[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 50.862102][ T26] audit: type=1800 audit(1572094902.947:25): pid=8194 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 50.886067][ T26] audit: type=1800 audit(1572094902.957:26): pid=8194 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 50.906271][ T26] audit: type=1800 audit(1572094902.957:27): pid=8194 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.0.211' (ECDSA) to the list of known hosts. executing program executing program executing program syzkaller login: [ 66.872575][ T8350] ------------[ cut here ]------------ [ 66.878469][ T8350] ODEBUG: free active (active state 0) object type: timer_list hint: rfcomm_dlc_timeout+0x0/0x80 [ 66.889102][ T8350] WARNING: CPU: 1 PID: 8350 at lib/debugobjects.c:484 debug_check_no_obj_freed+0x464/0x5b0 [ 66.899077][ T8350] Kernel panic - not syncing: panic_on_warn set ... [ 66.905745][ T8350] CPU: 1 PID: 8350 Comm: syz-executor488 Not tainted 5.4.0-rc4+ #0 [ 66.913645][ T8350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 66.923788][ T8350] Call Trace: [ 66.927083][ T8350] dump_stack+0x1d8/0x2f8 [ 66.931401][ T8350] panic+0x264/0x7a9 [ 66.935286][ T8350] ? __warn+0x105/0x210 [ 66.939430][ T8350] ? debug_check_no_obj_freed+0x464/0x5b0 [ 66.945215][ T8350] __warn+0x20e/0x210 [ 66.949217][ T8350] ? debug_check_no_obj_freed+0x464/0x5b0 [ 66.955030][ T8350] report_bug+0x1b6/0x2f0 [ 66.959344][ T8350] ? debug_check_no_obj_freed+0x464/0x5b0 [ 66.965069][ T8350] do_error_trap+0xd7/0x440 [ 66.969571][ T8350] do_invalid_op+0x36/0x40 [ 66.973991][ T8350] ? debug_check_no_obj_freed+0x464/0x5b0 [ 66.979700][ T8350] invalid_op+0x23/0x30 [ 66.984167][ T8350] RIP: 0010:debug_check_no_obj_freed+0x464/0x5b0 [ 66.990488][ T8350] Code: 08 48 89 df e8 2d f6 63 fe 4c 8b 03 48 c7 c7 ce ca 40 88 48 c7 c6 bb cb 3e 88 4c 89 e2 44 89 f9 4d 89 e9 31 c0 e8 0c 50 fd fd <0f> 0b 4c 8b 6d a8 ff 05 a4 05 76 05 49 83 c5 30 4c 89 e8 48 c1 e8 [ 67.010545][ T8350] RSP: 0018:ffff8880a7d17b78 EFLAGS: 00010046 [ 67.016812][ T8350] RAX: 84b6ec30e4df8400 RBX: ffffffff888d7ce0 RCX: ffff8880a4376700 [ 67.025703][ T8350] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 67.033919][ T8350] RBP: ffff8880a7d17c10 R08: ffffffff815c8d24 R09: ffffed1015d640d2 [ 67.041910][ T8350] R10: ffffed1015d640d2 R11: 0000000000000000 R12: ffffffff88445b2a [ 67.050091][ T8350] R13: ffffffff86c07220 R14: dffffc0000000000 R15: 0000000000000000 [ 67.058183][ T8350] ? rfcomm_dlc_alloc+0x3a0/0x3a0 [ 67.063494][ T8350] ? vprintk_emit+0x2d4/0x3a0 [ 67.068179][ T8350] ? debug_check_no_obj_freed+0x464/0x5b0 [ 67.074103][ T8350] ? rfcomm_dlc_free+0x1e/0x30 [ 67.079130][ T8350] kfree+0x107/0x200 [ 67.083178][ T8350] rfcomm_dlc_free+0x1e/0x30 [ 67.088172][ T8350] rfcomm_dev_ioctl+0xb9a/0x1c70 [ 67.093272][ T8350] ? __local_bh_enable_ip+0x13a/0x240 [ 67.098742][ T8350] rfcomm_sock_ioctl+0x7e/0xa0 [ 67.103827][ T8350] sock_do_ioctl+0x7c/0x260 [ 67.108551][ T8350] sock_ioctl+0x464/0x690 [ 67.113172][ T8350] ? sock_poll+0x310/0x310 [ 67.117610][ T8350] do_vfs_ioctl+0x744/0x1730 [ 67.122838][ T8350] ? assoc_array_gc+0x1401/0x1440 [ 67.128916][ T8350] ? tomoyo_file_ioctl+0x23/0x30 [ 67.133892][ T8350] ? security_file_ioctl+0xa1/0xd0 [ 67.139126][ T8350] __x64_sys_ioctl+0xe3/0x120 [ 67.143925][ T8350] do_syscall_64+0xf7/0x1c0 [ 67.148425][ T8350] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 67.154311][ T8350] RIP: 0033:0x441229 [ 67.158278][ T8350] Code: e8 fc ab 02 00 48 83 c4 18 c3 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 9b 09 fc ff c3 66 2e 0f 1f 84 00 00 00 00 [ 67.177909][ T8350] RSP: 002b:00007ffc52635078 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 67.186304][ T8350] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441229 [ 67.194284][ T8350] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000004 [ 67.202254][ T8350] RBP: 000000000001050c R08: 00000000004002c8 R09: 00000000004002c8 [ 67.210222][ T8350] R10: 00000000004002c8 R11: 0000000000000246 R12: 0000000000402050 [ 67.218193][ T8350] R13: 00000000004020e0 R14: 0000000000000000 R15: 0000000000000000 [ 67.228255][ T8350] Kernel Offset: disabled [ 67.232823][ T8350] Rebooting in 86400 seconds..