Warning: Permanently added '10.128.0.182' (ECDSA) to the list of known hosts. [ 159.847807][ T24] audit: type=1400 audit(1566439800.897:36): avc: denied { map } for pid=7000 comm="syz-executor949" path="/root/syz-executor949141079" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program executing program executing program executing program executing program executing program [ 169.003125][ T3547] Bluetooth: hci5: command 0x1003 tx timeout [ 169.009250][ T7027] Bluetooth: hci5: sending frame failed (-49) [ 169.015379][ T3547] Bluetooth: hci7: command 0x1003 tx timeout [ 169.021476][ T3547] Bluetooth: hci6: command 0x1003 tx timeout [ 169.021508][ T7027] Bluetooth: hci7: sending frame failed (-49) [ 169.027790][ T3547] Bluetooth: hci3: command 0x1003 tx timeout [ 169.033801][ T7026] Bluetooth: hci6: sending frame failed (-49) [ 169.039943][ T3547] Bluetooth: hci2: command 0x1003 tx timeout [ 169.045816][ T7026] Bluetooth: hci3: sending frame failed (-49) [ 169.052040][ T3547] Bluetooth: hci4: command 0x1003 tx timeout [ 169.058006][ T7027] Bluetooth: hci2: sending frame failed (-49) [ 169.064023][ T7028] Bluetooth: hci4: sending frame failed (-49) [ 169.076467][ T3547] Bluetooth: hci1: command 0x1003 tx timeout [ 169.082459][ T3547] Bluetooth: hci0: command 0x1003 tx timeout [ 169.082504][ T7028] Bluetooth: hci1: sending frame failed (-49) [ 169.093208][ T7026] Bluetooth: hci0: sending frame failed (-49) [ 171.083050][ T3547] Bluetooth: hci4: command 0x1001 tx timeout [ 171.083062][ T25] Bluetooth: hci3: command 0x1001 tx timeout [ 171.089098][ T7026] Bluetooth: hci4: sending frame failed (-49) [ 171.095086][ T7028] Bluetooth: hci3: sending frame failed (-49) [ 171.101220][ T3547] Bluetooth: hci5: command 0x1001 tx timeout [ 171.107286][ T25] Bluetooth: hci2: command 0x1001 tx timeout [ 171.117532][ T7028] Bluetooth: hci5: sending frame failed (-49) [ 171.119177][ T7026] Bluetooth: hci2: sending frame failed (-49) [ 171.131203][ T25] Bluetooth: hci7: command 0x1001 tx timeout [ 171.137252][ T7026] Bluetooth: hci7: sending frame failed (-49) [ 171.143325][ T25] Bluetooth: hci6: command 0x1001 tx timeout [ 171.149362][ T7026] Bluetooth: hci6: sending frame failed (-49) [ 171.163040][ T3547] Bluetooth: hci0: command 0x1001 tx timeout [ 171.163044][ T25] Bluetooth: hci1: command 0x1001 tx timeout [ 171.163068][ T7026] Bluetooth: hci1: sending frame failed (-49) [ 171.169048][ T7028] Bluetooth: hci0: sending frame failed (-49) [ 173.163043][ T3547] Bluetooth: hci6: command 0x1009 tx timeout [ 173.163057][ T25] Bluetooth: hci7: command 0x1009 tx timeout [ 173.169139][ T3547] Bluetooth: hci5: command 0x1009 tx timeout [ 173.175242][ T25] Bluetooth: hci2: command 0x1009 tx timeout [ 173.175246][ T25] Bluetooth: hci3: command 0x1009 tx timeout [ 173.193146][ T3547] Bluetooth: hci4: command 0x1009 tx timeout [ 173.243120][ T25] Bluetooth: hci1: command 0x1009 tx timeout [ 173.253062][ T3547] Bluetooth: hci0: command 0x1009 tx timeout executing program [ 192.024882][ T26] Bluetooth: hci0: Frame reassembly failed (-90) executing program [ 192.256256][ T457] Bluetooth: hci1: Frame reassembly failed (-84) executing program executing program executing program [ 192.403826][ T457] Bluetooth: hci3: Frame reassembly failed (-84) executing program [ 192.463116][ T26] Bluetooth: hci4: Frame reassembly failed (-90) executing program executing program [ 192.560831][ T457] Bluetooth: hci6: Frame reassembly failed (-90) [ 192.600220][ T457] Bluetooth: hci7: Frame reassembly failed (-90) [ 194.043014][ T3547] Bluetooth: hci0: command 0x1003 tx timeout [ 194.049758][ T7026] Bluetooth: hci0: sending frame failed (-49) [ 194.283021][ T3547] Bluetooth: hci1: command 0x1003 tx timeout [ 194.289212][ T7026] Bluetooth: hci1: sending frame failed (-49) [ 194.363020][ T25] Bluetooth: hci2: command 0x1003 tx timeout [ 194.369065][ T7026] Bluetooth: hci2: sending frame failed (-49) [ 194.443039][ T25] Bluetooth: hci3: command 0x1003 tx timeout [ 194.449092][ T7026] Bluetooth: hci3: sending frame failed (-49) [ 194.523019][ T3547] Bluetooth: hci4: command 0x1003 tx timeout [ 194.523022][ T25] Bluetooth: hci5: command 0x1003 tx timeout [ 194.526782][ T7026] Bluetooth: hci5: sending frame failed (-49) [ 194.529043][ T7028] Bluetooth: hci4: sending frame failed (-49) [ 194.603018][ T25] Bluetooth: hci7: command 0x1003 tx timeout [ 194.603021][ T3547] Bluetooth: hci6: command 0x1003 tx timeout [ 194.603050][ T7028] Bluetooth: hci6: sending frame failed (-49) [ 194.609048][ T7026] Bluetooth: hci7: sending frame failed (-49) [ 196.123023][ T25] Bluetooth: hci0: command 0x1001 tx timeout [ 196.129068][ T7026] Bluetooth: hci0: sending frame failed (-49) [ 196.363019][ T25] Bluetooth: hci1: command 0x1001 tx timeout [ 196.369084][ T7026] Bluetooth: hci1: sending frame failed (-49) [ 196.443016][ T25] Bluetooth: hci2: command 0x1001 tx timeout [ 196.449067][ T7026] Bluetooth: hci2: sending frame failed (-49) [ 196.523017][ T3547] Bluetooth: hci3: command 0x1001 tx timeout [ 196.529080][ T7026] Bluetooth: hci3: sending frame failed (-49) [ 196.603024][ T3547] Bluetooth: hci4: command 0x1001 tx timeout [ 196.603027][ T25] Bluetooth: hci5: command 0x1001 tx timeout [ 196.603055][ T7026] Bluetooth: hci5: sending frame failed (-49) [ 196.609084][ T7028] Bluetooth: hci4: sending frame failed (-49) [ 196.683019][ T3547] Bluetooth: hci6: command 0x1001 tx timeout [ 196.683022][ T25] Bluetooth: hci7: command 0x1001 tx timeout [ 196.695002][ T7028] Bluetooth: hci7: sending frame failed (-49) [ 196.701092][ T7028] Bluetooth: hci6: sending frame failed (-49) [ 198.203059][ T25] Bluetooth: hci0: command 0x1009 tx timeout [ 198.443088][ T3547] Bluetooth: hci1: command 0x1009 tx timeout [ 198.523056][ T3547] Bluetooth: hci2: command 0x1009 tx timeout [ 198.603056][ T25] Bluetooth: hci3: command 0x1009 tx timeout [ 198.683065][ T3547] Bluetooth: hci4: command 0x1009 tx timeout [ 198.683068][ T25] Bluetooth: hci5: command 0x1009 tx timeout [ 198.763059][ T3547] Bluetooth: hci7: command 0x1009 tx timeout [ 198.763061][ T25] Bluetooth: hci6: command 0x1009 tx timeout [ 205.047020][ T7006] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 28.020s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 28.020s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 29.900s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 29.910s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 29.960s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 29.960s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 30.920s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 30.930s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 30.980s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 30.980s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888111268500 (size 224): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 31.970s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000d896ddb4>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000799a9eeb>] __alloc_skb+0x6e/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888112dc8800 (size 2048): comm "syz-executor949", pid 7038, jiffies 4294956516 (age 31.970s) hex dump (first 32 bytes): 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<000000005bb10ffa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<00000000a194882f>] __kmalloc_node_track_caller+0x38/0x50 [<000000007f0553b8>] __kmalloc_reserve.isra.0+0x40/0xb0 [<00000000ae33240d>] __alloc_skb+0xa0/0x210 [<00000000b87047cc>] h4_recv_buf+0x26d/0x450 [<000000001d726612>] h4_recv+0x51/0xb0 [<0000000072041957>] hci_uart_tty_receive+0xba/0x200 [<00000000ab64141e>] tty_ioctl+0x81c/0xa30 [<0000000051e2582f>] do_vfs_ioctl+0x62a/0x810 [<000000001f889116>] ksys_ioctl+0x86/0xb0 [<00000000ef0a045c>] __x64_sys_ioctl+0x1e/0x30 [<000000001bd62c38>] do_syscall_64+0x76/0x1a0 [<00000000574e4082>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 executing program executing program [ 225.649467][ T457] Bluetooth: hci0: Frame reassembly failed (-90) [ 225.681864][ T457] Bluetooth: hci1: Frame reassembly failed (-90) [ 227.723021][ T25] Bluetooth: hci1: command 0x1003 tx timeout [ 227.723024][ T3547] Bluetooth: hci0: command 0x1003 tx timeout [ 227.723064][ T7020] Bluetooth: hci0: sending frame failed (-49) [ 227.729172][ T7021] Bluetooth: hci1: sending frame failed (-49) [ 229.803025][ T3547] Bluetooth: hci0: command 0x1001 tx timeout [ 229.803028][ T25] Bluetooth: hci1: command 0x1001 tx timeout [ 229.803075][ T7021] Bluetooth: hci1: sending frame failed (-49) [ 229.809042][ T7020] Bluetooth: hci0: sending frame failed (-49)