[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 40.286467] audit: type=1800 audit(1547454451.113:25): pid=7832 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 40.325074] audit: type=1800 audit(1547454451.123:26): pid=7832 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 40.325118] audit: type=1800 audit(1547454451.123:27): pid=7832 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.119' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 49.277465] FAULT_INJECTION: forcing a failure. [ 49.277465] name failslab, interval 1, probability 0, space 0, times 1 [ 49.288881] CPU: 0 PID: 7983 Comm: syz-executor087 Not tainted 5.0.0-rc1+ #24 [ 49.296142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.305475] Call Trace: [ 49.308050] dump_stack+0x1db/0x2d0 [ 49.311667] ? dump_stack_print_info.cold+0x20/0x20 [ 49.316668] ? save_stack+0x45/0xd0 [ 49.320282] ? __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 49.325369] ? kasan_slab_alloc+0xf/0x20 [ 49.329411] ? kmem_cache_alloc_node+0x144/0x710 [ 49.334151] ? __alloc_skb+0xf4/0x730 [ 49.337945] ? h5_open+0x44e/0x610 [ 49.341477] should_fail.cold+0xa/0x15 [ 49.345351] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 49.350441] ? __debug_object_init+0x1c0/0x12d0 [ 49.355096] ? trace_hardirqs_off_caller+0x300/0x300 [ 49.360193] ? should_fail+0x1e6/0xd22 [ 49.364080] ? add_lock_to_list.isra.0+0x450/0x450 [ 49.368994] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.374513] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.380034] ? check_preemption_disabled+0x48/0x290 [ 49.385041] __should_failslab+0x121/0x190 [ 49.389268] should_failslab+0x9/0x14 [ 49.393059] kmem_cache_alloc_node_trace+0x5a/0x720 [ 49.398064] ? __alloc_skb+0xf4/0x730 [ 49.401855] __kmalloc_node_track_caller+0x3d/0x70 [ 49.406775] __kmalloc_reserve.isra.0+0x40/0xe0 [ 49.411432] __alloc_skb+0x12d/0x730 [ 49.415151] ? skb_scrub_packet+0x440/0x440 [ 49.419457] ? init_timer_key+0x1a1/0x4c0 [ 49.423591] ? h5_open+0x4f9/0x610 [ 49.427119] ? h5_link_control.isra.0+0xa0/0xa0 [ 49.431777] ? init_timer_on_stack_key+0xe0/0xe0 [ 49.436518] ? rcu_read_lock_sched_held+0x110/0x130 [ 49.441527] ? kmem_cache_alloc_trace+0x354/0x760 [ 49.446368] h5_link_control.isra.0+0x2f/0xa0 [ 49.450857] h5_open+0x44e/0x610 [ 49.454210] ? h5_rx_crc+0x20/0x20 [ 49.457756] hci_uart_tty_ioctl+0x2d4/0xa70 [ 49.462069] tty_compat_ioctl+0x243/0x410 [ 49.466200] ? hci_uart_init_work+0x150/0x150 [ 49.470684] ? tty_ioctl+0x16c0/0x16c0 [ 49.474567] __ia32_compat_sys_ioctl+0x197/0x620 [ 49.479315] do_fast_syscall_32+0x333/0xf98 [ 49.483643] ? do_int80_syscall_32+0x880/0x880 [ 49.488222] ? trace_hardirqs_off+0x310/0x310 [ 49.492701] ? syscall_return_slowpath+0x3b0/0x5f0 [ 49.497614] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.503135] ? prepare_exit_to_usermode+0x232/0x3b0 [ 49.508142] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.512976] entry_SYSENTER_compat+0x70/0x7f [ 49.517383] RIP: 0023:0xf7fc7869 [ 49.520733] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 49.539614] RSP: 002b:00000000ff86aa6c EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 49.547314] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400455c8 [ 49.554569] RDX: 0000000000000002 RSI: 00000000080d6c80 RDI: 00000000080ecf84 [ 49.561821] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 49.569073] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 49.576355] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 executing program [ 49.691765] FAULT_INJECTION: forcing a failure. [ 49.691765] name failslab, interval 1, probability 0, space 0, times 0 [ 49.703065] CPU: 0 PID: 7984 Comm: syz-executor087 Not tainted 5.0.0-rc1+ #24 [ 49.710331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 49.719690] Call Trace: [ 49.722260] dump_stack+0x1db/0x2d0 [ 49.725874] ? dump_stack_print_info.cold+0x20/0x20 [ 49.730877] ? lockdep_on+0x50/0x50 [ 49.734488] should_fail.cold+0xa/0x15 [ 49.738363] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 49.743471] ? ___might_sleep+0x1e7/0x310 [ 49.747617] ? arch_local_save_flags+0x50/0x50 [ 49.752222] ? find_held_lock+0x35/0x120 [ 49.756288] __should_failslab+0x121/0x190 [ 49.760525] should_failslab+0x9/0x14 [ 49.764322] kmem_cache_alloc_trace+0x2d1/0x760 [ 49.768992] ? mod_timer+0x616/0x1430 [ 49.772783] hci_alloc_dev+0x148/0x21a0 [ 49.776746] ? hci_init4_req+0xec0/0xec0 [ 49.780805] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 49.785897] ? lockdep_hardirqs_on+0x415/0x5d0 [ 49.790480] ? trace_hardirqs_on+0xbd/0x310 [ 49.794797] ? kasan_check_read+0x11/0x20 [ 49.798945] ? mod_timer+0x616/0x1430 [ 49.802732] ? trace_hardirqs_off_caller+0x300/0x300 [ 49.807822] ? do_raw_spin_trylock+0x270/0x270 [ 49.812391] ? calc_wheel_index+0x220/0x220 [ 49.816718] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 49.821806] ? mod_timer+0x61b/0x1430 [ 49.825599] ? mod_timer_pending+0x1500/0x1500 [ 49.830161] ? lockdep_hardirqs_on+0x415/0x5d0 [ 49.834729] ? trace_hardirqs_on+0xbd/0x310 [ 49.839046] ? kasan_check_read+0x11/0x20 [ 49.843181] ? skb_queue_tail+0xe5/0x150 [ 49.847232] ? trace_hardirqs_off_caller+0x300/0x300 [ 49.852326] ? do_raw_spin_trylock+0x270/0x270 [ 49.856895] ? init_timer_key+0x1a1/0x4c0 [ 49.861033] ? h5_open+0x4f9/0x610 [ 49.864580] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 49.869673] ? skb_queue_tail+0xe5/0x150 [ 49.873722] ? h5_open+0x488/0x610 [ 49.877249] ? h5_rx_crc+0x20/0x20 [ 49.880780] hci_uart_tty_ioctl+0x321/0xa70 [ 49.885091] tty_compat_ioctl+0x243/0x410 [ 49.889238] ? hci_uart_init_work+0x150/0x150 [ 49.893725] ? tty_ioctl+0x16c0/0x16c0 [ 49.897598] __ia32_compat_sys_ioctl+0x197/0x620 [ 49.902345] do_fast_syscall_32+0x333/0xf98 [ 49.906654] ? do_int80_syscall_32+0x880/0x880 [ 49.911229] ? trace_hardirqs_off+0x310/0x310 [ 49.915721] ? syscall_return_slowpath+0x3b0/0x5f0 [ 49.920641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 49.926166] ? prepare_exit_to_usermode+0x232/0x3b0 [ 49.931167] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 49.936017] entry_SYSENTER_compat+0x70/0x7f [ 49.940411] RIP: 0023:0xf7fc7869 [ 49.943765] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 49.962648] RSP: 002b:00000000ff86aa6c EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 49.970343] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400455c8 [ 49.977611] RDX: 0000000000000002 RSI: 00000000080d6c80 RDI: 00000000080ecf84 [ 49.984903] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 49.992154] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 49.999407] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 50.007798] kasan: CONFIG_KASAN_INLINE enabled [ 50.008426] Bluetooth: Invalid header checksum [ 50.012522] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 50.012539] general protection fault: 0000 [#1] PREEMPT SMP KASAN [ 50.012566] CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.0.0-rc1+ #24 [ 50.012577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.046790] Workqueue: events hci_uart_write_work [ 50.051634] RIP: 0010:hci_uart_write_work+0x1b6/0x710 [ 50.056804] Code: 0f 85 6a 04 00 00 49 8b b4 24 c8 00 00 00 4c 89 ef e8 3e a8 96 02 89 c6 48 8b 45 d0 48 8d b8 5c 10 00 00 48 89 f8 48 c1 e8 03 <0f> b6 14 18 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 1d [ 50.056890] Bluetooth: Can't allocate HCI device [ 50.075708] RSP: 0018:ffff8880a949f960 EFLAGS: 00010203 [ 50.075718] RAX: 000000000000020b RBX: dffffc0000000000 RCX: 0000000000000000 [ 50.075726] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000105c [ 50.075733] RBP: ffff8880a949f9e0 R08: 0000000000000006 R09: ffff8880a9494bc8 [ 50.075741] R10: ffff8880a9494300 R11: 0000000000000000 R12: ffff8880910ae7c0 [ 50.075749] R13: ffff88808dce4ec0 R14: ffff88809e540b28 R15: ffff8880910ae830 [ 50.075762] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 50.130328] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.136211] CR2: 0000000008080661 CR3: 0000000094d8a000 CR4: 00000000001406f0 [ 50.143487] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.150749] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.158006] Call Trace: [ 50.160596] process_one_work+0xd0c/0x1ce0 [ 50.164835] ? preempt_notifier_register+0x200/0x200 [ 50.169932] ? __switch_to_asm+0x34/0x70 [ 50.174000] ? pwq_dec_nr_in_flight+0x4a0/0x4a0 [ 50.178665] ? __schedule+0x89f/0x1e60 [ 50.182564] ? pci_mmcfg_check_reserved+0x170/0x170 [ 50.187609] ? lockdep_hardirqs_on+0x415/0x5d0 [ 50.192192] ? worker_thread+0x3b7/0x14a0 [ 50.196336] ? find_held_lock+0x35/0x120 [ 50.200394] ? lock_acquire+0x1db/0x570 [ 50.204362] ? worker_thread+0x3cd/0x14a0 [ 50.208513] ? kasan_check_read+0x11/0x20 [ 50.212663] ? do_raw_spin_lock+0x156/0x360 [ 50.216994] ? lock_release+0xc40/0xc40 [ 50.220984] ? rwlock_bug.part.0+0x90/0x90 [ 50.225212] ? trace_hardirqs_on_caller+0x310/0x310 [ 50.230230] worker_thread+0x143/0x14a0 [ 50.234224] ? process_one_work+0x1ce0/0x1ce0 [ 50.238713] ? __kthread_parkme+0xc3/0x1b0 [ 50.242943] ? lock_acquire+0x1db/0x570 [ 50.246917] ? _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 50.252021] ? lockdep_hardirqs_on+0x415/0x5d0 [ 50.256613] ? trace_hardirqs_on+0xbd/0x310 [ 50.260929] ? __kthread_parkme+0xc3/0x1b0 [ 50.265160] ? trace_hardirqs_off_caller+0x300/0x300 [ 50.270258] ? do_raw_spin_trylock+0x270/0x270 [ 50.274833] ? schedule+0x108/0x350 [ 50.278489] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 50.283586] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 50.289116] ? __kthread_parkme+0xfb/0x1b0 executing program [ 50.293346] kthread+0x357/0x430 [ 50.296706] ? process_one_work+0x1ce0/0x1ce0 [ 50.301194] ? kthread_stop+0x920/0x920 [ 50.305169] ret_from_fork+0x3a/0x50 [ 50.308879] Modules linked in: [ 50.312716] ---[ end trace efe1959a64c5ec13 ]--- [ 50.317644] RIP: 0010:hci_uart_write_work+0x1b6/0x710 [ 50.318310] FAULT_INJECTION: forcing a failure. [ 50.318310] name failslab, interval 1, probability 0, space 0, times 0 [ 50.322840] Code: 0f 85 6a 04 00 00 49 8b b4 24 c8 00 00 00 4c 89 ef e8 3e a8 96 02 89 c6 48 8b 45 d0 48 8d b8 5c 10 00 00 48 89 f8 48 c1 e8 03 <0f> b6 14 18 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 1d [ 50.322848] RSP: 0018:ffff8880a949f960 EFLAGS: 00010203 [ 50.334387] CPU: 1 PID: 7985 Comm: syz-executor087 Tainted: G D 5.0.0-rc1+ #24 [ 50.352998] RAX: 000000000000020b RBX: dffffc0000000000 RCX: 0000000000000000 [ 50.358340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 50.358345] Call Trace: [ 50.358360] dump_stack+0x1db/0x2d0 [ 50.358375] ? dump_stack_print_info.cold+0x20/0x20 [ 50.358406] ? is_bpf_text_address+0xd3/0x170 [ 50.367079] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 000000000000105c [ 50.374335] should_fail.cold+0xa/0x15 [ 50.383678] RBP: ffff8880a949f9e0 R08: 0000000000000006 R09: ffff8880a9494bc8 [ 50.386239] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 50.389853] R10: ffff8880a9494300 R11: 0000000000000000 R12: ffff8880910ae7c0 [ 50.394845] ? lock_acquire+0x1db/0x570 [ 50.399338] R13: ffff88808dce4ec0 R14: ffff88809e540b28 R15: ffff8880910ae830 [ 50.406600] ? ___might_sleep+0x1e7/0x310 [ 50.410488] FS: 0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 50.417726] ? arch_local_save_flags+0x50/0x50 [ 50.417746] __should_failslab+0x121/0x190 [ 50.422825] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.430101] should_failslab+0x9/0x14 [ 50.430147] kmem_cache_alloc_trace+0x2d1/0x760 [ 50.434104] CR2: 0000000008080661 CR3: 0000000009871000 CR4: 00000000001406f0 [ 50.441377] ? do_raw_spin_unlock+0xa0/0x330 [ 50.441392] ? trace_hardirqs_on_caller+0x310/0x310 [ 50.441407] ? do_raw_spin_trylock+0x270/0x270 [ 50.445533] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.453754] ? check_preemption_disabled+0x48/0x290 [ 50.453772] hci_alloc_dev+0x148/0x21a0 [ 50.458341] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.462560] ? hci_init4_req+0xec0/0xec0 [ 50.468439] Kernel panic - not syncing: Fatal exception [ 50.472219] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 50.536015] ? trace_hardirqs_on+0xbd/0x310 [ 50.540331] ? kasan_check_read+0x11/0x20 [ 50.544477] ? mod_timer+0x616/0x1430 [ 50.548272] ? trace_hardirqs_off_caller+0x300/0x300 [ 50.553371] ? do_raw_spin_trylock+0x270/0x270 [ 50.557966] ? calc_wheel_index+0x220/0x220 [ 50.562281] ? kasan_kmalloc+0x9/0x10 [ 50.566079] ? kmem_cache_alloc_node_trace+0x30c/0x720 [ 50.571354] ? kasan_unpoison_shadow+0x35/0x50 [ 50.575937] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 50.581042] ? mod_timer+0x61b/0x1430 [ 50.584852] ? mod_timer_pending+0x1500/0x1500 [ 50.589430] ? trace_hardirqs_on+0xbd/0x310 [ 50.593747] ? kasan_check_read+0x11/0x20 [ 50.597914] ? skb_queue_tail+0xe5/0x150 [ 50.601971] ? trace_hardirqs_off_caller+0x300/0x300 [ 50.607074] ? do_raw_spin_trylock+0x270/0x270 [ 50.611655] ? init_timer_key+0x1a1/0x4c0 [ 50.615809] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 50.620908] ? skb_queue_tail+0xe5/0x150 [ 50.624975] ? h5_open+0x488/0x610 [ 50.628514] ? h5_rx_crc+0x20/0x20 [ 50.632065] hci_uart_tty_ioctl+0x321/0xa70 [ 50.636386] tty_compat_ioctl+0x243/0x410 [ 50.640531] ? hci_uart_init_work+0x150/0x150 [ 50.645027] ? tty_ioctl+0x16c0/0x16c0 [ 50.648918] __ia32_compat_sys_ioctl+0x197/0x620 [ 50.653676] do_fast_syscall_32+0x333/0xf98 [ 50.658001] ? do_int80_syscall_32+0x880/0x880 [ 50.662579] ? trace_hardirqs_off+0x310/0x310 [ 50.667073] ? syscall_return_slowpath+0x3b0/0x5f0 [ 50.672000] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 50.677537] ? prepare_exit_to_usermode+0x232/0x3b0 [ 50.682573] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 50.687423] entry_SYSENTER_compat+0x70/0x7f [ 50.691839] RIP: 0023:0xf7fc7869 [ 50.695203] Code: 85 d2 74 02 89 0a 5b 5d c3 8b 04 24 c3 8b 14 24 c3 8b 3c 24 c3 90 90 90 90 90 90 90 90 90 90 90 90 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 50.714097] RSP: 002b:00000000ff86aa6c EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 50.721800] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400455c8 [ 50.729078] RDX: 0000000000000002 RSI: 00000000080d6c80 RDI: 00000000080ecf84 [ 50.736337] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 50.743597] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 50.750859] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 50.759105] Kernel Offset: disabled [ 50.762727] Rebooting in 86400 seconds..