Warning: Permanently added '10.128.10.17' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 44.650092] Bluetooth: hci1: Frame reassembly failed (-84) [ 44.657088] Bluetooth: hci0: Frame reassembly failed (-84) [ 44.665353] Bluetooth: hci3: Frame reassembly failed (-84) [ 44.671688] Bluetooth: hci2: Frame reassembly failed (-84) [ 44.678438] Bluetooth: hci4: Frame reassembly failed (-84) [ 44.687886] Bluetooth: hci5: Frame reassembly failed (-84) executing program [ 44.701217] Bluetooth: hci1: sending frame failed (-49) [ 44.711557] Bluetooth: hci0: sending frame failed (-49) [ 44.727495] Bluetooth: hci2: sending frame failed (-49) [ 44.733079] Bluetooth: hci4: sending frame failed (-49) [ 44.739033] Bluetooth: hci5: sending frame failed (-49) [ 44.745625] Bluetooth: hci3: Frame reassembly failed (-84) [ 44.753016] Bluetooth: hci3: Frame reassembly failed (-84) [ 46.717025] Bluetooth: hci1: command 0x1003 tx timeout [ 46.722876] Bluetooth: hci1: sending frame failed (-49) [ 46.796481] Bluetooth: hci3: command 0x1003 tx timeout [ 46.801992] Bluetooth: hci3: sending frame failed (-49) [ 46.807715] Bluetooth: hci5: command 0x1003 tx timeout [ 46.813000] Bluetooth: hci4: command 0x1003 tx timeout [ 46.813091] Bluetooth: hci5: sending frame failed (-49) [ 46.818466] Bluetooth: hci2: command 0x1003 tx timeout [ 46.823848] Bluetooth: hci4: sending frame failed (-49) [ 46.829239] Bluetooth: hci0: command 0x1003 tx timeout [ 46.834381] Bluetooth: hci2: sending frame failed (-49) [ 46.843196] Bluetooth: hci0: sending frame failed (-49) [ 48.796483] Bluetooth: hci1: command 0x1001 tx timeout [ 48.801980] Bluetooth: hci1: sending frame failed (-49) [ 48.876514] Bluetooth: hci2: command 0x1001 tx timeout [ 48.876528] Bluetooth: hci0: command 0x1001 tx timeout [ 48.882025] Bluetooth: hci5: command 0x1001 tx timeout [ 48.887316] Bluetooth: hci2: sending frame failed (-49) [ 48.892787] Bluetooth: hci5: sending frame failed (-49) [ 48.898033] Bluetooth: hci0: sending frame failed (-49) [ 48.908760] Bluetooth: hci4: command 0x1001 tx timeout [ 48.914132] Bluetooth: hci3: command 0x1001 tx timeout [ 48.914170] Bluetooth: hci4: sending frame failed (-49) [ 48.924121] Bluetooth: hci3: sending frame failed (-49) [ 50.876588] Bluetooth: hci1: command 0x1009 tx timeout [ 50.956535] Bluetooth: hci4: command 0x1009 tx timeout [ 50.956600] Bluetooth: hci3: command 0x1009 tx timeout [ 50.961859] Bluetooth: hci5: command 0x1009 tx timeout [ 50.967141] Bluetooth: hci0: command 0x1009 tx timeout [ 50.977721] Bluetooth: hci2: command 0x1009 tx timeout executing program executing program executing program executing program [ 54.882778] Bluetooth: hci1: Frame reassembly failed (-84) [ 54.899350] Bluetooth: hci0: Frame reassembly failed (-84) [ 54.905716] Bluetooth: hci3: Frame reassembly failed (-84) [ 54.909197] BUG: unable to handle kernel paging request at ffffffffffffffd6 [ 54.913107] kobject: 'hci2' (0000000085763195): kobject_uevent_env [ 54.918752] #PF error: [normal kernel read fault] executing program [ 54.918756] PGD 8874067 P4D 8874067 PUD 8876067 PMD 0 [ 54.918770] Oops: 0000 [#1] PREEMPT SMP KASAN [ 54.918778] CPU: 0 PID: 566 Comm: kworker/u4:3 Not tainted 5.0.0-rc5 #60 [ 54.918783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 54.918796] Workqueue: events_unbound flush_to_ldisc [ 54.918809] RIP: 0010:h4_recv_buf+0x1ea/0xda0 executing program [ 54.918816] Code: b6 14 10 48 89 c8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d7 0a 00 00 48 ba 00 00 00 00 00 fc ff df 48 8b 45 d0 4c 8d 60 70 <0f> b7 58 2a 4c 89 e0 48 c1 e8 03 0f b6 04 10 84 c0 74 08 3c 03 0f [ 54.918820] RSP: 0018:ffff8880a88dfb10 EFLAGS: 00010246 [ 54.918826] RAX: ffffffffffffffac RBX: 0000000000000000 RCX: ffffffffffffffd6 [ 54.918831] RDX: dffffc0000000000 RSI: ffffffff84ecf372 RDI: 0000000000000005 [ 54.918839] RBP: ffff8880a88dfb98 R08: ffff8880a88cc440 R09: 0000000000000003 [ 54.928825] kobject: 'hci2' (0000000085763195): fill_kobj_path: path = '/devices/virtual/bluetooth/hci2' [ 54.932477] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: 000000000000001c [ 54.932482] R13: ffff888098cc7780 R14: ffff8880968e76e0 R15: 0000000000000006 [ 54.932488] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 54.932493] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.932498] CR2: ffffffffffffffd6 CR3: 00000000952b4000 CR4: 00000000001406f0 [ 54.932510] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 54.938233] kobject: 'rfkill15' (00000000f5244e79): kobject_add_internal: parent: 'hci2', set: 'devices' [ 54.942363] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 54.942365] Call Trace: [ 54.942376] ? __lock_is_held+0xb6/0x140 [ 54.942388] ? check_preemption_disabled+0x48/0x290 [ 54.951082] kobject: 'hci4' (000000004672b765): kobject_add_internal: parent: 'bluetooth', set: 'devices' [ 54.958537] h4_recv+0xe4/0x200 [ 54.958546] hci_uart_tty_receive+0x22b/0x530 [ 54.958554] ? hci_uart_write_work+0x710/0x710 [ 54.958564] tty_ldisc_receive_buf+0x164/0x1c0 [ 54.963781] kobject: 'rfkill15' (00000000f5244e79): kobject_uevent_env [ 54.968120] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 54.968130] tty_port_default_receive_buf+0x7d/0xb0 [ 54.968142] flush_to_ldisc+0x228/0x390 [ 54.968154] process_one_work+0x98e/0x1790 [ 54.968164] ? pwq_dec_nr_in_flight+0x320/0x320 [ 54.987325] kobject: 'hci4' (000000004672b765): kobject_uevent_env [ 54.992379] ? lock_acquire+0x16f/0x3f0 [ 54.992390] worker_thread+0x98/0xe40 [ 54.992401] kthread+0x357/0x430 [ 54.999820] kobject: 'hci4' (000000004672b765): fill_kobj_path: path = '/devices/virtual/bluetooth/hci4' [ 55.006911] ? process_one_work+0x1790/0x1790 [ 55.006919] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 55.006928] ret_from_fork+0x3a/0x50 [ 55.006935] Modules linked in: [ 55.006942] CR2: ffffffffffffffd6 [ 55.006953] ---[ end trace 43b62ba62b166cb9 ]--- [ 55.014735] kobject: 'rfkill15' (00000000f5244e79): fill_kobj_path: path = '/devices/virtual/bluetooth/hci2/rfkill15' [ 55.023860] RIP: 0010:h4_recv_buf+0x1ea/0xda0 [ 55.023867] Code: b6 14 10 48 89 c8 83 e0 07 83 c0 01 38 d0 7c 08 84 d2 0f 85 d7 0a 00 00 48 ba 00 00 00 00 00 fc ff df 48 8b 45 d0 4c 8d 60 70 <0f> b7 58 2a 4c 89 e0 48 c1 e8 03 0f b6 04 10 84 c0 74 08 3c 03 0f [ 55.023871] RSP: 0018:ffff8880a88dfb10 EFLAGS: 00010246 [ 55.023877] RAX: ffffffffffffffac RBX: 0000000000000000 RCX: ffffffffffffffd6 [ 55.023881] RDX: dffffc0000000000 RSI: ffffffff84ecf372 RDI: 0000000000000005 [ 55.023885] RBP: ffff8880a88dfb98 R08: ffff8880a88cc440 R09: 0000000000000003 [ 55.023890] R10: ffffed1015d05bcf R11: ffff8880ae82de7b R12: 000000000000001c [ 55.023894] R13: ffff888098cc7780 R14: ffff8880968e76e0 R15: 0000000000000006 [ 55.023900] FS: 0000000000000000(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 [ 55.023905] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.023909] CR2: ffffffffffffffd6 CR3: 00000000952b4000 CR4: 00000000001406f0 [ 55.023915] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.023919] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 55.023927] Kernel panic - not syncing: Fatal exception [ 55.033907] kobject: 'hci5' (00000000123e62bc): kobject_add_internal: parent: 'bluetooth', set: 'devices' [ 55.039466] Kernel Offset: disabled [ 55.334926] Rebooting in 86400 seconds..