[  OK  ] Started Getty on tty4.
[  OK  ] Started Serial Getty on ttyS0.
[  OK  ] Started Getty on tty1.
[  OK  ] Started Getty on tty3.
[  OK  ] Started Getty on tty2.
[  OK  ] Reached target Login Prompts.
[  OK  ] Reached target Multi-User System.
[  OK  ] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
[  OK  ] Started Update UTMP about System Runlevel Changes.
         Starting Load/Save RF Kill Switch Status...
[  OK  ] Started Load/Save RF Kill Switch Status.


Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts.
syzkaller login: [   60.647000][ T6867] IPVS: ftp: loaded support on port[0] = 21
executing program
executing program
[   61.834635][ T1541] debugfs: Directory '200' with parent 'hci0' already present!
[   61.842750][ T6893] Bluetooth: hci0: hardware error 0x70
[   61.850437][ T1541] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:200'
[   61.860627][ T1541] CPU: 1 PID: 1541 Comm: kworker/u5:0 Not tainted 5.8.0-rc7-next-20200731-syzkaller #0
[   61.870269][ T1541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   61.880343][ T1541] Workqueue: hci0 hci_rx_work
[   61.885034][ T1541] Call Trace:
[   61.888327][ T1541]  dump_stack+0x18f/0x20d
[   61.892663][ T1541]  sysfs_warn_dup.cold+0x1c/0x2d
[   61.897600][ T1541]  sysfs_create_dir_ns+0x233/0x290
[   61.902709][ T1541]  ? sysfs_create_mount_point+0xb0/0xb0
[   61.908256][ T1541]  ? rwlock_bug.part.0+0x90/0x90
[   61.913370][ T1541]  ? do_raw_spin_unlock+0x171/0x230
[   61.918569][ T1541]  kobject_add_internal+0x2c3/0x940
[   61.923769][ T1541]  kobject_add+0x150/0x1c0
[   61.928183][ T1541]  ? kset_create_and_add+0x190/0x190
[   61.933474][ T1541]  ? lockdep_init_map_waits+0x26a/0x8a0
[   61.939017][ T1541]  ? __raw_spin_lock_init+0x34/0x100
[   61.944301][ T1541]  ? device_add+0x33b/0x1c40
[   61.948894][ T1541]  device_add+0x35a/0x1c40
[   61.953315][ T1541]  ? devlink_add_symlinks+0x450/0x450
[   61.958688][ T1541]  ? hci_debugfs_create_conn+0x179/0x1f0
[   61.964316][ T1541]  ? hci_debugfs_create_le+0x850/0x850
[   61.969794][ T1541]  hci_conn_add_sysfs+0x84/0xe0
[   61.974646][ T1541]  hci_event_packet+0x1286/0x87a8
[   61.979677][ T1541]  ? hci_cmd_complete_evt+0xc6d0/0xc6d0
[   61.985232][ T1541]  ? lock_acquire+0x1f1/0xad0
[   61.989904][ T1541]  ? skb_dequeue+0x1c/0x180
[   61.994403][ T1541]  ? find_held_lock+0x2d/0x110
[   61.999163][ T1541]  ? mark_lock+0xbc/0x1710
[   62.003582][ T1541]  ? mark_held_locks+0x9f/0xe0
[   62.009820][ T1541]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[   62.015642][ T1541]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[   62.022054][ T1541]  ? trace_hardirqs_on+0x5f/0x220
[   62.027078][ T1541]  ? lockdep_hardirqs_on+0x76/0xf0
[   62.032378][ T1541]  hci_rx_work+0x22e/0xb50
[   62.036807][ T1541]  process_one_work+0x94c/0x1670
[   62.041749][ T1541]  ? lock_release+0x8e0/0x8e0
[   62.046424][ T1541]  ? pwq_dec_nr_in_flight+0x2d0/0x2d0
[   62.051798][ T1541]  ? rwlock_bug.part.0+0x90/0x90
[   62.056735][ T1541]  ? lockdep_hardirqs_off+0x7e/0xb0
[   62.061937][ T1541]  worker_thread+0x64c/0x1120
[   62.066634][ T1541]  ? process_one_work+0x1670/0x1670
[   62.071836][ T1541]  kthread+0x3b5/0x4a0
[   62.075907][ T1541]  ? __kthread_bind_mask+0xc0/0xc0
[   62.081019][ T1541]  ? __kthread_bind_mask+0xc0/0xc0
executing program
executing program
executing program
[   62.086132][ T1541]  ret_from_fork+0x1f/0x30
[   62.090877][ T1541] kobject_add_internal failed for hci0:200 with -EEXIST, don't try to register things with the same name in the same directory.
[   62.104265][ T1541] Bluetooth: hci0: failed to register connection device
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.315335][ T6902] debugfs: Directory '200' with parent 'hci0' already present!
[   62.323624][ T6902] list_add double add: new=ffff8880933a8420, prev=ffff8880933a8420, next=ffff88821b775a00.
[   62.334698][ T6902] ------------[ cut here ]------------
[   62.340168][ T6902] kernel BUG at lib/list_debug.c:29!
[   62.346163][ T6902] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   62.352242][ T6902] CPU: 0 PID: 6902 Comm: kworker/u5:3 Not tainted 5.8.0-rc7-next-20200731-syzkaller #0
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.361857][ T6902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   62.371922][ T6902] Workqueue: hci0 hci_rx_work
[   62.376603][ T6902] RIP: 0010:__list_add_valid.cold+0x26/0x3c
[   62.382613][ T6902] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 a0 08 94 88 e8 ca 82 be fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 e0 09 94 88 e8 b3 82 be fd <0f> 0b 48 89 f1 48 c7 c7 60 09 94 88 4c 89 e6 e8 9f 82 be fd 0f 0b
[   62.402240][ T6902] RSP: 0018:ffffc90005907830 EFLAGS: 00010282
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.408313][ T6902] RAX: 0000000000000058 RBX: ffff88821b775a00 RCX: 0000000000000000
[   62.416290][ T6902] RDX: ffff888093b7a000 RSI: ffffffff815d86e7 RDI: fffff52000b20ef8
[   62.424272][ T6902] RBP: ffff8880933a8420 R08: 0000000000000058 R09: ffff8880ae6318a7
[   62.432246][ T6902] R10: 0000000000000000 R11: 0000000000076bd8 R12: ffff88821b775a00
[   62.440222][ T6902] R13: ffff888093971288 R14: ffff8880933a8438 R15: ffff8880933a8420
[   62.448200][ T6902] FS:  0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[   62.457135][ T6902] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.463726][ T6902] CR2: 0000000020000000 CR3: 0000000009a79000 CR4: 00000000001506f0
[   62.471930][ T6902] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   62.479909][ T6902] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   62.487893][ T6902] Call Trace:
[   62.491184][ T6902]  kobject_add_internal+0x18d/0x940
[   62.496383][ T6902]  kobject_add+0x150/0x1c0
[   62.500809][ T6902]  ? kset_create_and_add+0x190/0x190
[   62.506107][ T6902]  ? kfree+0x1cd/0x2c0
[   62.510188][ T6902]  ? trace_hardirqs_on+0x5f/0x220
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.515670][ T6902]  ? lockdep_hardirqs_on+0x76/0xf0
[   62.520783][ T6902]  ? device_add+0x33b/0x1c40
[   62.525696][ T6902]  device_add+0x35a/0x1c40
[   62.530566][ T6902]  ? devlink_add_symlinks+0x450/0x450
[   62.536042][ T6902]  ? hci_debugfs_create_conn+0x179/0x1f0
[   62.541938][ T6902]  ? hci_debugfs_create_le+0x850/0x850
[   62.547421][ T6902]  hci_conn_add_sysfs+0x84/0xe0
[   62.552270][ T6902]  hci_event_packet+0x1286/0x87a8
[   62.557301][ T6902]  ? hci_cmd_complete_evt+0xc6d0/0xc6d0
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.562851][ T6902]  ? lock_acquire+0x1f1/0xad0
[   62.567534][ T6902]  ? skb_dequeue+0x1c/0x180
[   62.572040][ T6902]  ? find_held_lock+0x2d/0x110
[   62.576810][ T6902]  ? mark_lock+0xbc/0x1710
[   62.581301][ T6902]  ? mark_held_locks+0x9f/0xe0
[   62.586055][ T6902]  ? _raw_spin_unlock_irqrestore+0x62/0xe0
[   62.591864][ T6902]  ? lockdep_hardirqs_on_prepare+0x354/0x530
[   62.597846][ T6902]  ? trace_hardirqs_on+0x5f/0x220
[   62.602880][ T6902]  ? lockdep_hardirqs_on+0x76/0xf0
[   62.608004][ T6902]  hci_rx_work+0x22e/0xb50
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.612432][ T6902]  process_one_work+0x94c/0x1670
[   62.617389][ T6902]  ? lock_release+0x8e0/0x8e0
[   62.622076][ T6902]  ? pwq_dec_nr_in_flight+0x2d0/0x2d0
[   62.627443][ T6902]  ? rwlock_bug.part.0+0x90/0x90
[   62.632386][ T6902]  ? lockdep_hardirqs_off+0x7e/0xb0
[   62.637676][ T6902]  worker_thread+0x64c/0x1120
[   62.642405][ T6902]  ? __kthread_parkme+0x13f/0x1e0
[   62.647438][ T6902]  ? process_one_work+0x1670/0x1670
[   62.652632][ T6902]  kthread+0x3b5/0x4a0
[   62.656716][ T6902]  ? __kthread_bind_mask+0xc0/0xc0
[   62.661824][ T6902]  ? __kthread_bind_mask+0xc0/0xc0
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.666940][ T6902]  ret_from_fork+0x1f/0x30
[   62.671357][ T6902] Modules linked in:
[   62.675349][ T6902] ---[ end trace aa5b1830a9e15bd0 ]---
[   62.680879][ T6902] RIP: 0010:__list_add_valid.cold+0x26/0x3c
[   62.686811][ T6902] Code: 57 ff ff ff 4c 89 e1 48 c7 c7 a0 08 94 88 e8 ca 82 be fd 0f 0b 48 89 f2 4c 89 e1 48 89 ee 48 c7 c7 e0 09 94 88 e8 b3 82 be fd <0f> 0b 48 89 f1 48 c7 c7 60 09 94 88 4c 89 e6 e8 9f 82 be fd 0f 0b
[   62.706468][ T6902] RSP: 0018:ffffc90005907830 EFLAGS: 00010282
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.712590][ T6902] RAX: 0000000000000058 RBX: ffff88821b775a00 RCX: 0000000000000000
[   62.720575][ T6902] RDX: ffff888093b7a000 RSI: ffffffff815d86e7 RDI: fffff52000b20ef8
[   62.728678][ T6902] RBP: ffff8880933a8420 R08: 0000000000000058 R09: ffff8880ae6318a7
[   62.736778][ T6902] R10: 0000000000000000 R11: 0000000000076bd8 R12: ffff88821b775a00
[   62.744793][ T6902] R13: ffff888093971288 R14: ffff8880933a8438 R15: ffff8880933a8420
[   62.752811][ T6902] FS:  0000000000000000(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[   62.761745][ T6902] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   62.768387][ T6902] CR2: 0000000020000000 CR3: 0000000009a79000 CR4: 00000000001506f0
[   62.776427][ T6902] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   62.784448][ T6902] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   62.792463][ T6902] Kernel panic - not syncing: Fatal exception
[   62.799548][ T6902] Kernel Offset: disabled
[   62.803864][ T6902] Rebooting in 86400 seconds..