[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] startpar: service(s) returned failure: rsyslog ...[?25l[?1c7[FAIL8[?25h[?0c failed! Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 43.248037][ T24] kauditd_printk_skb: 18 callbacks suppressed [ 43.248043][ T24] audit: type=1400 audit(1561149693.988:35): avc: denied { map } for pid=6854 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.1.60' (ECDSA) to the list of known hosts. [ 595.458180][ T24] audit: type=1400 audit(1561150246.198:36): avc: denied { map } for pid=6866 comm="syz-executor345" path="/root/syz-executor345748668" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program executing program executing program executing program executing program executing program [ 602.411327][ T6892] Bluetooth: hci0: sending frame failed (-49) [ 602.417712][ T6892] Bluetooth: hci2: sending frame failed (-49) [ 602.423805][ T6892] Bluetooth: hci3: sending frame failed (-49) [ 602.424932][ T6893] Bluetooth: hci4: sending frame failed (-49) [ 602.429904][ T6892] Bluetooth: hci5: sending frame failed (-49) [ 602.435971][ T6893] Bluetooth: hci6: sending frame failed (-49) [ 604.461376][ T2965] Bluetooth: hci6: command 0x1003 tx timeout [ 604.461378][ T2630] Bluetooth: hci5: command 0x1003 tx timeout [ 604.461388][ T2630] Bluetooth: hci3: command 0x1003 tx timeout [ 604.467429][ T2965] Bluetooth: hci4: command 0x1003 tx timeout [ 604.473593][ T2630] Bluetooth: hci2: command 0x1003 tx timeout [ 604.480891][ T6893] Bluetooth: hci5: sending frame failed (-49) [ 604.486880][ T6894] Bluetooth: hci6: sending frame failed (-49) [ 604.492811][ T6893] Bluetooth: hci3: sending frame failed (-49) [ 604.499055][ T6892] Bluetooth: hci2: sending frame failed (-49) [ 604.504939][ T6893] Bluetooth: hci4: sending frame failed (-49) [ 604.511029][ T2630] Bluetooth: hci1: command 0x1003 tx timeout [ 604.529097][ T2630] Bluetooth: hci0: command 0x1003 tx timeout [ 604.529111][ T6893] Bluetooth: hci1: sending frame failed (-49) [ 604.535131][ T6892] Bluetooth: hci0: sending frame failed (-49) [ 606.541372][ T2630] Bluetooth: hci2: command 0x1001 tx timeout [ 606.541375][ T2965] Bluetooth: hci1: command 0x1001 tx timeout [ 606.541386][ T2965] Bluetooth: hci4: command 0x1001 tx timeout [ 606.547404][ T6892] Bluetooth: hci1: sending frame failed (-49) [ 606.553565][ T6893] Bluetooth: hci4: sending frame failed (-49) [ 606.559350][ T6892] Bluetooth: hci2: sending frame failed (-49) [ 606.565456][ T2965] Bluetooth: hci3: command 0x1001 tx timeout [ 606.571438][ T2630] Bluetooth: hci6: command 0x1001 tx timeout [ 606.577536][ T2965] Bluetooth: hci5: command 0x1001 tx timeout [ 606.583449][ T6892] Bluetooth: hci3: sending frame failed (-49) [ 606.589458][ T6893] Bluetooth: hci5: sending frame failed (-49) [ 606.595385][ T6892] Bluetooth: hci6: sending frame failed (-49) [ 606.621381][ T2630] Bluetooth: hci0: command 0x1001 tx timeout [ 606.627398][ T6892] Bluetooth: hci0: sending frame failed (-49) executing program [ 608.621389][ T2965] Bluetooth: hci5: command 0x1009 tx timeout [ 608.621391][ T2630] Bluetooth: hci6: command 0x1009 tx timeout [ 608.621401][ T2630] Bluetooth: hci3: command 0x1009 tx timeout [ 608.627478][ T2965] Bluetooth: hci4: command 0x1009 tx timeout [ 608.633443][ T2630] Bluetooth: hci2: command 0x1009 tx timeout [ 608.651299][ T2630] Bluetooth: hci1: command 0x1009 tx timeout [ 608.701394][ T2965] Bluetooth: hci0: command 0x1009 tx timeout [ 610.541391][ T2965] Bluetooth: hci7: command 0x1003 tx timeout [ 610.547416][ T6894] Bluetooth: hci7: sending frame failed (-49) [ 612.621375][ T2630] Bluetooth: hci7: command 0x1001 tx timeout [ 612.627411][ T1531] Bluetooth: hci7: sending frame failed (-49) [ 614.701371][ T2630] Bluetooth: hci7: command 0x1009 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program [ 629.261372][ T2965] Bluetooth: hci0: command 0x1003 tx timeout [ 629.267517][ T6894] Bluetooth: hci0: sending frame failed (-49) [ 630.461398][ T2965] Bluetooth: hci2: command 0x1003 tx timeout [ 630.467528][ T2965] Bluetooth: hci1: command 0x1003 tx timeout [ 630.467543][ T6894] Bluetooth: hci2: sending frame failed (-49) [ 630.479568][ T6894] Bluetooth: hci1: sending frame failed (-49) [ 630.541385][ T2965] Bluetooth: hci4: command 0x1003 tx timeout [ 630.547419][ T2965] Bluetooth: hci3: command 0x1003 tx timeout [ 630.547445][ T6894] Bluetooth: hci4: sending frame failed (-49) [ 630.553581][ T6909] Bluetooth: hci3: sending frame failed (-49) [ 630.621368][ T2965] Bluetooth: hci5: command 0x1003 tx timeout [ 630.627410][ T6909] Bluetooth: hci5: sending frame failed (-49) [ 630.701388][ T2630] Bluetooth: hci7: command 0x1003 tx timeout [ 630.707444][ T6909] Bluetooth: hci7: sending frame failed (-49) [ 630.713520][ T2630] Bluetooth: hci6: command 0x1003 tx timeout [ 630.719491][ T6909] Bluetooth: hci6: sending frame failed (-49) [ 631.341375][ T2630] Bluetooth: hci0: command 0x1001 tx timeout [ 631.347426][ T6909] Bluetooth: hci0: sending frame failed (-49) [ 632.541372][ T2630] Bluetooth: hci1: command 0x1001 tx timeout [ 632.547489][ T2630] Bluetooth: hci2: command 0x1001 tx timeout [ 632.547514][ T6909] Bluetooth: hci1: sending frame failed (-49) [ 632.553646][ T6894] Bluetooth: hci2: sending frame failed (-49) [ 632.621375][ T2965] Bluetooth: hci3: command 0x1001 tx timeout [ 632.621377][ T2630] Bluetooth: hci4: command 0x1001 tx timeout [ 632.621419][ T6894] Bluetooth: hci4: sending frame failed (-49) [ 632.627423][ T6909] Bluetooth: hci3: sending frame failed (-49) [ 632.701473][ T2630] Bluetooth: hci5: command 0x1001 tx timeout [ 632.707530][ T6909] Bluetooth: hci5: sending frame failed (-49) [ 632.781394][ T2630] Bluetooth: hci6: command 0x1001 tx timeout [ 632.787429][ T2630] Bluetooth: hci7: command 0x1001 tx timeout [ 632.787451][ T6909] Bluetooth: hci6: sending frame failed (-49) [ 632.793587][ T6894] Bluetooth: hci7: sending frame failed (-49) [ 633.421373][ T2965] Bluetooth: hci0: command 0x1009 tx timeout [ 634.621387][ T2630] Bluetooth: hci2: command 0x1009 tx timeout [ 634.621390][ T2965] Bluetooth: hci1: command 0x1009 tx timeout [ 634.701399][ T2630] Bluetooth: hci4: command 0x1009 tx timeout [ 634.701401][ T2965] Bluetooth: hci3: command 0x1009 tx timeout [ 634.781386][ T2965] Bluetooth: hci5: command 0x1009 tx timeout [ 634.861491][ T2630] Bluetooth: hci7: command 0x1009 tx timeout [ 634.861493][ T2965] Bluetooth: hci6: command 0x1009 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program [ 654.781371][ T2965] Bluetooth: hci0: command 0x1003 tx timeout [ 654.787436][ T6894] Bluetooth: hci0: sending frame failed (-49) [ 655.821374][ T2965] Bluetooth: hci1: command 0x1003 tx timeout [ 655.827432][ T6894] Bluetooth: hci1: sending frame failed (-49) [ 655.901377][ T2965] Bluetooth: hci2: command 0x1003 tx timeout [ 655.907471][ T6894] Bluetooth: hci2: sending frame failed (-49) [ 655.991376][ T2630] Bluetooth: hci3: command 0x1003 tx timeout [ 655.997440][ T6894] Bluetooth: hci3: sending frame failed (-49) [ 656.141378][ T2965] Bluetooth: hci6: command 0x1003 tx timeout [ 656.141381][ T2630] Bluetooth: hci4: command 0x1003 tx timeout [ 656.141414][ T6894] Bluetooth: hci4: sending frame failed (-49) [ 656.147434][ T6909] Bluetooth: hci6: sending frame failed (-49) [ 656.165451][ T2965] Bluetooth: hci5: command 0x1003 tx timeout [ 656.171422][ T6909] Bluetooth: hci5: sending frame failed (-49) [ 656.221375][ T2965] Bluetooth: hci7: command 0x1003 tx timeout [ 656.227420][ T6909] Bluetooth: hci7: sending frame failed (-49) [ 656.861368][ T2630] Bluetooth: hci0: command 0x1001 tx timeout [ 656.867525][ T6909] Bluetooth: hci0: sending frame failed (-49) [ 657.901369][ T2630] Bluetooth: hci1: command 0x1001 tx timeout [ 657.907427][ T6909] Bluetooth: hci1: sending frame failed (-49) [ 657.981368][ T2630] Bluetooth: hci2: command 0x1001 tx timeout [ 657.987415][ T6909] Bluetooth: hci2: sending frame failed (-49) [ 658.061381][ T2965] Bluetooth: hci3: command 0x1001 tx timeout [ 658.067429][ T6909] Bluetooth: hci3: sending frame failed (-49) [ 658.221375][ T2630] Bluetooth: hci4: command 0x1001 tx timeout [ 658.221377][ T2965] Bluetooth: hci5: command 0x1001 tx timeout [ 658.221388][ T2965] Bluetooth: hci6: command 0x1001 tx timeout [ 658.227426][ T6909] Bluetooth: hci5: sending frame failed (-49) [ 658.233603][ T6894] Bluetooth: hci6: sending frame failed (-49) [ 658.239342][ T6909] Bluetooth: hci4: sending frame failed (-49) [ 658.301405][ T2965] Bluetooth: hci7: command 0x1001 tx timeout [ 658.307454][ T6909] Bluetooth: hci7: sending frame failed (-49) [ 658.941387][ T2965] Bluetooth: hci0: command 0x1009 tx timeout [ 659.981427][ T2965] Bluetooth: hci1: command 0x1009 tx timeout [ 660.061416][ T2965] Bluetooth: hci2: command 0x1009 tx timeout [ 660.141416][ T2630] Bluetooth: hci3: command 0x1009 tx timeout [ 660.301414][ T2630] Bluetooth: hci4: command 0x1009 tx timeout [ 660.301416][ T2965] Bluetooth: hci6: command 0x1009 tx timeout [ 660.313371][ T2630] Bluetooth: hci5: command 0x1009 tx timeout [ 660.381418][ T2630] Bluetooth: hci7: command 0x1009 tx timeout executing program executing program executing program executing program executing program executing program executing program executing program [ 681.421369][ T2965] Bluetooth: hci0: command 0x1003 tx timeout [ 681.427427][ T6909] Bluetooth: hci0: sending frame failed (-49) [ 681.581367][ T2965] Bluetooth: hci1: command 0x1003 tx timeout [ 681.587426][ T6909] Bluetooth: hci1: sending frame failed (-49) [ 681.741374][ T2965] Bluetooth: hci3: command 0x1003 tx timeout [ 681.747412][ T2965] Bluetooth: hci2: command 0x1003 tx timeout [ 681.747439][ T6909] Bluetooth: hci3: sending frame failed (-49) [ 681.753567][ T6894] Bluetooth: hci2: sending frame failed (-49) [ 681.821389][ T2630] Bluetooth: hci5: command 0x1003 tx timeout [ 681.821391][ T2965] Bluetooth: hci4: command 0x1003 tx timeout [ 681.821416][ T6894] Bluetooth: hci4: sending frame failed (-49) [ 681.827398][ T6909] Bluetooth: hci5: sending frame failed (-49) [ 681.901383][ T2965] Bluetooth: hci7: command 0x1003 tx timeout [ 681.907412][ T2965] Bluetooth: hci6: command 0x1003 tx timeout [ 681.907429][ T6909] Bluetooth: hci7: sending frame failed (-49) [ 681.913559][ T6894] Bluetooth: hci6: sending frame failed (-49) [ 683.501374][ T2630] Bluetooth: hci0: command 0x1001 tx timeout [ 683.507418][ T6894] Bluetooth: hci0: sending frame failed (-49) [ 683.661399][ T2630] Bluetooth: hci1: command 0x1001 tx timeout [ 683.667496][ T6894] Bluetooth: hci1: sending frame failed (-49) [ 683.821381][ T2630] Bluetooth: hci3: command 0x1001 tx timeout [ 683.821383][ T2965] Bluetooth: hci2: command 0x1001 tx timeout [ 683.821417][ T6894] Bluetooth: hci2: sending frame failed (-49) [ 683.827414][ T6909] Bluetooth: hci3: sending frame failed (-49) [ 683.901369][ T2630] Bluetooth: hci5: command 0x1001 tx timeout [ 683.901371][ T2965] Bluetooth: hci4: command 0x1001 tx timeout [ 683.901404][ T6909] Bluetooth: hci4: sending frame failed (-49) [ 683.907445][ T6894] Bluetooth: hci5: sending frame failed (-49) [ 683.981370][ T2630] Bluetooth: hci7: command 0x1001 tx timeout [ 683.981373][ T2965] Bluetooth: hci6: command 0x1001 tx timeout [ 683.981408][ T6894] Bluetooth: hci6: sending frame failed (-49) [ 683.987439][ T6909] Bluetooth: hci7: sending frame failed (-49) [ 685.581429][ T2965] Bluetooth: hci0: command 0x1009 tx timeout [ 685.741426][ T2965] Bluetooth: hci1: command 0x1009 tx timeout [ 685.901414][ T2630] Bluetooth: hci3: command 0x1009 tx timeout [ 685.901417][ T2965] Bluetooth: hci2: command 0x1009 tx timeout [ 685.981396][ T2630] Bluetooth: hci5: command 0x1009 tx timeout [ 685.981399][ T2965] Bluetooth: hci4: command 0x1009 tx timeout [ 686.061394][ T2630] Bluetooth: hci7: command 0x1009 tx timeout [ 686.061396][ T2965] Bluetooth: hci6: command 0x1009 tx timeout [ 691.913546][ T6873] kmemleak: 4 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 80.330s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 80.110s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 54.940s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 29.050s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 81.340s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 81.120s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 55.950s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 30.060s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 82.330s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 82.110s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 56.940s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 31.050s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 83.320s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 83.100s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 57.930s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 32.040s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 83.370s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 83.150s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 57.980s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 32.090s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 84.360s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 84.140s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 58.970s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 33.080s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888116224c00 (size 224): comm "syz-executor345", pid 6904, jiffies 4295000121 (age 84.410s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89d800 (size 224): comm "syz-executor345", pid 6908, jiffies 4295000143 (age 84.190s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811d89dc00 (size 224): comm "syz-executor345", pid 6917, jiffies 4295002660 (age 59.020s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811846cc00 (size 224): comm "syz-executor345", pid 6932, jiffies 4295005249 (age 33.130s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000006a4d84d6>] kmem_cache_alloc_node+0x153/0x2a0 [<000000007eb3c776>] __alloc_skb+0x6e/0x210 [<00000000bb6cdded>] bcsp_recv+0x1c3/0x540 [<00000000cf7b9dc1>] hci_uart_tty_receive+0xba/0x200 [<00000000e31e1292>] tty_ioctl+0x81c/0xa30 [<000000002d85e8dc>] do_vfs_ioctl+0x62a/0x810 [<000000006ddc65be>] ksys_ioctl+0x86/0xb0 [<00000000ee625b0d>] __x64_sys_ioctl+0x1e/0x30 [<0000000085eaafd2>] do_syscall_64+0x76/0x1a0 [<000000002234b1d7>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 executing program [ 717.421372][ T2630] Bluetooth: hci0: command 0x1003 tx timeout [ 717.427439][ T6880] Bluetooth: hci0: sending frame failed (-49)