[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c. [ 60.135701][ T26] audit: type=1800 audit(1572605174.160:25): pid=8976 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 60.172662][ T26] audit: type=1800 audit(1572605174.160:26): pid=8976 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 60.231941][ T26] audit: type=1800 audit(1572605174.170:27): pid=8976 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.10.16' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 447.503922][ T9168] Bluetooth: Error in BCSP hdr checksum [ 447.543069][ T9168] Bluetooth: Error in BCSP hdr checksum [ 447.553428][ T9168] Bluetooth: Error in BCSP hdr checksum [ 447.553478][ T143] Bluetooth: Error in BCSP hdr checksum [ 447.559400][ T9168] Bluetooth: Error in BCSP hdr checksum [ 447.565505][ T143] Bluetooth: Error in BCSP hdr checksum [ 447.763435][ T9181] Bluetooth: Error in BCSP hdr checksum [ 447.802841][ T143] Bluetooth: Error in BCSP hdr checksum [ 447.813633][ T7] Bluetooth: Error in BCSP hdr checksum [ 447.813648][ T143] Bluetooth: Error in BCSP hdr checksum [ 447.819666][ T9181] Bluetooth: Error in BCSP hdr checksum [ 447.824937][ T143] Bluetooth: Error in BCSP hdr checksum [ 448.022871][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.062884][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.073303][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.073308][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.073352][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.079096][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.282866][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.322872][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.332937][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.333314][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.338682][ T143] Bluetooth: Error in BCSP hdr checksum [ 448.344323][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.542858][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.582902][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.593707][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.594717][ T143] Bluetooth: Error in BCSP hdr checksum [ 448.599655][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.605011][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.802905][ T143] Bluetooth: Error in BCSP hdr checksum [ 448.843085][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.853295][ T9181] Bluetooth: Error in BCSP hdr checksum [ 448.853299][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.853353][ T9182] Bluetooth: Error in BCSP hdr checksum [ 448.859583][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.062867][ T9181] Bluetooth: Error in BCSP hdr checksum [ 449.102979][ T9181] Bluetooth: Error in BCSP hdr checksum [ 449.113308][ T9182] Bluetooth: Error in BCSP hdr checksum [ 449.113400][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.118965][ T9182] Bluetooth: Error in BCSP hdr checksum [ 449.119310][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.263533][ T3563] Bluetooth: hci0: command 0x1003 tx timeout [ 449.270724][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.342689][ T3563] Bluetooth: hci5: command 0x1003 tx timeout [ 449.349047][ T3563] Bluetooth: hci4: command 0x1003 tx timeout [ 449.349379][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.355509][ T3563] Bluetooth: hci3: command 0x1003 tx timeout [ 449.361610][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.367178][ T3563] Bluetooth: hci1: command 0x1003 tx timeout [ 449.378755][ T3563] Bluetooth: hci2: command 0x1003 tx timeout [ 449.385457][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.385764][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.391085][ T9181] Bluetooth: Error in BCSP hdr checksum [ 449.422866][ T3563] Bluetooth: hci7: command 0x1003 tx timeout [ 449.429032][ T3563] Bluetooth: hci6: command 0x1003 tx timeout [ 449.429115][ T9180] Bluetooth: hci7: sending frame failed (-49) [ 449.436003][ T9179] Bluetooth: hci6: sending frame failed (-49) [ 449.503246][ T3563] Bluetooth: hci10: command 0x1003 tx timeout [ 449.510007][ T9179] Bluetooth: hci10: sending frame failed (-49) [ 449.516438][ T3563] Bluetooth: hci9: command 0x1003 tx timeout [ 449.523065][ T3563] Bluetooth: hci11: command 0x1003 tx timeout [ 449.523106][ T9179] Bluetooth: hci9: sending frame failed (-49) [ 449.529215][ T3563] Bluetooth: hci8: command 0x1003 tx timeout [ 449.529418][ T9180] Bluetooth: hci11: sending frame failed (-49) [ 449.536090][ T9179] Bluetooth: hci8: sending frame failed (-49) [ 449.554854][ T9181] Bluetooth: Error in BCSP hdr checksum [ 449.603030][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.612958][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.643082][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.643277][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.648830][ T9181] Bluetooth: Error in BCSP hdr checksum [ 449.812832][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.818649][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.862895][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.873636][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.902873][ T143] Bluetooth: Error in BCSP hdr checksum [ 449.903051][ T7] Bluetooth: Error in BCSP hdr checksum [ 449.912161][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.072958][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.122805][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.132858][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.162850][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.163049][ T7] Bluetooth: Error in BCSP hdr checksum [ 450.170976][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.332920][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.382839][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.388660][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.394696][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.422942][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.423157][ T7] Bluetooth: Error in BCSP hdr checksum [ 450.428664][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.592977][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.642917][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.653142][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.682879][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.683124][ T7] Bluetooth: Error in BCSP hdr checksum [ 450.688657][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.852815][ T9181] Bluetooth: Error in BCSP hdr checksum [ 450.902921][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.908823][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.914892][ T7] Bluetooth: Error in BCSP hdr checksum [ 450.942892][ T143] Bluetooth: Error in BCSP hdr checksum [ 450.948771][ T7] Bluetooth: Error in BCSP hdr checksum [ 450.948929][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.112977][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.162996][ T143] Bluetooth: Error in BCSP hdr checksum [ 451.169083][ T143] Bluetooth: Error in BCSP hdr checksum [ 451.176038][ T143] Bluetooth: Error in BCSP hdr checksum [ 451.202906][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.203139][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.208733][ T143] Bluetooth: Error in BCSP hdr checksum [ 451.342654][ T17] Bluetooth: hci0: command 0x1001 tx timeout [ 451.349381][ T143] Bluetooth: Error in BCSP hdr checksum [ 451.422754][ T17] Bluetooth: hci2: command 0x1001 tx timeout [ 451.429088][ T17] Bluetooth: hci1: command 0x1001 tx timeout [ 451.429663][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.435690][ T17] Bluetooth: hci3: command 0x1001 tx timeout [ 451.441037][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.447145][ T17] Bluetooth: hci4: command 0x1001 tx timeout [ 451.452959][ T7] Bluetooth: Error in BCSP hdr checksum [ 451.458894][ T17] Bluetooth: hci5: command 0x1001 tx timeout [ 451.470625][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.473642][ T7] Bluetooth: Error in BCSP hdr checksum [ 451.476613][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.481741][ T7] Bluetooth: Error in BCSP hdr checksum [ 451.502634][ T17] Bluetooth: hci7: command 0x1001 tx timeout [ 451.502652][ T3563] Bluetooth: hci6: command 0x1001 tx timeout [ 451.510461][ T9179] Bluetooth: hci7: sending frame failed (-49) [ 451.515737][ T9183] Bluetooth: hci6: sending frame failed (-49) [ 451.582697][ T3563] Bluetooth: hci11: command 0x1001 tx timeout [ 451.582721][ T17] Bluetooth: hci8: command 0x1001 tx timeout [ 451.588970][ T3563] Bluetooth: hci10: command 0x1001 tx timeout [ 451.595437][ T9179] Bluetooth: hci11: sending frame failed (-49) [ 451.601481][ T9183] Bluetooth: hci10: sending frame failed (-49) [ 451.608063][ T9179] Bluetooth: hci8: sending frame failed (-49) [ 451.614396][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.620294][ T17] Bluetooth: hci9: command 0x1001 tx timeout [ 451.626356][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.631950][ T9179] Bluetooth: hci9: sending frame failed (-49) [ 451.638239][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.682842][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.688722][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.695194][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.700784][ T9181] Bluetooth: Error in BCSP hdr checksum [ 451.712873][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.718594][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.733002][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.733342][ T7] Bluetooth: Error in BCSP hdr checksum [ 451.739215][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.745237][ T7] Bluetooth: Error in BCSP hdr checksum [ 451.882958][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.888664][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.942987][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.949493][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.953261][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.960920][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.972833][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.978863][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.992862][ T9168] Bluetooth: Error in BCSP hdr checksum [ 451.993031][ T9182] Bluetooth: Error in BCSP hdr checksum [ 451.998622][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.004377][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.142938][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.149078][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.202857][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.208774][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.215016][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.220860][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.232851][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.238635][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.252905][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.253188][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.258706][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.264546][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.402955][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.409386][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.463029][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.470114][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.476228][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.482505][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.492927][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.499603][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.512926][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.513846][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.519363][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.525398][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.662984][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.668874][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.722927][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.729028][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.735212][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.740818][ T9182] Bluetooth: Error in BCSP hdr checksum [ 452.752949][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.758684][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.772927][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.773220][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.778701][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.785225][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.923061][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.929335][ T7] Bluetooth: Error in BCSP hdr checksum [ 452.983198][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.990066][ T9168] Bluetooth: Error in BCSP hdr checksum [ 452.997742][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.003928][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.012987][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.019114][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.033108][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.033159][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.040071][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.046572][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.183167][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.190736][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.243035][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.248944][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.255126][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.255191][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.262236][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.273341][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.280830][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.293054][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.293581][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.298935][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.305054][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.422773][ T3563] Bluetooth: hci0: command 0x1009 tx timeout [ 453.443094][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.449751][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.502815][ T3563] Bluetooth: hci5: command 0x1009 tx timeout [ 453.509175][ T3563] Bluetooth: hci4: command 0x1009 tx timeout [ 453.515650][ T3563] Bluetooth: hci3: command 0x1009 tx timeout [ 453.521984][ T3563] Bluetooth: hci1: command 0x1009 tx timeout [ 453.528160][ T3563] Bluetooth: hci2: command 0x1009 tx timeout [ 453.534860][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.540783][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.540876][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.548037][ T9181] Bluetooth: Error in BCSP hdr checksum [ 453.552521][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.560031][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.564332][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.570903][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.577828][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.583707][ T17] Bluetooth: hci7: command 0x1009 tx timeout [ 453.589130][ T3563] Bluetooth: hci6: command 0x1009 tx timeout [ 453.595575][ T9181] Bluetooth: Error in BCSP hdr checksum [ 453.595659][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.662813][ T3563] Bluetooth: hci10: command 0x1009 tx timeout [ 453.662820][ T17] Bluetooth: hci9: command 0x1009 tx timeout [ 453.662987][ T17] Bluetooth: hci8: command 0x1009 tx timeout [ 453.683827][ T17] Bluetooth: hci11: command 0x1009 tx timeout [ 453.703085][ T143] Bluetooth: Error in BCSP hdr checksum [ 453.708937][ T143] Bluetooth: Error in BCSP hdr checksum [ 453.793306][ T9184] Bluetooth: Error in BCSP hdr checksum [ 453.793466][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.801882][ T9184] Bluetooth: Error in BCSP hdr checksum [ 453.807706][ T9182] Bluetooth: Error in BCSP hdr checksum [ 453.814474][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.820629][ T143] Bluetooth: Error in BCSP hdr checksum [ 453.827929][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.832725][ T143] Bluetooth: Error in BCSP hdr checksum [ 453.838672][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.845009][ T9168] Bluetooth: Error in BCSP hdr checksum [ 453.850520][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.963151][ T7] Bluetooth: Error in BCSP hdr checksum [ 453.968894][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.053179][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.053206][ T9184] Bluetooth: Error in BCSP hdr checksum [ 454.059150][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.065449][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.070475][ T9184] Bluetooth: Error in BCSP hdr checksum [ 454.076310][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.093007][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.093279][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.098985][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.106599][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.223070][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.229010][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.313228][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.313388][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.319140][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.325184][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.331297][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.343966][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.353317][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.353401][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.360214][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.365762][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.483091][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.488811][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.573169][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.573257][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.580641][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.586629][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.592821][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.603634][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.613107][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.618784][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.624760][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.630405][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.743119][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.749902][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.833176][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.833252][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.839755][ T7] Bluetooth: Error in BCSP hdr checksum [ 454.847174][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.852902][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.864750][ T143] Bluetooth: Error in BCSP hdr checksum [ 454.873061][ T9184] Bluetooth: Error in BCSP hdr checksum [ 454.873210][ T9168] Bluetooth: Error in BCSP hdr checksum [ 454.879664][ T9184] Bluetooth: Error in BCSP hdr checksum [ 454.886442][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.002960][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.008694][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.093176][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.093305][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.099424][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.106609][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.112500][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.123608][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.142952][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.143098][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.149084][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.154677][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.262961][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.268601][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.353143][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.353180][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.358758][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.364505][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.371563][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.375634][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.403037][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.403263][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.408883][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.415815][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.522983][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.528995][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.613207][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.613283][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.619137][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.625026][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.631610][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.641876][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.663059][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.663063][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.663099][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.668695][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.782991][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.788796][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.873208][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.873386][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.879340][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.885393][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.892641][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.904673][ T7] Bluetooth: Error in BCSP hdr checksum [ 455.923126][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.923287][ T9184] Bluetooth: Error in BCSP hdr checksum [ 455.929867][ T9168] Bluetooth: Error in BCSP hdr checksum [ 455.935865][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.043079][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.051036][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.133103][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.133473][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.138836][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.144676][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.150909][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.156582][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.183097][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.183209][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.188816][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.195905][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.303193][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.308987][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.393185][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.393273][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.398831][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.404559][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.410637][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.421559][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.443105][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.444057][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.449229][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.454915][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.563112][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.568747][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.653276][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.653308][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.658907][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.665568][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.671222][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.675971][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.703057][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.703205][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.708734][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.714317][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.823070][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.828756][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.913214][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.913260][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.918849][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.924462][ T9184] Bluetooth: Error in BCSP hdr checksum [ 456.930358][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.941193][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.963073][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.963243][ T9168] Bluetooth: Error in BCSP hdr checksum [ 456.968771][ T143] Bluetooth: Error in BCSP hdr checksum [ 456.974343][ T9168] Bluetooth: Error in BCSP hdr checksum [ 457.083020][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.088791][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.173287][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.173291][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.173331][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.179093][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.186284][ T9168] Bluetooth: Error in BCSP hdr checksum [ 457.201598][ T9168] Bluetooth: Error in BCSP hdr checksum [ 457.223103][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.223184][ T9168] Bluetooth: Error in BCSP hdr checksum [ 457.228811][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.234473][ T9168] Bluetooth: Error in BCSP hdr checksum [ 457.343084][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.348918][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.433296][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.433491][ T7] Bluetooth: Error in BCSP hdr checksum [ 457.438952][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.444794][ T7] Bluetooth: Error in BCSP hdr checksum [ 457.451462][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.461452][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.483117][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.483175][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.488781][ T143] Bluetooth: Error in BCSP hdr checksum [ 457.494511][ T9184] Bluetooth: Error in BCSP hdr checksum [ 457.624331][ T9156] ================================================================== [ 457.632690][ T9156] BUG: KASAN: double-free or invalid-free in skb_free_head+0x93/0xb0 [ 457.640754][ T9156] [ 457.643079][ T9156] CPU: 1 PID: 9156 Comm: syz-executor213 Not tainted 5.4.0-rc5+ #0 [ 457.651090][ T9156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 457.661168][ T9156] Call Trace: [ 457.664530][ T9156] dump_stack+0x172/0x1f0 [ 457.668853][ T9156] print_address_description.constprop.0.cold+0xd4/0x30b [ 457.675862][ T9156] ? skb_free_head+0x93/0xb0 [ 457.680448][ T9156] kasan_report_invalid_free+0x65/0xa0 [ 457.685899][ T9156] ? skb_free_head+0x93/0xb0 [ 457.690522][ T9156] __kasan_slab_free+0x13a/0x150 [ 457.695473][ T9156] ? skb_free_head+0x93/0xb0 [ 457.700070][ T9156] kasan_slab_free+0xe/0x10 [ 457.704564][ T9156] kfree+0x10a/0x2c0 [ 457.708602][ T9156] skb_free_head+0x93/0xb0 [ 457.713097][ T9156] skb_release_data+0x42d/0x7c0 [ 457.718064][ T9156] ? bcsp_close+0xc7/0x130 [ 457.722505][ T9156] skb_release_all+0x4d/0x60 [ 457.727133][ T9156] kfree_skb+0x101/0x3c0 [ 457.731593][ T9156] bcsp_close+0xc7/0x130 [ 457.735839][ T9156] hci_uart_tty_close+0x21e/0x280 [ 457.740856][ T9156] ? hci_uart_close+0x50/0x50 [ 457.745525][ T9156] tty_ldisc_close.isra.0+0x119/0x1a0 [ 457.751162][ T9156] tty_ldisc_kill+0x9c/0x160 [ 457.755753][ T9156] tty_ldisc_release+0xe9/0x2b0 [ 457.760744][ T9156] tty_release_struct+0x1b/0x50 [ 457.765620][ T9156] tty_release+0xbcb/0xe90 [ 457.770072][ T9156] __fput+0x2ff/0x890 [ 457.774058][ T9156] ? put_tty_driver+0x20/0x20 [ 457.778768][ T9156] ____fput+0x16/0x20 [ 457.782748][ T9156] task_work_run+0x145/0x1c0 [ 457.787350][ T9156] do_exit+0x904/0x2e60 [ 457.791558][ T9156] ? mm_update_next_owner+0x640/0x640 [ 457.798735][ T9156] ? lock_downgrade+0x920/0x920 [ 457.803969][ T9156] ? _raw_spin_unlock_irq+0x28/0x90 [ 457.809750][ T9156] ? get_signal+0x392/0x2500 [ 457.814338][ T9156] ? _raw_spin_unlock_irq+0x28/0x90 [ 457.819535][ T9156] do_group_exit+0x135/0x360 [ 457.824118][ T9156] get_signal+0x47c/0x2500 [ 457.828559][ T9156] ? __fget+0x384/0x560 [ 457.832755][ T9156] do_signal+0x87/0x1700 [ 457.837018][ T9156] ? __vfs_read+0x92/0x110 [ 457.841434][ T9156] ? setup_sigcontext+0x7d0/0x7d0 [ 457.846449][ T9156] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 457.852676][ T9156] ? fput_many+0x12c/0x1a0 [ 457.857090][ T9156] ? ksys_read+0x1cf/0x290 [ 457.861504][ T9156] ? exit_to_usermode_loop+0x43/0x380 [ 457.866895][ T9156] ? do_syscall_64+0x65f/0x760 [ 457.871658][ T9156] ? exit_to_usermode_loop+0x43/0x380 [ 457.877019][ T9156] ? lockdep_hardirqs_on+0x421/0x5e0 [ 457.882409][ T9156] ? trace_hardirqs_on+0x67/0x240 [ 457.887569][ T9156] exit_to_usermode_loop+0x286/0x380 [ 457.892903][ T9156] do_syscall_64+0x65f/0x760 [ 457.897523][ T9156] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 457.903421][ T9156] RIP: 0033:0x446809 [ 457.907357][ T9156] Code: Bad RIP value. [ 457.911646][ T9156] RSP: 002b:00007feedabcfdb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 457.920088][ T9156] RAX: fffffffffffffe00 RBX: 00000000006dbc38 RCX: 0000000000446809 [ 457.928173][ T9156] RDX: 000000000000005b RSI: 0000000020000080 RDI: 0000000000000007 [ 457.936149][ T9156] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000 [ 457.944642][ T9156] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c [ 457.952623][ T9156] R13: 00007fff8abe57cf R14: 00007feedabd09c0 R15: 0000000000000000 [ 457.960632][ T9156] [ 457.962964][ T9156] Allocated by task 9184: [ 457.967325][ T9156] save_stack+0x23/0x90 [ 457.971483][ T9156] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 457.977165][ T9156] kasan_kmalloc+0x9/0x10 [ 457.981527][ T9156] __kmalloc_node_track_caller+0x4e/0x70 [ 457.987338][ T9156] __kmalloc_reserve.isra.0+0x40/0xf0 [ 457.992746][ T9156] __alloc_skb+0x10b/0x5e0 [ 457.997172][ T9156] bcsp_recv+0x8c1/0x13a0 [ 458.001669][ T9156] hci_uart_tty_receive+0x279/0x6e0 [ 458.006916][ T9156] tty_ldisc_receive_buf+0x15f/0x1c0 [ 458.012249][ T9156] tty_port_default_receive_buf+0x7d/0xb0 [ 458.017962][ T9156] flush_to_ldisc+0x222/0x390 [ 458.022640][ T9156] process_one_work+0x9af/0x1740 [ 458.027559][ T9156] worker_thread+0x98/0xe40 [ 458.032169][ T9156] kthread+0x361/0x430 [ 458.036247][ T9156] ret_from_fork+0x24/0x30 [ 458.040684][ T9156] [ 458.043143][ T9156] Freed by task 9184: [ 458.047465][ T9156] save_stack+0x23/0x90 [ 458.051615][ T9156] __kasan_slab_free+0x102/0x150 [ 458.056575][ T9156] kasan_slab_free+0xe/0x10 [ 458.061097][ T9156] kfree+0x10a/0x2c0 [ 458.064997][ T9156] skb_free_head+0x93/0xb0 [ 458.069444][ T9156] skb_release_data+0x42d/0x7c0 [ 458.074328][ T9156] skb_release_all+0x4d/0x60 [ 458.078917][ T9156] kfree_skb+0x101/0x3c0 [ 458.083415][ T9156] bcsp_recv+0x2d8/0x13a0 [ 458.087769][ T9156] hci_uart_tty_receive+0x279/0x6e0 [ 458.093259][ T9156] tty_ldisc_receive_buf+0x15f/0x1c0 [ 458.098548][ T9156] tty_port_default_receive_buf+0x7d/0xb0 [ 458.104263][ T9156] flush_to_ldisc+0x222/0x390 [ 458.108927][ T9156] process_one_work+0x9af/0x1740 [ 458.113851][ T9156] worker_thread+0x98/0xe40 [ 458.118376][ T9156] kthread+0x361/0x430 [ 458.122442][ T9156] ret_from_fork+0x24/0x30 [ 458.126841][ T9156] [ 458.129162][ T9156] The buggy address belongs to the object at ffff8880946e4000 [ 458.129162][ T9156] which belongs to the cache kmalloc-8k of size 8192 [ 458.143232][ T9156] The buggy address is located 0 bytes inside of [ 458.143232][ T9156] 8192-byte region [ffff8880946e4000, ffff8880946e6000) [ 458.156909][ T9156] The buggy address belongs to the page: [ 458.162558][ T9156] page:ffffea000251b900 refcount:1 mapcount:0 mapping:ffff8880aa4021c0 index:0x0 compound_mapcount: 0 [ 458.173537][ T9156] flags: 0x1fffc0000010200(slab|head) [ 458.179038][ T9156] raw: 01fffc0000010200 ffffea00024a2e08 ffffea0002631c08 ffff8880aa4021c0 [ 458.187655][ T9156] raw: 0000000000000000 ffff8880946e4000 0000000100000001 0000000000000000 [ 458.196258][ T9156] page dumped because: kasan: bad access detected [ 458.202775][ T9156] [ 458.205100][ T9156] Memory state around the buggy address: [ 458.210976][ T9156] ffff8880946e3f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 458.219079][ T9156] ffff8880946e3f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 458.227153][ T9156] >ffff8880946e4000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 458.235377][ T9156] ^ [ 458.239442][ T9156] ffff8880946e4080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 458.247521][ T9156] ffff8880946e4100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 458.255751][ T9156] ================================================================== [ 458.263837][ T9156] Disabling lock debugging due to kernel taint [ 458.269994][ T9171] ================================================================== [ 458.270000][ T9156] Kernel panic - not syncing: panic_on_warn set ... [ 458.270023][ T9156] CPU: 1 PID: 9156 Comm: syz-executor213 Tainted: G B 5.4.0-rc5+ #0 [ 458.278214][ T9171] BUG: KASAN: use-after-free in kfree_skb+0x38/0x3c0 [ 458.285068][ T9156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.294337][ T9171] Read of size 4 at addr ffff8880a84675d4 by task syz-executor213/9171 [ 458.300990][ T9156] Call Trace: [ 458.311179][ T9171] [ 458.319445][ T9156] dump_stack+0x172/0x1f0 [ 458.329377][ T9156] panic+0x2e3/0x75c [ 458.333322][ T9156] ? add_taint.cold+0x16/0x16 [ 458.338088][ T9156] ? skb_free_head+0x93/0xb0 [ 458.342766][ T9156] ? trace_hardirqs_off+0x62/0x240 [ 458.348001][ T9156] ? trace_hardirqs_off+0x59/0x240 [ 458.353142][ T9156] ? skb_free_head+0x93/0xb0 [ 458.357755][ T9156] end_report+0x47/0x4f [ 458.361920][ T9156] kasan_report_invalid_free+0x82/0xa0 [ 458.367422][ T9156] ? skb_free_head+0x93/0xb0 [ 458.372004][ T9156] __kasan_slab_free+0x13a/0x150 [ 458.376929][ T9156] ? skb_free_head+0x93/0xb0 [ 458.381507][ T9156] kasan_slab_free+0xe/0x10 [ 458.386018][ T9156] kfree+0x10a/0x2c0 [ 458.389950][ T9156] skb_free_head+0x93/0xb0 [ 458.394368][ T9156] skb_release_data+0x42d/0x7c0 [ 458.399302][ T9156] ? bcsp_close+0xc7/0x130 [ 458.403705][ T9156] skb_release_all+0x4d/0x60 [ 458.408456][ T9156] kfree_skb+0x101/0x3c0 [ 458.412720][ T9156] bcsp_close+0xc7/0x130 [ 458.416965][ T9156] hci_uart_tty_close+0x21e/0x280 [ 458.422019][ T9156] ? hci_uart_close+0x50/0x50 [ 458.426875][ T9156] tty_ldisc_close.isra.0+0x119/0x1a0 [ 458.432276][ T9156] tty_ldisc_kill+0x9c/0x160 [ 458.436901][ T9156] tty_ldisc_release+0xe9/0x2b0 [ 458.441762][ T9156] tty_release_struct+0x1b/0x50 [ 458.446642][ T9156] tty_release+0xbcb/0xe90 [ 458.451097][ T9156] __fput+0x2ff/0x890 [ 458.455117][ T9156] ? put_tty_driver+0x20/0x20 [ 458.459799][ T9156] ____fput+0x16/0x20 [ 458.463775][ T9156] task_work_run+0x145/0x1c0 [ 458.468356][ T9156] do_exit+0x904/0x2e60 [ 458.472507][ T9156] ? mm_update_next_owner+0x640/0x640 [ 458.477872][ T9156] ? lock_downgrade+0x920/0x920 [ 458.482716][ T9156] ? _raw_spin_unlock_irq+0x28/0x90 [ 458.488053][ T9156] ? get_signal+0x392/0x2500 [ 458.492657][ T9156] ? _raw_spin_unlock_irq+0x28/0x90 [ 458.497895][ T9156] do_group_exit+0x135/0x360 [ 458.502484][ T9156] get_signal+0x47c/0x2500 [ 458.506935][ T9156] ? __fget+0x384/0x560 [ 458.511267][ T9156] do_signal+0x87/0x1700 [ 458.515516][ T9156] ? __vfs_read+0x92/0x110 [ 458.519946][ T9156] ? setup_sigcontext+0x7d0/0x7d0 [ 458.525003][ T9156] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 458.531429][ T9156] ? fput_many+0x12c/0x1a0 [ 458.535841][ T9156] ? ksys_read+0x1cf/0x290 [ 458.540286][ T9156] ? exit_to_usermode_loop+0x43/0x380 [ 458.545657][ T9156] ? do_syscall_64+0x65f/0x760 [ 458.550535][ T9156] ? exit_to_usermode_loop+0x43/0x380 [ 458.555898][ T9156] ? lockdep_hardirqs_on+0x421/0x5e0 [ 458.561257][ T9156] ? trace_hardirqs_on+0x67/0x240 [ 458.566273][ T9156] exit_to_usermode_loop+0x286/0x380 [ 458.571591][ T9156] do_syscall_64+0x65f/0x760 [ 458.576202][ T9156] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 458.582116][ T9156] RIP: 0033:0x446809 [ 458.587182][ T9156] Code: Bad RIP value. [ 458.591361][ T9156] RSP: 002b:00007feedabcfdb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 458.599793][ T9156] RAX: fffffffffffffe00 RBX: 00000000006dbc38 RCX: 0000000000446809 [ 458.608087][ T9156] RDX: 000000000000005b RSI: 0000000020000080 RDI: 0000000000000007 [ 458.616086][ T9156] RBP: 00000000006dbc30 R08: 0000000000000000 R09: 0000000000000000 [ 458.624053][ T9156] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc3c [ 458.632043][ T9156] R13: 00007fff8abe57cf R14: 00007feedabd09c0 R15: 0000000000000000 [ 458.641081][ T9171] CPU: 0 PID: 9171 Comm: syz-executor213 Tainted: G B 5.4.0-rc5+ #0 [ 458.650493][ T9171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 458.660568][ T9171] Call Trace: [ 458.663859][ T9171] dump_stack+0x172/0x1f0 [ 458.668175][ T9171] ? kfree_skb+0x38/0x3c0 [ 458.672495][ T9171] print_address_description.constprop.0.cold+0xd4/0x30b [ 458.679502][ T9171] ? kfree_skb+0x38/0x3c0 [ 458.683820][ T9171] ? kfree_skb+0x38/0x3c0 [ 458.688187][ T9171] __kasan_report.cold+0x1b/0x41 [ 458.693143][ T9171] ? kfree_skb+0x38/0x3c0 [ 458.697507][ T9171] kasan_report+0x12/0x20 [ 458.701839][ T9171] check_memory_region+0x134/0x1a0 [ 458.706972][ T9171] __kasan_check_read+0x11/0x20 [ 458.712147][ T9171] kfree_skb+0x38/0x3c0 [ 458.716327][ T9171] bcsp_close+0xc7/0x130 [ 458.720574][ T9171] hci_uart_tty_close+0x21e/0x280 [ 458.726142][ T9171] ? hci_uart_close+0x50/0x50 [ 458.730955][ T9171] tty_ldisc_close.isra.0+0x119/0x1a0 [ 458.736359][ T9171] tty_ldisc_kill+0x9c/0x160 [ 458.740961][ T9171] tty_ldisc_release+0xe9/0x2b0 [ 458.746393][ T9171] tty_release_struct+0x1b/0x50 [ 458.751245][ T9171] tty_release+0xbcb/0xe90 [ 458.755658][ T9171] __fput+0x2ff/0x890 [ 458.759627][ T9171] ? put_tty_driver+0x20/0x20 [ 458.764327][ T9171] ____fput+0x16/0x20 [ 458.768308][ T9171] task_work_run+0x145/0x1c0 [ 458.772893][ T9171] do_exit+0x904/0x2e60 [ 458.777042][ T9171] ? mm_update_next_owner+0x640/0x640 [ 458.782402][ T9171] ? lock_downgrade+0x920/0x920 [ 458.787440][ T9171] ? _raw_spin_unlock_irq+0x28/0x90 [ 458.792766][ T9171] ? get_signal+0x392/0x2500 [ 458.797365][ T9171] ? _raw_spin_unlock_irq+0x28/0x90 [ 458.802592][ T9171] do_group_exit+0x135/0x360 [ 458.807180][ T9171] get_signal+0x47c/0x2500 [ 458.811586][ T9171] ? do_vfs_ioctl+0x120/0x13e0 [ 458.816336][ T9171] do_signal+0x87/0x1700 [ 458.820567][ T9171] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 458.826788][ T9171] ? debug_smp_processor_id+0x3c/0x214 [ 458.832232][ T9171] ? rcu_lockdep_current_cpu_online+0xe3/0x130 [ 458.838369][ T9171] ? setup_sigcontext+0x7d0/0x7d0 [ 458.843382][ T9171] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 458.849621][ T9171] ? exit_to_usermode_loop+0x43/0x380 [ 458.854972][ T9171] ? do_syscall_64+0x65f/0x760 [ 458.859721][ T9171] ? exit_to_usermode_loop+0x43/0x380 [ 458.865079][ T9171] ? lockdep_hardirqs_on+0x421/0x5e0 [ 458.870347][ T9171] ? trace_hardirqs_on+0x67/0x240 [ 458.875356][ T9171] exit_to_usermode_loop+0x286/0x380 [ 458.880624][ T9171] do_syscall_64+0x65f/0x760 [ 458.885199][ T9171] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 458.891068][ T9171] RIP: 0033:0x446809 [ 458.894956][ T9171] Code: Bad RIP value. [ 458.899000][ T9171] RSP: 002b:00007feedabaedb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 458.907391][ T9171] RAX: fffffffffffffe00 RBX: 00000000006dbc48 RCX: 0000000000446809 [ 458.915356][ T9171] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00000000006dbc48 [ 458.923317][ T9171] RBP: 00000000006dbc40 R08: 0000000000000000 R09: 0000000000000000 [ 458.931269][ T9171] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000006dbc4c [ 458.939237][ T9171] R13: 00007fff8abe57cf R14: 00007feedabaf9c0 R15: 0000000000000001 [ 458.947207][ T9171] [ 458.949518][ T9171] Allocated by task 143: [ 458.953747][ T9171] save_stack+0x23/0x90 [ 458.957887][ T9171] __kasan_kmalloc.constprop.0+0xcf/0xe0 [ 458.963498][ T9171] kasan_slab_alloc+0xf/0x20 [ 458.968068][ T9171] kmem_cache_alloc_node+0x138/0x740 [ 458.973333][ T9171] __alloc_skb+0xd5/0x5e0 [ 458.977648][ T9171] bcsp_recv+0x8c1/0x13a0 [ 458.981966][ T9171] hci_uart_tty_receive+0x279/0x6e0 [ 458.987148][ T9171] tty_ldisc_receive_buf+0x15f/0x1c0 [ 458.992416][ T9171] tty_port_default_receive_buf+0x7d/0xb0 [ 458.998115][ T9171] flush_to_ldisc+0x222/0x390 [ 459.002777][ T9171] process_one_work+0x9af/0x1740 [ 459.007699][ T9171] worker_thread+0x98/0xe40 [ 459.012186][ T9171] kthread+0x361/0x430 [ 459.016421][ T9171] ret_from_fork+0x24/0x30 [ 459.020813][ T9171] [ 459.023151][ T9171] Freed by task 143: [ 459.027025][ T9171] save_stack+0x23/0x90 [ 459.031248][ T9171] __kasan_slab_free+0x102/0x150 [ 459.036164][ T9171] kasan_slab_free+0xe/0x10 [ 459.040644][ T9171] kmem_cache_free+0x86/0x320 [ 459.045304][ T9171] kfree_skbmem+0xc5/0x150 [ 459.049730][ T9171] kfree_skb+0x109/0x3c0 [ 459.053961][ T9171] bcsp_recv+0x2d8/0x13a0 [ 459.058276][ T9171] hci_uart_tty_receive+0x279/0x6e0 [ 459.063462][ T9171] tty_ldisc_receive_buf+0x15f/0x1c0 [ 459.068749][ T9171] tty_port_default_receive_buf+0x7d/0xb0 [ 459.074449][ T9171] flush_to_ldisc+0x222/0x390 [ 459.079107][ T9171] process_one_work+0x9af/0x1740 [ 459.084026][ T9171] worker_thread+0x98/0xe40 [ 459.088509][ T9171] kthread+0x361/0x430 [ 459.092562][ T9171] ret_from_fork+0x24/0x30 [ 459.096951][ T9171] [ 459.099266][ T9171] The buggy address belongs to the object at ffff8880a8467500 [ 459.099266][ T9171] which belongs to the cache skbuff_head_cache of size 224 [ 459.113906][ T9171] The buggy address is located 212 bytes inside of [ 459.113906][ T9171] 224-byte region [ffff8880a8467500, ffff8880a84675e0) [ 459.127426][ T9171] The buggy address belongs to the page: [ 459.133040][ T9171] page:ffffea0002a119c0 refcount:1 mapcount:0 mapping:ffff8880a99d4e00 index:0x0 [ 459.142124][ T9171] flags: 0x1fffc0000000200(slab) [ 459.147047][ T9171] raw: 01fffc0000000200 ffffea000253df08 ffffea00026c7548 ffff8880a99d4e00 [ 459.155615][ T9171] raw: 0000000000000000 ffff8880a8467000 000000010000000c 0000000000000000 [ 459.164173][ T9171] page dumped because: kasan: bad access detected [ 459.170562][ T9171] [ 459.172868][ T9171] Memory state around the buggy address: [ 459.178480][ T9171] ffff8880a8467480: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc [ 459.186521][ T9171] ffff8880a8467500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 459.194561][ T9171] >ffff8880a8467580: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 459.202603][ T9171] ^ [ 459.209272][ T9171] ffff8880a8467600: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb [ 459.217342][ T9171] ffff8880a8467680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 459.225386][ T9171] ================================================================== [ 459.234710][ T9156] Kernel Offset: disabled [ 459.239033][ T9156] Rebooting in 86400 seconds..