] Bluetooth: hci3: command 0x0419 tx timeout [ 73.099392][ T6851] Bluetooth: hci5: command 0x0419 tx timeout [ 73.106965][ T6851] Bluetooth: hci1: command 0x0419 tx timeout [ 73.113410][ T6851] Bluetooth: hci4: command 0x0419 tx timeout executing program executing program executing program executing program executing program executing program [ 73.156864][ T6851] Bluetooth: hci2: command 0x0419 tx timeout [ 73.164057][ T6851] Bluetooth: hci0: command 0x0419 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 78.406567][T13271] ------------[ cut here ]------------ [ 78.412073][T13271] ODEBUG: free active (active state 1) object type: rcu_head hint: 0x0 [ 78.420756][T13271] WARNING: CPU: 0 PID: 13271 at lib/debugobjects.c:485 debug_print_object+0x160/0x250 [ 78.430578][T13271] Kernel panic - not syncing: panic_on_warn set ... [ 78.437172][T13271] CPU: 0 PID: 13271 Comm: syz-executor977 Not tainted 5.9.0-rc2-syzkaller #0 [ 78.445921][T13271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 executing program [ 78.455973][T13271] Call Trace: [ 78.459273][T13271] dump_stack+0x18f/0x20d [ 78.463617][T13271] panic+0x2e3/0x75c [ 78.467519][T13271] ? __warn_printk+0xf3/0xf3 [ 78.472118][T13271] ? console_unlock+0x7f0/0xf30 [ 78.476968][T13271] ? __warn.cold+0x5/0x4a [ 78.481295][T13271] ? __warn+0xd6/0x1f2 [ 78.485365][T13271] ? debug_print_object+0x160/0x250 [ 78.490585][T13271] __warn.cold+0x20/0x4a [ 78.494838][T13271] ? debug_print_object+0x160/0x250 [ 78.500125][T13271] report_bug+0x1bd/0x210 [ 78.504463][T13271] handle_bug+0x38/0x90 [ 78.508619][T13271] ? __warn_printk+0xc6/0xf3 [ 78.513237][T13271] exc_invalid_op+0x14/0x40 [ 78.517741][T13271] asm_exc_invalid_op+0x12/0x20 [ 78.522601][T13271] RIP: 0010:debug_print_object+0x160/0x250 [ 78.526970][T13233] ------------[ cut here ]------------ [ 78.528403][T13271] Code: dd e0 26 94 88 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd e0 26 94 88 48 c7 c7 40 1c 94 88 e8 82 3b a6 fd <0f> 0b 83 05 83 54 13 07 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 [ 78.533842][T13233] ODEBUG: free active (active state 1) object type: rcu_head hint: 0x0 [ 78.554025][T13271] RSP: 0018:ffffc9000cfc7dd0 EFLAGS: 00010082 [ 78.562791][T13233] WARNING: CPU: 1 PID: 13233 at lib/debugobjects.c:485 debug_print_object+0x160/0x250 [ 78.568411][T13271] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 78.578042][T13233] Modules linked in: [ 78.586002][T13271] RDX: ffff8880a102c440 RSI: ffffffff815dafc7 RDI: fffff520019f8fac [ 78.589873][T13233] CPU: 1 PID: 13233 Comm: syz-executor977 Not tainted 5.9.0-rc2-syzkaller #0 [ 78.597822][T13271] RBP: 0000000000000001 R08: 0000000000000001 R09: ffff8880ae620f8b [ 78.606573][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 78.614528][T13271] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff89bd6780 [ 78.614542][T13271] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000 [ 78.624682][T13233] RIP: 0010:debug_print_object+0x160/0x250 [ 78.632631][T13271] ? vprintk_func+0x97/0x1a6 [ 78.641358][T13233] Code: dd e0 26 94 88 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd e0 26 94 88 48 c7 c7 40 1c 94 88 e8 82 3b a6 fd <0f> 0b 83 05 83 54 13 07 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 [ 78.647157][T13271] debug_check_no_obj_freed+0x301/0x41c [ 78.651715][T13233] RSP: 0018:ffffc9000e5a7dd0 EFLAGS: 00010082 [ 78.671339][T13271] kmem_cache_free.part.0+0x16d/0x1f0 [ 78.676869][T13233] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 78.682912][T13271] task_work_run+0xdd/0x190 [ 78.688255][T13233] RDX: ffff88809a280480 RSI: ffffffff815dafc7 RDI: fffff52001cb4fac [ 78.688271][T13233] RBP: 0000000000000002 R08: 0000000000000001 R09: ffff8880ae720f8b [ 78.696261][T13271] exit_to_user_mode_prepare+0x195/0x1c0 [ 78.700738][T13233] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff89bd6780 [ 78.700752][T13233] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000 [ 78.708712][T13271] syscall_exit_to_user_mode+0x59/0x2b0 [ 78.716657][T13233] FS: 00007f6b1b127700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 78.722281][T13271] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 78.730319][T13233] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.738388][T13271] RIP: 0033:0x447239 [ 78.743898][T13233] CR2: 00007f6b1b105e78 CR3: 00000000a066e000 CR4: 00000000001506e0 [ 78.743912][T13233] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.753186][T13271] Code: e8 4c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 78.759051][T13233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.765603][T13271] RSP: 002b:00007f6b1b126db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 78.769479][T13233] Call Trace: [ 78.777531][T13271] RAX: 0000000000000000 RBX: 00000000006dcc68 RCX: 0000000000447239 [ 78.777547][T13271] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 78.785536][T13233] debug_check_no_obj_freed+0x301/0x41c [ 78.805115][T13271] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000 [ 78.805131][T13271] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000006dcc6c [ 78.813107][T13233] kmem_cache_free.part.0+0x16d/0x1f0 [ 78.821553][T13271] R13: 00007ffda036dd9f R14: 00007f6b1b1279c0 R15: 0000000000000000 [ 78.876065][T13233] task_work_run+0xdd/0x190 [ 78.880560][T13233] exit_to_user_mode_prepare+0x195/0x1c0 [ 78.886292][T13233] syscall_exit_to_user_mode+0x59/0x2b0 [ 78.892212][T13233] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 78.898397][T13233] RIP: 0033:0x447239 [ 78.902931][T13233] Code: e8 4c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 78.922523][T13233] RSP: 002b:00007f6b1b126db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 78.930921][T13233] RAX: 0000000000000000 RBX: 00000000006dcc68 RCX: 0000000000447239 [ 78.939063][T13233] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 78.948741][T13233] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000 [ 78.959503][T13233] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000006dcc6c [ 78.967656][T13233] R13: 00007ffda036dd9f R14: 00007f6b1b1279c0 R15: 0000000000000000 [ 78.975634][T13233] irq event stamp: 1248 [ 78.979793][T13233] hardirqs last enabled at (1247): [] call_rcu+0x360/0x7e0 [ 78.988629][T13233] hardirqs last disabled at (1248): [] kmem_cache_free.part.0+0x3e/0x1f0 [ 78.999042][T13233] softirqs last enabled at (0): [] copy_process+0x1a99/0x6920 [ 79.008138][T13233] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 79.015227][T13233] ---[ end trace bc399e4eb10911ad ]--- [ 79.020821][T13233] ------------[ cut here ]------------ [ 79.026288][T13233] ODEBUG: free active (active state 1) object type: rcu_head hint: 0x0 [ 79.034937][T13233] WARNING: CPU: 1 PID: 13233 at lib/debugobjects.c:485 debug_print_object+0x160/0x250 [ 79.044680][T13233] Modules linked in: [ 79.048571][T13233] CPU: 1 PID: 13233 Comm: syz-executor977 Tainted: G W 5.9.0-rc2-syzkaller #0 [ 79.058715][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.068888][T13233] RIP: 0010:debug_print_object+0x160/0x250 [ 79.074798][T13233] Code: dd e0 26 94 88 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd e0 26 94 88 48 c7 c7 40 1c 94 88 e8 82 3b a6 fd <0f> 0b 83 05 83 54 13 07 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 [ 79.094576][T13233] RSP: 0018:ffffc9000e5a7dd0 EFLAGS: 00010082 [ 79.100813][T13233] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 79.108787][T13233] RDX: ffff88809a280480 RSI: ffffffff815dafc7 RDI: fffff52001cb4fac [ 79.116750][T13233] RBP: 0000000000000003 R08: 0000000000000001 R09: ffff8880ae720f8b [ 79.124710][T13233] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff89bd6780 [ 79.132686][T13233] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000 [ 79.140648][T13233] FS: 00007f6b1b127700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 79.149726][T13233] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.156309][T13233] CR2: 00007f6b1b105e78 CR3: 00000000a066e000 CR4: 00000000001506e0 [ 79.164278][T13233] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.172440][T13233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.180397][T13233] Call Trace: [ 79.183872][T13233] debug_check_no_obj_freed+0x301/0x41c [ 79.189412][T13233] kmem_cache_free.part.0+0x16d/0x1f0 [ 79.195031][T13233] task_work_run+0xdd/0x190 [ 79.199568][T13233] exit_to_user_mode_prepare+0x195/0x1c0 [ 79.205204][T13233] syscall_exit_to_user_mode+0x59/0x2b0 [ 79.210760][T13233] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 79.216651][T13233] RIP: 0033:0x447239 [ 79.220533][T13233] Code: e8 4c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 79.240417][T13233] RSP: 002b:00007f6b1b126db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 79.248816][T13233] RAX: 0000000000000000 RBX: 00000000006dcc68 RCX: 0000000000447239 [ 79.256780][T13233] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 79.264757][T13233] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000 [ 79.272753][T13233] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000006dcc6c [ 79.280721][T13233] R13: 00007ffda036dd9f R14: 00007f6b1b1279c0 R15: 0000000000000000 [ 79.288717][T13233] irq event stamp: 1248 [ 79.292878][T13233] hardirqs last enabled at (1247): [] call_rcu+0x360/0x7e0 [ 79.301715][T13233] hardirqs last disabled at (1248): [] kmem_cache_free.part.0+0x3e/0x1f0 [ 79.311688][T13233] softirqs last enabled at (0): [] copy_process+0x1a99/0x6920 [ 79.320798][T13233] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 79.327882][T13233] ---[ end trace bc399e4eb10911ae ]--- [ 79.333327][T13233] ------------[ cut here ]------------ [ 79.338786][T13233] ODEBUG: free active (active state 1) object type: rcu_head hint: 0x0 [ 79.347410][T13233] WARNING: CPU: 1 PID: 13233 at lib/debugobjects.c:485 debug_print_object+0x160/0x250 [ 79.357393][T13233] Modules linked in: [ 79.361279][T13233] CPU: 1 PID: 13233 Comm: syz-executor977 Tainted: G W 5.9.0-rc2-syzkaller #0 [ 79.371421][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.381471][T13233] RIP: 0010:debug_print_object+0x160/0x250 [ 79.387286][T13233] Code: dd e0 26 94 88 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd e0 26 94 88 48 c7 c7 40 1c 94 88 e8 82 3b a6 fd <0f> 0b 83 05 83 54 13 07 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 [ 79.407317][T13233] RSP: 0018:ffffc9000e5a7dd0 EFLAGS: 00010082 [ 79.413459][T13233] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 79.421534][T13233] RDX: ffff88809a280480 RSI: ffffffff815dafc7 RDI: fffff52001cb4fac [ 79.429642][T13233] RBP: 0000000000000004 R08: 0000000000000001 R09: ffff8880ae720f8b [ 79.437604][T13233] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff89bd6780 [ 79.445560][T13233] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000 [ 79.453527][T13233] FS: 00007f6b1b127700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 79.462543][T13233] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.469968][T13233] CR2: 00007f6b1b105e78 CR3: 00000000a066e000 CR4: 00000000001506e0 [ 79.477937][T13233] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.485940][T13233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.493981][T13233] Call Trace: [ 79.497290][T13233] debug_check_no_obj_freed+0x301/0x41c [ 79.502833][T13233] kmem_cache_free.part.0+0x16d/0x1f0 [ 79.508216][T13233] task_work_run+0xdd/0x190 [ 79.512710][T13233] exit_to_user_mode_prepare+0x195/0x1c0 [ 79.518349][T13233] syscall_exit_to_user_mode+0x59/0x2b0 [ 79.524038][T13233] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 79.529939][T13233] RIP: 0033:0x447239 [ 79.533822][T13233] Code: e8 4c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 79.554459][T13233] RSP: 002b:00007f6b1b126db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 79.562981][T13233] RAX: 0000000000000000 RBX: 00000000006dcc68 RCX: 0000000000447239 [ 79.571027][T13233] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 79.579074][T13233] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000 [ 79.588634][T13233] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000006dcc6c [ 79.596681][T13233] R13: 00007ffda036dd9f R14: 00007f6b1b1279c0 R15: 0000000000000000 [ 79.605516][T13233] irq event stamp: 1248 [ 79.609764][T13233] hardirqs last enabled at (1247): [] call_rcu+0x360/0x7e0 [ 79.618876][T13233] hardirqs last disabled at (1248): [] kmem_cache_free.part.0+0x3e/0x1f0 [ 79.628945][T13233] softirqs last enabled at (0): [] copy_process+0x1a99/0x6920 [ 79.638154][T13233] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 79.645253][T13233] ---[ end trace bc399e4eb10911af ]--- [ 79.650843][T13233] ------------[ cut here ]------------ [ 79.656300][T13233] ODEBUG: free active (active state 1) object type: rcu_head hint: 0x0 [ 79.665193][T13233] WARNING: CPU: 1 PID: 13233 at lib/debugobjects.c:485 debug_print_object+0x160/0x250 [ 79.674824][T13233] Modules linked in: [ 79.678712][T13233] CPU: 1 PID: 13233 Comm: syz-executor977 Tainted: G W 5.9.0-rc2-syzkaller #0 [ 79.689121][T13233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 79.699463][T13233] RIP: 0010:debug_print_object+0x160/0x250 [ 79.705292][T13233] Code: dd e0 26 94 88 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd e0 26 94 88 48 c7 c7 40 1c 94 88 e8 82 3b a6 fd <0f> 0b 83 05 83 54 13 07 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 [ 79.725167][T13233] RSP: 0018:ffffc9000e5a7dd0 EFLAGS: 00010082 [ 79.731223][T13233] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 79.739663][T13233] RDX: ffff88809a280480 RSI: ffffffff815dafc7 RDI: fffff52001cb4fac [ 79.748001][T13233] RBP: 0000000000000005 R08: 0000000000000001 R09: ffff8880ae720f8b [ 79.756565][T13233] R10: 0000000000000000 R11: 0000000000000001 R12: ffffffff89bd6780 [ 79.764523][T13233] R13: 0000000000000000 R14: dead000000000100 R15: dffffc0000000000 [ 79.772735][T13233] FS: 00007f6b1b127700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 79.781673][T13233] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 79.788251][T13233] CR2: 00007f6b1b105e78 CR3: 00000000a066e000 CR4: 00000000001506e0 [ 79.796210][T13233] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 79.804170][T13233] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 79.812126][T13233] Call Trace: [ 79.815420][T13233] debug_check_no_obj_freed+0x301/0x41c [ 79.820963][T13233] kmem_cache_free.part.0+0x16d/0x1f0 [ 79.826320][T13233] task_work_run+0xdd/0x190 [ 79.830950][T13233] exit_to_user_mode_prepare+0x195/0x1c0 [ 79.836577][T13233] syscall_exit_to_user_mode+0x59/0x2b0 [ 79.842126][T13233] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 79.848003][T13233] RIP: 0033:0x447239 [ 79.851891][T13233] Code: e8 4c e7 ff ff 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b 07 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 79.871511][T13233] RSP: 002b:00007f6b1b126db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9 [ 79.879929][T13233] RAX: 0000000000000000 RBX: 00000000006dcc68 RCX: 0000000000447239 [ 79.887882][T13233] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 0000000000000004 [ 79.895840][T13233] RBP: 00000000006dcc60 R08: 0000000000000000 R09: 0000000000000000 [ 79.903919][T13233] R10: 0000000020000000 R11: 0000000000000246 R12: 00000000006dcc6c [ 79.911902][T13233] R13: 00007ffda036dd9f R14: 00007f6b1b1279c0 R15: 0000000000000000 [ 79.920316][T13233] irq event stamp: 1248 [ 79.924466][T13233] hardirqs last enabled at (1247): [] call_rcu+0x360/0x7e0 [ 79.933298][T13233] hardirqs last disabled at (1248): [] kmem_cache_free.part.0+0x3e/0x1f0 [ 79.943272][T13233] softirqs last enabled at (0): [] copy_process+0x1a99/0x6920 [ 79.952904][T13233] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 79.958615][T13271] Shutting down cpus with NMI