Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 24.345374][ T24] kauditd_printk_skb: 16 callbacks suppressed [ 24.345380][ T24] audit: type=1800 audit(1567614609.014:33): pid=6791 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 24.374553][ T24] audit: type=1800 audit(1567614609.014:34): pid=6791 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 28.912177][ T24] audit: type=1400 audit(1567614613.584:35): avc: denied { map } for pid=6969 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.85' (ECDSA) to the list of known hosts. [ 80.781508][ T24] audit: type=1400 audit(1567614665.454:36): avc: denied { map } for pid=6985 comm="syz-executor599" path="/root/syz-executor599441911" dev="sda1" ino=1426 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 executing program executing program executing program executing program executing program executing program executing program executing program [ 89.878496][ T42] Bluetooth: hci7: command 0xfc11 tx timeout [ 89.878538][ T7007] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 89.884597][ T42] Bluetooth: hci6: command 0xfc11 tx timeout [ 89.891894][ T7009] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 89.898168][ T42] Bluetooth: hci5: command 0xfc11 tx timeout [ 89.905131][ T7008] Bluetooth: hci3: Entering manufacturer mode failed (-110) [ 89.905167][ T7006] Bluetooth: hci2: Entering manufacturer mode failed (-110) [ 89.911494][ T42] Bluetooth: hci3: command tx timeout [ 89.918640][ T5] Bluetooth: hci1: command 0xfc11 tx timeout [ 89.918645][ T5] Bluetooth: hci0: command 0xfc11 tx timeout [ 89.926023][ T42] Bluetooth: hci4: command 0xfc11 tx timeout [ 89.931281][ T6999] Bluetooth: hci1: Entering manufacturer mode failed (-110) [ 89.937328][ T42] Bluetooth: hci2: command 0xfc11 tx timeout [ 89.943282][ T1543] Bluetooth: hci0: Entering manufacturer mode failed (-110) [ 89.944495][ T7010] Bluetooth: hci6: Entering manufacturer mode failed (-110) [ 89.977046][ T7011] Bluetooth: hci7: Entering manufacturer mode failed (-110) executing program [ 107.388093][ T188] Bluetooth: hci0: Frame reassembly failed (-84) executing program executing program executing program executing program [ 107.951086][ T188] Bluetooth: hci3: Frame reassembly failed (-84) executing program executing program [ 108.047806][ T2533] Bluetooth: hci5: Frame reassembly failed (-84) executing program [ 109.398544][ T5] Bluetooth: hci0: command 0xfc11 tx timeout [ 109.398741][ T7010] Bluetooth: hci0: Entering manufacturer mode failed (-110) [ 109.878492][ T7014] Bluetooth: hci1: Entering manufacturer mode failed (-110) [ 109.958483][ T7006] Bluetooth: hci3: Entering manufacturer mode failed (-110) [ 109.965884][ T7011] Bluetooth: hci2: Entering manufacturer mode failed (-110) [ 110.038485][ T7007] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 110.118495][ T6999] Bluetooth: hci6: Entering manufacturer mode failed (-110) [ 110.125868][ T7009] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 110.198486][ T5] Bluetooth: hci7: command 0xfc11 tx timeout [ 110.204518][ T7008] Bluetooth: hci7: Entering manufacturer mode failed (-110) [ 113.712446][ T6992] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 114.811102][ T6993] kmemleak: 4 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 23.270s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 23.270s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 22.710s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 22.710s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 24.410s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 24.410s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 23.850s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 23.850s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 25.550s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 25.550s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 24.990s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 24.990s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.690s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.690s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.130s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.130s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.760s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.760s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.200s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.200s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.830s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 26.830s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.270s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 26.270s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643af00 (size 224): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 28.010s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a20400 (size 1024): comm "syz-executor599", pid 7015, jiffies 4294947999 (age 28.010s) hex dump (first 32 bytes): ad de ad de 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 4f 95 2a 81 88 ff ff a0 7e 9b 83 ff ff ff ff .O.*.....~...... backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff88811643ab00 (size 224): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 27.450s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000068aebe83>] kmem_cache_alloc_node+0x163/0x2f0 [<00000000a43644f5>] __alloc_skb+0x6e/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 BUG: memory leak unreferenced object 0xffff888121a0bc00 (size 1024): comm "syz-executor599", pid 7018, jiffies 4294948055 (age 27.450s) hex dump (first 32 bytes): 00 00 00 03 00 00 00 00 06 00 00 00 00 01 00 00 ................ 06 00 00 00 06 00 00 00 01 00 00 00 00 00 00 00 ................ backtrace: [<00000000267d43aa>] kmem_cache_alloc_node_trace+0x161/0x2f0 [<000000002e93be84>] __kmalloc_node_track_caller+0x38/0x50 [<00000000bf186cd6>] __kmalloc_reserve.isra.0+0x40/0xb0 [<0000000069840101>] __alloc_skb+0xa0/0x210 [<0000000081920b3f>] h4_recv_buf+0x26d/0x450 [<0000000047237b37>] ag6xx_recv+0x51/0xb0 [<000000001ab42fc6>] hci_uart_tty_receive+0xba/0x200 [<000000001fec88ba>] tty_ioctl+0x81c/0xa30 [<00000000e83c8b15>] do_vfs_ioctl+0x62a/0x810 [<000000004ad6bee5>] ksys_ioctl+0x86/0xb0 [<000000008bbf34c1>] __x64_sys_ioctl+0x1e/0x30 [<0000000092142cda>] do_syscall_64+0x76/0x1a0 [<0000000007dace5c>] entry_SYSCALL_64_after_hwframe+0x44/0xa9 executing program [ 138.918496][ T5] Bluetooth: hci0: command 0xfc11 tx timeout [ 138.918505][ T7008] Bluetooth: hci0: Entering manufacturer mode failed (-110)